last executing test programs:

7.253945174s ago: executing program 2 (id=285):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x0, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000002c0)={0x8, 0x0, &(0x7f0000000180)=[@decrefs], 0x0, 0x0, 0x0})
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, r3, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x4080)

7.216217158s ago: executing program 2 (id=286):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00'})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x3, 0x5}, 0x3f, [0x9, 0x2, 0x18, 0x2, 0x2, 0x400, 0x80400000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x800, 0xfffffb9a, 0xfffffffe, 0x0, 0xfffffffb, 0x2004, 0x3, 0x0, 0x8001, 0x80, 0x4800, 0x300000, 0x7, 0xe, 0x7, 0x0, 0x10001, 0x1ff, 0x2, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da9, 0x4, 0x200, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6f, 0x8, 0x9, 0x1, 0x8001, 0x6, 0x2002, 0x9, 0xfffbffff, 0x4, 0x6, 0x1000, 0x5, 0x3d, 0x8, 0xa, 0x5], [0x1, 0x1e, 0x3, 0x8000, 0xfffffffd, 0x3, 0x0, 0x22, 0x7, 0xfffffffc, 0x8, 0x7fff, 0x72c, 0x1c32, 0x3, 0x6, 0x10000, 0x9, 0x7ffd, 0x3, 0x7f, 0xf, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x7, 0x1, 0xffffffff, 0x6, 0x8, 0x800, 0x7, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x411, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x7, 0x200, 0x3], [0x401, 0x4d, 0xffff, 0xcd3, 0x7, 0x1f, 0x404, 0x4, 0x4008, 0x9, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x8, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x0, 0x1000, 0x80040101, 0x5, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x10000, 0x0, 0x7, 0x400004, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0x0, 0x3ff, 0xe, 0x6, 0x100fffd, 0x7, 0xdee5, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x5d7, 0x7], [0x108e, 0xffff, 0x7, 0x3, 0xfffffa7d, 0x2, 0x4000000, 0x4, 0x4c, 0x10001, 0x763, 0xb, 0x402, 0x1, 0x9, 0x4001000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x4, 0x3, 0x4, 0x2, 0x2851, 0x3b, 0x20000001, 0x5, 0x5, 0x3, 0x65f413f9, 0x4, 0x20006, 0x8a5, 0xffffff80, 0x44, 0x9, 0x3, 0x4, 0x4, 0x9, 0xe, 0xffffffff, 0x7fff, 0xffff8a33, 0xfffffff9, 0x401, 0x3, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x80000000]}, 0x45c)
ioctl$UI_DEV_CREATE(r2, 0x5501)
readv(r2, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

6.908290028s ago: executing program 0 (id=290):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0xb1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907"], 0xcfa4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x9)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)

6.907990499s ago: executing program 0 (id=291):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[], 0x24, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000040), 0x1, 0x58002)
ioctl$BLKGETDISKSEQ(r3, 0x80081280, &(0x7f0000000340))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x141091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r4, &(0x7f0000000300)={{0x6, @rose, 0x4}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca"], 0x0)
sendto$netrom(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
open(0x0, 0x0, 0x0)

6.882441715s ago: executing program 2 (id=294):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r0, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fremovexattr(r2, &(0x7f0000000000)=@known='system.posix_acl_default\x00')

4.505692135s ago: executing program 2 (id=297):
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xb6, &(0x7f0000000140)=""/182, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xb, &(0x7f0000000100)={0x800008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r0, 0x403c6f2b, &(0x7f00000000c0)={0x400, {"9c73bcc9b61761c9e853df98debee1f5", "ac2c2ffc1858d9d1dff85717976a4c90", "71b51f08a53c5fe7f3132a0139212f22"}, 0xffff, 0x6})
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r4=>0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000040500010001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x44084)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x1, 0x4, 0x101, 0x0, 0x0, {0xd, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x44084)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0x6}}, './file0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x4, 0x8, &(0x7f00000006c0)='\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

3.95968678s ago: executing program 3 (id=303):
fsopen(&(0x7f0000000100)='hugetlbfs\x00', 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f00)=@newtaction={0x23c, 0x30, 0x1, 0x0, 0x0, {}, [{0x228, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_connmark={0x1e0, 0xc, 0x0, 0x0, {{0xd}, {0xc8, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x101, 0x7, 0x6, 0x9, 0xb9}, 0x3}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7, 0x7fff, 0x2, 0x2, 0x9}, 0x1}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0x8001, 0x5, 0xc, 0x4}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x1, 0x6, 0x9, 0xe}, 0x1000}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x4, 0x3, 0x2, 0x2}, 0x400}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x10001, 0x2, 0x6, 0xaa0}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x10000, 0x2, 0x0, 0x8001}, 0xfffd}}]}, {0xe9, 0x6, "3d6253d5c542f6e84931c71a8a7f344745c54cfd9e1ac1bb37881643e4c97d183a713d36087af419415260675d941cf54178bb4c95cd6c22e1b59769965c7733f7974e86a2fc58bd81a27bec7dc2f8085644767c390ee6f44ca6af740ec0e3fdd005e6a2630d8e1ba0c01cdf359a357596ac79a908c0133373cadbd91410fe664fb0233bd5e3e8a7e7659c75aa0220e66758658ab7ecc1d55b74e50a37e9ced7be3cfc71dffbfecd613abd75d749018433df2ad26400c8fa3821f6b54d963f20d068ac286f473f3505bde9820cec8b99e9e6ad656bd286d00ca7ed61bfcfdfa0765d470bcd"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000e80)=[{{&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}}}, 0x0, &(0x7f0000000480)=[{&(0x7f0000000580)=""/241}], 0x0, &(0x7f00000004c0)=""/94}, 0x4}, {{0x0, 0x0, &(0x7f0000000980), 0x0, &(0x7f00000009c0)=""/231}, 0x9}, {{&(0x7f0000000ac0)=@alg, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000b80)=""/31}, {&(0x7f0000000bc0)=""/88}, {&(0x7f0000000c40)=""/60}, {&(0x7f0000000c80)=""/110}, {&(0x7f0000000d00)=""/75}, {&(0x7f0000000d80)=""/36}], 0x0, &(0x7f0000000e00)=""/94}, 0x6}], 0xa, 0x40000002, 0x0)
shutdown(r1, 0x1)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000325bd7000fcdbdf2501000000080009000200000006001b004e2300000500070002000000c48bca24f59e596e820466f0f62df0c8eb6d1894b357d0aeadef239c0d9cdb71b51912ca831196734c52479654341bb0ac51495124a2e9695dec345713b8cceb3e65e740e48ee3406ceca7e28b84696ec2937ef6aa86c60f628c67971ce1b6b19aad0b50a4cfb0f9b1e618973d6171d45312bb065f651079ae6197643c9cd847941c356c2bd596c334b8cc5b4a915b851c9e46f01a4568ec0388c0dd08f59012d1a671570c49ffcd49784f1f4d7f49d0b286a24fd64c54616e2a1f7c088e3e6890572faf5db824f48dce11cd8d698efc"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x87d4b69a72310a97)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r6 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910000000000000cb041818000100009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0xe4}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
tkill(r6, 0xb)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000041}, 0x55fdb4595c3d8036)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0xd, 0x101, 0x204, 0x10}})
connect$llc(0xffffffffffffffff, 0x0, 0x0)

3.726643103s ago: executing program 3 (id=304):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020200600000000000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x8}, 0x8)
openat$binder_debug(0xffffff9c, &(0x7f0000000300)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, 0x0, 0x0)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000340)={0x65d, 0x2, 0x2, 0x0, 0x1})
ioctl$vim2m_VIDIOC_QUERYBUF(r4, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000380)}, 0x4048043)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3000000010005fba00100000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="800002000800ffff08001b000000000008000d0002000000"], 0x30}}, 0x4804)
close(0xffffffffffffffff)

2.652832886s ago: executing program 0 (id=305):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='syscall\x00')
openat$vmci(0xffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = syz_io_uring_setup(0x233, &(0x7f0000000280)={0x0, 0x0, 0x10100}, &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r1, 0x7a98, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000580)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r6, &(0x7f0000000280)={0xa, 0x4005, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
r7 = socket$inet6(0x10, 0x2, 0x4)
getpeername$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000140)=0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1e00000000020000010000000400000000040000", @ANYRES32, @ANYBLOB="0200000000000008000000000000000000020000", @ANYRES32=r8, @ANYRES32=r0, @ANYBLOB="0200000002000000010000000600"/28], 0x50)
sendto$inet6(r7, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000240))
socket$nl_route(0x10, 0x3, 0x0)
memfd_create(0x0, 0x3)
ioctl$VIDIOC_QUERY_EXT_CTRL(0xffffffffffffffff, 0xc0e85667, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={'syzkaller0\x00', {0x2, 0x4e22, @private=0xa010100}})
pread64(r0, &(0x7f0000000380)=""/140, 0x8c, 0x200000000000000)

2.5792487s ago: executing program 2 (id=306):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80800, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0x80, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x5823, 0x7, 0x6362, 0x5, 0xfffffffd, 0xffffffff}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc04c001}, 0x20000804)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {0x0, 0xffe0}, {0x2, 0xb}, {0xd, 0xd}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000050}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

2.332651743s ago: executing program 2 (id=307):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'virt_wifi0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
futex(&(0x7f0000000040), 0x6, 0x2, &(0x7f0000000080), 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@getchain={0x3c, 0x66, 0x400, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xd, 0xfff1}, {0x1, 0xd}, {0xd, 0x4}}, [{0x8, 0xb, 0x10001}, {0x8}, {0x8, 0xb, 0x7f}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44810}, 0x200018d0)
prlimit64(0x0, 0x9, &(0x7f0000000000)={0x530, 0x8000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$can_bcm(0x1d, 0x2, 0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$snapshot(0xffffff9c, 0x0, 0x20900, 0x0)
ioctl$SNAPSHOT_S2RAM(r4, 0x330b)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4008890)
lseek(0xffffffffffffffff, 0x851, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x80, &(0x7f00000003c0)=ANY=[@ANYBLOB="61b0209d02e7a88cf524cd105079cf46907575222e66e0feb250e236b65dc6d386249762484c7319565cb936b0db181bad0a3983e3c42d085da9f1cd5a97ab7cd338b9e132e4acaf3c722236d82ded601f25a7fde8e0be7b7f0e8d591e7f1dde1516cc2df9c186cc8256061c16ec3e48e6434ba0b77c368b95b30a8f9d82495721d556ec91301cd4b6bdc52978a93f7a53d6c45ab4b71970e6794c78d52782a0e01840aa23d8bcfd769c43fc00d6c4f91165a17e31a3227ae3e40dea0631a03d"])
chdir(&(0x7f0000000100)='./file0\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
mmap$panthor(&(0x7f00005a2000/0x4000)=nil, 0x4000, 0x200000a, 0x50, r5, 0xfffe)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)

2.229736929s ago: executing program 1 (id=308):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0xb1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907"], 0xcfa4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB], 0x9)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)

2.229562441s ago: executing program 1 (id=309):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x6, @private0}}}, 0x3a)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x3, @remote}, 0x1, 0x1}}, 0x2e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x15}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x803b01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
writev(r3, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

2.135038812s ago: executing program 1 (id=310):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = syz_io_uring_setup(0x88b, &(0x7f0000000400)={0x0, 0x1000aee4, 0x20, 0x402, 0x1b7}, &(0x7f0000000280), &(0x7f0000000100))
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
io_uring_enter(r4, 0x4e14, 0x912a, 0x5f, 0x0, 0xffffffffffffff1d)
r5 = socket(0x2b, 0x1, 0x1)
fcntl$lock(r0, 0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
syz_open_dev$dri(&(0x7f0000001480), 0xb, 0x200)

2.1311543s ago: executing program 3 (id=311):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000007000000070000000020000000400000000e3ff01050000000300000005000093010004000a000000ffff00000600000002000000ff0f00000500000004000000400000000300000031e28cab08f3182c81000000100002007304000001000000060000000000000e0400000000000000000000000000000d"], 0x0, 0x8a, 0x0, 0x1, 0x6}, 0x28)
r1 = socket$kcm(0x11, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000001780)={&(0x7f00000003c0)=@caif=@rfm={0x25, 0x15, "fb95785b587f23ba61bfb990191a2af1"}, 0x80, &(0x7f0000000040)=[{&(0x7f0000001800)="a5", 0x1}], 0x1}, 0x0)

2.030048132s ago: executing program 3 (id=313):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f00000002c0)={0x6, 0x6, 0x1000002, 0x87, 0xffffffff, 0x3fe})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="00000004000000000000000000982f7a2ea700000b4f52762706ed85227e17db20c0bd9fa2f1c860aadfc5f90ecb508f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
move_pages(0xffffffffffffffff, 0x6, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000fec000/0x13000)=nil], &(0x7f0000000200)=[0x5, 0x5, 0x2, 0x80000000, 0x0, 0xfffffff9], &(0x7f0000000240)=[0x0], 0x13889dd6e1623ba5)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r0, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0xb0}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.029734891s ago: executing program 3 (id=314):
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x24, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x40) (async)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000004000000000000000100000095"], &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001840)=@bpf_ext={0x1c, 0x1, &(0x7f0000000080)=ANY=[], &(0x7f0000000340)='GPL\x00', 0xfffffc00, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2469, r5, 0x0, 0x0, 0x0, 0x10, 0x878}, 0x94)

1.939901591s ago: executing program 3 (id=315):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[], 0x24, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000040), 0x1, 0x58002)
ioctl$BLKGETDISKSEQ(r3, 0x80081280, &(0x7f0000000340))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x141091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r4, &(0x7f0000000300)={{0x6, @rose, 0x4}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca"], 0x0)
sendto$netrom(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
open(0x0, 0x0, 0x0)

1.025427448s ago: executing program 1 (id=317):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
ioctl$KVM_GET_MSRS_sys(r1, 0xc008ae88, &(0x7f0000000240)={0x10000000000000e0, 0x0, [{0x22c, 0x0, 0x8001}, {0xaa8, 0x0, 0x5}, {0x8e2, 0x0, 0x1200}, {0x97c, 0x0, 0x3}]})
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002300)=@updpolicy={0xc0, 0x13, 0xcb23c9c9931e99e9, 0x70bd2c, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0xfffc, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8}, {0x0, 0xc}, 0x0, 0x0, 0x0, 0x1}, [@offload={0xc, 0x1c, {0x0, 0x1}}]}, 0xc0}, 0x1, 0x0, 0x0, 0x81}, 0x40000)

528.753175ms ago: executing program 0 (id=318):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000080)="10008100", 0x4, 0x40, &(0x7f0000000040)={0x11, 0x8100, r1, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)

526.923937ms ago: executing program 1 (id=319):
gettid()
timer_create(0xb, &(0x7f0000533fa0)={0x0, 0x6, 0x2, @thr={&(0x7f00000002c0)="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", &(0x7f0000000100)="e9c7b5db5081c21d4934066286d7af49ddf8df83e3d82d845be45467b8fb9cba1df13ca6ca835f08006fdd362bd176c1f6a3b53f304b2201bfddf8332665222decfc6a3d02856659f498cb5e501f70ba2126983433ca3ddcdb488087382ecdeb54f4cc9a3c34b9bb28da940d73468a8c34a904ee8ba5c0d6bd1ec08f2247edc26135fc183680aa29c7d87ff4151d461047c7dbd1b5d019fa5d19e43b9b06b106a0597c9d32d55e9a2a615250c8feec7d"}}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
syslog(0x2, &(0x7f00000001c0)=""/229, 0xe5)

369.858436ms ago: executing program 0 (id=320):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0xb1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907"], 0xcfa4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB], 0x9)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)

369.679779ms ago: executing program 0 (id=321):
r0 = socket(0x1d, 0x2, 0x6)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x100, 0x4, 0xbfdfffb9}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = openat$dir(0xffffff9c, &(0x7f0000000280)='./file0\x00', 0x84001, 0x1da)
syz_io_uring_setup(0x810, &(0x7f00000003c0)={0x0, 0x5c2d, 0x80, 0x2, 0x12c}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read(r7, &(0x7f0000000040)=""/148, 0xffffff96)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r8)
syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='./file0\x00', r7, 0x0, 0x0, {0x0, r8}})
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_MKDIRAT={0x25, 0x8, 0x0, r4, 0x0, &(0x7f0000000300)='./file0\x00', 0x22, 0x0, 0x1, {0x0, r8}})
syz_io_uring_setup(0x36d9, &(0x7f00000000c0)={0x0, 0x886c, 0x1000, 0x2, 0x23c, 0x0, r1}, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_FLAGS(r9, 0x114, &(0x7f0000000240)=0x1, 0x0, 0x4)
io_uring_enter(r1, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r10=>0x0})
bind$can_j1939(r0, &(0x7f0000000900)={0x1d, r10, 0x1, {0x2}}, 0x18)
sendmmsg$unix(r0, &(0x7f0000004480)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48c4}}], 0x1, 0x1d3)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r11=>r0, {0x7fff}}, './file0\x00'})
syz_open_pts(r11, 0x183302)

0s ago: executing program 1 (id=322):
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = syz_open_dev$video4linux(&(0x7f0000000280), 0x5fff, 0x100)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000002200)={0x3, 0x7d8, 0x1})
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
setgroups(0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000008000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d40)={r5, 0x0, 0xe, 0x0, &(0x7f0000000040)="6000ffffffffa000903626e43925", 0x0, 0xc00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
socket$netlink(0x10, 0x3, 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="4544f0fffcff30c000"], &(0x7f0000000280)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000bc0)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000c00)={0x4, 0xb, 0x902c, 0x20000000}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
syz_clone3(0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:8589' (ED25519) to the list of known hosts.
[   48.041935][ T5918] cgroup: Unknown subsys name 'net'
[   48.191310][ T5918] cgroup: Unknown subsys name 'cpuset'
[   48.197579][ T5918] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   49.064617][ T5918] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xf2000)
[   52.787733][ T1112] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   52.789844][ T1112] ata1: failed to read log page 10h (errno=-5)
[   52.791731][ T1112] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[   52.794070][ T1112] ata1.00: irq_stat 0x41000000
[   52.795496][ T1112] ata1.00: failed command: WRITE FPDMA QUEUED
[   52.797658][ T1112] ata1.00: cmd 61/90:70:36:01:08/07:00:00:00:00/40 tag 14 ncq dma 991232 out
[   52.797658][ T1112]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   52.802987][ T1112] ata1.00: status: { DRDY }
[   52.804515][ T1112] ata1.00: failed command: WRITE FPDMA QUEUED
[   52.806459][ T1112] ata1.00: cmd 61/98:78:c6:08:08/04:00:00:00:00/40 tag 15 ncq dma 602112 out
[   52.806459][ T1112]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   52.812435][ T1112] ata1.00: status: { DRDY }
[   52.816730][ T1112] ata1.00: configured for UDMA/100
[   52.824905][ T1112] ata1: EH complete
[   52.874319][ T5938] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   52.879280][ T5950] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   52.882126][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   52.885086][ T5950] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   52.885841][ T5951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   52.889931][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   52.890918][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   52.893065][ T5950] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   52.894112][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   52.894349][ T5949] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   52.894924][ T5949] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   52.895268][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   52.895743][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   52.896146][ T5951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   52.898513][ T5945] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   52.900300][ T5952] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   52.911694][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   52.918041][ T5952] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   52.922308][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   52.923364][ T5952] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   53.184331][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   53.205020][ T5936] chnl_net:caif_netlink_parms(): no params data found
[   53.282087][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   53.333722][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   53.339375][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.341654][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.343894][ T5939] bridge_slave_0: entered allmulticast mode
[   53.347665][ T5939] bridge_slave_0: entered promiscuous mode
[   53.390025][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.392420][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.394812][ T5939] bridge_slave_1: entered allmulticast mode
[   53.398521][ T5939] bridge_slave_1: entered promiscuous mode
[   53.441961][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.444272][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.446701][ T5936] bridge_slave_0: entered allmulticast mode
[   53.449347][ T5936] bridge_slave_0: entered promiscuous mode
[   53.472273][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.496199][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.499343][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.502179][ T5936] bridge_slave_1: entered allmulticast mode
[   53.505687][ T5936] bridge_slave_1: entered promiscuous mode
[   53.521268][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.555193][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.557605][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.559856][ T5944] bridge_slave_0: entered allmulticast mode
[   53.562607][ T5944] bridge_slave_0: entered promiscuous mode
[   53.573773][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.576202][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.579054][ T5935] bridge_slave_0: entered allmulticast mode
[   53.582045][ T5935] bridge_slave_0: entered promiscuous mode
[   53.585766][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.588150][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.590397][ T5935] bridge_slave_1: entered allmulticast mode
[   53.592959][ T5935] bridge_slave_1: entered promiscuous mode
[   53.597735][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.600541][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.602846][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.605317][ T5944] bridge_slave_1: entered allmulticast mode
[   53.608439][ T5944] bridge_slave_1: entered promiscuous mode
[   53.619841][ T5939] team0: Port device team_slave_0 added
[   53.635822][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.639821][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.661124][ T5939] team0: Port device team_slave_1 added
[   53.664775][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.670049][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.680903][ T5936] team0: Port device team_slave_0 added
[   53.690391][ T5936] team0: Port device team_slave_1 added
[   53.694265][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.733050][ T5935] team0: Port device team_slave_0 added
[   53.736004][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.738318][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.747556][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.762727][ T5944] team0: Port device team_slave_0 added
[   53.767960][ T5935] team0: Port device team_slave_1 added
[   53.770736][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.773985][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.783089][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.787634][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.790589][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.801071][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.808047][ T5944] team0: Port device team_slave_1 added
[   53.831881][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.834134][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.842492][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.869466][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.871871][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.881444][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.896048][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.900771][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.910241][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.925139][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.928125][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.939660][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.945312][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.947754][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.956893][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.986025][ T5936] hsr_slave_0: entered promiscuous mode
[   53.989537][ T5936] hsr_slave_1: entered promiscuous mode
[   54.009647][ T5939] hsr_slave_0: entered promiscuous mode
[   54.012080][ T5939] hsr_slave_1: entered promiscuous mode
[   54.014547][ T5939] debugfs: 'hsr0' already exists in 'hsr'
[   54.016469][ T5939] Cannot create hsr debugfs directory
[   54.040518][ T5935] hsr_slave_0: entered promiscuous mode
[   54.045146][ T5935] hsr_slave_1: entered promiscuous mode
[   54.048468][ T5935] debugfs: 'hsr0' already exists in 'hsr'
[   54.050868][ T5935] Cannot create hsr debugfs directory
[   54.122093][ T5944] hsr_slave_0: entered promiscuous mode
[   54.124505][ T5944] hsr_slave_1: entered promiscuous mode
[   54.127339][ T5944] debugfs: 'hsr0' already exists in 'hsr'
[   54.129358][ T5944] Cannot create hsr debugfs directory
[   54.448353][ T5939] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   54.458961][ T5939] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   54.464982][ T5939] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   54.476019][ T5939] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   54.517820][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.524417][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.530513][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.536649][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.588539][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   54.598738][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   54.604551][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   54.612790][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   54.713640][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.719058][ T5936] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   54.725168][ T5936] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   54.730123][ T5936] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   54.742491][ T5936] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   54.775330][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   54.786091][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.799591][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.802143][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.807602][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.809915][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.829057][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   54.838527][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.840820][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.872959][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.875944][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.907466][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.937269][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   54.941042][ T5952] Bluetooth: hci3: command tx timeout
[   54.947347][ T5296] Bluetooth: hci0: command tx timeout
[   54.950019][ T5296] Bluetooth: hci2: command tx timeout
[   54.952217][ T5952] Bluetooth: hci1: command tx timeout
[   54.963744][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.966836][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.981533][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.984264][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.990294][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.018490][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   55.041302][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.044862][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.058514][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.061226][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.100322][ T5936] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.141177][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.176387][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.187028][ T5939] veth0_vlan: entered promiscuous mode
[   55.200342][ T5939] veth1_vlan: entered promiscuous mode
[   55.261697][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.270948][ T5939] veth0_macvtap: entered promiscuous mode
[   55.286106][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.314384][ T5939] veth1_macvtap: entered promiscuous mode
[   55.342555][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.374328][ T5935] veth0_vlan: entered promiscuous mode
[   55.383162][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.403106][ T1142] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.412607][   T46] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.430358][   T46] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.434069][   T46] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.442024][ T5944] veth0_vlan: entered promiscuous mode
[   55.444901][ T5935] veth1_vlan: entered promiscuous mode
[   55.466443][ T5936] veth0_vlan: entered promiscuous mode
[   55.474104][ T5944] veth1_vlan: entered promiscuous mode
[   55.496274][ T5936] veth1_vlan: entered promiscuous mode
[   55.512848][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.516164][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.568331][ T5935] veth0_macvtap: entered promiscuous mode
[   55.576805][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.580249][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.580915][ T5936] veth0_macvtap: entered promiscuous mode
[   55.594908][ T5935] veth1_macvtap: entered promiscuous mode
[   55.607845][ T5944] veth0_macvtap: entered promiscuous mode
[   55.612861][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.620539][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.623200][ T5936] veth1_macvtap: entered promiscuous mode
[   55.630501][ T5944] veth1_macvtap: entered promiscuous mode
[   55.631437][ T5939] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   55.640366][ T1181] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.644087][ T1181] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.651919][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.661586][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.670022][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.687699][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.692242][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.751292][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.754427][ T1181] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.774387][ T1181] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.805161][ T1181] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.814616][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.815683][ T1181] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.817751][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.820855][ T1181] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.820878][ T1181] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.839281][ T1181] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.842748][ T1181] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.866257][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.870040][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.891718][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.895134][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.957912][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.961083][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.992970][ T1181] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.017847][ T1181] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.050655][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.054106][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.228457][ T6032] loop7: detected capacity change from 0 to 16384
[   56.708877][ T6034] loop7: detected capacity change from 16384 to 16383
[   56.737158][ T6040] 9p: Unknown Cache mode or invalid value fscac
[   56.893916][ T6027] bridge_slave_0: left allmulticast mode
[   56.896303][ T6027] bridge_slave_0: left promiscuous mode
[   56.909985][ T6027] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.925615][ T6027] bridge_slave_1: left allmulticast mode
[   56.927928][ T6027] bridge_slave_1: left promiscuous mode
[   56.930003][ T6027] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.016967][ T5945] Bluetooth: hci2: command tx timeout
[   57.019292][ T5945] Bluetooth: hci0: command tx timeout
[   57.021592][ T5945] Bluetooth: hci3: command tx timeout
[   57.023986][ T5952] Bluetooth: hci1: command tx timeout
[   57.298704][ T6049] 9p: Bad value for 'wfdno'
[   58.477836][ T6027] bond0: (slave bond_slave_0): Releasing backup interface
[   58.549566][ T6053] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.709316][ T6027] bond0: (slave bond_slave_1): Releasing backup interface
[   58.749582][ T6027] team0: Port device team_slave_0 removed
[   58.756347][ T6027] team0: Port device team_slave_1 removed
[   58.765668][ T6027] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.769190][ T6027] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.779749][ T6027] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.782324][ T6027] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.792881][ T6027] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   58.936694][   T40] audit: type=1326 audit(1774678748.850:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6052 comm="syz.2.7" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[   59.096755][ T5296] Bluetooth: hci3: command tx timeout
[   59.099141][ T5945] Bluetooth: hci0: command tx timeout
[   59.101445][ T5945] Bluetooth: hci2: command tx timeout
[   59.104469][ T5952] Bluetooth: hci1: command tx timeout
[   60.403162][ T6070] =======================================================
[   60.403162][ T6070] WARNING: The mand mount option has been deprecated and
[   60.403162][ T6070]          and is ignored by this kernel. Remove the mand
[   60.403162][ T6070]          option from the mount to silence this warning.
[   60.403162][ T6070] =======================================================
[   60.977121][ T1022] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   60.977416][ T6076] warning: `syz.2.11' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   61.176582][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   61.188434][ T5952] Bluetooth: hci1: command tx timeout
[   61.236267][ T5952] Bluetooth: hci2: command tx timeout
[   61.238015][ T5952] Bluetooth: hci3: command tx timeout
[   61.239691][ T5952] Bluetooth: hci0: command tx timeout
[   61.306602][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[   61.336685][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   61.356858][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   61.386661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   61.586688][ T1022] usb 5-1: device descriptor read/64, error -71
[   62.317003][ T1022] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   62.456706][ T1022] usb 5-1: device descriptor read/64, error -71
[   62.616735][ T1022] usb usb5-port1: attempt power cycle
[   62.759889][   T40] audit: type=1326 audit(1774678752.790:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6085 comm="syz.1.13" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[   63.126396][ T6096] netlink: 'syz.2.15': attribute type 1 has an invalid length.
[   63.131700][ T6096] netlink: 224 bytes leftover after parsing attributes in process `syz.2.15'.
[   63.133731][   T40] audit: type=1804 audit(1774678753.160:4): pid=6094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.14" name="/newroot/2/bus/bus" dev="tmpfs" ino=38 res=1 errno=0
[   66.115941][ T6126] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[   66.118414][ T6126] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   66.135398][ T6126] vhci_hcd vhci_hcd.0: Device attached
[   66.519583][   T39] usb 40-1: SetAddress Request (2) to port 0
[   66.525257][   T39] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[   66.640063][ T6140] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   66.642494][ T6140] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   66.646682][   T34] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[   66.656680][ T6074] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   66.711385][ T6127] vhci_hcd: connection reset by peer
[   66.715519][   T61] vhci_hcd vhci_hcd.1: stop threads
[   66.716690][ T6140] vhci_hcd vhci_hcd.0: Device attached
[   66.719438][   T61] vhci_hcd vhci_hcd.1: release socket
[   66.720434][   T61] vhci_hcd vhci_hcd.1: disconnect device
[   66.798505][   T34] usb 5-1: config 0 has no interfaces?
[   66.800475][   T34] usb 5-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[   66.804391][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.806635][ T6074] usb 8-1: Using ep0 maxpacket: 8
[   66.812270][ T6074] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   66.815859][ T6074] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[   66.820022][ T6074] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   66.821570][   T34] usb 5-1: config 0 descriptor??
[   66.824512][ T6074] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   66.824538][ T6074] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   66.824550][ T6074] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.848024][ T6074] hub 8-1:1.0: bad descriptor, ignoring hub
[   66.850045][ T6074] hub 8-1:1.0: probe with driver hub failed with error -5
[   66.875169][ T6074] cdc_wdm 8-1:1.0: skipping garbage
[   66.875188][ T6074] cdc_wdm 8-1:1.0: skipping garbage
[   66.881200][ T6074] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   66.887077][ T6074] cdc_wdm 8-1:1.0: Unknown control protocol
[   66.996749][   T34] usb 42-1: SetAddress Request (2) to port 0
[   66.998977][   T34] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[   67.255149][ T6141] vhci_hcd: connection reset by peer
[   67.260156][ T1181] vhci_hcd vhci_hcd.2: stop threads
[   67.262757][ T1181] vhci_hcd vhci_hcd.2: release socket
[   67.265473][ T1181] vhci_hcd vhci_hcd.2: disconnect device
[   67.573177][   T40] audit: type=1326 audit(1774678757.600:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.1.24" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[   69.199963][ T6009] usb 5-1: USB disconnect, device number 5
[   69.368541][ T4152] usb 8-1: USB disconnect, device number 2
[   69.628652][ T6164] netlink: 24 bytes leftover after parsing attributes in process `syz.2.28'.
[   69.677107][ T6009] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[   69.840215][ T6009] usb 6-1: unable to read config index 0 descriptor/start: -61
[   69.844137][ T6009] usb 6-1: can't read configurations, error -61
[   69.853403][   T40] audit: type=1326 audit(1774678759.880:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.3.27" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[   70.006806][ T6009] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[   70.179315][ T6009] usb 6-1: unable to read config index 0 descriptor/start: -61
[   70.182232][ T6009] usb 6-1: can't read configurations, error -61
[   70.186002][ T6009] usb usb6-port1: attempt power cycle
[   70.546597][ T6009] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[   70.569199][ T6009] usb 6-1: unable to read config index 0 descriptor/start: -61
[   70.572726][ T6009] usb 6-1: can't read configurations, error -61
[   70.711442][ T6009] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[   70.744700][ T6009] usb 6-1: unable to read config index 0 descriptor/start: -61
[   70.748638][ T6009] usb 6-1: can't read configurations, error -61
[   70.751410][ T6009] usb usb6-port1: unable to enumerate USB device
[   71.509463][ T6174] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[   71.511714][ T6174] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   71.514472][ T6174] vhci_hcd vhci_hcd.0: Device attached
[   71.578648][   T39] usb 40-1: device descriptor read/8, error -110
[   71.779411][ T4152] usb 38-1: SetAddress Request (2) to port 0
[   71.782115][ T4152] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   71.987313][   T39] usb usb40-port1: attempt power cycle
[   72.057496][   T34] usb 42-1: device descriptor read/8, error -110
[   73.749263][   T40] audit: type=1326 audit(1774678763.360:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.3.31" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[   73.767092][   T39] usb usb40-port1: unable to enumerate USB device
[   73.771475][   T34] usb usb42-port1: attempt power cycle
[   73.915571][ T6188] qnx6: unable to read the first superblock
[   73.922689][ T6188] netlink: 12 bytes leftover after parsing attributes in process `syz.1.32'.
[   73.951634][ T6175] vhci_hcd: connection reset by peer
[   73.953807][   T70] vhci_hcd vhci_hcd.0: stop threads
[   73.955592][   T70] vhci_hcd vhci_hcd.0: release socket
[   73.959069][   T70] vhci_hcd vhci_hcd.0: disconnect device
[   74.407586][   T40] audit: type=1326 audit(1774678764.440:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6189 comm="syz.2.33" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[   75.267257][   T34] usb usb42-port1: unable to enumerate USB device
[   75.848041][ T6207] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   75.850330][ T6207] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   75.853523][ T6207] vhci_hcd vhci_hcd.0: Device attached
[   75.979471][ T6216] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   75.979518][ T6216] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   75.980083][ T6216] vhci_hcd vhci_hcd.0: Device attached
[   76.069720][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[   76.234796][ T6213] vhci_hcd: connection closed
[   76.235557][   T61] vhci_hcd vhci_hcd.3: stop threads
[   76.239038][   T61] vhci_hcd vhci_hcd.3: release socket
[   76.240974][    T9] usb 44-1: SetAddress Request (2) to port 0
[   76.242595][   T61] vhci_hcd vhci_hcd.3: disconnect device
[   76.245500][    T9] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[   76.296974][    T9] usb 44-1: enqueue for inactive port 0
[   76.447167][ T6011] usb 42-1: SetAddress Request (6) to port 0
[   76.449189][ T6011] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[   76.506692][ T6074] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   76.553479][ T6221] vhci_hcd: connection reset by peer
[   76.555534][ T1181] vhci_hcd vhci_hcd.2: stop threads
[   76.557718][ T1181] vhci_hcd vhci_hcd.2: release socket
[   76.559957][ T1181] vhci_hcd vhci_hcd.2: disconnect device
[   76.686638][ T6074] usb 5-1: Using ep0 maxpacket: 8
[   76.693242][ T6074] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   76.702133][ T6074] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   76.705371][ T6074] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   76.709249][ T6074] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   76.713021][ T6074] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   76.715970][ T6074] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.732305][ T6074] hub 5-1:1.0: bad descriptor, ignoring hub
[   76.735201][ T6074] hub 5-1:1.0: probe with driver hub failed with error -5
[   76.737154][    T9] usb usb44-port1: attempt power cycle
[   76.738101][ T6074] cdc_wdm 5-1:1.0: skipping garbage
[   76.743618][ T6074] cdc_wdm 5-1:1.0: skipping garbage
[   76.752749][ T6074] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[   76.755284][ T6074] cdc_wdm 5-1:1.0: Unknown control protocol
[   76.856714][ T4152] usb 38-1: device descriptor read/8, error -110
[   77.157092][   T40] audit: type=1326 audit(1774678767.160:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6228 comm="syz.1.40" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[   77.250527][ T4152] usb usb38-port1: attempt power cycle
[   77.357428][    T9] usb usb44-port1: unable to enumerate USB device
[   77.538285][ T6236] 9p: Unknown Cache mode or invalid value fscac
[   78.588330][ T4152] usb usb38-port1: unable to enumerate USB device
[   78.606625][ T6074] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   79.106799][   T40] audit: type=1326 audit(1774678768.940:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.1.43" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[   79.666618][ T6074] usb 7-1: Using ep0 maxpacket: 16
[   80.095042][ T6074] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   80.098808][ T6074] usb 7-1: config 0 has no interfaces?
[   80.102419][ T6074] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   80.424924][ T6074] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.427888][ T6074] usb 7-1: Product: syz
[   80.429243][ T6074] usb 7-1: Manufacturer: syz
[   80.430715][ T6074] usb 7-1: SerialNumber: syz
[   80.434166][ T6074] usb 7-1: config 0 descriptor??
[   80.448131][   T34] usb 5-1: USB disconnect, device number 6
[   82.089203][ T6011] usb 42-1: device descriptor read/8, error -110
[   82.286742][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   82.487301][ T6011] usb usb42-port1: attempt power cycle
[   82.753208][ T6257] faux_driver vkms: [drm] Unknown color mode 9; guessing buffer size.
[   83.057286][ T6011] usb usb42-port1: unable to enumerate USB device
[   83.238463][   T40] audit: type=1326 audit(1774678773.270:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.3.47" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[   83.306690][   T34] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   83.346588][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   83.506573][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   83.736578][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   83.782771][ T6050] usb 7-1: USB disconnect, device number 2
[   83.916626][   T34] usb 5-1: Using ep0 maxpacket: 8
[   85.663424][   T40] audit: type=1326 audit(1774678775.350:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.1.49" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[   86.214144][   T40] audit: type=1326 audit(1774678776.240:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.217555][ T6278] process 'syz.3.50' launched './file2' with NULL argv: empty string added
[   86.270560][ T6278] netlink: 8 bytes leftover after parsing attributes in process `syz.3.50'.
[   86.390494][   T40] audit: type=1326 audit(1774678776.240:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.398734][   T40] audit: type=1326 audit(1774678776.240:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.405406][   T40] audit: type=1326 audit(1774678776.240:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.412414][   T40] audit: type=1326 audit(1774678776.240:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.419346][   T40] audit: type=1326 audit(1774678776.240:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.430517][   T40] audit: type=1326 audit(1774678776.250:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.527072][   T40] audit: type=1326 audit(1774678776.260:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.549875][   T40] audit: type=1326 audit(1774678776.260:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.3.50" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[   86.681879][ T6283] 9p: Unknown Cache mode or invalid value fscac
[   86.748213][  T896] cfg80211: failed to load regulatory.db
[   86.767194][   T34] usb 5-1: device descriptor read/all, error -71
[   87.277109][ T6294] 9p: Unknown Cache mode or invalid value fscac
[   89.125427][ T5945] Bluetooth: hci3: Malformed LE Event: 0x0b
[   91.872307][ T6326] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   91.874403][ T6326] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   91.877153][ T6326] vhci_hcd vhci_hcd.0: Device attached
[   92.018173][   T40] kauditd_printk_skb: 38 callbacks suppressed
[   92.018185][   T40] audit: type=1326 audit(1774678782.050:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6322 comm="syz.3.61" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[   92.147768][    T9] usb 42-1: SetAddress Request (10) to port 0
[   92.149803][    T9] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[   92.859514][ T6327] vhci_hcd: connection reset by peer
[   92.861848][   T70] vhci_hcd vhci_hcd.2: stop threads
[   92.863630][   T70] vhci_hcd vhci_hcd.2: release socket
[   92.865745][   T70] vhci_hcd vhci_hcd.2: disconnect device
[   92.976623][   T40] audit: type=1326 audit(1774678783.000:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6332 comm="syz.0.63" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[   95.263086][ T6009] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   95.364145][   T40] audit: type=1326 audit(1774678785.390:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6359 comm="syz.0.67" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[   95.416775][ T6009] usb 6-1: device descriptor read/64, error -71
[   95.657109][ T6009] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   95.796629][ T6009] usb 6-1: device descriptor read/64, error -71
[   95.907079][ T6009] usb usb6-port1: attempt power cycle
[   95.985174][   T34] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   96.148218][   T34] usb 7-1: Using ep0 maxpacket: 8
[   96.151964][   T34] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   96.156027][   T34] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[   96.161196][   T34] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   96.165529][   T34] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   96.170563][   T34] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   96.174324][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.197393][   T34] hub 7-1:1.0: bad descriptor, ignoring hub
[   96.199981][   T34] hub 7-1:1.0: probe with driver hub failed with error -5
[   96.204305][   T34] cdc_wdm 7-1:1.0: skipping garbage
[   96.213828][   T34] cdc_wdm 7-1:1.0: skipping garbage
[   96.221655][   T34] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   96.224571][   T34] cdc_wdm 7-1:1.0: Unknown control protocol
[   97.869299][    T9] usb 42-1: device descriptor read/8, error -110
[   98.183555][   T40] audit: type=1326 audit(1774678788.210:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.0.73" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[   98.256678][ T6009] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   98.287677][ T6009] usb 6-1: device descriptor read/8, error -71
[   98.467533][    T9] usb usb42-port1: attempt power cycle
[   98.796630][ T6009] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[   98.828745][ T6009] usb 6-1: device descriptor read/8, error -71
[   98.946829][ T6009] usb usb6-port1: unable to enumerate USB device
[   99.207297][    T9] usb usb42-port1: unable to enumerate USB device
[   99.391044][    T9] usb 7-1: USB disconnect, device number 3
[   99.453928][ T6405] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   99.456056][ T6405] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   99.461911][ T6405] vhci_hcd vhci_hcd.0: Device attached
[   99.727235][    T9] usb 44-1: SetAddress Request (6) to port 0
[   99.729223][    T9] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[   99.780578][   T40] audit: type=1326 audit(1774678789.160:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6400 comm="syz.0.77" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  100.018602][   T40] audit: type=1326 audit(1774678790.050:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6406 comm="syz.2.78" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[  102.463473][ T6407] vhci_hcd: connection reset by peer
[  102.497538][ T1240] vhci_hcd vhci_hcd.3: stop threads
[  102.517109][ T1240] vhci_hcd vhci_hcd.3: release socket
[  102.519728][ T1240] vhci_hcd vhci_hcd.3: disconnect device
[  102.540341][ T6432] netlink: 24 bytes leftover after parsing attributes in process `syz.0.85'.
[  102.614546][ T6438] syz.2.83 uses obsolete (PF_INET,SOCK_PACKET)
[  102.769235][ T6438] FAULT_INJECTION: forcing a failure.
[  102.769235][ T6438] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  102.776133][ T6438] CPU: 3 UID: 0 PID: 6438 Comm: syz.2.83 Not tainted syzkaller #0 PREEMPT(full) 
[  102.776157][ T6438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  102.776166][ T6438] Call Trace:
[  102.776172][ T6438]  <TASK>
[  102.776179][ T6438]  dump_stack_lvl+0x100/0x190
[  102.776209][ T6438]  should_fail_ex.cold+0x5/0xa
[  102.776246][ T6438]  _copy_to_user+0x32/0xd0
[  102.776269][ T6438]  snd_pcm_oss_read2+0x294/0x400
[  102.776293][ T6438]  ? __pfx_snd_pcm_oss_read2+0x10/0x10
[  102.776312][ T6438]  ? snd_pcm_kernel_ioctl+0x14a/0x2e0
[  102.776343][ T6438]  snd_pcm_oss_read+0x5aa/0x730
[  102.776384][ T6438]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  102.776407][ T6438]  vfs_read+0x1e4/0xb30
[  102.776426][ T6438]  ? __pfx_vfs_read+0x10/0x10
[  102.776439][ T6438]  ? find_held_lock+0x2b/0x80
[  102.776454][ T6438]  ? __fget_files+0x215/0x3d0
[  102.776470][ T6438]  ? __fget_files+0x215/0x3d0
[  102.776488][ T6438]  ? __fget_files+0x21f/0x3d0
[  102.776510][ T6438]  ksys_read+0x12a/0x250
[  102.776541][ T6438]  ? __pfx_ksys_read+0x10/0x10
[  102.776556][ T6438]  ? __pfx_ksys_write+0x10/0x10
[  102.776576][ T6438]  __do_fast_syscall_32+0xe3/0x8c0
[  102.776597][ T6438]  do_fast_syscall_32+0x32/0x70
[  102.776619][ T6438]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.776639][ T6438] RIP: 0023:0xf707ef6c
[  102.776652][ T6438] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  102.776669][ T6438] RSP: 002b:00000000f542b50c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[  102.776685][ T6438] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800063c0
[  102.776694][ T6438] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  102.776703][ T6438] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  102.776712][ T6438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  102.776721][ T6438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  102.776754][ T6438]  </TASK>
[  103.141828][   T40] audit: type=1326 audit(1774678793.110:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6440 comm="syz.0.87" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  103.226681][ T5816] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  103.394534][ T6452] FAULT_INJECTION: forcing a failure.
[  103.394534][ T6452] name failslab, interval 1, probability 0, space 0, times 1
[  103.398940][ T6452] CPU: 3 UID: 0 PID: 6452 Comm: syz.2.91 Not tainted syzkaller #0 PREEMPT(full) 
[  103.398956][ T6452] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  103.398962][ T6452] Call Trace:
[  103.398967][ T6452]  <TASK>
[  103.398971][ T6452]  dump_stack_lvl+0x100/0x190
[  103.398991][ T6452]  should_fail_ex.cold+0x5/0xa
[  103.399004][ T6452]  ? io_cache_alloc_new+0x45/0xe0
[  103.399015][ T6452]  should_failslab+0xc2/0x120
[  103.399027][ T6452]  __kmalloc_noprof+0xe0/0x850
[  103.399046][ T6452]  io_cache_alloc_new+0x45/0xe0
[  103.399057][ T6452]  __io_prep_rw+0x21d/0xfa0
[  103.399071][ T6452]  ? __pfx___io_prep_rw+0x10/0x10
[  103.399084][ T6452]  ? __io_alloc_req_refill+0x2dc/0x330
[  103.399102][ T6452]  io_prep_rw+0x76/0x2c0
[  103.399114][ T6452]  ? __pfx_io_prep_rw+0x10/0x10
[  103.399129][ T6452]  io_submit_sqes+0x9e4/0x2370
[  103.399147][ T6452]  ? __fget_files+0x21f/0x3d0
[  103.399160][ T6452]  __do_sys_io_uring_enter+0x9c0/0x1a20
[  103.399176][ T6452]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  103.399190][ T6452]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  103.399207][ T6452]  ? fput+0x79/0x100
[  103.399220][ T6452]  ? ksys_write+0x1ac/0x250
[  103.399230][ T6452]  ? __pfx_ksys_write+0x10/0x10
[  103.399242][ T6452]  __do_fast_syscall_32+0xe3/0x8c0
[  103.399255][ T6452]  do_fast_syscall_32+0x32/0x70
[  103.399266][ T6452]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.399280][ T6452] RIP: 0023:0xf707ef6c
[  103.399289][ T6452] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  103.399299][ T6452] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa
[  103.399310][ T6452] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000000048ed
[  103.399316][ T6452] RDX: 0000000000005974 RSI: 000000000000006b RDI: 0000000000000000
[  103.399322][ T6452] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.399327][ T6452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.399333][ T6452] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.399345][ T6452]  </TASK>
[  103.409046][ T5816] usb 6-1: Using ep0 maxpacket: 8
[  103.506156][ T5816] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  103.509760][ T5816] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  103.512705][ T5816] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  103.516186][ T5816] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  103.520331][ T5816] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  103.523241][ T5816] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.540582][ T5816] hub 6-1:1.0: bad descriptor, ignoring hub
[  103.542498][ T5816] hub 6-1:1.0: probe with driver hub failed with error -5
[  103.544968][ T5816] cdc_wdm 6-1:1.0: skipping garbage
[  103.546726][ T5816] cdc_wdm 6-1:1.0: skipping garbage
[  103.552526][ T5816] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  103.554387][ T5816] cdc_wdm 6-1:1.0: Unknown control protocol
[  104.176946][ T6009] usb 6-1: USB disconnect, device number 10
[  104.446849][ T6471] FAULT_INJECTION: forcing a failure.
[  104.446849][ T6471] name failslab, interval 1, probability 0, space 0, times 0
[  104.452855][ T6471] CPU: 0 UID: 0 PID: 6471 Comm: syz.0.96 Not tainted syzkaller #0 PREEMPT(full) 
[  104.452880][ T6471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  104.452890][ T6471] Call Trace:
[  104.452896][ T6471]  <TASK>
[  104.452904][ T6471]  dump_stack_lvl+0x100/0x190
[  104.452935][ T6471]  should_fail_ex.cold+0x5/0xa
[  104.452958][ T6471]  should_failslab+0xc2/0x120
[  104.452978][ T6471]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  104.453004][ T6471]  ? __alloc_skb+0x140/0x710
[  104.453033][ T6471]  __alloc_skb+0x140/0x710
[  104.453056][ T6471]  ? __alloc_skb+0x5b7/0x710
[  104.453079][ T6471]  ? __pfx___alloc_skb+0x10/0x10
[  104.453110][ T6471]  _sctp_make_chunk+0x51/0x270
[  104.453136][ T6471]  sctp_make_control+0x2f/0x2d0
[  104.453162][ T6471]  sctp_make_heartbeat+0xad/0x2f0
[  104.453188][ T6471]  ? __pfx_sctp_make_heartbeat+0x10/0x10
[  104.453212][ T6471]  ? is_bpf_text_address+0x94/0x1a0
[  104.453243][ T6471]  ? sctp_sm_lookup_event+0x10e/0x520
[  104.453267][ T6471]  ? __pfx_sctp_sm_lookup_event+0x10/0x10
[  104.453293][ T6471]  ? __pfx_sctp_pname+0x10/0x10
[  104.453317][ T6471]  sctp_sf_do_prm_requestheartbeat+0x27/0x220
[  104.453338][ T6471]  ? __pfx_sctp_pname+0x10/0x10
[  104.453362][ T6471]  sctp_do_sm+0x17a/0x5be0
[  104.453385][ T6471]  ? __pfx_stack_trace_save+0x10/0x10
[  104.453404][ T6471]  ? stack_depot_save_flags+0x27/0x9d0
[  104.453429][ T6471]  ? _parse_integer_limit+0x17f/0x1d0
[  104.453456][ T6471]  ? __pfx_sctp_do_sm+0x10/0x10
[  104.453478][ T6471]  ? kasan_save_stack+0x30/0x50
[  104.453493][ T6471]  ? kasan_save_track+0x14/0x30
[  104.453508][ T6471]  ? __kasan_kmalloc+0xaa/0xb0
[  104.453533][ T6471]  ? __kmalloc_node_track_caller_noprof+0x304/0x850
[  104.453559][ T6471]  ? sctp_setsockopt+0x511/0xb370
[  104.453613][ T6471]  sctp_primitive_REQUESTHEARTBEAT+0x9f/0xd0
[  104.453645][ T6471]  sctp_apply_peer_addr_params+0x110/0x3690
[  104.453679][ T6471]  sctp_setsockopt+0x28d6/0xb370
[  104.453707][ T6471]  ? __pfx_sctp_setsockopt+0x10/0x10
[  104.453731][ T6471]  ? aa_sock_opt_perm+0xfe/0x1b0
[  104.453758][ T6471]  ? sock_common_setsockopt+0x2e/0xf0
[  104.453776][ T6471]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  104.453797][ T6471]  do_sock_setsockopt+0xf3/0x1d0
[  104.453821][ T6471]  __sys_setsockopt+0x119/0x190
[  104.453851][ T6471]  __ia32_sys_setsockopt+0xbc/0x160
[  104.453877][ T6471]  ? __do_fast_syscall_32+0x94/0x8c0
[  104.453894][ T6471]  ? lockdep_hardirqs_on+0x78/0x100
[  104.453921][ T6471]  __do_fast_syscall_32+0xe3/0x8c0
[  104.453942][ T6471]  do_fast_syscall_32+0x32/0x70
[  104.453961][ T6471]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.453982][ T6471] RIP: 0023:0xf6fdef6c
[  104.453997][ T6471] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  104.454012][ T6471] RSP: 002b:00000000f53ac50c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  104.454030][ T6471] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000084
[  104.454040][ T6471] RDX: 0000000000000009 RSI: 00000000800001c0 RDI: 000000000000009c
[  104.454049][ T6471] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.454058][ T6471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  104.454068][ T6471] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.454091][ T6471]  </TASK>
[  104.776634][    T9] usb 44-1: device descriptor read/8, error -110
[  104.892438][ T6479] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  105.064070][ T6486] netlink: 16 bytes leftover after parsing attributes in process `syz.2.102'.
[  105.167424][    T9] usb usb44-port1: attempt power cycle
[  105.396613][   T40] audit: type=1326 audit(1774678795.340:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6487 comm="syz.2.103" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[  105.768411][    T9] usb usb44-port1: unable to enumerate USB device
[  107.024159][   T40] audit: type=1326 audit(1774678797.040:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6494 comm="syz.1.104" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[  108.626613][   T40] audit: type=1326 audit(1774678798.540:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.112" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[  109.031261][ T6522] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  109.033371][ T6522] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  109.037066][ T6522] vhci_hcd vhci_hcd.0: Device attached
[  109.326661][  T896] usb 38-1: SetAddress Request (6) to port 0
[  109.328692][  T896] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  109.425409][ T6531] kAFS: unable to lookup cell 'mS�jˡ8'
[  109.449611][ T6523] vhci_hcd: connection reset by peer
[  109.458115][   T70] vhci_hcd vhci_hcd.0: stop threads
[  109.465448][   T70] vhci_hcd vhci_hcd.0: release socket
[  109.469934][   T70] vhci_hcd vhci_hcd.0: disconnect device
[  109.563021][ T6533] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  109.565163][ T6533] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  109.568169][ T6533] vhci_hcd vhci_hcd.0: Device attached
[  109.734631][ T6542] overlayfs: upper fs does not support file handles, falling back to index=off.
[  109.742390][ T6542] evm: overlay not supported
[  109.866707][ T5816] usb 44-1: SetAddress Request (10) to port 0
[  109.883003][ T5816] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd
[  110.391471][ T6534] vhci_hcd: connection reset by peer
[  110.396780][   T90] vhci_hcd vhci_hcd.3: stop threads
[  110.398878][   T90] vhci_hcd vhci_hcd.3: release socket
[  110.401445][   T90] vhci_hcd vhci_hcd.3: disconnect device
[  112.103342][ T6573] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  112.105628][ T6573] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  112.110455][ T6573] vhci_hcd vhci_hcd.0: Device attached
[  112.165030][ T6576] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  112.166967][ T6576] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  112.193156][ T6576] vhci_hcd vhci_hcd.0: Device attached
[  112.459018][ T6009] usb 40-1: SetAddress Request (6) to port 0
[  112.461074][ T6009] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  112.749641][ T6574] vhci_hcd: connection closed
[  112.750684][   T46] vhci_hcd vhci_hcd.0: stop threads
[  112.756571][   T46] vhci_hcd vhci_hcd.0: release socket
[  112.758626][   T46] vhci_hcd vhci_hcd.0: disconnect device
[  113.683779][ T6577] vhci_hcd: connection reset by peer
[  113.685688][ T6051] vhci_hcd vhci_hcd.1: stop threads
[  113.689889][ T6051] vhci_hcd vhci_hcd.1: release socket
[  113.692404][ T6051] vhci_hcd vhci_hcd.1: disconnect device
[  113.750019][ T6598] 9p: Unknown Cache mode or invalid value fscac
[  114.376724][  T896] usb 38-1: device descriptor read/8, error -110
[  114.787381][  T896] usb usb38-port1: attempt power cycle
[  114.936847][ T5816] usb 44-1: device descriptor read/8, error -110
[  115.669829][  T896] usb usb38-port1: unable to enumerate USB device
[  115.948200][ T5816] usb usb44-port1: attempt power cycle
[  116.507979][ T5816] usb usb44-port1: unable to enumerate USB device
[  116.572867][ T6612] FAULT_INJECTION: forcing a failure.
[  116.572867][ T6612] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.578421][ T6612] CPU: 2 UID: 0 PID: 6612 Comm: syz.0.137 Not tainted syzkaller #0 PREEMPT(full) 
[  116.578445][ T6612] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  116.578456][ T6612] Call Trace:
[  116.578463][ T6612]  <TASK>
[  116.578471][ T6612]  dump_stack_lvl+0x100/0x190
[  116.578502][ T6612]  should_fail_ex.cold+0x5/0xa
[  116.578524][ T6612]  _copy_from_iter+0x1f4/0x1690
[  116.578556][ T6612]  ? __asan_memset+0x23/0x50
[  116.578583][ T6612]  ? __pfx__copy_from_iter+0x10/0x10
[  116.578604][ T6612]  ? __pfx___alloc_skb+0x10/0x10
[  116.578630][ T6612]  ? __pfx___might_resched+0x10/0x10
[  116.578666][ T6612]  netlink_sendmsg+0x808/0xda0
[  116.578689][ T6612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.578710][ T6612]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  116.578733][ T6612]  ____sys_sendmsg+0x9e1/0xb70
[  116.578752][ T6612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.578772][ T6612]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.578803][ T6612]  ___sys_sendmsg+0x190/0x1e0
[  116.578826][ T6612]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.578877][ T6612]  __sys_sendmsg+0x170/0x220
[  116.578904][ T6612]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.578939][ T6612]  ? __pfx_ksys_write+0x10/0x10
[  116.578963][ T6612]  __do_fast_syscall_32+0xe3/0x8c0
[  116.578984][ T6612]  do_fast_syscall_32+0x32/0x70
[  116.579003][ T6612]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.579026][ T6612] RIP: 0023:0xf6fdef6c
[  116.579040][ T6612] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  116.579056][ T6612] RSP: 002b:00000000f53cd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  116.579073][ T6612] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0
[  116.579084][ T6612] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[  116.579094][ T6612] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.579104][ T6612] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  116.579114][ T6612] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.579136][ T6612]  </TASK>
[  117.216667][ T6011] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  117.236672][   T40] audit: type=1326 audit(1774678807.190:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6616 comm="syz.2.138" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[  117.368819][ T6011] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x1 has invalid maxpacket 252, setting to 64
[  117.372807][ T6011] usb 5-1: config 0 interface 0 has no altsetting 0
[  117.377334][ T6011] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  117.380599][ T6011] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  117.383237][ T6011] usb 5-1: Product: syz
[  117.384662][ T6011] usb 5-1: Manufacturer: syz
[  117.386335][ T6011] usb 5-1: SerialNumber: syz
[  117.397250][ T6011] usb 5-1: config 0 descriptor??
[  117.405730][ T6011] usb 5-1: selecting invalid altsetting 0
[  117.608382][ T6011] usb 5-1: USB disconnect, device number 9
[  117.692919][ T6009] usb 40-1: device descriptor read/8, error -110
[  118.707315][ T6009] usb usb40-port1: attempt power cycle
[  118.902248][ T6637] tmpfs: Bad value for 'mpol'
[  119.233239][ T6646] Driver unsupported XDP return value 0 on prog  (id 34) dev N/A, expect packet loss!
[  119.284460][ T6649] 9p: Unknown Cache mode or invalid value fscac
[  119.399365][ T6009] usb usb40-port1: unable to enumerate USB device
[  119.611138][ T6658] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  119.696608][ T6009] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  119.846606][ T6009] usb 8-1: Using ep0 maxpacket: 8
[  119.849871][ T6009] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  119.854015][ T6009] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  119.857302][ T6009] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  119.861144][ T6009] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  119.865011][ T6009] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  119.868336][ T6009] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.882687][ T6009] hub 8-1:1.0: bad descriptor, ignoring hub
[  119.887202][ T6009] hub 8-1:1.0: probe with driver hub failed with error -5
[  119.890429][ T6009] cdc_wdm 8-1:1.0: skipping garbage
[  119.892242][ T6009] cdc_wdm 8-1:1.0: skipping garbage
[  119.895214][ T6009] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  119.900656][ T6009] cdc_wdm 8-1:1.0: Unknown control protocol
[  120.366891][ T5816] usb 8-1: USB disconnect, device number 3
[  121.081030][ T6679] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  121.083095][ T6679] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  121.088291][ T6679] vhci_hcd vhci_hcd.0: Device attached
[  121.338354][ T6673] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  121.380783][ T5816] usb 42-1: SetAddress Request (14) to port 0
[  121.382851][ T5816] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[  121.434778][ T6688] netlink: 'syz.0.160': attribute type 39 has an invalid length.
[  121.440227][ T6692] ip6erspan0: entered allmulticast mode
[  121.487524][ T6694] binder: 6687:6694 ioctl c0109414 80004ac0 returned -22
[  121.490574][ T6694] binder: 6687:6694 ioctl c0186f3d 80000180 returned -22
[  121.495749][ T6694] netlink: 24 bytes leftover after parsing attributes in process `syz.0.160'.
[  121.511515][ T6694] binder: 6687:6694 ioctl 3b81 80000200 returned -22
[  121.514169][ T6694] binder: 6687:6694 ioctl 3b86 80000240 returned -22
[  121.517579][ T6694] 9p: Bad value for 'rfdno'
[  121.640034][ T6700] ip6erspan0: entered allmulticast mode
[  121.732739][ T6704] 9p: Unknown Cache mode or invalid value fscac
[  121.982461][ T6680] vhci_hcd: connection reset by peer
[  121.991946][   T40] audit: type=1326 audit(1774678811.800:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.1.163" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[  122.003489][ T1240] vhci_hcd vhci_hcd.2: stop threads
[  122.005427][ T1240] vhci_hcd vhci_hcd.2: release socket
[  122.007674][ T1240] vhci_hcd vhci_hcd.2: disconnect device
[  122.766687][    T9] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  122.896745][    T9] usb 5-1: device descriptor read/64, error -71
[  123.051291][ T6722] FAULT_INJECTION: forcing a failure.
[  123.051291][ T6722] name failslab, interval 1, probability 0, space 0, times 0
[  123.056090][ T6722] CPU: 1 UID: 0 PID: 6722 Comm: syz.1.168 Not tainted syzkaller #0 PREEMPT(full) 
[  123.056109][ T6722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  123.056117][ T6722] Call Trace:
[  123.056123][ T6722]  <TASK>
[  123.056129][ T6722]  dump_stack_lvl+0x100/0x190
[  123.056155][ T6722]  should_fail_ex.cold+0x5/0xa
[  123.056173][ T6722]  should_failslab+0xc2/0x120
[  123.056188][ T6722]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  123.056209][ T6722]  ? __alloc_skb+0x140/0x710
[  123.056232][ T6722]  __alloc_skb+0x140/0x710
[  123.056272][ T6722]  ? __alloc_skb+0x5b7/0x710
[  123.056290][ T6722]  ? __pfx___alloc_skb+0x10/0x10
[  123.056314][ T6722]  netlink_alloc_large_skb+0x69/0x150
[  123.056329][ T6722]  netlink_sendmsg+0x680/0xda0
[  123.056345][ T6722]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.056361][ T6722]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  123.056378][ T6722]  ____sys_sendmsg+0x9e1/0xb70
[  123.056394][ T6714] program syz.2.166 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  123.056393][ T6722]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.056409][ T6722]  ? __pfx_____sys_sendmsg+0x10/0x10
[  123.056432][ T6722]  ___sys_sendmsg+0x190/0x1e0
[  123.056450][ T6722]  ? __pfx____sys_sendmsg+0x10/0x10
[  123.056487][ T6722]  __sys_sendmsg+0x170/0x220
[  123.056528][ T6722]  ? __pfx___sys_sendmsg+0x10/0x10
[  123.056556][ T6722]  ? __pfx_ksys_write+0x10/0x10
[  123.056574][ T6722]  __do_fast_syscall_32+0xe3/0x8c0
[  123.056592][ T6722]  do_fast_syscall_32+0x32/0x70
[  123.056606][ T6722]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  123.056623][ T6722] RIP: 0023:0xf7fe4f6c
[  123.056635][ T6722] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  123.056647][ T6722] RSP: 002b:00000000f54a650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  123.056661][ T6722] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800004c0
[  123.056669][ T6722] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  123.056677][ T6722] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  123.056684][ T6722] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  123.056691][ T6722] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  123.056708][ T6722]  </TASK>
[  123.196752][    T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  123.326665][    T9] usb 5-1: device descriptor read/64, error -71
[  123.446928][    T9] usb usb5-port1: attempt power cycle
[  123.797382][    T9] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  123.820037][    T9] usb 5-1: device descriptor read/8, error -71
[  124.058317][    T9] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  124.077823][    T9] usb 5-1: device descriptor read/8, error -71
[  124.189839][    T9] usb usb5-port1: unable to enumerate USB device
[  125.405104][   T40] audit: type=1326 audit(1774678815.430:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6743 comm="syz.2.176" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[  125.816645][ T5945] Bluetooth: hci3: command 0x206a tx timeout
[  125.816680][ T5952] Bluetooth: hci3: Opcode 0x206a failed: -110
[  125.916610][  T896] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  126.066831][  T896] usb 6-1: Using ep0 maxpacket: 16
[  126.072297][  T896] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  126.076784][  T896] usb 6-1: config 0 has no interfaces?
[  126.082663][  T896] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  126.086771][  T896] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.090342][  T896] usb 6-1: Product: syz
[  126.092478][  T896] usb 6-1: Manufacturer: syz
[  126.094460][  T896] usb 6-1: SerialNumber: syz
[  126.098941][  T896] usb 6-1: config 0 descriptor??
[  126.457119][ T5816] usb 42-1: device descriptor read/8, error -110
[  126.617277][   T39] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  126.766626][   T39] usb 7-1: Using ep0 maxpacket: 8
[  126.770204][   T39] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  126.774653][   T39] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  126.782095][   T39] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  126.786681][   T39] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  126.791031][   T39] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  126.794802][   T39] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.808435][   T39] hub 7-1:1.0: bad descriptor, ignoring hub
[  126.810951][   T39] hub 7-1:1.0: probe with driver hub failed with error -5
[  126.814299][   T39] cdc_wdm 7-1:1.0: skipping garbage
[  126.816920][   T39] cdc_wdm 7-1:1.0: skipping garbage
[  126.822028][   T39] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  126.823996][   T39] cdc_wdm 7-1:1.0: Unknown control protocol
[  126.847739][ T5816] usb usb42-port1: attempt power cycle
[  127.407573][ T5816] usb usb42-port1: unable to enumerate USB device
[  128.151921][ T6768] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  128.154013][ T6768] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  128.169741][ T6768] vhci_hcd vhci_hcd.0: Device attached
[  128.446747][   T39] usb 44-1: SetAddress Request (14) to port 0
[  128.448751][   T39] usb 44-1: new SuperSpeed USB device number 14 using vhci_hcd
[  128.656659][ T6009] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  128.816679][ T6009] usb 5-1: Using ep0 maxpacket: 16
[  128.821350][ T6009] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  128.824683][ T6009] usb 5-1: config 0 has no interfaces?
[  128.830966][ T6009] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  128.834218][ T6009] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.837249][ T6009] usb 5-1: Product: syz
[  128.838694][ T6009] usb 5-1: Manufacturer: syz
[  128.840354][ T6009] usb 5-1: SerialNumber: syz
[  128.844495][ T6009] usb 5-1: config 0 descriptor??
[  128.909356][ T6769] vhci_hcd: connection reset by peer
[  128.912003][ T1240] vhci_hcd vhci_hcd.3: stop threads
[  128.913751][ T1240] vhci_hcd vhci_hcd.3: release socket
[  128.915571][ T1240] vhci_hcd vhci_hcd.3: disconnect device
[  129.360611][ T6149] usb 6-1: USB disconnect, device number 11
[  129.457634][ T6009] usb 7-1: USB disconnect, device number 4
[  129.508564][ T6777] FAULT_INJECTION: forcing a failure.
[  129.508564][ T6777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  129.513810][ T6777] CPU: 2 UID: 0 PID: 6777 Comm: syz.2.181 Not tainted syzkaller #0 PREEMPT(full) 
[  129.513825][ T6777] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  129.513831][ T6777] Call Trace:
[  129.513837][ T6777]  <TASK>
[  129.513842][ T6777]  dump_stack_lvl+0x100/0x190
[  129.513863][ T6777]  should_fail_ex.cold+0x5/0xa
[  129.513877][ T6777]  _copy_to_user+0x32/0xd0
[  129.513892][ T6777]  simple_read_from_buffer+0xcb/0x170
[  129.513910][ T6777]  proc_fail_nth_read+0x1af/0x230
[  129.513924][ T6777]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  129.513938][ T6777]  ? rw_verify_area+0xce/0x6d0
[  129.513954][ T6777]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  129.513967][ T6777]  vfs_read+0x1e4/0xb30
[  129.513979][ T6777]  ? __pfx_vfs_read+0x10/0x10
[  129.513987][ T6777]  ? find_held_lock+0x2b/0x80
[  129.513998][ T6777]  ? __fget_files+0x215/0x3d0
[  129.514011][ T6777]  ? __fget_files+0x21f/0x3d0
[  129.514025][ T6777]  ksys_read+0x12a/0x250
[  129.514036][ T6777]  ? __pfx_ksys_read+0x10/0x10
[  129.514049][ T6777]  do_int80_emulation+0x141/0x6b0
[  129.514063][ T6777]  asm_int80_emulation+0x1a/0x20
[  129.514074][ T6777] RIP: 0023:0xf71b5cab
[  129.514083][ T6777] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  129.514093][ T6777] RSP: 002b:00000000f546d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  129.514103][ T6777] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f546d5d0
[  129.514109][ T6777] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  129.514115][ T6777] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.514120][ T6777] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  129.514126][ T6777] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.514139][ T6777]  </TASK>
[  130.204812][ T6787] xt_ecn: cannot match TCP bits for non-tcp packets
[  130.299236][ T6009] usb 5-1: USB disconnect, device number 14
[  130.556029][ T6796] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  130.584127][   T40] audit: type=1326 audit(1774678820.610:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6794 comm="syz.0.188" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  131.928845][ T6815] FAULT_INJECTION: forcing a failure.
[  131.928845][ T6815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.934131][ T6815] CPU: 3 UID: 0 PID: 6815 Comm: syz.2.193 Not tainted syzkaller #0 PREEMPT(full) 
[  131.934152][ T6815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  131.934162][ T6815] Call Trace:
[  131.934168][ T6815]  <TASK>
[  131.934176][ T6815]  dump_stack_lvl+0x100/0x190
[  131.934206][ T6815]  should_fail_ex.cold+0x5/0xa
[  131.934228][ T6815]  _copy_to_user+0x32/0xd0
[  131.934251][ T6815]  simple_read_from_buffer+0xcb/0x170
[  131.934296][ T6815]  proc_fail_nth_read+0x1af/0x230
[  131.934319][ T6815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.934341][ T6815]  ? rw_verify_area+0xce/0x6d0
[  131.934367][ T6815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.934386][ T6815]  vfs_read+0x1e4/0xb30
[  131.934402][ T6815]  ? __pfx_vfs_read+0x10/0x10
[  131.934414][ T6815]  ? find_held_lock+0x2b/0x80
[  131.934429][ T6815]  ? __fget_files+0x215/0x3d0
[  131.934451][ T6815]  ? __fget_files+0x21f/0x3d0
[  131.934474][ T6815]  ksys_read+0x12a/0x250
[  131.934490][ T6815]  ? __pfx_ksys_read+0x10/0x10
[  131.934513][ T6815]  do_int80_emulation+0x141/0x6b0
[  131.934535][ T6815]  asm_int80_emulation+0x1a/0x20
[  131.934552][ T6815] RIP: 0023:0xf71b5cab
[  131.934566][ T6815] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  131.934582][ T6815] RSP: 002b:00000000f546d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  131.934599][ T6815] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f546d5d0
[  131.934609][ T6815] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  131.934622][ T6815] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  131.934632][ T6815] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  131.934641][ T6815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  131.934664][ T6815]  </TASK>
[  132.118881][ T6820] FAULT_INJECTION: forcing a failure.
[  132.118881][ T6820] name failslab, interval 1, probability 0, space 0, times 0
[  132.123157][ T6820] CPU: 3 UID: 0 PID: 6820 Comm: syz.0.195 Not tainted syzkaller #0 PREEMPT(full) 
[  132.123172][ T6820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  132.123178][ T6820] Call Trace:
[  132.123183][ T6820]  <TASK>
[  132.123188][ T6820]  dump_stack_lvl+0x100/0x190
[  132.123207][ T6820]  should_fail_ex.cold+0x5/0xa
[  132.123221][ T6820]  should_failslab+0xc2/0x120
[  132.123233][ T6820]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  132.123251][ T6820]  ? __alloc_skb+0x140/0x710
[  132.123268][ T6820]  __alloc_skb+0x140/0x710
[  132.123283][ T6820]  ? __alloc_skb+0x5b7/0x710
[  132.123298][ T6820]  ? __pfx___alloc_skb+0x10/0x10
[  132.123317][ T6820]  netlink_alloc_large_skb+0x69/0x150
[  132.123329][ T6820]  netlink_sendmsg+0x680/0xda0
[  132.123342][ T6820]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.123354][ T6820]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  132.123367][ T6820]  ____sys_sendmsg+0x9e1/0xb70
[  132.123379][ T6820]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.123395][ T6820]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.123413][ T6820]  ___sys_sendmsg+0x190/0x1e0
[  132.123426][ T6820]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.123455][ T6820]  __sys_sendmsg+0x170/0x220
[  132.123472][ T6820]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.123492][ T6820]  ? __pfx_ksys_write+0x10/0x10
[  132.123506][ T6820]  __do_fast_syscall_32+0xe3/0x8c0
[  132.123519][ T6820]  do_fast_syscall_32+0x32/0x70
[  132.123533][ T6820]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  132.123552][ T6820] RIP: 0023:0xf6fdef6c
[  132.123565][ T6820] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  132.123580][ T6820] RSP: 002b:00000000f53cd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  132.123596][ T6820] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800012c0
[  132.123605][ T6820] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  132.123613][ T6820] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  132.123622][ T6820] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  132.123631][ T6820] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  132.123653][ T6820]  </TASK>
[  132.358192][ T6827] netlink: 168 bytes leftover after parsing attributes in process `syz.2.197'.
[  132.413456][ T6832] syzkaller1: entered promiscuous mode
[  132.416036][ T6832] syzkaller1: entered allmulticast mode
[  132.577925][ T6839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.201'.
[  132.650230][ T6846] netlink: 168 bytes leftover after parsing attributes in process `syz.3.203'.
[  132.826673][   T40] audit: type=1326 audit(1774678822.840:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.0.204" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  132.840155][ T6852] openvswitch: netlink: IP tunnel dst address not specified
[  133.009970][ T6832] x_tables: duplicate underflow at hook 1
[  133.329990][ T6868] FAULT_INJECTION: forcing a failure.
[  133.329990][ T6868] name failslab, interval 1, probability 0, space 0, times 0
[  133.333901][ T6868] CPU: 0 UID: 0 PID: 6868 Comm: syz.2.210 Not tainted syzkaller #0 PREEMPT(full) 
[  133.333918][ T6868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  133.333925][ T6868] Call Trace:
[  133.333931][ T6868]  <TASK>
[  133.333936][ T6868]  dump_stack_lvl+0x100/0x190
[  133.333960][ T6868]  should_fail_ex.cold+0x5/0xa
[  133.333974][ T6868]  ? tomoyo_encode2+0xfb/0x3c0
[  133.333989][ T6868]  should_failslab+0xc2/0x120
[  133.334002][ T6868]  __kmalloc_noprof+0xe0/0x850
[  133.334019][ T6868]  ? d_absolute_path+0x136/0x1b0
[  133.334038][ T6868]  tomoyo_encode2+0xfb/0x3c0
[  133.334054][ T6868]  tomoyo_encode+0x29/0x50
[  133.334068][ T6868]  tomoyo_realpath_from_path+0x18c/0x690
[  133.334086][ T6868]  tomoyo_path_number_perm+0x23c/0x580
[  133.334099][ T6868]  ? tomoyo_path_number_perm+0x22e/0x580
[  133.334112][ T6868]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  133.334138][ T6868]  ? find_held_lock+0x2b/0x80
[  133.334149][ T6868]  ? hook_file_ioctl_common+0x146/0x410
[  133.334163][ T6868]  ? __fget_files+0x215/0x3d0
[  133.334176][ T6868]  ? __fget_files+0x21f/0x3d0
[  133.334189][ T6868]  security_file_ioctl_compat+0xd3/0x230
[  133.334205][ T6868]  __ia32_compat_sys_ioctl+0xc2/0x360
[  133.334223][ T6868]  __do_fast_syscall_32+0xe3/0x8c0
[  133.334238][ T6868]  do_fast_syscall_32+0x32/0x70
[  133.334249][ T6868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.334264][ T6868] RIP: 0023:0xf707ef6c
[  133.334273][ T6868] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  133.334283][ T6868] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  133.334294][ T6868] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000640f
[  133.334300][ T6868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  133.334306][ T6868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.334312][ T6868] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  133.334318][ T6868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.334331][ T6868]  </TASK>
[  133.334346][ T6868] ERROR: Out of memory at tomoyo_realpath_from_path.
[  133.353562][ T6870] netlink: 24 bytes leftover after parsing attributes in process `syz.1.211'.
[  133.384561][ T6872] netlink: 'syz.2.212': attribute type 29 has an invalid length.
[  133.411645][ T6873] input: syz1 as /devices/virtual/input/input5
[  133.496749][   T39] usb 44-1: device descriptor read/8, error -110
[  133.887528][   T39] usb usb44-port1: attempt power cycle
[  133.910928][ T6880] netlink: 'syz.0.214': attribute type 3 has an invalid length.
[  134.486648][ T5816] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  134.636617][ T5816] usb 7-1: Using ep0 maxpacket: 16
[  134.639733][ T5816] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.642910][ T5816] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.645746][ T5816] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  134.649917][ T5816] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  134.652724][ T5816] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.660003][ T5816] usb 7-1: config 0 descriptor??
[  135.082700][ T5816] HID 045e:07da: Invalid code 65791 type 1
[  135.105175][ T5816] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:045E:07DA.0002/input/input6
[  135.141330][ T5816] microsoft 0003:045E:07DA.0002: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  135.268398][ T5816] usb 7-1: USB disconnect, device number 5
[  135.343945][ T6896] netlink: 'syz.0.219': attribute type 3 has an invalid length.
[  136.738307][   T40] audit: type=1326 audit(1774678826.770:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6904 comm="syz.0.222" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  136.937588][   T39] usb usb44-port1: unable to enumerate USB device
[  137.161927][ T6907] netlink: 12 bytes leftover after parsing attributes in process `syz.2.221'.
[  137.164901][ T6910] Bluetooth: MGMT ver 1.23
[  137.215093][ T6912] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  137.217175][ T6912] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  137.219589][ T6912] vhci_hcd vhci_hcd.0: Device attached
[  137.236126][ T6913] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[  137.238594][   T90] vhci_hcd vhci_hcd.1: stop threads
[  137.240467][   T90] vhci_hcd vhci_hcd.1: release socket
[  137.242303][   T90] vhci_hcd vhci_hcd.1: disconnect device
[  137.510189][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  138.146217][ T6931] kAFS: No cell specified
[  138.481223][ T6968] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  138.483331][ T6968] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  138.486290][ T6968] vhci_hcd vhci_hcd.0: Device attached
[  139.146732][ T6970] vhci_hcd: connection closed
[  139.147065][ T1181] vhci_hcd vhci_hcd.1: stop threads
[  139.153627][ T1181] vhci_hcd vhci_hcd.1: release socket
[  139.166960][ T1181] vhci_hcd vhci_hcd.1: disconnect device
[  139.177745][   T39] usb 40-1: SetAddress Request (10) to port 0
[  139.180876][   T39] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  139.199386][   T39] usb 40-1: enqueue for inactive port 0
[  139.767063][   T39] usb usb40-port1: attempt power cycle
[  140.224235][   T40] audit: type=1326 audit(1774678830.250:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6994 comm="syz.2.234" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707ef6c code=0x0
[  140.387172][   T39] usb usb40-port1: unable to enumerate USB device
[  140.507841][ T7009] overlay: Bad value for 'workdir'
[  140.546702][ T6011] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  140.686648][ T6011] usb 5-1: device descriptor read/64, error -71
[  140.926620][ T6011] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  140.986627][ T7024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  140.990247][ T7024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.076612][ T6011] usb 5-1: device descriptor read/64, error -71
[  141.294281][ T6011] usb usb5-port1: attempt power cycle
[  141.636677][ T6011] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  141.660187][ T6011] usb 5-1: device descriptor read/8, error -71
[  141.922737][ T6011] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  141.948214][ T6011] usb 5-1: device descriptor read/8, error -71
[  142.925641][ T6011] usb usb5-port1: unable to enumerate USB device
[  143.141180][ T7037] comedi comedi0: Minor 3 could not be opened
[  143.447581][ T7041] 9p: Unknown Cache mode or invalid value fscac
[  143.476643][ T6009] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  143.636700][ T6009] usb 7-1: Using ep0 maxpacket: 8
[  143.640432][ T6009] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  143.643703][ T6009] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  143.646923][ T6009] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  143.650357][ T6009] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  143.653785][ T6009] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  143.656690][ T6009] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.662336][ T6009] hub 7-1:1.0: bad descriptor, ignoring hub
[  143.664307][ T6009] hub 7-1:1.0: probe with driver hub failed with error -5
[  143.667469][   T39] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  143.670365][ T6009] cdc_wdm 7-1:1.0: skipping garbage
[  143.672570][ T6009] cdc_wdm 7-1:1.0: skipping garbage
[  143.675403][ T6009] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  143.677414][ T6009] cdc_wdm 7-1:1.0: Unknown control protocol
[  143.826615][   T39] usb 8-1: Using ep0 maxpacket: 16
[  143.833847][   T39] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  143.838577][   T39] usb 8-1: config 0 has no interfaces?
[  143.917657][  T896] usb 7-1: USB disconnect, device number 6
[  143.924778][   T39] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  143.932606][   T39] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.935014][   T39] usb 8-1: Product: syz
[  143.936343][   T39] usb 8-1: Manufacturer: syz
[  143.937848][   T39] usb 8-1: SerialNumber: syz
[  143.940715][   T39] usb 8-1: config 0 descriptor??
[  144.086639][   T39] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  144.108378][ T6050] usb 8-1: USB disconnect, device number 4
[  144.191462][ T7049] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  144.194278][ T7049] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  144.198986][ T7049] vhci_hcd vhci_hcd.0: Device attached
[  144.246720][ T7051] input: syz1 as /devices/virtual/input/input7
[  144.257901][   T39] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  144.257924][   T39] usb 6-1: config 0 interface 0 has no altsetting 0
[  144.259748][   T39] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  144.259771][   T39] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  144.259786][   T39] usb 6-1: Product: syz
[  144.259798][   T39] usb 6-1: Manufacturer: syz
[  144.259809][   T39] usb 6-1: SerialNumber: syz
[  144.267898][   T39] usb 6-1: config 0 descriptor??
[  144.274319][   T39] usb 6-1: selecting invalid altsetting 0
[  144.476805][   T39] usb 42-1: SetAddress Request (18) to port 0
[  144.476847][   T39] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[  144.478720][ T5991] usb 6-1: USB disconnect, device number 12
[  144.552893][ T7062] input: syz1 as /devices/virtual/input/input8
[  144.690527][ T7047] 9p: Bad value for 'rfdno'
[  144.813908][ T7052] vhci_hcd: connection reset by peer
[  144.824042][   T46] vhci_hcd vhci_hcd.2: stop threads
[  144.825827][   T46] vhci_hcd vhci_hcd.2: release socket
[  144.827906][   T46] vhci_hcd vhci_hcd.2: disconnect device
[  144.940323][ T7069] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  144.942415][ T7069] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  144.949844][ T7069] vhci_hcd vhci_hcd.0: Device attached
[  145.233742][ T5991] usb 38-1: SetAddress Request (10) to port 0
[  145.236384][ T5991] usb 38-1: new SuperSpeed USB device number 10 using vhci_hcd
[  145.750484][ T7070] vhci_hcd: connection reset by peer
[  146.069860][   T46] vhci_hcd vhci_hcd.0: stop threads
[  146.071845][   T46] vhci_hcd vhci_hcd.0: release socket
[  146.075352][   T46] vhci_hcd vhci_hcd.0: disconnect device
[  146.316646][ T6009] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  146.326196][ T7088] 9p: Unknown Cache mode or invalid value fscac
[  146.336634][   T34] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  147.426694][ T6009] usb 7-1: Using ep0 maxpacket: 16
[  147.429726][ T6009] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.433136][ T6009] usb 7-1: config 0 has no interfaces?
[  147.436825][ T6009] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  147.439703][ T6009] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.442312][ T6009] usb 7-1: Product: syz
[  147.443758][ T6009] usb 7-1: Manufacturer: syz
[  147.445425][ T6009] usb 7-1: SerialNumber: syz
[  147.449419][ T6009] usb 7-1: config 0 descriptor??
[  147.486745][   T34] usb 6-1: Using ep0 maxpacket: 8
[  147.490403][   T34] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  147.494419][   T34] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  147.498501][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  147.503189][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  147.507884][   T34] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  147.511728][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.532655][   T34] hub 6-1:1.0: bad descriptor, ignoring hub
[  147.535082][   T34] hub 6-1:1.0: probe with driver hub failed with error -5
[  147.550772][   T34] cdc_wdm 6-1:1.0: skipping garbage
[  147.552925][   T34] cdc_wdm 6-1:1.0: skipping garbage
[  147.555493][   T34] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  147.557939][   T34] cdc_wdm 6-1:1.0: Unknown control protocol
[  147.642278][ T7097] dvmrp0: entered allmulticast mode
[  148.770438][   T40] audit: type=1326 audit(1774678838.800:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.3.262" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[  148.795249][ T6050] usb 7-1: USB disconnect, device number 7
[  148.904730][ T7111] syzkaller0: entered allmulticast mode
[  148.912467][ T7111] syzkaller0 (unregistering): left allmulticast mode
[  149.445326][ T7121] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  149.447450][ T7121] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  149.457108][ T5816] usb 6-1: USB disconnect, device number 13
[  149.519953][ T7121] vhci_hcd vhci_hcd.0: Device attached
[  149.846657][ T6011] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  150.136664][ T6011] usb 5-1: Using ep0 maxpacket: 16
[  150.161899][ T6011] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.189334][ T6011] usb 5-1: config 0 has no interfaces?
[  150.201747][ T6011] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  150.205937][ T6011] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.216616][ T6011] usb 5-1: Product: syz
[  150.221126][ T6011] usb 5-1: Manufacturer: syz
[  150.225480][ T6011] usb 5-1: SerialNumber: syz
[  150.242747][ T6011] usb 5-1: config 0 descriptor??
[  150.282157][ T7129] FAULT_INJECTION: forcing a failure.
[  150.282157][ T7129] name failslab, interval 1, probability 0, space 0, times 0
[  150.316305][ T7129] CPU: 0 UID: 0 PID: 7129 Comm: syz.1.269 Not tainted syzkaller #0 PREEMPT(full) 
[  150.316322][ T7129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  150.316335][ T7129] Call Trace:
[  150.316341][ T7129]  <TASK>
[  150.316346][ T7129]  dump_stack_lvl+0x100/0x190
[  150.316367][ T7129]  should_fail_ex.cold+0x5/0xa
[  150.316382][ T7129]  ? tomoyo_encode2+0xfb/0x3c0
[  150.316398][ T7129]  should_failslab+0xc2/0x120
[  150.316411][ T7129]  __kmalloc_noprof+0xe0/0x850
[  150.316428][ T7129]  ? d_absolute_path+0x136/0x1b0
[  150.316445][ T7129]  tomoyo_encode2+0xfb/0x3c0
[  150.316462][ T7129]  tomoyo_encode+0x29/0x50
[  150.316476][ T7129]  tomoyo_realpath_from_path+0x18c/0x690
[  150.316494][ T7129]  tomoyo_path_number_perm+0x23c/0x580
[  150.316506][ T7129]  ? tomoyo_path_number_perm+0x22e/0x580
[  150.316534][ T7129]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  150.316560][ T7129]  ? find_held_lock+0x2b/0x80
[  150.316570][ T7129]  ? hook_file_ioctl_common+0x146/0x410
[  150.316586][ T7129]  ? __fget_files+0x215/0x3d0
[  150.316599][ T7129]  ? __fget_files+0x21f/0x3d0
[  150.316611][ T7129]  security_file_ioctl_compat+0xd3/0x230
[  150.316626][ T7129]  __ia32_compat_sys_ioctl+0xc2/0x360
[  150.316644][ T7129]  __do_fast_syscall_32+0xe3/0x8c0
[  150.316658][ T7129]  do_fast_syscall_32+0x32/0x70
[  150.316669][ T7129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.316684][ T7129] RIP: 0023:0xf7fe4f6c
[  150.316693][ T7129] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  150.316702][ T7129] RSP: 002b:00000000f54a650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  150.316713][ T7129] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000402c5639
[  150.316720][ T7129] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  150.316725][ T7129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.316731][ T7129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  150.316737][ T7129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.316750][ T7129]  </TASK>
[  150.385072][ T5991] usb 38-1: device descriptor read/8, error -110
[  150.496890][ T7129] ERROR: Out of memory at tomoyo_realpath_from_path.
[  150.826681][ T6011] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  150.931210][ T7122] vhci_hcd: connection reset by peer
[  150.934625][ T1240] vhci_hcd vhci_hcd.2: stop threads
[  150.937482][ T1240] vhci_hcd vhci_hcd.2: release socket
[  150.941478][ T1240] vhci_hcd vhci_hcd.2: disconnect device
[  150.986881][ T6011] usb 6-1: Using ep0 maxpacket: 32
[  150.991004][ T6011] usb 6-1: config 1 interface 0 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 16
[  150.995474][ T6011] usb 6-1: config 1 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  151.002566][ T6011] usb 6-1: config 1 interface 0 has no altsetting 0
[  151.008521][ T6011] usb 6-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice= 0.40
[  151.012664][ T6011] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.016362][ T6011] usb 6-1: Product: 兀鸫踴縊抟❰졧］훧玞儁맯據呰퉱ര봂좶ꑃ棨暂䓁Ꟙ㬿夑ㅡ촽䇿⨀䉌೹ꊼ愝㣁쪭普缩佑⓻㠥幸襐輱緙꫱⽼ꡍ蓲뉭て﻽ﵙ礪ؕ햍꿔䙗ꘖ겦Ꜹ럼풡蓥뗫䴻渁⹸烗綮ꫤ捗࿧嗧쾕ꮖ缧ﷰ⃔䏞䜞⁷௎ꥄ䊛ላ
[  151.029932][ T6011] usb 6-1: Manufacturer: 칗
[  151.032474][ T6011] usb 6-1: SerialNumber: 、
[  151.038037][ T7131] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  151.041412][ T7131] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  151.463756][ T6011] usb 6-1: USB disconnect, device number 14
[  151.494347][ T5952] Bluetooth: hci2: Malformed LE Event: 0x0b
[  151.567967][   T39] usb 42-1: device descriptor read/8, error -110
[  151.571123][ T5991] usb usb38-port1: attempt power cycle
[  151.684682][   T40] audit: type=1326 audit(1774678841.710:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7141 comm="syz.1.274" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[  151.957545][   T39] usb usb42-port1: attempt power cycle
[  152.127494][ T5991] usb usb38-port1: unable to enumerate USB device
[  152.527146][   T39] usb usb42-port1: unable to enumerate USB device
[  152.561829][ T7154] capability: warning: `syz.2.278' uses deprecated v2 capabilities in a way that may be insecure
[  152.567756][ T7154] FAULT_INJECTION: forcing a failure.
[  152.567756][ T7154] name failslab, interval 1, probability 0, space 0, times 0
[  152.572088][ T7154] CPU: 3 UID: 0 PID: 7154 Comm: syz.2.278 Not tainted syzkaller #0 PREEMPT(full) 
[  152.572107][ T7154] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.572113][ T7154] Call Trace:
[  152.572117][ T7154]  <TASK>
[  152.572122][ T7154]  dump_stack_lvl+0x100/0x190
[  152.572142][ T7154]  should_fail_ex.cold+0x5/0xa
[  152.572156][ T7154]  should_failslab+0xc2/0x120
[  152.572168][ T7154]  __kmalloc_cache_node_noprof+0x7d/0x770
[  152.572179][ T7154]  ? __get_vm_area_node+0x101/0x330
[  152.572194][ T7154]  __get_vm_area_node+0x101/0x330
[  152.572208][ T7154]  __vmalloc_node_range_noprof+0x213/0x1530
[  152.572222][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.572239][ T7154]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  152.572252][ T7154]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  152.572271][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.572288][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.572305][ T7154]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  152.572319][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.572336][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.572351][ T7154]  __vmalloc_node_noprof+0xad/0xf0
[  152.572365][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.572382][ T7154]  __vmalloc_noprof+0xa3/0x120
[  152.572395][ T7154]  ? __pfx___vmalloc_noprof+0x10/0x10
[  152.572408][ T7154]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  152.572420][ T7154]  ? rcu_is_watching+0x12/0xc0
[  152.572437][ T7154]  ? apparmor_capable+0x1d7/0x4d0
[  152.572447][ T7154]  ? __kernel_text_address+0xd/0x30
[  152.572464][ T7154]  bpf_prog_alloc_no_stats+0x58/0x640
[  152.572479][ T7154]  ? security_capable+0x80/0x260
[  152.572496][ T7154]  bpf_prog_alloc+0x3b/0x200
[  152.572510][ T7154]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  152.572523][ T7154]  bpf_prog_load+0xb28/0x2c20
[  152.572534][ T7154]  ? _parse_integer_limit+0x17f/0x1d0
[  152.572552][ T7154]  ? __pfx_bpf_prog_load+0x10/0x10
[  152.572563][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.572596][ T7154]  __sys_bpf+0x223a/0x4b90
[  152.572610][ T7154]  ? __pfx___sys_bpf+0x10/0x10
[  152.572622][ T7154]  ? proc_fail_nth_write+0x9f/0x220
[  152.572635][ T7154]  ? find_held_lock+0x2b/0x80
[  152.572648][ T7154]  ? find_held_lock+0x2b/0x80
[  152.572658][ T7154]  ? ksys_write+0x190/0x250
[  152.572670][ T7154]  ? __mutex_unlock_slowpath+0x15c/0x790
[  152.572689][ T7154]  ? fput+0x79/0x100
[  152.572701][ T7154]  ? ksys_write+0x1ac/0x250
[  152.572713][ T7154]  __ia32_sys_bpf+0x79/0xf0
[  152.572725][ T7154]  ? lockdep_hardirqs_on+0x78/0x100
[  152.572742][ T7154]  __do_fast_syscall_32+0xe3/0x8c0
[  152.572754][ T7154]  do_fast_syscall_32+0x32/0x70
[  152.572765][ T7154]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.572778][ T7154] RIP: 0023:0xf707ef6c
[  152.572788][ T7154] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  152.572798][ T7154] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  152.572808][ T7154] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  152.572815][ T7154] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  152.572820][ T7154] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.572826][ T7154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.572832][ T7154] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.572844][ T7154]  </TASK>
[  152.572957][ T7154] syz.2.278: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  152.695388][ T7154] CPU: 3 UID: 0 PID: 7154 Comm: syz.2.278 Not tainted syzkaller #0 PREEMPT(full) 
[  152.695402][ T7154] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.695408][ T7154] Call Trace:
[  152.695412][ T7154]  <TASK>
[  152.695416][ T7154]  dump_stack_lvl+0x100/0x190
[  152.695436][ T7154]  warn_alloc.cold+0x95/0x1c1
[  152.695454][ T7154]  ? __pfx_warn_alloc+0x10/0x10
[  152.695470][ T7154]  ? trace_kmalloc+0x101/0x130
[  152.695483][ T7154]  ? __kmalloc_cache_node_noprof+0x2d9/0x770
[  152.695495][ T7154]  ? __kasan_kmalloc+0x8a/0xb0
[  152.695513][ T7154]  ? __get_vm_area_node+0x208/0x330
[  152.695528][ T7154]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  152.695543][ T7154]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  152.695556][ T7154]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  152.695573][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.695596][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.695616][ T7154]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  152.695635][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.695657][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.695673][ T7154]  __vmalloc_node_noprof+0xad/0xf0
[  152.695686][ T7154]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  152.695704][ T7154]  __vmalloc_noprof+0xa3/0x120
[  152.695717][ T7154]  ? __pfx___vmalloc_noprof+0x10/0x10
[  152.695730][ T7154]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  152.695742][ T7154]  ? rcu_is_watching+0x12/0xc0
[  152.695759][ T7154]  ? apparmor_capable+0x1d7/0x4d0
[  152.695769][ T7154]  ? __kernel_text_address+0xd/0x30
[  152.695786][ T7154]  bpf_prog_alloc_no_stats+0x58/0x640
[  152.695802][ T7154]  ? security_capable+0x80/0x260
[  152.695820][ T7154]  bpf_prog_alloc+0x3b/0x200
[  152.695835][ T7154]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  152.695846][ T7154]  bpf_prog_load+0xb28/0x2c20
[  152.695857][ T7154]  ? _parse_integer_limit+0x17f/0x1d0
[  152.695877][ T7154]  ? __pfx_bpf_prog_load+0x10/0x10
[  152.695888][ T7154]  ? __lock_acquire+0x4a5/0x2630
[  152.695914][ T7154]  __sys_bpf+0x223a/0x4b90
[  152.695928][ T7154]  ? __pfx___sys_bpf+0x10/0x10
[  152.695940][ T7154]  ? proc_fail_nth_write+0x9f/0x220
[  152.695954][ T7154]  ? find_held_lock+0x2b/0x80
[  152.695967][ T7154]  ? find_held_lock+0x2b/0x80
[  152.695977][ T7154]  ? ksys_write+0x190/0x250
[  152.695990][ T7154]  ? __mutex_unlock_slowpath+0x15c/0x790
[  152.696009][ T7154]  ? fput+0x79/0x100
[  152.696021][ T7154]  ? ksys_write+0x1ac/0x250
[  152.696033][ T7154]  __ia32_sys_bpf+0x79/0xf0
[  152.696045][ T7154]  ? lockdep_hardirqs_on+0x78/0x100
[  152.696080][ T7154]  __do_fast_syscall_32+0xe3/0x8c0
[  152.696094][ T7154]  do_fast_syscall_32+0x32/0x70
[  152.696105][ T7154]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.696119][ T7154] RIP: 0023:0xf707ef6c
[  152.696129][ T7154] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  152.696138][ T7154] RSP: 002b:00000000f546d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  152.696148][ T7154] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  152.696154][ T7154] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  152.696160][ T7154] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.696165][ T7154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.696171][ T7154] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.696183][ T7154]  </TASK>
[  152.696187][ T7154] Mem-Info:
[  152.807147][ T7154] active_anon:17053 inactive_anon:60 isolated_anon:0
[  152.807147][ T7154]  active_file:12351 inactive_file:47218 isolated_file:0
[  152.807147][ T7154]  unevictable:1768 dirty:672 writeback:0
[  152.807147][ T7154]  slab_reclaimable:7786 slab_unreclaimable:51580
[  152.807147][ T7154]  mapped:34040 shmem:12833 pagetables:1044
[  152.807147][ T7154]  sec_pagetables:299 bounce:0
[  152.807147][ T7154]  kernel_misc_reclaimable:0
[  152.807147][ T7154]  free:32191 free_pcp:8383 free_cma:0
[  152.825058][ T7154] Node 0 active_anon:8kB inactive_anon:76kB active_file:1032kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8332kB pagetables:1472kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB
[  152.837373][ T7154] Node 1 active_anon:59504kB inactive_anon:164kB active_file:48372kB inactive_file:188868kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:124644kB dirty:2684kB writeback:0kB shmem:44096kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4504kB pagetables:2704kB sec_pagetables:56kB all_unreclaimable? no Balloon:0kB
[  152.851835][ T7154] Node 0 DMA free:2064kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:548kB local_pcp:176kB free_cma:0kB
[  152.857101][   T39] usb 5-1: USB disconnect, device number 19
[  152.878633][ T7154] lowmem_reserve[]: 0 285 285 285 285
[  152.880875][ T7154] Node 0 DMA32 free:16168kB boost:0kB min:13068kB low:16332kB high:19596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:76kB active_file:1032kB inactive_file:4kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:292500kB mlocked:0kB bounce:0kB free_pcp:14240kB local_pcp:3076kB free_cma:0kB
[  152.892404][ T7154] lowmem_reserve[]: 0 0 0 0 0
[  152.893936][ T7154] Node 1 DMA32 free:134728kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:51804kB inactive_anon:164kB active_file:48372kB inactive_file:188868kB unevictable:3536kB writepending:2684kB zspages:2264kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:11316kB local_pcp:336kB free_cma:0kB
[  152.906463][ T7154] lowmem_reserve[]: 0 0 0 0 0
[  152.908337][ T7154] Node 0 DMA: 46*4kB (U) 1*8kB (U) 5*16kB (UM) 2*32kB (M) 3*64kB (UM) 2*128kB (M) 1*256kB (M) 2*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2064kB
[  152.914125][ T7154] Node 0 DMA32: 830*4kB (UME) 222*8kB (UME) 32*16kB (UE) 54*32kB (UME) 54*64kB (UME) 16*128kB (UM) 5*256kB (M) 4*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 16168kB
[  152.921012][ T7154] Node 1 DMA32: 1363*4kB (UME) 1303*8kB (UME) 565*16kB (UME) 265*32kB (UME) 165*64kB (UME) 102*128kB (UME) 62*256kB (UME) 24*512kB (UM) 20*1024kB (UM) 8*2048kB (UME) 3*4096kB (UM) = 134324kB
[  152.929258][ T7154] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.932854][ T7154] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  152.936456][ T7154] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.939987][ T7154] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  152.943364][ T7154] 70674 total pagecache pages
[  152.945199][ T7154] 1126 pages in swap cache
[  152.947262][ T7154] Free swap  = 113748kB
[  152.948938][ T7154] Total swap = 124996kB
[  152.950600][ T7154] 524155 pages RAM
[  152.952114][ T7154] 0 pages HighMem/MovableOnly
[  152.954081][ T7154] 210137 pages reserved
[  152.955987][ T7154] 0 pages cma reserved
[  153.056641][  T896] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  153.198028][ T5952] Bluetooth: hci1: Malformed LE Event: 0x0b
[  153.216594][  T896] usb 6-1: Using ep0 maxpacket: 16
[  153.221420][  T896] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  153.224808][  T896] usb 6-1: config 0 has no interfaces?
[  153.228835][  T896] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  153.231872][  T896] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.234781][  T896] usb 6-1: Product: syz
[  153.236181][  T896] usb 6-1: Manufacturer: syz
[  153.237989][  T896] usb 6-1: SerialNumber: syz
[  153.241374][  T896] usb 6-1: config 0 descriptor??
[  153.392012][   T40] audit: type=1326 audit(1774678843.420:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7167 comm="syz.0.283" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6fdef6c code=0x0
[  153.453011][ T6149] usb 6-1: USB disconnect, device number 15
[  153.816827][ T7173] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  153.819074][ T7173] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  153.822367][ T7173] vhci_hcd vhci_hcd.0: Device attached
[  154.116294][ T7179] input: syz1 as /devices/virtual/input/input9
[  154.132387][ T7181] netlink: 56 bytes leftover after parsing attributes in process `syz.1.287'.
[  154.167781][ T7184] FAULT_INJECTION: forcing a failure.
[  154.167781][ T7184] name failslab, interval 1, probability 0, space 0, times 0
[  154.172847][ T7184] CPU: 1 UID: 0 PID: 7184 Comm: syz.0.288 Not tainted syzkaller #0 PREEMPT(full) 
[  154.172863][ T7184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  154.172869][ T7184] Call Trace:
[  154.172873][ T7184]  <TASK>
[  154.172877][ T7184]  dump_stack_lvl+0x100/0x190
[  154.172897][ T7184]  should_fail_ex.cold+0x5/0xa
[  154.172911][ T7184]  should_failslab+0xc2/0x120
[  154.172922][ T7184]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  154.172940][ T7184]  ? __alloc_skb+0x140/0x710
[  154.172957][ T7184]  __alloc_skb+0x140/0x710
[  154.172971][ T7184]  ? __alloc_skb+0x5b7/0x710
[  154.172986][ T7184]  ? __pfx___alloc_skb+0x10/0x10
[  154.173005][ T7184]  netlink_alloc_large_skb+0x69/0x150
[  154.173017][ T7184]  netlink_sendmsg+0x680/0xda0
[  154.173051][ T7184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.173065][ T7184]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  154.173078][ T7184]  ____sys_sendmsg+0x9e1/0xb70
[  154.173090][ T7184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.173101][ T7184]  ? __pfx_____sys_sendmsg+0x10/0x10
[  154.173119][ T7184]  ___sys_sendmsg+0x190/0x1e0
[  154.173133][ T7184]  ? __pfx____sys_sendmsg+0x10/0x10
[  154.173160][ T7184]  __sys_sendmsg+0x170/0x220
[  154.173177][ T7184]  ? __pfx___sys_sendmsg+0x10/0x10
[  154.173197][ T7184]  ? __pfx_ksys_write+0x10/0x10
[  154.173211][ T7184]  __do_fast_syscall_32+0xe3/0x8c0
[  154.173224][ T7184]  do_fast_syscall_32+0x32/0x70
[  154.173235][ T7184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.173254][ T7184] RIP: 0023:0xf6fdef6c
[  154.173264][ T7184] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  154.173273][ T7184] RSP: 002b:00000000f53cd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  154.173284][ T7184] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800006c0
[  154.173290][ T7184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  154.173296][ T7184] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.173301][ T7184] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  154.173307][ T7184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.173320][ T7184]  </TASK>
[  154.236616][   T34] usb 44-1: SetAddress Request (18) to port 0
[  154.251454][   T34] usb 44-1: new SuperSpeed USB device number 18 using vhci_hcd
[  154.576774][ T7174] vhci_hcd: connection reset by peer
[  154.578809][   T61] vhci_hcd vhci_hcd.3: stop threads
[  154.581298][   T61] vhci_hcd vhci_hcd.3: release socket
[  154.583144][   T61] vhci_hcd vhci_hcd.3: disconnect device
[  154.886674][  T828] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  155.058774][  T828] usb 5-1: Using ep0 maxpacket: 16
[  155.064020][  T828] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.086344][  T828] usb 5-1: config 0 has no interfaces?
[  155.118929][  T828] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  155.121935][  T828] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.124707][  T828] usb 5-1: Product: syz
[  155.129969][  T828] usb 5-1: Manufacturer: syz
[  155.132792][  T828] usb 5-1: SerialNumber: syz
[  155.152992][  T828] usb 5-1: config 0 descriptor??
[  156.404185][   T40] audit: type=1326 audit(1774678846.430:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7207 comm="syz.3.296" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[  157.372971][ T6149] libceph: connect (1)[c::]:6789 error -101
[  157.375632][ T6149] libceph: mon0 (1)[c::]:6789 connect error
[  157.379241][ T6149] libceph: connect (1)[c::]:6789 error -101
[  157.381773][ T6149] libceph: mon0 (1)[c::]:6789 connect error
[  157.417772][ T7231] ceph: No mds server is up or the cluster is laggy
[  157.713881][ T7236] syzkaller1: entered promiscuous mode
[  157.716019][ T7236] syzkaller1: entered allmulticast mode
[  158.583994][ T6149] usb 5-1: USB disconnect, device number 20
[  158.640062][ T7245] tipc: Started in network mode
[  158.642037][ T7245] tipc: Node identity dabbb85f23e4, cluster identity 4711
[  158.645106][ T7245] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  158.664224][ T7245] syzkaller0: entered promiscuous mode
[  158.666694][ T7245] syzkaller0: entered allmulticast mode
[  158.698723][ T7245] tipc: Resetting bearer <eth:syzkaller0>
[  158.704292][ T7244] tipc: Resetting bearer <eth:syzkaller0>
[  158.712009][ T7244] tipc: Disabling bearer <eth:syzkaller0>
[  159.118900][   T40] audit: type=1326 audit(1774678849.150:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7258 comm="syz.1.310" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4f6c code=0x0
[  159.364427][   T34] usb 44-1: device descriptor read/8, error -110
[  159.369228][ T7256] netfs: Couldn't get user pages (rc=-14)
[  159.907027][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  160.056711][    T9] usb 8-1: Using ep0 maxpacket: 16
[  160.184401][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  160.204521][    T9] usb 8-1: config 0 has no interfaces?
[  160.231808][    T9] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  160.247074][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.262557][    T9] usb 8-1: Product: syz
[  160.270809][    T9] usb 8-1: Manufacturer: syz
[  160.282314][    T9] usb 8-1: SerialNumber: syz
[  160.303661][    T9] usb 8-1: config 0 descriptor??
[  160.567449][   T34] usb usb44-port1: attempt power cycle
[  161.147283][   T34] usb usb44-port1: unable to enumerate USB device
[  161.373988][ T7256] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  161.376558][ T7256] #PF: supervisor instruction fetch in kernel mode
[  161.378807][ T7256] #PF: error_code(0x0010) - not-present page
[  161.382227][ T7256] PGD 5413a067 P4D 5413a067 PUD 60403067 PMD 0 
[  161.384242][ T7256] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[  161.385984][ T7256] CPU: 0 UID: 0 PID: 7256 Comm: syz.2.307 Not tainted syzkaller #0 PREEMPT(full) 
[  161.388822][ T7256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  161.391911][ T7256] RIP: 0010:0x0
[  161.393032][ T7256] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  161.395315][ T7256] RSP: 0018:ffffc900260cfb80 EFLAGS: 00010246
[  161.397198][ T7256] RAX: 0000000000000000 RBX: ffff88804ab220b0 RCX: ffffc9000cc04000
[  161.399672][ T7256] RDX: 0000000000080000 RSI: ffffffff82c2f85c RDI: ffff88804ab22000
[  161.402152][ T7256] RBP: 0000000000e1ffc0 R08: 0000000000000001 R09: 0000000000000000
[  161.404624][ T7256] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88804ab22098
[  161.407068][ T7256] R13: dffffc0000000000 R14: ffff88804ab22000 R15: ffff888049cd4b40
[  161.409469][ T7256] FS:  0000000000000000(0000) GS:ffff888097143000(0063) knlGS:00000000f544cb40
[  161.412190][ T7256] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  161.414200][ T7256] CR2: ffffffffffffffd6 CR3: 0000000054138000 CR4: 0000000000352ef0
[  161.416621][ T7256] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  161.419104][ T7256] DR3: 00000000128e805a DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  161.421566][ T7256] Call Trace:
[  161.422617][ T7256]  <TASK>
[  161.423578][ T7256]  netfs_unbuffered_write+0xae5/0x2080
[  161.425297][ T7256]  netfs_unbuffered_write_iter_locked+0x801/0xab0
[  161.427247][ T7256]  netfs_unbuffered_write_iter+0x40c/0x710
[  161.429130][ T7256]  v9fs_file_write_iter+0xbf/0x100
[  161.430675][ T7256]  vfs_write+0x6ac/0x1070
[  161.432077][ T7256]  ? __pfx_v9fs_file_write_iter+0x10/0x10
[  161.433809][ T7256]  ? __pfx_vfs_write+0x10/0x10
[  161.435348][ T7256]  ksys_write+0x12a/0x250
[  161.436761][ T7256]  ? __pfx_ksys_write+0x10/0x10
[  161.438316][ T7256]  ? rcu_is_watching+0x12/0xc0
[  161.439866][ T7256]  ? trace_csd_function_exit+0x73/0x210
[  161.441631][ T7256]  __do_fast_syscall_32+0xe3/0x8c0
[  161.443259][ T7256]  do_fast_syscall_32+0x32/0x70
[  161.444819][ T7256]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.446887][ T7256] RIP: 0023:0xf707ef6c
[  161.448205][ T7256] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  161.454247][ T7256] RSP: 002b:00000000f544c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  161.456908][ T7256] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000040
[  161.459413][ T7256] RDX: 000000000208e24b RSI: 0000000000000000 RDI: 0000000000000000
[  161.461921][ T7256] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.464426][ T7256] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  161.466968][ T7256] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.469481][ T7256]  </TASK>
[  161.470483][ T7256] Modules linked in:
[  161.471739][ T7256] CR2: 0000000000000000
[  161.473076][ T7256] ---[ end trace 0000000000000000 ]---
[  161.474802][ T7256] RIP: 0010:0x0
[  161.475900][ T7256] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  161.478193][ T7256] RSP: 0018:ffffc900260cfb80 EFLAGS: 00010246
[  161.480115][ T7256] RAX: 0000000000000000 RBX: ffff88804ab220b0 RCX: ffffc9000cc04000
[  161.482597][ T7256] RDX: 0000000000080000 RSI: ffffffff82c2f85c RDI: ffff88804ab22000
[  161.485101][ T7256] RBP: 0000000000e1ffc0 R08: 0000000000000001 R09: 0000000000000000
[  161.487602][ T7256] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88804ab22098
[  161.490103][ T7256] R13: dffffc0000000000 R14: ffff88804ab22000 R15: ffff888049cd4b40
[  161.492600][ T7256] FS:  0000000000000000(0000) GS:ffff888097143000(0063) knlGS:00000000f544cb40
[  161.495430][ T7256] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  161.497531][ T7256] CR2: ffffffffffffffd6 CR3: 0000000054138000 CR4: 0000000000352ef0
[  161.500064][ T7256] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  161.502571][ T7256] DR3: 00000000128e805a DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  161.505081][ T7256] Kernel panic - not syncing: Fatal exception
[  161.507754][ T7256] Kernel Offset: disabled
[  161.509246][ T7256] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:20:51  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85780615 RDI=ffffffff9b4951c0 RBP=ffffffff9b495180 RSP=ffffc900260cf3e8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023
R12=0000000000000000 R13=0000000000000000 R14=ffffffff9b4951d0 R15=0000000000000000
RIP=ffffffff8578063f RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097143000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000054138000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000128e805a 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000005db64c RBX=ffff88801c7324c0 RCX=ffffffff8b8e3c75 RDX=0000000000000001
RSI=ffffffff8c1b1620 RDI=ffffffff81de0f14 RBP=0000000000000000 RSP=ffffc9000046fdf0
R8 =0000000000000000 R9 =ffffed100566679d R10=ffff88802b333ceb R11=0000000000000001
R12=0000000000000001 R13=ffffed10038e6498 R14=0000000000000001 R15=ffffffff90d9ec10
RIP=ffffffff8b8e25df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097243000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73ee844 CR3=000000006fe5d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000016c00000000 0000000400000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000000a97c4 RBX=ffff88801c7d4980 RCX=ffffffff8b8e3c75 RDX=0000000000000001
RSI=ffffffff8c1b1620 RDI=ffffffff81de0f14 RBP=0000000000000000 RSP=ffffc9000047fdf0
R8 =0000000000000000 R9 =ffffed100568679d R10=ffff88802b433ceb R11=0000000000000002
R12=0000000000000002 R13=ffffed10038fa930 R14=0000000000000002 R15=ffffffff90d9ec10
RIP=ffffffff8b8e25df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097343000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f5485da4 CR3=000000004bd1a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff821040af RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff90d9ec10 RBP=ffffc90003eb7f20 RSP=ffffc90003eb7ec8
R8 =0000000000000004 R9 =0000000000000003 R10=0000000000000003 R11=000000000000001e
R12=ffff888000b88000 R13=0000000000000066 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8273d2d0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097443000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f73a32f0 CR3=000000004c2bd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000