last executing test programs:

6.411206526s ago: executing program 2 (id=986):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB="08002600901500000800570080"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0xc044)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="05000c000000000000000600000008000300", @ANYRES32=r5, @ANYBLOB="080005000b000000"], 0x24}}, 0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001940)={0x14, 0x2b, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0)
syz_emit_vhci(&(0x7f0000003d40)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0x3, 0xc9, "705c5c7ff14d690d"}}}}, 0xf)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)={0x328, r6, 0x300, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_TX_RATES={0x310, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x0, 0x2}, {0x1, 0x8}, {0x0, 0x7}, {0x3, 0x9}, {0x3, 0x8}, {0x4, 0xa}, {0x6, 0x4}, {0x3, 0x5}, {0x0, 0x5}, {0x1, 0x1}, {0x1, 0x3}, {0x5, 0x2}, {}, {0x5, 0x5}, {0x4, 0x4}, {0x2, 0x8}, {0x6, 0x7}, {0x0, 0x5}, {0x3, 0x2}, {}, {0x2, 0x1}, {0x6, 0x4}, {0x6, 0x3}, {0x3, 0x7}, {0x2, 0x2}, {0x7, 0x1}, {0x1, 0xa}, {0x3, 0x5}, {0x1, 0x2}, {0x5, 0x2}, {0x4, 0x9}, {0x1, 0x9}, {0x3, 0x5}, {0x1}, {0x4, 0x9}, {0x7}, {0x6, 0x9}, {}, {0x4, 0x9}, {0x5, 0x8}, {0x6, 0x2}, {0x6, 0x3}, {0x0, 0x9}, {0x2}, {0x4, 0x3}, {0x3}, {0x6, 0x1}, {0x2, 0x4}, {0x4, 0x6}, {0x1, 0x3}, {0x3, 0x5}, {0x2, 0x9}, {0x2, 0x8}, {0x7, 0x1}, {0x5, 0x1}, {0x6, 0x4}, {0x1}, {0x1, 0x1}, {0x7, 0x7}, {0x4, 0x1}, {0x2, 0x7}, {0x5, 0x6}, {0x1, 0x1}, {0x5, 0xa}, {0x3, 0x5}, {0x6, 0x5}, {0x1, 0x3}, {0x7, 0x9}, {0x5, 0x3}, {0x0, 0x5}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0xc8, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xa7, 0x20a, 0x2, 0x4, 0xa3d3, 0x7, 0x6f, 0x7]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x9, 0x1b, 0x9, 0x6c, 0x30, 0x48, 0x12, 0x1b, 0x48, 0x30, 0x48, 0x1b, 0xb, 0x6]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x8, 0xcb8, 0x4, 0xf, 0x3, 0x5, 0xe]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x2, 0x7}, {0x6, 0x4}, {0x5, 0x1}, {0x0, 0x4}, {0x2, 0x7}, {0x6, 0x2}, {0x0, 0x5}, {0x1}, {0x1, 0x4}, {0x2, 0x2}, {0x1, 0x8}, {0x5, 0x8}, {0x6}, {0x2, 0x5}, {0x7, 0x8}, {0x1, 0x6}, {0x0, 0xa}, {0x1}, {0x2, 0xa}, {0x5, 0x7}, {0x0, 0x3}, {0x4, 0x8}, {0x5, 0xa}, {0x6}, {0x6, 0x2}, {0x5, 0x4}, {0x6, 0x3}, {0x0, 0x4}, {0x2, 0xa}, {0x5, 0x2}, {0x0, 0x5}, {0x7, 0x4}, {0x5, 0x1}, {0x4, 0x6}, {0x7, 0x1}, {0x1, 0x3}, {}, {0x0, 0x2}, {0x6, 0x2}, {0x1, 0x5}, {0x7, 0x3}, {0x3, 0x5}, {0x2, 0x6}, {0x6, 0x7}, {0x1, 0x8}, {0x3, 0x1}, {0x1, 0x9}, {0x4, 0x4}, {0x7, 0x9}, {0x0, 0x9}, {0x0, 0x7}, {0x4, 0x9}, {0x0, 0xb}, {0x1, 0x5}, {0x7, 0x8}, {0x7, 0x7}, {0x3, 0x7}, {0x0, 0x2}, {0x6, 0x3}, {0x5}, {0x1, 0x5}, {0x1, 0x5}]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x12, 0x0, 0x36, 0x4, 0x60, 0xb, 0x2, 0x25, 0x24, 0x3, 0x6c, 0x12, 0x9, 0x36, 0x18, 0x48, 0x6, 0x30, 0x12, 0x6c, 0x48, 0x5, 0x60]}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x0, 0x4, 0x1, 0x7c, 0x1, 0x7, 0x2]}}]}, @NL80211_BAND_5GHZ={0x14, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}]}, @NL80211_BAND_60GHZ={0x64, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x10, 0x7, 0x1637, 0xc, 0x5, 0x86, 0xf]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0x30, 0xc, 0xb, 0x9, 0x24, 0x6c, 0xc, 0x4, 0x6c, 0x4, 0x6, 0x3d, 0x24, 0x24, 0x1b, 0x2, 0x1, 0x36, 0x9, 0x30, 0x12, 0x4, 0x48, 0x12]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x12, 0x30, 0x1, 0x30, 0x13, 0x1b, 0x1b, 0x2, 0xc, 0x24, 0x16, 0x2, 0x3b, 0x2, 0x9, 0x1, 0xc, 0x6, 0x12, 0x65, 0x18, 0x36, 0x1, 0x0, 0x12, 0x1, 0x1b, 0x12, 0x3]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}]}, @NL80211_BAND_60GHZ={0x74, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x1, 0x6}, {0x0, 0x1}, {0x1, 0x9}, {0x3, 0x9}, {0x2, 0x1}, {0x7, 0x8}, {0x2, 0x6}, {0x7, 0xa}, {0x0, 0x1}, {0x4, 0x3}, {0x1, 0x8}, {0x2, 0x1}, {0x2, 0x7}, {0x1, 0x8}, {0x3, 0x4}, {0x4, 0x8}, {0x3, 0xa}, {0x5, 0x8}, {0x3, 0x9}, {0x7, 0xa}, {0x7, 0x2}, {0x0, 0x7}, {0x7, 0x5}, {0x5, 0x8}, {0x2, 0x2}, {0x0, 0xa}, {0x5, 0x9}, {0x1, 0xa}, {0x2, 0x8}, {0x0, 0x9}, {0x5, 0x6}, {0x3, 0x1}, {0x6, 0x1}, {0x2, 0x3}, {0x6, 0x5}, {0x0, 0x2}, {0x2, 0x7}, {0x1, 0xa}, {0x3, 0xa}, {0x7, 0x1}, {0x1, 0x4}, {0x2, 0xa}, {0x0, 0x9}, {0x4, 0x8}, {0x3, 0x5}, {0x2, 0x8}, {0x2, 0x8}, {0x1, 0x9}, {0x5, 0xa}, {0x0, 0x2}, {0x1, 0x8}, {0x1, 0x3}, {0x6, 0x4}, {0x5, 0x4}, {0x7, 0x4}, {0x1, 0x2}, {0x1, 0x5}, {0x6, 0x9}, {0x3, 0x9}, {0x1, 0x3}, {0x2, 0x4}, {0x3, 0x7}, {0x2, 0x6}, {0x5, 0x5}, {0x2, 0x8}, {0x1, 0x5}, {0x2, 0x3}, {0x6, 0x5}, {0x2, 0x5}, {0x3, 0x3}, {0x5}, {0x0, 0x3}, {0x7, 0x6}, {0x6}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0xcc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0x81, 0x1, 0x200, 0x1, 0x401, 0x0, 0x6]}}, @NL80211_TXRATE_HT={0x44, 0x2, [{0x0, 0x2}, {}, {0x4, 0x6}, {0x0, 0x7}, {0x1, 0x1}, {0x1, 0x9}, {0x2}, {0x6, 0x3}, {0x0, 0x5}, {0x1, 0x2}, {0x1, 0x7}, {0x2, 0x1}, {0x4, 0x5}, {0x7, 0x7}, {0x4}, {0x7, 0x2}, {0x3, 0xa}, {0x7, 0x5}, {0x7, 0x8}, {0x5, 0xa}, {0x3, 0x6}, {0x7, 0x2}, {0x4, 0x1}, {0x3, 0x3}, {0x0, 0x2}, {0x0, 0x1}, {0x1, 0x8}, {0x5, 0x1}, {0x6, 0x2}, {0x4, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x2, 0x1}, {0x1, 0x4}, {0x2, 0x3}, {0x7, 0x4}, {0x0, 0xa}, {0x1, 0x4}, {0x0, 0x3}, {0x3, 0x2}, {0x0, 0x4}, {0x3, 0x4}, {0x1, 0x3}, {0x0, 0x3}, {0x3, 0x5}, {0x6, 0xa}, {0x7, 0x2}, {0x2, 0x6}, {0x0, 0x6}, {0x1, 0x2}, {0x4, 0x6}, {0x1}, {0x3, 0x8}, {0x1}, {0x1, 0x1}, {0x6, 0x4}, {0x4, 0x2}, {0x1, 0x8}, {0x4, 0xa}, {0x6, 0x3}, {0x0, 0x7}, {0x0, 0x7}, {0x7, 0x2}, {0x0, 0x7}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xae0a, 0x0, 0xa9, 0x401, 0x3, 0x0, 0x9, 0xc2ac]}}, @NL80211_TXRATE_HT={0x13, 0x2, [{0x2, 0x3}, {0x1, 0x5}, {0x2, 0x7}, {0x0, 0x3}, {0x7, 0x6}, {0x4, 0x8}, {0x3, 0x9}, {0x6, 0x4}, {0x5, 0x3}, {0x4, 0x7}, {0x3, 0x5}, {0x6, 0x3}, {0x3, 0x1}, {0x0, 0x6}, {0x4, 0x3}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x48, 0x1, 0x24, 0x60, 0x3, 0x12, 0x24, 0x4, 0x1b]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x3, 0x119, 0x1, 0x5, 0xb, 0x9, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0xe3f, 0x401, 0x8001, 0x6, 0x0, 0x3, 0x1]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}]}, 0x328}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

6.374459824s ago: executing program 2 (id=987):
semctl$IPC_INFO(0x0, 0x4, 0x3, &(0x7f0000000100)=""/239)
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0x100)
lseek(r0, 0x9, 0x1)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r2, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000040)=0x38)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000000000/0x4000)=nil, 0x4000}, 0x2})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r1}, './file0\x00'})
write$cgroup_devices(r3, &(0x7f0000000240)={'a', ' *:* ', 'rw\x00'}, 0x9)

6.280336777s ago: executing program 2 (id=988):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000400)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f00000002c0)=[{0x1, 0x0, [0x80, 0x26c92ead, 0x5, 0x6, 0x1, 0x5, 0x3, 0x8, 0xdfe, 0x7, 0x4, 0xe, 0x6, 0xfffffffe, 0x7, 0x1]}, {0x6, 0x0, [0x0, 0x4, 0x9, 0x6, 0x9, 0x9, 0xef6, 0x1, 0x0, 0x9, 0x9, 0x8001, 0x0, 0x9, 0x9, 0x4]}], 0xffffffffffffffff, 0x1, 0x1, 0x90}}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000080)=0x9c)
eventfd2(0x24b, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000080)=ANY=[])
r3 = eventfd(0x0)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)}], 0x1, 0x0, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000500)=&(0x7f0000000240))
read$FUSE(r4, &(0x7f0000002b00)={0x2020, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000004d40)={{{@in6=@local, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in=@remote}}, &(0x7f0000004e40)=0xe4)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000004e80)={0x0, 0x0, <r7=>0x0}, &(0x7f0000004ec0)=0xc)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000b00)="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", 0x2000, &(0x7f0000005000)={&(0x7f0000000380)={0x50, 0xffffffffffffffda, 0x2, {0x7, 0x28, 0x7, 0x40, 0xca8, 0x7fff, 0x4, 0x6118}}, &(0x7f0000000440)={0x18, 0x0, 0x8, {0x2000000000000000}}, &(0x7f0000000580)={0x18, 0xffffffffffffffda, 0x7f, {0x8000}}, &(0x7f00000005c0)={0x18, 0x24, 0x9, {0x1}}, &(0x7f0000000600)={0x18, 0x0, 0x0, {0x8}}, &(0x7f0000000640)={0x28, 0x0, 0x8, {{0x1, 0x401}}}, &(0x7f0000000680)={0x60, 0xb, 0x3, {{0x0, 0x92dc, 0x2, 0x3, 0x8001, 0x3, 0xc0, 0x9}}}, &(0x7f0000000700)={0x18, 0x0, 0x7, {0x4}}, &(0x7f0000000780)={0x1b, 0x0, 0x1, {'/dev/nvram\x00'}}, &(0x7f00000007c0)={0x20, 0xfffffffffffffffe, 0x8, {0x0, 0x1c}}, &(0x7f0000000840)={0x78, 0xffffffffffffffda, 0x2, {0x4de6d7c3, 0x8, 0x0, {0x0, 0xfffffffffffffff9, 0x4, 0x3ff, 0x6153, 0x68, 0xefc2, 0xffffffff, 0xfffffffe, 0x8000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0xc3c}}}, &(0x7f00000008c0)={0x90, 0x0, 0x10000, {0x5, 0x1, 0x4, 0x7, 0x40, 0x9, {0x4, 0x100000000, 0x0, 0x1, 0xe, 0xf, 0x3, 0x4d87, 0x0, 0x4000, 0x34e2, 0x0, 0x0, 0x7f, 0x49f3}}}, &(0x7f0000000980)={0x38, 0x0, 0x7, [{0x4, 0x6, 0xb, 0x3, '/dev/nvram\x00'}]}, &(0x7f0000004b40)={0x1f0, 0x0, 0x100, [{{0x5, 0x2, 0x3, 0x3, 0xa, 0x7, {0x5, 0x4, 0x7, 0x4, 0x4, 0x1, 0x7, 0x378, 0xfff, 0x6000, 0x5, 0x0, 0x0, 0x7, 0x4000}}, {0x4, 0x60, 0xb, 0x7f, '/dev/nvram\x00'}}, {{0x2, 0x0, 0x7, 0x9, 0xf, 0x6, {0x3, 0x5, 0xfffffffffffffff8, 0x9, 0x5, 0x72c, 0x9, 0x481, 0x4, 0x4000, 0x1, 0x0, 0x0, 0x3, 0x4}}, {0x1, 0xb218, 0x0, 0x4}}, {{0x5, 0x3, 0x8, 0x6, 0x8, 0xa, {0x4, 0x3, 0x7f8, 0x7, 0x3, 0x2, 0x7, 0x7, 0x7, 0x2000, 0xfff, 0xee00, r5, 0x375, 0x2}}, {0x3, 0x7, 0x1, 0xb5, 'n'}}]}, &(0x7f0000004f00)={0xa0, 0x0, 0x4, {{0x0, 0xf, 0x7, 0xff, 0xfffffff7, 0x2cc0, {0x4, 0x9, 0xb29, 0x7fffffffffffffff, 0x1, 0x5, 0x6, 0x8, 0x5, 0x4000, 0xfffffffd, r6, r7}}, {0x0, 0x2}}}, &(0x7f0000004fc0)={0x20, 0xffffffffffffffda, 0x4, {0x10001, 0x4, 0x5, 0x1}}})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000740)=r3)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000ac0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
ioctl$TIOCL_SETVESABLANK(r4, 0x541c, &(0x7f00000001c0))
preadv(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

5.93111292s ago: executing program 0 (id=990):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_io_uring_setup(0x5ad, &(0x7f0000000100)={0x0, 0x0, 0x40}, &(0x7f0000000000), &(0x7f0000000000))
io_setup(0x1, 0x0)
io_destroy(0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0xa810)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r4 = dup(r3)
openat$bsg(0xffffffffffffff9c, 0x0, 0x21000, 0x0)
connect$inet6(r4, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000180), 0x12)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x2, 0x8001, {0x0, 0x1}, {0x4, 0xfbff}, @rumble={0xf, 0xff}})
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000400)}, 0x0)
r8 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r8, &(0x7f0000000040)="e2", 0x12d8)

5.873206793s ago: executing program 0 (id=991):
r0 = open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r4, @ANYBLOB="00000016010000001800120008000100736974000c00020008000300", @ANYRES32], 0x38}, 0x1, 0x0, 0x0, 0x4045}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newlink={0x4c, 0x10, 0x439, 0x70fd2c, 0xffffffea, {0x0, 0x0, 0xe403, r4, 0x3, 0x610c3}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @sit={{0x8}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, @IFLA_IPTUN_6RD_PREFIX={0x14, 0xb, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)
ftruncate(r0, 0x2008002)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x3, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff43)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, 0x0, 0x0)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r8 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r8, 0x0, 0xd2, &(0x7f0000000040)={@remote, @empty, 0x1, "4ef7289910e0843a8f13f2fe244b73fb24e0fe49951c925bca907f6a609d8f49"}, 0x3c)
ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)={0x34, 0x2, 0x3, 0x401, 0x0, 0x0, {}, [@NFQA_CFG_FLAGS={0x8}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x401}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x6}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x2004c084)

5.660787821s ago: executing program 2 (id=992):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a09000000000000000000070000000900010073797a30"], 0xec}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xfffffe8b, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4000005)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000300)={0xf0002, 0x0, [0x5, 0x0, 0x0, 0x101, 0x0, 0x2]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000140)="f20f1c0166b864912c870f23c80f21f866350c0080000f23f80f01fc0f20e06635000010000f22e066f30fa7c00f1c9700000f01c566b9a001000066b80400000066ba000000000f30c0dbb6660f3adf932700de", 0x54}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.033785823s ago: executing program 0 (id=993):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="500000002700010000000000000000000a010100000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0080000000000000"], 0x50}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000000))
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3)
write$uinput_user_dev(r2, &(0x7f0000000800)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x80, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x0, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000524000/0x1000)=nil, 0x1000, 0xb635773f07ebbee6, 0x80010, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x2)
r7 = dup(r6)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000, 0x0, 0xe01b11a865b2abdb}, 0x20)
read$FUSE(r7, &(0x7f0000003980)={0x2020}, 0x2020)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r1, 0x0, 0x0}, 0x47)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000004000000e47f00000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000e0a7b0df62fd88088f7d4819bfabf03c04be712fbc3d403b6c4b804f6c3bf3cc580e5596750e1d8e1a322931078192d28eb20ee94176e3ab62e4a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x5, r9}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

4.230831022s ago: executing program 1 (id=999):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_io_uring_setup(0x5ad, &(0x7f0000000100)={0x0, 0x0, 0x40}, &(0x7f0000000000), &(0x7f0000000000))
io_setup(0x1, 0x0)
io_destroy(0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0xa810)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r4 = dup(r3)
openat$bsg(0xffffffffffffff9c, 0x0, 0x21000, 0x0)
connect$inet6(r4, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000180), 0x12)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x2, 0x8001, {0x0, 0x1}, {0x4, 0xfbff}, @rumble={0xf, 0xff}})
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000400)}, 0x0)
r8 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r8, &(0x7f0000000040)="e2", 0x12d8)

4.156938559s ago: executing program 1 (id=1000):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000400)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f00000002c0)=[{0x1, 0x0, [0x80, 0x26c92ead, 0x5, 0x6, 0x1, 0x5, 0x3, 0x8, 0xdfe, 0x7, 0x4, 0xe, 0x6, 0xfffffffe, 0x7, 0x1]}, {0x6, 0x0, [0x0, 0x4, 0x9, 0x6, 0x9, 0x9, 0xef6, 0x1, 0x0, 0x9, 0x9, 0x8001, 0x0, 0x9, 0x9, 0x4]}], 0xffffffffffffffff, 0x1, 0x1, 0x90}}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000080)=0x9c)
eventfd2(0x24b, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000080)=ANY=[])
r3 = eventfd(0x0)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)="de", 0x1}], 0x1, 0x0, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, 0x0)
read$FUSE(r4, &(0x7f0000002b00)={0x2020, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000004d40)={{{@in6=@local, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in=@remote}}, &(0x7f0000004e40)=0xe4)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000004e80)={0x0, 0x0, <r7=>0x0}, &(0x7f0000004ec0)=0xc)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000b00)="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", 0x2000, &(0x7f0000005000)={&(0x7f0000000380)={0x50, 0xffffffffffffffda, 0x2, {0x7, 0x28, 0x7, 0x40, 0xca8, 0x7fff, 0x4, 0x6118}}, &(0x7f0000000440)={0x18, 0x0, 0x8, {0x2000000000000000}}, &(0x7f0000000580)={0x18, 0xffffffffffffffda, 0x7f, {0x8000}}, &(0x7f00000005c0)={0x18, 0x24, 0x9, {0x1}}, &(0x7f0000000600)={0x18, 0x0, 0x0, {0x8}}, &(0x7f0000000640)={0x28, 0x0, 0x8, {{0x1, 0x401}}}, &(0x7f0000000680)={0x60, 0xb, 0x3, {{0x0, 0x92dc, 0x2, 0x3, 0x8001, 0x3, 0xc0, 0x9}}}, &(0x7f0000000700)={0x18, 0x0, 0x7, {0x4}}, &(0x7f0000000780)={0x1b, 0x0, 0x1, {'/dev/nvram\x00'}}, &(0x7f00000007c0)={0x20, 0xfffffffffffffffe, 0x8, {0x0, 0x1c}}, &(0x7f0000000840)={0x78, 0xffffffffffffffda, 0x2, {0x4de6d7c3, 0x8, 0x0, {0x0, 0xfffffffffffffff9, 0x4, 0x3ff, 0x6153, 0x68, 0xefc2, 0xffffffff, 0xfffffffe, 0x8000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0xc3c}}}, &(0x7f00000008c0)={0x90, 0x0, 0x10000, {0x5, 0x1, 0x4, 0x7, 0x40, 0x9, {0x4, 0x100000000, 0x0, 0x1, 0xe, 0xf, 0x3, 0x4d87, 0x0, 0x4000, 0x34e2, 0x0, 0x0, 0x7f, 0x49f3}}}, &(0x7f0000000980)={0x38, 0x0, 0x7, [{0x4, 0x6, 0xb, 0x3, '/dev/nvram\x00'}]}, &(0x7f0000004b40)={0x1f0, 0x0, 0x100, [{{0x5, 0x2, 0x3, 0x3, 0xa, 0x7, {0x5, 0x4, 0x7, 0x4, 0x4, 0x1, 0x7, 0x378, 0xfff, 0x6000, 0x5, 0x0, 0x0, 0x7, 0x4000}}, {0x4, 0x60, 0xb, 0x7f, '/dev/nvram\x00'}}, {{0x2, 0x0, 0x7, 0x9, 0xf, 0x6, {0x3, 0x5, 0xfffffffffffffff8, 0x9, 0x5, 0x72c, 0x9, 0x481, 0x4, 0x4000, 0x1, 0x0, 0x0, 0x3, 0x4}}, {0x1, 0xb218, 0x0, 0x4}}, {{0x5, 0x3, 0x8, 0x6, 0x8, 0xa, {0x4, 0x3, 0x7f8, 0x7, 0x3, 0x2, 0x7, 0x7, 0x7, 0x2000, 0xfff, 0xee00, r5, 0x375, 0x2}}, {0x3, 0x7, 0x1, 0xb5, 'n'}}]}, &(0x7f0000004f00)={0xa0, 0x0, 0x4, {{0x0, 0xf, 0x7, 0xff, 0xfffffff7, 0x2cc0, {0x4, 0x9, 0xb29, 0x7fffffffffffffff, 0x1, 0x5, 0x6, 0x8, 0x5, 0x4000, 0xfffffffd, r6, r7}}, {0x0, 0x2}}}, &(0x7f0000004fc0)={0x20, 0xffffffffffffffda, 0x4, {0x10001, 0x4, 0x5, 0x1}}})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000740)=r3)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000ac0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
ioctl$TIOCL_SETVESABLANK(r4, 0x541c, &(0x7f00000001c0))
preadv(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

4.151207868s ago: executing program 0 (id=1001):
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000000))
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82187201, 0x0)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0xfffff600, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$ndctl0(0xffffff9c, &(0x7f00000002c0), 0x418500, 0x0)
ioctl$RTC_PIE_OFF(r2, 0x7006)
write$P9_RCREATE(r0, &(0x7f0000000300)={0x18, 0x73, 0x1, {{0x88, 0x0, 0x6}, 0x9}}, 0x18)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000340)={0x93db, 0x1, 0x1})
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='ext4_load_inode\x00', r2, 0x0, 0x2}, 0x18)
r4 = socket(0x2b, 0x2, 0x9)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x13, r3, 0xd5476000)
ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f0000000400)={'veth0_to_bond\x00', 0x7})
sendmsg$AUDIT_USER_AVC(r4, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, 0x453, 0x20, 0x70bd27, 0x25dfdbfb, "33552094239380962c0815842aebc6bcb331", ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040090}, 0x2000008c)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x30, r3, 0x745a4000)
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000540))
openat$sequencer2(0xffffff9c, &(0x7f0000000580), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, 0x0)
ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, &(0x7f0000000600))
ioctl$SIOCSIFHWADDR(r2, 0x8924, 0x0)
r5 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000000680), 0x8000, 0x0)
read$msr(r5, &(0x7f00000006c0)=""/92, 0x5c)

4.08694973s ago: executing program 0 (id=1002):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/address_bits', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000000100)='./file0\x00', 0x2000, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$packet_buf(r0, 0x107, 0x0, &(0x7f0000000280)="6b5706f02a937cc8bbfe5523b28b1f0c3c36d730448a826b4e42584c0b8ba0589d3f91303818d2fb710a9dab434f80b5dc25412dd763ccefe3e12928c112921916623ccdb702514f2ad6095cf469e49eb12b5df093738951c00b5bf3c895e3f5b9919cd30c80db046d486ba6e66dbfb9c416", 0x72)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x16, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x52}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/crypto\x00', 0x0, 0x0)
lseek(r3, 0x1000000, 0x0)
read$FUSE(r3, &(0x7f0000008280)={0x2020}, 0x2020)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
r4 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000940)="d744784ca67c0398246d848e6df22054de2bd8ca3da64dfdea7d8eb74ffe057d7469066c6ca034a2677ce0c1c25e2b2a825d677e0fbac312a7da165cd5db94fa38cdf3a3f3f93b912a7515e0b1e441a3be644a296bcc765e7adc9ddb4d14376a69cbfcd2ddd156ba432349e96debeda26ee8914c28f4", 0x7ffff000}, {&(0x7f00000009c0)="d86e5c29ab2c0dce2b79f95d543a0d6b45dec9dab7afbc0d6d678feb7a652e67638c3ee007937917fad76308e99818f8f112b73a3c3e3c5ed80c49fab6e0593e95008b4a47aebdde3e28cea1cec26385f3d03b872970dfb69a63a6384a9be5b9419ff8ea6d9c2a730307894adb589d11a1ec59255d10acb1fbef", 0x7a}], 0x2}, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x34, r7, 0x1, 0x0, 0x9e, {0x34}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
r8 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r8, 0xae78, 0x0)

3.641003207s ago: executing program 1 (id=1004):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r1, @ANYBLOB="08002600901500000800570080"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0xc044)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="05000c000000000000000600000008000300", @ANYRES32=r5, @ANYBLOB="080005000b000000"], 0x24}}, 0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001940)={0x14, 0x2b, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0)
syz_emit_vhci(&(0x7f0000003d40)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0x3, 0xc9, "705c5c7ff14d690d"}}}}, 0xf)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)={0x328, r6, 0x300, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_TX_RATES={0x310, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x0, 0x2}, {0x1, 0x8}, {0x0, 0x7}, {0x3, 0x9}, {0x3, 0x8}, {0x4, 0xa}, {0x6, 0x4}, {0x3, 0x5}, {0x0, 0x5}, {0x1, 0x1}, {0x1, 0x3}, {0x5, 0x2}, {}, {0x5, 0x5}, {0x4, 0x4}, {0x2, 0x8}, {0x6, 0x7}, {0x0, 0x5}, {0x3, 0x2}, {}, {0x2, 0x1}, {0x6, 0x4}, {0x6, 0x3}, {0x3, 0x7}, {0x2, 0x2}, {0x7, 0x1}, {0x1, 0xa}, {0x3, 0x5}, {0x1, 0x2}, {0x5, 0x2}, {0x4, 0x9}, {0x1, 0x9}, {0x3, 0x5}, {0x1}, {0x4, 0x9}, {0x7}, {0x6, 0x9}, {}, {0x4, 0x9}, {0x5, 0x8}, {0x6, 0x2}, {0x6, 0x3}, {0x0, 0x9}, {0x2}, {0x4, 0x3}, {0x3}, {0x6, 0x1}, {0x2, 0x4}, {0x4, 0x6}, {0x1, 0x3}, {0x3, 0x5}, {0x2, 0x9}, {0x2, 0x8}, {0x7, 0x1}, {0x5, 0x1}, {0x6, 0x4}, {0x1}, {0x1, 0x1}, {0x7, 0x7}, {0x4, 0x1}, {0x2, 0x7}, {0x5, 0x6}, {0x1, 0x1}, {0x5, 0xa}, {0x3, 0x5}, {0x6, 0x5}, {0x1, 0x3}, {0x7, 0x9}, {0x5, 0x3}, {0x0, 0x5}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0xc8, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xa7, 0x20a, 0x2, 0x4, 0xa3d3, 0x7, 0x6f, 0x7]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x9, 0x1b, 0x9, 0x6c, 0x30, 0x48, 0x12, 0x1b, 0x48, 0x30, 0x48, 0x1b, 0xb, 0x6]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x8, 0xcb8, 0x4, 0xf, 0x3, 0x5, 0xe]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x2, 0x7}, {0x6, 0x4}, {0x5, 0x1}, {0x0, 0x4}, {0x2, 0x7}, {0x6, 0x2}, {0x0, 0x5}, {0x1}, {0x1, 0x4}, {0x2, 0x2}, {0x1, 0x8}, {0x5, 0x8}, {0x6}, {0x2, 0x5}, {0x7, 0x8}, {0x1, 0x6}, {0x0, 0xa}, {0x1}, {0x2, 0xa}, {0x5, 0x7}, {0x0, 0x3}, {0x4, 0x8}, {0x5, 0xa}, {0x6}, {0x6, 0x2}, {0x5, 0x4}, {0x6, 0x3}, {0x0, 0x4}, {0x2, 0xa}, {0x5, 0x2}, {0x0, 0x5}, {0x7, 0x4}, {0x5, 0x1}, {0x4, 0x6}, {0x7, 0x1}, {0x1, 0x3}, {}, {0x0, 0x2}, {0x6, 0x2}, {0x1, 0x5}, {0x7, 0x3}, {0x3, 0x5}, {0x2, 0x6}, {0x6, 0x7}, {0x1, 0x8}, {0x3, 0x1}, {0x1, 0x9}, {0x4, 0x4}, {0x7, 0x9}, {0x0, 0x9}, {0x0, 0x7}, {0x4, 0x9}, {0x0, 0xb}, {0x1, 0x5}, {0x7, 0x8}, {0x7, 0x7}, {0x3, 0x7}, {0x0, 0x2}, {0x6, 0x3}, {0x5}, {0x1, 0x5}, {0x1, 0x5}]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x12, 0x0, 0x36, 0x4, 0x60, 0xb, 0x2, 0x25, 0x24, 0x3, 0x6c, 0x12, 0x9, 0x36, 0x18, 0x48, 0x6, 0x30, 0x12, 0x6c, 0x48, 0x5, 0x60]}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x0, 0x4, 0x1, 0x7c, 0x1, 0x7, 0x2]}}]}, @NL80211_BAND_5GHZ={0x14, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}]}, @NL80211_BAND_60GHZ={0x64, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x10, 0x7, 0x1637, 0xc, 0x5, 0x86, 0xf]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x5, 0x30, 0xc, 0xb, 0x9, 0x24, 0x6c, 0xc, 0x4, 0x6c, 0x4, 0x6, 0x3d, 0x24, 0x24, 0x1b, 0x5, 0x1, 0x36, 0x9, 0x30, 0x12, 0x4, 0x48, 0x12]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x12, 0x30, 0x1, 0x30, 0x13, 0x1b, 0x1b, 0x2, 0xc, 0x24, 0x16, 0x2, 0x3b, 0x2, 0x9, 0x1, 0xc, 0x6, 0x12, 0x65, 0x18, 0x36, 0x1, 0x0, 0x12, 0x1, 0x1b, 0x12, 0x3]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}]}, @NL80211_BAND_60GHZ={0x74, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x1, 0x6}, {0x0, 0x1}, {0x1, 0x9}, {0x3, 0x9}, {0x2, 0x1}, {0x7, 0x8}, {0x2, 0x6}, {0x7, 0xa}, {0x0, 0x1}, {0x4, 0x3}, {0x1, 0x8}, {0x2, 0x1}, {0x2, 0x7}, {0x1, 0x8}, {0x3, 0x4}, {0x4, 0x8}, {0x3, 0xa}, {0x5, 0x8}, {0x3, 0x9}, {0x7, 0xa}, {0x7, 0x2}, {0x0, 0x7}, {0x7, 0x5}, {0x5, 0x8}, {0x2, 0x2}, {0x0, 0xa}, {0x5, 0x9}, {0x1, 0xa}, {0x2, 0x8}, {0x0, 0x9}, {0x5, 0x6}, {0x3, 0x1}, {0x6, 0x1}, {0x2, 0x3}, {0x6, 0x5}, {0x0, 0x2}, {0x2, 0x7}, {0x1, 0xa}, {0x3, 0xa}, {0x7, 0x1}, {0x1, 0x4}, {0x2, 0xa}, {0x0, 0x9}, {0x4, 0x8}, {0x3, 0x5}, {0x2, 0x8}, {0x2, 0x8}, {0x1, 0x9}, {0x5, 0xa}, {0x0, 0x2}, {0x1, 0x8}, {0x1, 0x3}, {0x6, 0x4}, {0x5, 0x4}, {0x7, 0x4}, {0x1, 0x2}, {0x1, 0x5}, {0x6, 0x9}, {0x3, 0x9}, {0x1, 0x3}, {0x2, 0x4}, {0x3, 0x7}, {0x2, 0x6}, {0x5, 0x5}, {0x2, 0x8}, {0x1, 0x5}, {0x2, 0x3}, {0x6, 0x5}, {0x2, 0x5}, {0x3, 0x3}, {0x5}, {0x0, 0x3}, {0x7, 0x6}, {0x6}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0xcc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0x81, 0x1, 0x200, 0x1, 0x401, 0x0, 0x6]}}, @NL80211_TXRATE_HT={0x44, 0x2, [{0x0, 0x2}, {}, {0x4, 0x6}, {0x0, 0x7}, {0x1, 0x1}, {0x1, 0x9}, {0x2}, {0x6, 0x3}, {0x0, 0x5}, {0x1, 0x2}, {0x1, 0x7}, {0x2, 0x1}, {0x4, 0x5}, {0x7, 0x7}, {0x4}, {0x7, 0x2}, {0x3, 0xa}, {0x7, 0x5}, {0x7, 0x8}, {0x5, 0xa}, {0x3, 0x6}, {0x7, 0x2}, {0x4, 0x1}, {0x3, 0x3}, {0x0, 0x2}, {0x0, 0x1}, {0x1, 0x8}, {0x5, 0x1}, {0x6, 0x2}, {0x4, 0xa}, {0x2, 0x3}, {0x3, 0x3}, {0x2, 0x1}, {0x1, 0x4}, {0x2, 0x3}, {0x7, 0x4}, {0x0, 0xa}, {0x1, 0x4}, {0x0, 0x3}, {0x3, 0x2}, {0x0, 0x4}, {0x3, 0x4}, {0x1, 0x3}, {0x0, 0x3}, {0x3, 0x5}, {0x6, 0xa}, {0x7, 0x2}, {0x2, 0x6}, {0x0, 0x6}, {0x1, 0x2}, {0x4, 0x6}, {0x1}, {0x3, 0x8}, {0x1}, {0x1, 0x1}, {0x6, 0x4}, {0x4, 0x2}, {0x1, 0x8}, {0x4, 0xa}, {0x6, 0x3}, {0x0, 0x7}, {0x0, 0x7}, {0x7, 0x2}, {0x0, 0x7}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xae0a, 0x0, 0xa9, 0x401, 0x3, 0x0, 0x9, 0xc2ac]}}, @NL80211_TXRATE_HT={0x13, 0x2, [{0x2, 0x3}, {0x1, 0x5}, {0x2, 0x7}, {0x0, 0x3}, {0x7, 0x6}, {0x4, 0x8}, {0x3, 0x9}, {0x6, 0x4}, {0x5, 0x3}, {0x4, 0x7}, {0x3, 0x5}, {0x6, 0x3}, {0x3, 0x1}, {0x0, 0x6}, {0x4, 0x3}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x48, 0x1, 0x24, 0x60, 0x3, 0x12, 0x24, 0x4, 0x1b]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x3, 0x119, 0x1, 0x5, 0xb, 0x9, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0xe3f, 0x401, 0x8001, 0x6, 0x0, 0x3, 0x1]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}]}, 0x328}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

3.581363376s ago: executing program 1 (id=1006):
socket$nl_route(0x10, 0x3, 0x0)
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x101000, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x2e, 0x6, @thr={&(0x7f0000000300)="c6f670f200c25293c9f397627a68f362e6e00ef17e2b2628627c463f14bd0a0c064e8e649ea7947216642fe4bad5048da6e05baf814c462095a3ebed081f72c906479b399f3b49e45eaa05bbfc07dba4916d1897733dd35dc254a37b3d1146d5fd7eb8b019e9", &(0x7f0000000400)="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"}}, &(0x7f0000000100))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x19)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000000)={&(0x7f000067d000/0x2000)=nil, &(0x7f000053d000/0x1000)=nil, 0x2000})
ioctl$UFFDIO_COPY(r1, 0xc028aa05, 0x0)
r2 = syz_io_uring_setup(0x4766, &(0x7f0000000140)={0x0, 0xa83d, 0x2000, 0x0, 0x400}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r5, 0x3312, 0x3ff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x5, 0x0)
futex(&(0x7f0000000000)=0x2, 0x0, 0x0, 0x0, 0x0, 0x100)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000100)={0x0, 'veth0_vlan\x00', {}, 0x3daa})
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TCFLSH(r7, 0x89f0, 0x20000000)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r8, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000040)=0x5, 0x4)
recvmmsg(r6, &(0x7f0000008880), 0x45b, 0x0, 0x0)

3.460690765s ago: executing program 2 (id=1007):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000280))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_UNREGISTER(r3, 0xc020aa08, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, 0x0)
ioctl$UFFDIO_ZEROPAGE(r3, 0xc020aa04, &(0x7f0000000400)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0xfeffffffffffffff})
io_setup(0x8, &(0x7f0000000000)=<r5=>0x0)
ioctl$PPPIOCGUNIT(0xffffffffffffffff, 0x80047456, 0x0)
io_submit(r5, 0x2, &(0x7f0000000940)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000180)="d1f7624a6b0e", 0x6}, 0x0])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x20, 0x0, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x8c, &(0x7f0000000540)=""/140, 0x40f00, 0x64, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000600)={0x3, 0xd, 0x8, 0xe92b}, 0x10, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

2.048579459s ago: executing program 1 (id=1012):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000400)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f00000002c0)=[{0x1, 0x0, [0x80, 0x26c92ead, 0x5, 0x6, 0x1, 0x5, 0x3, 0x8, 0xdfe, 0x7, 0x4, 0xe, 0x6, 0xfffffffe, 0x7, 0x1]}, {0x6, 0x0, [0x0, 0x4, 0x9, 0x6, 0x9, 0x9, 0xef6, 0x1, 0x0, 0x9, 0x9, 0x8001, 0x0, 0x9, 0x9, 0x4]}], 0xffffffffffffffff, 0x1, 0x1, 0x90}}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000080)=0x9c)
eventfd2(0x24b, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000080)=ANY=[])
r3 = eventfd(0x0)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)}], 0x1, 0x0, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000500)=&(0x7f0000000240))
read$FUSE(r4, &(0x7f0000002b00)={0x2020, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000004d40)={{{@in6=@local, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@local}, 0x0, @in=@remote}}, &(0x7f0000004e40)=0xe4)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000004e80)={0x0, 0x0, <r7=>0x0}, &(0x7f0000004ec0)=0xc)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000b00)="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", 0x2000, &(0x7f0000005000)={&(0x7f0000000380)={0x50, 0xffffffffffffffda, 0x2, {0x7, 0x28, 0x7, 0x40, 0xca8, 0x7fff, 0x4, 0x6118}}, &(0x7f0000000440)={0x18, 0x0, 0x8, {0x2000000000000000}}, &(0x7f0000000580)={0x18, 0xffffffffffffffda, 0x7f, {0x8000}}, &(0x7f00000005c0)={0x18, 0x24, 0x9, {0x1}}, &(0x7f0000000600)={0x18, 0x0, 0x0, {0x8}}, &(0x7f0000000640)={0x28, 0x0, 0x8, {{0x1, 0x401}}}, &(0x7f0000000680)={0x60, 0xb, 0x3, {{0x0, 0x92dc, 0x2, 0x3, 0x8001, 0x3, 0xc0, 0x9}}}, &(0x7f0000000700)={0x18, 0x0, 0x7, {0x4}}, &(0x7f0000000780)={0x1b, 0x0, 0x1, {'/dev/nvram\x00'}}, &(0x7f00000007c0)={0x20, 0xfffffffffffffffe, 0x8, {0x0, 0x1c}}, &(0x7f0000000840)={0x78, 0xffffffffffffffda, 0x2, {0x4de6d7c3, 0x8, 0x0, {0x0, 0xfffffffffffffff9, 0x4, 0x3ff, 0x6153, 0x68, 0xefc2, 0xffffffff, 0xfffffffe, 0x8000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0xc3c}}}, &(0x7f00000008c0)={0x90, 0x0, 0x10000, {0x5, 0x1, 0x4, 0x7, 0x40, 0x9, {0x4, 0x100000000, 0x0, 0x1, 0xe, 0xf, 0x3, 0x4d87, 0x0, 0x4000, 0x34e2, 0x0, 0x0, 0x7f, 0x49f3}}}, &(0x7f0000000980)={0x38, 0x0, 0x7, [{0x4, 0x6, 0xb, 0x3, '/dev/nvram\x00'}]}, &(0x7f0000004b40)={0x1f0, 0x0, 0x100, [{{0x5, 0x2, 0x3, 0x3, 0xa, 0x7, {0x5, 0x4, 0x7, 0x4, 0x4, 0x1, 0x7, 0x378, 0xfff, 0x6000, 0x5, 0x0, 0x0, 0x7, 0x4000}}, {0x4, 0x60, 0xb, 0x7f, '/dev/nvram\x00'}}, {{0x2, 0x0, 0x7, 0x9, 0xf, 0x6, {0x3, 0x5, 0xfffffffffffffff8, 0x9, 0x5, 0x72c, 0x9, 0x481, 0x4, 0x4000, 0x1, 0x0, 0x0, 0x3, 0x4}}, {0x1, 0xb218, 0x0, 0x4}}, {{0x5, 0x3, 0x8, 0x6, 0x8, 0xa, {0x4, 0x3, 0x7f8, 0x7, 0x3, 0x2, 0x7, 0x7, 0x7, 0x2000, 0xfff, 0xee00, r5, 0x375, 0x2}}, {0x3, 0x7, 0x1, 0xb5, 'n'}}]}, &(0x7f0000004f00)={0xa0, 0x0, 0x4, {{0x0, 0xf, 0x7, 0xff, 0xfffffff7, 0x2cc0, {0x4, 0x9, 0xb29, 0x7fffffffffffffff, 0x1, 0x5, 0x6, 0x8, 0x5, 0x4000, 0xfffffffd, r6, r7}}, {0x0, 0x2}}}, &(0x7f0000004fc0)={0x20, 0xffffffffffffffda, 0x4, {0x10001, 0x4, 0x5, 0x1}}})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000740)=r3)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000ac0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
ioctl$TIOCL_SETVESABLANK(r4, 0x541c, &(0x7f00000001c0))
preadv(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.429311416s ago: executing program 0 (id=1013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xd4}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
gettid()
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000004200000a90200008000000042000000", @ANYRES32, @ANYBLOB="06000000000000000000000000000000009d0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f0000000040)="1002d7d97043d66fda937c7b65567297207adb3029e20544ec044c2fbb6bf865c9331165cb94d9fcb78cb57f9b40b11193c0030046c2ccf1295f9abfb2b534ba00", 0x0, 0x48)
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
syz_io_uring_setup(0x42502, &(0x7f0000000080)={0x0, 0x954b, 0x20, 0x10}, &(0x7f0000000300), &(0x7f0000000140))
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="bd4e54d45303aaaaaaaaaa0008060001050006040000ffffffffffffac141400aaaaaaaaaaaae0000002"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r5, 0x5b24, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
shmget$private(0x0, 0x1000, 0x200, &(0x7f0000ffc000/0x1000)=nil)
r6 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)

1.03093452s ago: executing program 3 (id=1015):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = getpid()
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
getrandom(&(0x7f0000000080)=""/240, 0xfffffffffffffe77, 0x0)
ioctl$KVM_SET_NESTED_STATE(r4, 0x4080aebf, &(0x7f00000007c0)={{0x1, 0x0, 0x80, {0xdddd0000, 0x1000}}, "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", "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"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x7b, &(0x7f0000000000)=@assoc_value, &(0x7f0000000080)=0x8)
syz_open_dev$usbmon(&(0x7f00000002c0), 0x8, 0x511100)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r6}, 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)

819.552832ms ago: executing program 2 (id=1016):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
userfaultfd(0x80001)
socket$netlink(0x10, 0x3, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001980)={&(0x7f00000005c0), 0x6e, &(0x7f0000000400), 0x0, &(0x7f00000019c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0xc}}, @cred={{0x18}}, @rights={{0xc}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}, 0x40000023)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280), 0x1e1982, 0x0)
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000140))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0x8001000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x0, 0xfffe, 0xcf0d, 0xb19, 0x2}})
ioctl(r3, 0x8b2a, &(0x7f0000000040))
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(0xffffffffffffffff, 0xc1004111, &(0x7f0000000440)={0x5, [0x4, 0x8, 0x1c5], [{0x94d, 0x809, 0x0, 0x1, 0x0, 0x1}, {0x1, 0xd, 0x1, 0x1, 0x1}, {0xa08, 0x6, 0x0, 0x0, 0x1}, {0x0, 0x7, 0x1}, {0xf, 0x800, 0x1}, {0x4d37, 0x400, 0x0, 0x0, 0x1, 0x1}, {0x6, 0x400, 0x0, 0x1}, {0x500, 0x8}, {0x8001, 0x7, 0x0, 0x0, 0x1, 0x1}, {0x3, 0x7}, {0x5, 0x3, 0x1, 0x0, 0x1, 0x1}, {0x0, 0x1, 0x0, 0x1, 0x0, 0x1}], 0x7})
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043e1f0a00c9000001aaaaaaaaaa50"], 0x22)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_usb_connect(0x4, 0x2d, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b1000905815a68ce82476f1b80eb532754c1b884763b9dd58cf449b23ba6f46108e9f979f7a8cdaf676d0115481ce3ea63382f95e34ba0f8bc8cec49fcb131fe306c8c1df63de302236257ab566069a1"], 0x0)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x4, 0x60001)
ioctl$EVIOCSKEYCODE_V2(r4, 0x40284504, &(0x7f0000000180)={0x0, 0x8, 0x0, 0x5, "d88fd87f1ad6eeb75a957fe0213b2e100af028f0030b2eff0b61e6e66b8f37ff"})
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
connect(0xffffffffffffffff, &(0x7f0000000080)=@un=@abs, 0x80)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCSFLAGS1(r5, 0x40047459, &(0x7f00000000c0)=0x8000041)
io_uring_setup(0x1212, 0x0)

541.026343ms ago: executing program 1 (id=1017):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1", 0x1c}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0, 0x0, 0x0, 0x5c8}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004"], 0x84}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

220.88579ms ago: executing program 3 (id=1018):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000000)={0x44, r1, 0x1, 0x7000000, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}}, 0x0)

169.927949ms ago: executing program 3 (id=1019):
sched_setaffinity(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000003c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x5, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0xe4}]})

166.065844ms ago: executing program 3 (id=1020):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x21)
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='mountinfo\x00')
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit}]})
sendfile(r0, r0, 0x0, 0x80000000)

91.340707ms ago: executing program 3 (id=1021):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000002900)=r1, 0x4)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x14, 0x0, 0x917}, 0x14}, 0x1, 0x620b}, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5, 0x9, 0x1}, @IFLA_GENEVE_REMOTE6={0x14, 0x7, @private1}]}}}]}, 0x54}}, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5, 0x9, 0x1}, @IFLA_GENEVE_REMOTE6={0x14, 0x7, @private1}]}}}]}, 0x54}}, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f00000000c0), &(0x7f0000000140), 0x2, 0x6)

0s ago: executing program 3 (id=1022):
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000080)={<r2=>0x0, 0x83, "813dc0e1dd455b893fa4596466b9860ff81ec949d685e7da940bb0e59532dd0d44fb8758f518817af0e3ab8cce579dd8ca3c945b5f5aca9e4b7f9c717ffd38c10a8d879e56b357dfd5e16e9cf9e05c59f69a10f4ed95f044f42ce104fba98bc0f580e04991fee40286823205c196a4c36ab69a934271876141479b9689de98515a67d3"}, &(0x7f0000000140)=0x8b)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
lsetxattr$system_posix_acl(&(0x7f0000000080)='./bus\x00', &(0x7f0000000200)='system.posix_acl_access\x00', 0x0, 0x0, 0x3)
ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x40086603, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0)
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x36, &(0x7f0000000080)={0x42}, 0x10)
sendfile(r5, r4, &(0x7f00000000c0)=0x58, 0x9)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c00028005000100000000004700028005000100010000000600064000000000060005"], 0xe4}}, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='pagemap\x00')
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000d2a5501d362517ba80f18c8ce2fdf2b66df8e457252800"/34], 0x48)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000004c0)=ANY=[@ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0500008000000000000000002d465b223d18e7e3bb6b3059b8c180086e6c5ec48c23961eaeb959780843123ba555de656dfa3da5f37c85f840876f2577577500094ba1380dca4b8166d4eb2c740bd2438f5b11e6fb53db03fe2d9045ecc5f8960f1c5170df9352d7387868a65598a13111b1a8d52fc3bc31a667de54fd3c3d9b501e2b", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x10)
close(r8)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r7, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="98070000", @ANYRES16, @ANYBLOB="01002dbd7000fcdbdf258100000008000300", @ANYRES32, @ANYBLOB="0c009900080000004700000014003300f4000300ffffffffffff08021100000106006600f380000006006600010000000a00060008021100000100000600"], 0x98}, 0x1, 0x0, 0x0, 0x4000000}, 0x8041)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r7, 0x84, 0x10, &(0x7f0000000180)=@sack_info={r2, 0x2, 0x5}, &(0x7f00000001c0)=0xc)

kernel console output (not intermixed with test programs):

_buffer+0xd0/0x160
[  122.316277][ T7188]  proc_fail_nth_read+0x198/0x270
[  122.317602][ T7188]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  122.319060][ T7188]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  122.320511][ T7188]  vfs_read+0x1ce/0xbd0
[  122.321827][ T7188]  ? __fget_files+0x23a/0x3f0
[  122.323383][ T7188]  ? fdget_pos+0x24c/0x360
[  122.324904][ T7188]  ? __pfx_lock_release+0x10/0x10
[  122.326376][ T7188]  ? trace_lock_acquire+0x14a/0x1d0
[  122.327748][ T7188]  ? __pfx_vfs_read+0x10/0x10
[  122.328987][ T7188]  ? __pfx___mutex_lock+0x10/0x10
[  122.330314][ T7188]  ? __fget_files+0x244/0x3f0
[  122.331692][ T7188]  ksys_read+0x12f/0x260
[  122.333035][ T7188]  ? __pfx_ksys_read+0x10/0x10
[  122.334299][ T7188]  __do_fast_syscall_32+0x73/0x120
[  122.335811][ T7188]  do_fast_syscall_32+0x32/0x80
[  122.337450][ T7188]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  122.339319][ T7188] RIP: 0023:0xf7f1f579
[  122.340390][ T7188] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  122.345410][ T7188] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  122.347759][ T7188] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620
[  122.349830][ T7188] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[  122.351904][ T7188] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  122.353963][ T7188] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  122.356043][ T7188] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  122.358120][ T7188]  </TASK>
[  122.359368][    C2] hpet: Lost 3 RTC interrupts
[  122.603331][ T7198] FAULT_INJECTION: forcing a failure.
[  122.603331][ T7198] name failslab, interval 1, probability 0, space 0, times 0
[  122.606608][ T7198] CPU: 2 UID: 0 PID: 7198 Comm: syz.0.457 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  122.609351][ T7198] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.612152][ T7198] Call Trace:
[  122.613044][ T7198]  <TASK>
[  122.613823][ T7198]  dump_stack_lvl+0x16c/0x1f0
[  122.615088][ T7198]  should_fail_ex+0x497/0x5b0
[  122.616340][ T7198]  should_failslab+0xc2/0x120
[  122.617636][ T7198]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  122.619077][ T7198]  ? dst_alloc+0x99/0x1a0
[  122.620222][ T7198]  dst_alloc+0x99/0x1a0
[  122.621321][ T7198]  ? fib_validate_source+0x13d/0x730
[  122.622740][ T7198]  rt_dst_alloc+0x35/0x3a0
[  122.623925][ T7198]  ip_route_input_slow+0x19bd/0x39a0
[  122.625315][ T7198]  ? __pfx_ip_route_input_slow+0x10/0x10
[  122.626796][ T7198]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  122.628285][ T7198]  ? lock_acquire+0x2f/0xb0
[  122.629490][ T7198]  ? ip_route_input_noref+0xb9/0x2e0
[  122.630892][ T7198]  ip_route_input_noref+0x124/0x2e0
[  122.632259][ T7198]  ? __pfx_ip_route_input_noref+0x10/0x10
[  122.633758][ T7198]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  122.635241][ T7198]  ? sock_wfree+0x11c/0x880
[  122.636450][ T7198]  ip_rcv_finish_core.constprop.0+0x469/0x2280
[  122.638195][ T7198]  ip_rcv+0x1c0/0x5d0
[  122.639321][ T7198]  ? __pfx_ip_rcv+0x10/0x10
[  122.640469][ T7198]  __netif_receive_skb_one_core+0x199/0x1e0
[  122.641978][ T7198]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  122.643674][ T7198]  ? trace_lock_acquire+0x14a/0x1d0
[  122.645046][ T7198]  ? netif_receive_skb+0x109/0x7b0
[  122.646390][ T7198]  __netif_receive_skb+0x1d/0x160
[  122.647766][ T7198]  netif_receive_skb+0x13f/0x7b0
[  122.649068][ T7198]  ? __pfx_netif_receive_skb+0x10/0x10
[  122.650498][ T7198]  ? __pfx___lock_acquire+0x10/0x10
[  122.651878][ T7198]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  122.653505][ T7198]  tun_rx_batched+0x429/0x780
[  122.654759][ T7198]  ? __pfx_tun_rx_batched+0x10/0x10
[  122.656129][ T7198]  ? lock_acquire+0x2f/0xb0
[  122.657332][ T7198]  ? tun_get_user+0x13ae/0x3d70
[  122.658618][ T7198]  tun_get_user+0x2a3c/0x3d70
[  122.659872][ T7198]  ? find_held_lock+0x2d/0x110
[  122.661130][ T7198]  ? __pfx_tun_get_user+0x10/0x10
[  122.662474][ T7198]  ? find_held_lock+0x2d/0x110
[  122.663752][ T7198]  ? __pfx_lock_release+0x10/0x10
[  122.665082][ T7198]  tun_chr_write_iter+0xdc/0x210
[  122.666382][ T7198]  vfs_write+0x6b5/0x1140
[  122.667529][ T7198]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  122.668967][ T7198]  ? trace_lock_acquire+0x14a/0x1d0
[  122.670325][ T7198]  ? __pfx_vfs_write+0x10/0x10
[  122.671590][ T7198]  ? __fget_files+0x40/0x3f0
[  122.672811][ T7198]  ksys_write+0x12f/0x260
[  122.673951][ T7198]  ? __pfx_ksys_write+0x10/0x10
[  122.675245][ T7198]  __do_fast_syscall_32+0x73/0x120
[  122.676601][ T7198]  do_fast_syscall_32+0x32/0x80
[  122.677890][ T7198]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  122.679553][ T7198] RIP: 0023:0xf7f76579
[  122.680746][ T7198] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  122.685820][ T7198] RSP: 002b:00000000f56f6530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  122.688023][ T7198] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000200000c0
[  122.690096][ T7198] RDX: 0000000000000022 RSI: 00000000f73fbff4 RDI: 0000000000000000
[  122.692193][ T7198] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  122.694264][ T7198] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  122.696356][ T7198] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  122.698443][ T7198]  </TASK>
[  122.699804][    C2] hpet: Lost 5 RTC interrupts
[  122.989033][ T7209] netlink: 'syz.0.460': attribute type 1 has an invalid length.
[  122.991169][ T7209] netlink: 'syz.0.460': attribute type 4 has an invalid length.
[  122.993612][ T7209] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.460'.
[  123.064702][ T7212] overlayfs: failed to resolve './file0': -2
[  123.187461][ T7213] netlink: 44 bytes leftover after parsing attributes in process `syz.3.462'.
[  123.189768][ T7213] netlink: 43 bytes leftover after parsing attributes in process `syz.3.462'.
[  123.192106][ T7213] netlink: 'syz.3.462': attribute type 6 has an invalid length.
[  123.194071][ T7213] netlink: 'syz.3.462': attribute type 5 has an invalid length.
[  123.196123][ T7213] netlink: 43 bytes leftover after parsing attributes in process `syz.3.462'.
[  123.834675][ T7226] binder: 7224:7226 ioctl c0306201 200003c0 returned -14
[  123.844593][ T7226] binder: 7224:7226 ioctl c0306201 20000280 returned -14
[  124.273571][ T7229] netlink: 78 bytes leftover after parsing attributes in process `syz.0.467'.
[  124.397620][   T39] audit: type=1107 audit(1727894486.892:200): pid=7228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='í]D¶+3à“ÙÕ+]Š°;]xpëTzDÉLÉ¿KÈ1ÕsÀÕÉDe_á°Ö
[  124.397620][   T39] œ>å?°*Ï‘âÖ¼Þ¨òÃüAº‰½Æ
þt™í³dõe,éáÑB\š’Øâ~)ƒ
Ÿ*V
[  124.397620][   T39] áG¤/˜¦Ý4“]¢ÑÈ+ÉŽJòééâÝvàŒù£éº_¡ªÂÔWïØ$ñ�§c†Ë+êâ}n§9ˆE/ˆ¾±@G¿‹6ìG»éš’’Àƒ�&ÔŒ¹ë4šîÜáJƒ=Ø¢IHQä.[À¥¿Ã…¹6©IgדzÛwž{(ÌÁÊú§KZy ÿ©…}Æb›\#˜–ð¥Ñô×îáöö¿ò¾� ß¤Ã,‚<ÃÌ!jÈî0ÖƒþxSÕÇø©ˆ£ÿÚõÞJÂîU�µ°�¶ˆŒ97³zà+š1[ý"'äóóÖ¸"7ƒZ»GyÿÿRº%¹º5ŒqýC ëÚ%æq+sV‡¹¹r–˨^A†ê¸Ã("ÞlP%¡¢þ[Ãw§f�tP×B9HÚw?gc+­Œ_ΔÞY¡… %p�v¦ëÀñDŽj/+½Y  !~
[  124.397620][   T39] ZR2°¹ùDC.�¦�;¦¹!
[  124.397620][   T39] ½Îöz—ÉÎJÜ¥¨có¶çH�ý³V^îFR'
[  124.854812][ T7247] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.473'.
[  125.029720][ T7252] netlink: 'syz.2.474': attribute type 1 has an invalid length.
[  125.032384][ T7252] netlink: 'syz.2.474': attribute type 4 has an invalid length.
[  125.035049][ T7252] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.474'.
[  125.228283][ T7257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.476'.
[  125.231558][ T7257] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.233925][ T7257] batman_adv: batadv0: Removing interface: batadv_slave_0
[  125.237404][ T7257] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.241224][ T7257] batman_adv: batadv0: Removing interface: batadv_slave_1
[  125.288658][ T7259] FAULT_INJECTION: forcing a failure.
[  125.288658][ T7259] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.297446][ T7259] CPU: 2 UID: 0 PID: 7259 Comm: syz.0.477 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  125.300326][ T7259] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.303174][ T7259] Call Trace:
[  125.304062][ T7259]  <TASK>
[  125.304821][ T7259]  dump_stack_lvl+0x16c/0x1f0
[  125.305980][ T7259]  should_fail_ex+0x497/0x5b0
[  125.307504][ T7259]  _copy_from_iter+0x29b/0x13e0
[  125.308974][ T7259]  ? __pfx__copy_from_iter+0x10/0x10
[  125.310249][ T7259]  ? __virt_addr_valid+0x1a4/0x590
[  125.311865][ T7259]  ? __virt_addr_valid+0x5e/0x590
[  125.313296][ T7259]  ? __phys_addr_symbol+0x30/0x80
[  125.314547][ T7259]  ? __check_object_size+0x4a1/0x710
[  125.315970][ T7259]  netlink_sendmsg+0x813/0xd70
[  125.317207][ T7259]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.318608][ T7259]  ? lock_acquire+0x2f/0xb0
[  125.319853][ T7259]  ____sys_sendmsg+0x9ae/0xb40
[  125.321131][ T7259]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.322552][ T7259]  ? get_compat_msghdr+0x11b/0x170
[  125.323957][ T7259]  ? __pfx___lock_acquire+0x10/0x10
[  125.325247][ T7259]  ___sys_sendmsg+0x135/0x1e0
[  125.326449][ T7259]  ? __pfx____sys_sendmsg+0x10/0x10
[  125.327806][ T7259]  ? lock_acquire+0x2f/0xb0
[  125.329015][ T7259]  ? __fget_files+0x40/0x3f0
[  125.330196][ T7259]  ? fdget+0x176/0x210
[  125.331263][ T7259]  __sys_sendmsg+0x117/0x1f0
[  125.332457][ T7259]  ? __pfx___sys_sendmsg+0x10/0x10
[  125.333805][ T7259]  ? __fget_files+0x244/0x3f0
[  125.335033][ T7259]  __do_fast_syscall_32+0x73/0x120
[  125.336347][ T7259]  do_fast_syscall_32+0x32/0x80
[  125.337723][ T7259]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.339418][ T7259] RIP: 0023:0xf7f76579
[  125.340430][ T7259] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.345386][ T7259] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  125.347503][ T7259] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000240
[  125.349526][ T7259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  125.351551][ T7259] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.353627][ T7259] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.355592][ T7259] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.357590][ T7259]  </TASK>
[  125.358895][    C2] hpet: Lost 3 RTC interrupts
[  125.540236][ T7263] netlink: 'syz.0.478': attribute type 1 has an invalid length.
[  125.543925][ T7263] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.478'.
[  125.877885][ T7277] syz.3.483: attempt to access beyond end of device
[  125.877885][ T7277] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  125.880880][ T7277] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  126.011802][ T7280] kvm: kvm [7279]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x6000000f809
[  126.032547][ T7280] kvm: kvm [7279]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x6000000f809
[  126.056039][ T7283] netlink: 28 bytes leftover after parsing attributes in process `syz.3.484'.
[  126.913038][ T7302] overlayfs: failed to resolve './file0': -2
[  126.975946][ T7303] netlink: 'syz.1.488': attribute type 6 has an invalid length.
[  126.978889][ T7303] netlink: 'syz.1.488': attribute type 5 has an invalid length.
[  127.337351][ T1282] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  127.341608][ T7309] netlink: 'syz.1.490': attribute type 1 has an invalid length.
[  127.343680][ T7309] netlink: 'syz.1.490': attribute type 4 has an invalid length.
[  127.497317][ T1282] usb 7-1: Using ep0 maxpacket: 8
[  127.500411][ T1282] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  127.503139][ T1282] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  127.506557][ T1282] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  127.509903][ T1282] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  127.513126][ T1282] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  127.528685][ T1282] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  127.531079][ T1282] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.756100][ T1282] usb 7-1: usb_control_msg returned -32
[  127.757681][ T1282] usbtmc 7-1:16.0: can't read capabilities
[  128.090373][ T7317] syz.1.492: attempt to access beyond end of device
[  128.090373][ T7317] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  128.094728][ T7317] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  128.176221][ T7320] __nla_validate_parse: 5 callbacks suppressed
[  128.176232][ T7320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.493'.
[  128.189058][ T7320] netlink: 72 bytes leftover after parsing attributes in process `syz.1.493'.
[  128.345625][ T7324] netlink: 'syz.1.494': attribute type 1 has an invalid length.
[  128.348385][ T7324] netlink: 16150 bytes leftover after parsing attributes in process `syz.1.494'.
[  128.481862][ T7328] kvm: apic: phys broadcast and lowest prio
[  128.488516][ T7332] netlink: 'syz.0.496': attribute type 9 has an invalid length.
[  128.488524][ T7329] netlink: 'syz.0.496': attribute type 9 has an invalid length.
[  128.490527][ T7332] netlink: 399 bytes leftover after parsing attributes in process `syz.0.496'.
[  128.495403][ T7329] netlink: 399 bytes leftover after parsing attributes in process `syz.0.496'.
[  129.159729][ T5384] usb 7-1: USB disconnect, device number 5
[  129.315933][ T7351] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.500'.
[  129.459556][ T7365] FAULT_INJECTION: forcing a failure.
[  129.459556][ T7365] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  129.463080][ T7365] CPU: 1 UID: 0 PID: 7365 Comm: syz.0.504 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  129.465896][ T7365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.468943][ T7365] Call Trace:
[  129.469869][ T7365]  <TASK>
[  129.470698][ T7365]  dump_stack_lvl+0x16c/0x1f0
[  129.471956][ T7365]  should_fail_ex+0x497/0x5b0
[  129.473211][ T7365]  _copy_from_user+0x30/0xf0
[  129.474433][ T7365]  binder_thread_write+0xa61/0x4c60
[  129.475822][ T7365]  ? kasan_save_free_info+0x3b/0x60
[  129.477262][ T7365]  ? __kasan_slab_free+0x51/0x70
[  129.478579][ T7365]  ? __pfx_binder_thread_write+0x10/0x10
[  129.480107][ T7365]  ? find_held_lock+0x2d/0x110
[  129.481417][ T7365]  ? __might_fault+0x13b/0x190
[  129.482829][ T7365]  ? binder_debug+0xdf/0x1b0
[  129.484303][ T7365]  ? __pfx_binder_debug+0x10/0x10
[  129.485670][ T7365]  binder_ioctl+0x268b/0x7050
[  129.486948][ T7365]  ? tomoyo_path_number_perm+0x467/0x5b0
[  129.488418][ T7365]  ? tomoyo_path_number_perm+0x190/0x5b0
[  129.489891][ T7365]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  129.491471][ T7365]  ? __pfx_binder_ioctl+0x10/0x10
[  129.492870][ T7365]  ? do_vfs_ioctl+0x513/0x1950
[  129.494145][ T7365]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  129.495506][ T7365]  ? __fget_files+0x244/0x3f0
[  129.496751][ T7365]  ? __pfx_binder_ioctl+0x10/0x10
[  129.498078][ T7365]  compat_ptr_ioctl+0x6b/0xa0
[  129.499345][ T7365]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  129.500915][ T7365]  __do_compat_sys_ioctl+0x259/0x2b0
[  129.502358][ T7365]  __do_fast_syscall_32+0x73/0x120
[  129.503757][ T7365]  do_fast_syscall_32+0x32/0x80
[  129.505054][ T7365]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  129.506724][ T7365] RIP: 0023:0xf7f76579
[  129.507837][ T7365] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  129.513022][ T7365] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  129.515221][ T7365] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[  129.517426][ T7365] RDX: 0000000020000380 RSI: 0000000000000000 RDI: 0000000000000000
[  129.519494][ T7365] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.521555][ T7365] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  129.523695][ T7365] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.525768][ T7365]  </TASK>
[  129.528940][ T7365] binder: 7364:7365 ioctl c0306201 20000380 returned -14
[  130.209495][ T7380] validate_nla: 2 callbacks suppressed
[  130.209507][ T7380] netlink: 'syz.1.508': attribute type 1 has an invalid length.
[  130.213131][ T7380] netlink: 16150 bytes leftover after parsing attributes in process `syz.1.508'.
[  130.371921][ T7383] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  131.017648][ T7397] fuse: Bad value for 'group_id'
[  131.019156][ T7397] fuse: Bad value for 'group_id'
[  131.022243][ T7397] netlink: 12 bytes leftover after parsing attributes in process `syz.3.513'.
[  131.181596][ T7406] netlink: 'syz.1.511': attribute type 7 has an invalid length.
[  131.184257][ T7406] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.511'.
[  131.188752][ T5384] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  131.300115][ T7408] netlink: 'syz.3.515': attribute type 1 has an invalid length.
[  131.302203][ T7408] netlink: 'syz.3.515': attribute type 4 has an invalid length.
[  131.304233][ T7408] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.515'.
[  131.347351][ T5384] usb 5-1: Using ep0 maxpacket: 8
[  131.351002][ T5384] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  131.353376][ T5384] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  131.356089][ T5384] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  131.358700][ T5384] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  131.361274][ T5384] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  131.364658][ T5384] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  131.367154][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.578921][ T5384] usb 5-1: usb_control_msg returned -32
[  131.581167][ T5384] usbtmc 5-1:16.0: can't read capabilities
[  132.229462][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  132.231344][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  132.350275][ T7426] netlink: 'syz.3.519': attribute type 1 has an invalid length.
[  132.352453][ T7426] netlink: 'syz.3.519': attribute type 4 has an invalid length.
[  132.371503][ T7428] netlink: 'syz.2.520': attribute type 7 has an invalid length.
[  132.373617][ T7428] netlink: 'syz.2.520': attribute type 7 has an invalid length.
[  133.105256][ T7433] could not allocate digest TFM handle tgr192-generic
[  133.150930][ T7443] Context (ID=0x0) not attached to queue pair (handle=0x2:0x0)
[  133.263056][ T7446] netlink: 'syz.3.525': attribute type 1 has an invalid length.
[  133.265179][ T7446] netlink: 'syz.3.525': attribute type 4 has an invalid length.
[  133.267239][ T7446] __nla_validate_parse: 6 callbacks suppressed
[  133.269648][ T7446] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.525'.
[  133.780346][   T63] usb 5-1: USB disconnect, device number 8
[  134.068928][ T7468] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  134.083458][ T7468] netlink: 224 bytes leftover after parsing attributes in process `syz.3.533'.
[  134.187491][   T63] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  134.337571][   T63] usb 5-1: Using ep0 maxpacket: 16
[  134.341694][   T63] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  134.344328][   T63] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  134.346725][   T63] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.352436][   T63] usb 5-1: config 0 descriptor??
[  134.355992][   T63] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input8
[  134.581405][ T7466] input: syz0 as /devices/virtual/input/input9
[  134.644753][ T4823] bcm5974 5-1:0.0: could not read from device
[  134.651080][   T63] usb 5-1: USB disconnect, device number 9
[  134.651643][ T4823] bcm5974 5-1:0.0: could not read from device
[  136.006313][ T7495] validate_nla: 1 callbacks suppressed
[  136.006338][ T7495] netlink: 'syz.2.541': attribute type 1 has an invalid length.
[  136.009979][ T7495] netlink: 'syz.2.541': attribute type 4 has an invalid length.
[  136.011994][ T7495] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.541'.
[  136.710090][ T7498] bridge1: entered promiscuous mode
[  136.712251][ T7498] bridge1: entered allmulticast mode
[  138.218775][ T7533] netlink: 'syz.1.551': attribute type 1 has an invalid length.
[  138.221486][ T7533] netlink: 'syz.1.551': attribute type 4 has an invalid length.
[  138.224078][ T7533] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.551'.
[  138.432861][ T7541] syz.3.554: attempt to access beyond end of device
[  138.432861][ T7541] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  138.436951][ T7541] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  138.709783][ T7545] netlink: 'syz.3.555': attribute type 1 has an invalid length.
[  138.712287][ T7545] netlink: 'syz.3.555': attribute type 4 has an invalid length.
[  138.714311][ T7545] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.555'.
[  138.837392][ T7549] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  138.902063][ T7550] netlink: 44 bytes leftover after parsing attributes in process `syz.2.557'.
[  138.904399][ T7550] netlink: 43 bytes leftover after parsing attributes in process `syz.2.557'.
[  138.906580][ T7550] netlink: 'syz.2.557': attribute type 6 has an invalid length.
[  138.938001][ T7550] netlink: 'syz.2.557': attribute type 5 has an invalid length.
[  138.940016][ T7550] netlink: 43 bytes leftover after parsing attributes in process `syz.2.557'.
[  139.220327][ T7559] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.487554][ T1282] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  139.657352][ T1282] usb 7-1: Using ep0 maxpacket: 8
[  139.660590][ T1282] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  139.662979][ T1282] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[  139.665085][ T1282] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[  139.667611][ T1282] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  139.670541][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  139.673190][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  139.676572][ T1282] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  139.678869][ T1282] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[  139.681502][ T1282] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[  139.687469][ T7568] netlink: 'syz.3.563': attribute type 1 has an invalid length.
[  139.689867][ T1282] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  139.693220][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  139.696164][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  139.698814][ T7568] netlink: 'syz.3.563': attribute type 4 has an invalid length.
[  139.700785][ T7568] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.563'.
[  139.704537][ T1282] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  139.707133][ T1282] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[  139.712564][ T1282] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[  139.715072][ T1282] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  139.728355][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  139.731917][ T1282] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  139.751475][ T1282] usb 7-1: string descriptor 0 read error: -22
[  139.753175][ T1282] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  139.755484][ T1282] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.762133][ T1282] adutux 7-1:246.0: interrupt endpoints not found
[  139.983041][ T5356] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  140.068049][ T1282] usb 7-1: USB disconnect, device number 6
[  140.731331][ T7583] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.566'.
[  140.943813][ T7584] random: crng reseeded on system resumption
[  141.620126][ T7593] validate_nla: 2 callbacks suppressed
[  141.620142][ T7593] netlink: 'syz.3.569': attribute type 1 has an invalid length.
[  141.622293][ T7593] netlink: 'syz.3.569': attribute type 4 has an invalid length.
[  141.626917][ T7593] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.569'.
[  141.738407][   T57] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  141.887420][   T57] usb 5-1: Using ep0 maxpacket: 8
[  141.891492][   T57] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  141.894260][   T57] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  141.898788][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  141.902183][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  141.905463][   T57] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  141.909956][   T57] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  141.912917][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.206904][   T57] usb 5-1: usb_control_msg returned -32
[  142.210176][   T57] usbtmc 5-1:16.0: can't read capabilities
[  142.435472][ T5429] IPVS: starting estimator thread 0...
[  142.537536][ T7608] IPVS: using max 23 ests per chain, 55200 per kthread
[  142.704684][ T7611] random: crng reseeded on system resumption
[  142.774796][ T7615] fuse: Bad value for 'fd'
[  142.984836][ T7622] netlink: 'syz.1.577': attribute type 1 has an invalid length.
[  142.988865][ T7622] netlink: 'syz.1.577': attribute type 4 has an invalid length.
[  142.991088][ T7622] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.577'.
[  143.901160][ T7636] tmpfs: Unknown parameter 'Î'
[  144.156146][ T7642] netlink: 'syz.3.582': attribute type 1 has an invalid length.
[  144.159593][ T7642] netlink: 'syz.3.582': attribute type 4 has an invalid length.
[  144.163366][ T7642] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.582'.
[  144.385543][ T5429] usb 5-1: USB disconnect, device number 10
[  145.507679][ T5384] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  145.638677][ T7670] netlink: 'syz.1.589': attribute type 1 has an invalid length.
[  145.641472][ T7670] netlink: 'syz.1.589': attribute type 4 has an invalid length.
[  145.661398][ T7670] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.589'.
[  145.667345][ T5384] usb 7-1: Using ep0 maxpacket: 8
[  145.676039][ T5384] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  145.678713][ T5384] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  145.682766][ T5384] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  145.686916][ T5384] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  145.695913][ T5384] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  145.700523][ T5384] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  145.704507][ T5384] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.941289][ T5384] usb 7-1: usb_control_msg returned -32
[  145.944056][ T5384] usbtmc 7-1:16.0: can't read capabilities
[  146.018287][ T4776] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  146.021910][ T4776] CPU: 1 UID: 0 PID: 4776 Comm: kworker/u33:1 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  146.025610][ T4776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.028755][ T4776] Workqueue: hci2 hci_rx_work
[  146.030338][ T4776] Call Trace:
[  146.031458][ T4776]  <TASK>
[  146.032490][ T4776]  dump_stack_lvl+0x16c/0x1f0
[  146.034075][ T4776]  sysfs_warn_dup+0x7f/0xa0
[  146.035621][ T4776]  sysfs_create_dir_ns+0x24d/0x2b0
[  146.037400][ T4776]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  146.039264][ T4776]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  146.041157][ T4776]  ? kobject_add_internal+0x12d/0x990
[  146.043132][ T4776]  ? do_raw_spin_unlock+0x172/0x230
[  146.044966][ T4776]  kobject_add_internal+0x2c8/0x990
[  146.046848][ T4776]  kobject_add+0x16f/0x240
[  146.048410][ T4776]  ? __pfx_kobject_add+0x10/0x10
[  146.050077][ T4776]  ? class_to_subsys+0x3e/0x160
[  146.051740][ T4776]  ? do_raw_spin_unlock+0x172/0x230
[  146.053494][ T4776]  ? kobject_put+0xab/0x5a0
[  146.055069][ T4776]  device_add+0x289/0x1a70
[  146.056569][ T4776]  ? __pfx_dev_set_name+0x10/0x10
[  146.058273][ T4776]  ? __pfx_device_add+0x10/0x10
[  146.059914][ T4776]  ? mgmt_send_event_skb+0x2f2/0x460
[  146.061700][ T4776]  hci_conn_add_sysfs+0x17e/0x230
[  146.063454][ T4776]  le_conn_complete_evt+0xfc7/0x1cf0
[  146.065261][ T4776]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  146.067221][ T4776]  ? trace_contention_end+0xea/0x140
[  146.069062][ T4776]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  146.071180][ T4776]  ? skb_pull_data+0x166/0x210
[  146.072885][ T4776]  hci_le_meta_evt+0x2e2/0x5d0
[  146.074514][ T4776]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  146.076748][ T4776]  hci_event_packet+0x666/0x1190
[  146.078468][ T4776]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  146.080271][ T4776]  ? __pfx_hci_event_packet+0x10/0x10
[  146.082059][ T4776]  ? mark_held_locks+0x9f/0xe0
[  146.083809][ T4776]  ? kcov_remote_start+0x3cf/0x6e0
[  146.085423][ T4776]  ? lockdep_hardirqs_on+0x7c/0x110
[  146.087265][ T4776]  hci_rx_work+0x2c6/0x1610
[  146.088853][ T4776]  ? lock_acquire+0x2f/0xb0
[  146.090509][ T4776]  ? process_one_work+0x8bb/0x1b30
[  146.092293][ T4776]  process_one_work+0x958/0x1b30
[  146.093994][ T4776]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  146.095880][ T4776]  ? __pfx_process_one_work+0x10/0x10
[  146.097705][ T4776]  ? assign_work+0x1a0/0x250
[  146.099267][ T4776]  worker_thread+0x6c8/0xf00
[  146.100861][ T4776]  ? __pfx_worker_thread+0x10/0x10
[  146.102653][ T4776]  kthread+0x2c1/0x3a0
[  146.104027][ T4776]  ? _raw_spin_unlock_irq+0x23/0x50
[  146.105776][ T4776]  ? __pfx_kthread+0x10/0x10
[  146.107325][ T4776]  ret_from_fork+0x45/0x80
[  146.108828][ T4776]  ? __pfx_kthread+0x10/0x10
[  146.110387][ T4776]  ret_from_fork_asm+0x1a/0x30
[  146.112020][ T4776]  </TASK>
[  146.114090][ T4776] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  146.120306][ T4776] Bluetooth: hci2: failed to register connection device
[  146.385124][ T7678] FAULT_INJECTION: forcing a failure.
[  146.385124][ T7678] name failslab, interval 1, probability 0, space 0, times 0
[  146.389860][ T7678] CPU: 3 UID: 0 PID: 7678 Comm: syz.1.591 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  146.393679][ T7678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.397456][ T7678] Call Trace:
[  146.398721][ T7678]  <TASK>
[  146.399789][ T7678]  dump_stack_lvl+0x16c/0x1f0
[  146.401505][ T7678]  should_fail_ex+0x497/0x5b0
[  146.403224][ T7678]  ? fs_reclaim_acquire+0xae/0x160
[  146.405089][ T7678]  should_failslab+0xc2/0x120
[  146.406845][ T7678]  __kmalloc_node_noprof+0xd1/0x440
[  146.408768][ T7678]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  146.410780][ T7678]  ? lockdep_init_map_type+0x16d/0x7d0
[  146.412789][ T7678]  __kvmalloc_node_noprof+0xad/0x1a0
[  146.414771][ T7678]  bucket_table_alloc.isra.0+0x86/0x460
[  146.416751][ T7678]  ? __raw_spin_lock_init+0x3a/0x110
[  146.418678][ T7678]  rhashtable_init_noprof+0x43b/0x7d0
[  146.420604][ T7678]  nft_rhash_init+0x149/0x410
[  146.422327][ T7678]  ? __pfx_nft_rhash_init+0x10/0x10
[  146.424179][ T7678]  ? __pfx_nft_rhash_key+0x10/0x10
[  146.426013][ T7678]  ? __pfx_nft_rhash_obj+0x10/0x10
[  146.427828][ T7678]  ? __pfx_nft_rhash_cmp+0x10/0x10
[  146.429701][ T7678]  ? kfree+0x14f/0x4b0
[  146.431174][ T7678]  ? nf_tables_newset+0x28b4/0x4120
[  146.433056][ T7678]  nf_tables_newset+0x2e4a/0x4120
[  146.434882][ T7678]  ? __pfx_nf_tables_newset+0x10/0x10
[  146.436785][ T7678]  ? __pfx___lock_acquire+0x10/0x10
[  146.438649][ T7678]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.440770][ T7678]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.442898][ T7678]  ? __nla_validate_parse+0x605/0x2b10
[  146.444866][ T7678]  ? net_generic+0xea/0x2a0
[  146.446598][ T7678]  ? __pfx_lock_release+0x10/0x10
[  146.448417][ T7678]  ? trace_lock_acquire+0x14a/0x1d0
[  146.450570][ T7678]  ? __nla_parse+0x40/0x60
[  146.452187][ T7678]  nfnetlink_rcv_batch+0x1a28/0x24e0
[  146.454117][ T7678]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  146.456146][ T7678]  ? __pfx_lock_release+0x10/0x10
[  146.457970][ T7678]  ? __local_bh_enable_ip+0xa4/0x120
[  146.459878][ T7678]  ? lockdep_hardirqs_on+0x7c/0x110
[  146.461841][ T7678]  ? __pfx___dev_queue_xmit+0x10/0x10
[  146.463836][ T7678]  ? __nla_parse+0x40/0x60
[  146.465503][ T7678]  nfnetlink_rcv+0x3c3/0x430
[  146.467232][ T7678]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  146.469130][ T7678]  netlink_unicast+0x53c/0x7f0
[  146.470899][ T7678]  ? __pfx_netlink_unicast+0x10/0x10
[  146.472846][ T7678]  ? __phys_addr_symbol+0x30/0x80
[  146.474688][ T7678]  ? __check_object_size+0x4a1/0x710
[  146.476655][ T7678]  netlink_sendmsg+0x8b8/0xd70
[  146.478409][ T7678]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.480313][ T7678]  ? lock_acquire+0x2f/0xb0
[  146.481983][ T7678]  ____sys_sendmsg+0x9ae/0xb40
[  146.483737][ T7678]  ? __pfx_____sys_sendmsg+0x10/0x10
[  146.485641][ T7678]  ? get_compat_msghdr+0x11b/0x170
[  146.487503][ T7678]  ? __pfx___lock_acquire+0x10/0x10
[  146.489388][ T7678]  ___sys_sendmsg+0x135/0x1e0
[  146.491077][ T7678]  ? __pfx____sys_sendmsg+0x10/0x10
[  146.493046][ T7678]  ? lock_acquire+0x2f/0xb0
[  146.494682][ T7678]  ? __fget_files+0x40/0x3f0
[  146.496451][ T7678]  ? fdget+0x176/0x210
[  146.497981][ T7678]  __sys_sendmsg+0x117/0x1f0
[  146.499642][ T7678]  ? __pfx___sys_sendmsg+0x10/0x10
[  146.501435][ T7678]  ? __fget_files+0x244/0x3f0
[  146.503164][ T7678]  __do_fast_syscall_32+0x73/0x120
[  146.505012][ T7678]  do_fast_syscall_32+0x32/0x80
[  146.506768][ T7678]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.509085][ T7678] RIP: 0023:0xf7f1f579
[  146.510563][ T7678] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.517357][ T7678] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  146.520329][ T7678] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  146.523214][ T7678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  146.526097][ T7678] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.528980][ T7678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.531815][ T7678] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.534640][ T7678]  </TASK>
[  148.113011][ T7706] QAT: failed to copy from user cfg_data.
[  148.115134][ T7706] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.600'.
[  148.137790][ T5356] Bluetooth: hci2: command tx timeout
[  148.185315][ T7709] QAT: Invalid ioctl 35123
[  148.240290][ T5384] usb 7-1: USB disconnect, device number 7
[  148.241457][ T7708] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  148.246234][ T7708] tipc: Enabled bearer <udp:syz1>, priority 10
[  148.319440][ T7711] Cannot find set identified by id 0 to match
[  148.333561][ T7711] input: syz1 as /devices/virtual/input/input10
[  148.594319][ T7716] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.602'.
[  148.723970][ T1290] hid-generic 0000:0009:FFFFFFFF.0003: unknown main item tag 0x3
[  148.730890][ T1290] hid-generic 0000:0009:FFFFFFFF.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  148.878873][ T7727] random: crng reseeded on system resumption
[  149.629911][ T7742] netlink: 'syz.2.609': attribute type 1 has an invalid length.
[  149.632886][ T7742] netlink: 'syz.2.609': attribute type 4 has an invalid length.
[  149.635732][ T7742] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.609'.
[  149.738537][ T7744] FAULT_INJECTION: forcing a failure.
[  149.738537][ T7744] name failslab, interval 1, probability 0, space 0, times 0
[  149.741734][ T7744] CPU: 2 UID: 0 PID: 7744 Comm: syz.1.610 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  149.744499][ T7744] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.747282][ T7744] Call Trace:
[  149.748158][ T7744]  <TASK>
[  149.748935][ T7744]  dump_stack_lvl+0x16c/0x1f0
[  149.750172][ T7744]  should_fail_ex+0x497/0x5b0
[  149.751420][ T7744]  ? fs_reclaim_acquire+0xae/0x160
[  149.752755][ T7744]  should_failslab+0xc2/0x120
[  149.753993][ T7744]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  149.755425][ T7744]  ? copy_mm+0x2bd/0x2550
[  149.756563][ T7744]  copy_mm+0x2bd/0x2550
[  149.757668][ T7744]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  149.759204][ T7744]  ? lock_acquire.part.0+0x11b/0x380
[  149.760588][ T7744]  ? __pfx_copy_mm+0x10/0x10
[  149.761812][ T7744]  ? copy_process+0x38ef/0x6f00
[  149.763111][ T7744]  ? __pfx_lock_release+0x10/0x10
[  149.764440][ T7744]  ? lockdep_init_map_type+0x16d/0x7d0
[  149.765865][ T7744]  ? __raw_spin_lock_init+0x3a/0x110
[  149.767243][ T7744]  copy_process+0x3ab9/0x6f00
[  149.768486][ T7744]  ? __pfx_copy_process+0x10/0x10
[  149.769805][ T7744]  ? _copy_from_user+0x5d/0xf0
[  149.771076][ T7744]  kernel_clone+0xfd/0x960
[  149.772249][ T7744]  ? ksys_write+0x12f/0x260
[  149.773446][ T7744]  ? __pfx_kernel_clone+0x10/0x10
[  149.774775][ T7744]  ? vfs_write+0x14d/0x1140
[  149.775977][ T7744]  __do_sys_clone3+0x1f5/0x270
[  149.777234][ T7744]  ? __pfx___do_sys_clone3+0x10/0x10
[  149.778637][ T7744]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  149.780351][ T7744]  __do_fast_syscall_32+0x73/0x120
[  149.781671][ T7744]  do_fast_syscall_32+0x32/0x80
[  149.782970][ T7744]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.784611][ T7744] RIP: 0023:0xf7f1f579
[  149.785687][ T7744] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.790981][ T7744] RSP: 002b:00000000f56a643c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  149.793331][ T7744] RAX: ffffffffffffffda RBX: 00000000f56a6470 RCX: 0000000000000058
[  149.795470][ T7744] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  149.797516][ T7744] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  149.799720][ T7744] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  149.801805][ T7744] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.803901][ T7744]  </TASK>
[  149.805091][    C2] hpet: Lost 4 RTC interrupts
[  149.955811][ T7753] netlink: 84 bytes leftover after parsing attributes in process `syz.0.613'.
[  150.161951][ T5356] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  150.349571][ T7772] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.617'.
[  150.597572][ T5352] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  150.747533][ T5352] usb 7-1: Using ep0 maxpacket: 16
[  150.751379][ T5352] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.753999][ T5352] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  150.756470][ T5352] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.761674][ T5352] usb 7-1: config 0 descriptor??
[  150.765375][ T5352] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input11
[  150.974801][ T5429] usb 7-1: USB disconnect, device number 8
[  150.975141][ T4823] bcm5974 7-1:0.0: could not read from device
[  151.601137][ T7786] netlink: 'syz.2.622': attribute type 11 has an invalid length.
[  151.603623][ T7786] netlink: 134672 bytes leftover after parsing attributes in process `syz.2.622'.
[  154.952189][ T5383] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  155.083633][ T7861] sch_fq: defrate 0 ignored.
[  155.420616][   T39] audit: type=1800 audit(1727894517.922:201): pid=7870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.648" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0
[  155.428743][   T39] audit: type=1800 audit(1727894517.922:202): pid=7870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.648" name="SYSV00000000" dev="hugetlbfs" ino=5 res=0 errno=0
[  156.146736][ T7877] random: crng reseeded on system resumption
[  157.038433][ T7886] FAULT_INJECTION: forcing a failure.
[  157.038433][ T7886] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  157.042292][ T7886] CPU: 2 UID: 0 PID: 7886 Comm: syz.2.653 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  157.045049][ T7886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  157.048035][ T7886] Call Trace:
[  157.048915][ T7886]  <TASK>
[  157.049694][ T7886]  dump_stack_lvl+0x16c/0x1f0
[  157.050947][ T7886]  should_fail_ex+0x497/0x5b0
[  157.052190][ T7886]  ? fs_reclaim_acquire+0xae/0x160
[  157.053535][ T7886]  should_fail_alloc_page+0xe7/0x130
[  157.054959][ T7886]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  157.056534][ T7886]  ? mark_lock+0xb5/0xc60
[  157.057782][ T7886]  __alloc_pages_noprof+0x190/0x25c0
[  157.059546][ T7886]  ? __pfx_mark_lock+0x10/0x10
[  157.060823][ T7886]  ? hlock_class+0x4e/0x130
[  157.061948][ T7886]  ? __lock_acquire+0xbdd/0x3ce0
[  157.063250][ T7886]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  157.064740][ T7886]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  157.066661][ T7886]  ? policy_nodemask+0xea/0x4e0
[  157.068358][ T7886]  alloc_pages_mpol_noprof+0x2c9/0x610
[  157.070323][ T7886]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  157.072550][ T7886]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  157.074646][ T7886]  folio_alloc_mpol_noprof+0x36/0xd0
[  157.076563][ T7886]  vma_alloc_folio_noprof+0xee/0x1b0
[  157.078509][ T7886]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  157.080672][ T7886]  ? find_held_lock+0x2d/0x110
[  157.082473][ T7886]  do_pte_missing+0x2010/0x3e50
[  157.084239][ T7886]  ? rcu_is_watching+0x12/0xc0
[  157.085889][ T7886]  __handle_mm_fault+0x100a/0x2a10
[  157.087669][ T7886]  ? __pfx___handle_mm_fault+0x10/0x10
[  157.089624][ T7886]  ? __pfx_lock_release+0x10/0x10
[  157.091586][ T7886]  ? follow_page_pte+0x50d/0x1eb0
[  157.093526][ T7886]  handle_mm_fault+0x3fa/0xaa0
[  157.095337][ T7886]  __get_user_pages+0x90f/0x3b90
[  157.097089][ T7886]  ? __pfx___get_user_pages+0x10/0x10
[  157.098886][ T7886]  ? down_read_killable+0xcc/0x380
[  157.100594][ T7886]  ? __pfx_down_read_killable+0x10/0x10
[  157.102589][ T7886]  __gup_longterm_locked+0x22e/0x1b30
[  157.104593][ T7886]  ? __pfx_lock_release+0x10/0x10
[  157.106423][ T7886]  ? __pfx___gup_longterm_locked+0x10/0x10
[  157.108635][ T7886]  ? sanity_check_pinned_pages+0x23/0x11c0
[  157.110883][ T7886]  gup_fast_fallback+0x180b/0x2690
[  157.112665][ T7886]  ? __pfx_gup_fast_fallback+0x10/0x10
[  157.114568][ T7886]  ? hlock_class+0x4e/0x130
[  157.116165][ T7886]  ? mark_lock+0xb5/0xc60
[  157.117715][ T7886]  pin_user_pages_fast+0xa8/0x100
[  157.119569][ T7886]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  157.121624][ T7886]  ? hlock_class+0x4e/0x130
[  157.123331][ T7886]  ? __lock_acquire+0xbdd/0x3ce0
[  157.125198][ T7886]  iov_iter_extract_pages+0x397/0x1f30
[  157.127255][ T7886]  ? __pfx___lock_acquire+0x10/0x10
[  157.128846][ T7886]  ? __pfx_iov_iter_extract_pages+0x10/0x10
[  157.130424][ T7886]  ? find_held_lock+0x2d/0x110
[  157.131678][ T7886]  bio_iov_iter_get_pages+0x37e/0x14c0
[  157.133086][ T7886]  ? trace_lock_acquire+0x14a/0x1d0
[  157.134444][ T7886]  ? find_held_lock+0x2d/0x110
[  157.135810][ T7886]  ? __pfx_lock_release+0x10/0x10
[  157.137654][ T7886]  ? __pfx_bio_iov_iter_get_pages+0x10/0x10
[  157.139837][ T7886]  __blkdev_direct_IO_simple+0x318/0x7c0
[  157.141916][ T7886]  ? __pfx___blkdev_direct_IO_simple+0x10/0x10
[  157.144149][ T7886]  ? hlock_class+0x4e/0x130
[  157.145845][ T7886]  ? __lock_acquire+0xbdd/0x3ce0
[  157.147890][ T7886]  ? find_held_lock+0x2d/0x110
[  157.149734][ T7886]  ? iov_iter_is_aligned+0xf2/0x5a0
[  157.151663][ T7886]  blkdev_direct_IO+0xa0b/0x1a80
[  157.153532][ T7886]  ? __pfx_blkdev_direct_IO+0x10/0x10
[  157.155522][ T7886]  ? aa_file_perm+0x4d5/0xfe0
[  157.157280][ T7886]  ? __pfx_mark_lock+0x10/0x10
[  157.159187][ T7886]  ? __pfx_aa_file_perm+0x10/0x10
[  157.161179][ T7886]  blkdev_read_iter+0x258/0x480
[  157.162950][ T7886]  do_iter_readv_writev+0x614/0x7f0
[  157.164800][ T7886]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  157.166869][ T7886]  ? bpf_lsm_file_permission+0x9/0x10
[  157.168840][ T7886]  ? security_file_permission+0x71/0x210
[  157.170912][ T7886]  vfs_readv+0x4cf/0x890
[  157.172477][ T7886]  ? __pfx_vfs_readv+0x10/0x10
[  157.174214][ T7886]  ? find_held_lock+0x2d/0x110
[  157.175978][ T7886]  ? __pfx_lock_release+0x10/0x10
[  157.177810][ T7886]  ? trace_lock_acquire+0x14a/0x1d0
[  157.179739][ T7886]  ? __fget_files+0x244/0x3f0
[  157.181276][ T7886]  ? do_preadv+0x1b4/0x270
[  157.182564][ T7886]  do_preadv+0x1b4/0x270
[  157.183765][ T7886]  ? __pfx_do_preadv+0x10/0x10
[  157.185135][ T7886]  ? ksys_write+0x1ad/0x260
[  157.186732][ T7886]  ? __pfx_ksys_write+0x10/0x10
[  157.188110][ T7886]  __ia32_compat_sys_preadv2+0x121/0x1b0
[  157.189907][ T7886]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  157.191660][ T7886]  __do_fast_syscall_32+0x73/0x120
[  157.193021][ T7886]  do_fast_syscall_32+0x32/0x80
[  157.194610][ T7886]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  157.196811][ T7886] RIP: 0023:0xf7fd6579
[  157.198262][ T7886] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  157.205027][ T7886] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 000000000000017a
[  157.207434][ T7886] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000080
[  157.209483][ T7886] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000000
[  157.211544][ T7886] RBP: 000000000000001f R08: 0000000000000000 R09: 0000000000000000
[  157.214296][ T7886] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  157.217127][ T7886] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  157.220032][ T7886]  </TASK>
[  157.222156][    C2] hpet: Lost 10 RTC interrupts
[  157.717303][ T4776] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  158.117033][ T7896] FAULT_INJECTION: forcing a failure.
[  158.117033][ T7896] name failslab, interval 1, probability 0, space 0, times 0
[  158.122692][ T7896] CPU: 0 UID: 0 PID: 7896 Comm: syz.2.655 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  158.125443][ T7896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.128237][ T7896] Call Trace:
[  158.129114][ T7896]  <TASK>
[  158.129899][ T7896]  dump_stack_lvl+0x16c/0x1f0
[  158.131200][ T7896]  should_fail_ex+0x497/0x5b0
[  158.132578][ T7896]  ? fs_reclaim_acquire+0xae/0x160
[  158.133942][ T7896]  should_failslab+0xc2/0x120
[  158.135207][ T7896]  __kmalloc_noprof+0xcb/0x410
[  158.136406][ T7896]  ? rcu_is_watching+0x12/0xc0
[  158.137671][ T7896]  tomoyo_encode2+0x100/0x3e0
[  158.139207][ T7896]  tomoyo_realpath_from_path+0x1a7/0x710
[  158.141091][ T7896]  ? tomoyo_path_number_perm+0x232/0x5b0
[  158.143007][ T7896]  tomoyo_path_number_perm+0x245/0x5b0
[  158.144843][ T7896]  ? tomoyo_path_number_perm+0x232/0x5b0
[  158.146746][ T7896]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  158.148751][ T7896]  ? trace_lock_acquire+0x14a/0x1d0
[  158.150157][ T7896]  ? lock_acquire+0x2f/0xb0
[  158.151404][ T7896]  ? __fget_files+0x40/0x3f0
[  158.152651][ T7896]  ? __fget_files+0x244/0x3f0
[  158.153896][ T7896]  security_file_ioctl_compat+0x9b/0x240
[  158.155439][ T7896]  __do_compat_sys_ioctl+0x52/0x2b0
[  158.156844][ T7896]  __do_fast_syscall_32+0x73/0x120
[  158.158230][ T7896]  do_fast_syscall_32+0x32/0x80
[  158.159551][ T7896]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.161226][ T7896] RIP: 0023:0xf7fd6579
[  158.162304][ T7896] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  158.167480][ T7896] RSP: 002b:00000000f573556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  158.169687][ T7896] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080049370
[  158.171777][ T7896] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000000000000
[  158.173746][ T7896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.175872][ T7896] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  158.177867][ T7896] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.180009][ T7896]  </TASK>
[  158.184221][ T7896] ERROR: Out of memory at tomoyo_realpath_from_path.
[  159.604136][ T7923] netlink: 'syz.3.661': attribute type 1 has an invalid length.
[  159.606466][ T7923] netlink: 'syz.3.661': attribute type 4 has an invalid length.
[  159.608802][ T7923] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.661'.
[  159.620068][ T7922] netlink: 'syz.2.662': attribute type 1 has an invalid length.
[  159.623023][ T7922] netlink: 224 bytes leftover after parsing attributes in process `syz.2.662'.
[  161.772121][ T7964] netlink: 'syz.2.674': attribute type 1 has an invalid length.
[  161.775005][ T7964] netlink: 'syz.2.674': attribute type 4 has an invalid length.
[  161.783679][ T7964] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.674'.
[  162.460780][ T7988] binder: 7987:7988 ioctl c0096616 0 returned -22
[  163.662508][ T8009] netlink: 'syz.3.686': attribute type 10 has an invalid length.
[  164.649611][ T5354] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  165.023969][ T5356] Bluetooth: hci1: command 0x0406 tx timeout
[  165.025686][ T5356] Bluetooth: hci2: command 0x0406 tx timeout
[  165.028716][ T5356] Bluetooth: hci0: command 0x0406 tx timeout
[  165.028735][ T5354] Bluetooth: hci3: command 0x0405 tx timeout
[  165.434456][ T8048] bridge0: entered promiscuous mode
[  165.437526][ T8048] bridge0: entered allmulticast mode
[  166.859429][ T4776] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  166.861715][ T4776] Bluetooth: hci0: Injecting HCI hardware error event
[  166.865328][ T4776] Bluetooth: hci0: hardware error 0x00
[  167.117353][ T5401] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  167.268721][ T5401] usb 6-1: Using ep0 maxpacket: 8
[  167.272851][ T5401] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  167.275008][ T5401] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  167.277724][ T5401] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  167.280169][ T5401] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  167.282588][ T5401] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  167.295187][ T5401] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  167.299364][ T5401] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.545594][ T5401] usb 6-1: usb_control_msg returned -32
[  167.547874][ T5401] usbtmc 6-1:16.0: can't read capabilities
[  168.352986][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  168.485590][ T8089] netlink: 12 bytes leftover after parsing attributes in process `syz.2.713'.
[  168.751839][ T8094] netlink: 'syz.2.715': attribute type 1 has an invalid length.
[  168.754737][ T8094] netlink: 'syz.2.715': attribute type 4 has an invalid length.
[  168.758094][ T8094] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.715'.
[  168.947907][ T4776] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  169.192641][ T5384] usb 6-1: USB disconnect, device number 7
[  169.259961][   T39] audit: type=1326 audit(1727894531.762:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.267537][   T39] audit: type=1326 audit(1727894531.762:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  169.272883][   T39] audit: type=1326 audit(1727894531.762:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  169.282343][   T39] audit: type=1326 audit(1727894531.762:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.289064][   T39] audit: type=1326 audit(1727894531.762:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  169.294705][   T39] audit: type=1326 audit(1727894531.762:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.299799][   T39] audit: type=1326 audit(1727894531.762:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.305509][   T39] audit: type=1326 audit(1727894531.762:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.312957][   T39] audit: type=1326 audit(1727894531.762:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.318802][   T39] audit: type=1326 audit(1727894531.762:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f1f598 code=0x7ffc0000
[  169.408485][ T8096] loop0: detected capacity change from 0 to 7
[  169.413208][ T8096] Dev loop0: unable to read RDB block 7
[  169.416204][ T8096]  loop0: AHDI p1 p2 p4
[  169.417918][ T8096] loop0: partition table partially beyond EOD, truncated
[  169.420499][ T8096] loop0: p1 start 134217728 is beyond EOD, truncated
[  169.789775][ T8108] tmpfs: Bad value for 'huge'
[  169.854275][ T8113] tmpfs: Bad value for 'huge'
[  170.100033][ T8121] netlink: 'syz.0.725': attribute type 1 has an invalid length.
[  170.103581][ T8121] netlink: 'syz.0.725': attribute type 4 has an invalid length.
[  170.109924][ T8121] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.725'.
[  170.163885][ T1290] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  170.247347][    T8] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  170.307366][ T1290] usb 7-1: Using ep0 maxpacket: 8
[  170.312328][ T1290] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  170.315283][ T1290] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  170.318995][ T1290] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  170.321730][ T1290] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  170.324167][ T1290] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  170.327790][ T1290] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  170.330324][ T1290] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.397341][    T8] usb 6-1: Using ep0 maxpacket: 8
[  170.403547][    T8] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  170.405710][    T8] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  170.415337][    T8] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  170.425980][    T8] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  170.432533][    T8] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  170.436802][    T8] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  170.450190][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.558825][ T1290] usb 7-1: usb_control_msg returned -32
[  170.560384][ T1290] usbtmc 7-1:16.0: can't read capabilities
[  170.797570][    T8] usb 6-1: usb_control_msg returned -32
[  170.799780][    T8] usbtmc 6-1:16.0: can't read capabilities
[  170.961004][ T4776] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  172.057757][ T1290] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  172.207356][ T1290] usb 5-1: Using ep0 maxpacket: 16
[  172.210333][ T1290] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  172.213997][ T1290] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  172.217001][ T1290] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.221321][ T1290] usb 5-1: config 0 descriptor??
[  172.225490][ T1290] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input12
[  172.425527][ T4823] bcm5974 5-1:0.0: could not read from device
[  172.429839][ T4823] bcm5974 5-1:0.0: could not read from device
[  172.432883][ T1290] usb 5-1: USB disconnect, device number 11
[  172.434636][ T4823] bcm5974 5-1:0.0: could not read from device
[  172.530666][   T57] usb 6-1: USB disconnect, device number 8
[  172.530925][ T5384] usb 7-1: USB disconnect, device number 9
[  172.596093][ T8139] tmpfs: Bad value for 'huge'
[  172.604587][ T8139] syz.1.730: attempt to access beyond end of device
[  172.604587][ T8139] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  172.608526][ T8139] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  172.961887][ T8155] netlink: 'syz.2.735': attribute type 1 has an invalid length.
[  172.964657][ T8155] netlink: 'syz.2.735': attribute type 4 has an invalid length.
[  172.967882][ T8155] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.735'.
[  173.227567][ T8160] netlink: 44 bytes leftover after parsing attributes in process `syz.0.737'.
[  173.230740][ T8160] netlink: 43 bytes leftover after parsing attributes in process `syz.0.737'.
[  173.233880][ T8160] netlink: 'syz.0.737': attribute type 6 has an invalid length.
[  173.237796][ T8162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.738'.
[  173.237920][ T8160] netlink: 'syz.0.737': attribute type 5 has an invalid length.
[  173.243989][ T8160] netlink: 43 bytes leftover after parsing attributes in process `syz.0.737'.
[  173.544435][ T8166] random: crng reseeded on system resumption
[  174.049567][ T8176] tmpfs: Bad value for 'huge'
[  174.054358][ T8176] syz.3.742: attempt to access beyond end of device
[  174.054358][ T8176] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  174.058906][ T8176] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  174.327570][   T56] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  174.502908][ T8188] fuse: Invalid rootmode
[  174.517361][   T56] usb 7-1: Using ep0 maxpacket: 8
[  174.549974][   T56] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  174.552117][   T56] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  174.554586][   T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  174.557031][   T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  174.560505][   T56] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  174.564311][   T56] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  174.566142][ T8184] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.566718][   T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.790039][   T56] usb 7-1: usb_control_msg returned -32
[  174.791501][   T56] usbtmc 7-1:16.0: can't read capabilities
[  174.968647][ T8194] netlink: 'syz.1.748': attribute type 1 has an invalid length.
[  174.971185][ T8194] netlink: 'syz.1.748': attribute type 4 has an invalid length.
[  174.973938][ T8194] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.748'.
[  175.769865][ T8197] FAULT_INJECTION: forcing a failure.
[  175.769865][ T8197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.773413][ T8197] CPU: 0 UID: 0 PID: 8197 Comm: syz.1.749 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  175.776042][ T8197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.778689][ T8197] Call Trace:
[  175.779527][ T8197]  <TASK>
[  175.780312][ T8197]  dump_stack_lvl+0x16c/0x1f0
[  175.781535][ T8197]  should_fail_ex+0x497/0x5b0
[  175.782777][ T8197]  _copy_from_user+0x30/0xf0
[  175.783948][ T8197]  get_compat_msghdr+0xa8/0x170
[  175.785131][ T8197]  ? __pfx_get_compat_msghdr+0x10/0x10
[  175.786602][ T8197]  ? __pfx___lock_acquire+0x10/0x10
[  175.787978][ T8197]  ___sys_sendmsg+0x1b0/0x1e0
[  175.789325][ T8197]  ? __pfx____sys_sendmsg+0x10/0x10
[  175.790720][ T8197]  ? lock_acquire+0x2f/0xb0
[  175.791919][ T8197]  ? __fget_files+0x40/0x3f0
[  175.793139][ T8197]  ? fdget+0x176/0x210
[  175.794301][ T8197]  __sys_sendmsg+0x117/0x1f0
[  175.795535][ T8197]  ? __pfx___sys_sendmsg+0x10/0x10
[  175.796854][ T8197]  ? __fget_files+0x244/0x3f0
[  175.798003][ T8197]  __do_fast_syscall_32+0x73/0x120
[  175.799499][ T8197]  do_fast_syscall_32+0x32/0x80
[  175.800685][ T8197]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.802253][ T8197] RIP: 0023:0xf7f1f579
[  175.803250][ T8197] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.807941][ T8197] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  175.809955][ T8197] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200007c0
[  175.811913][ T8197] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  175.813940][ T8197] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.815869][ T8197] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.817787][ T8197] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.819714][ T8197]  </TASK>
[  175.870123][ T8201] tmpfs: Bad value for 'huge'
[  175.873298][ T8201] syz.1.751: attempt to access beyond end of device
[  175.873298][ T8201] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  175.888489][ T8201] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  176.842226][   T56] usb 7-1: USB disconnect, device number 10
[  177.022330][ T8224] netlink: 'syz.2.758': attribute type 1 has an invalid length.
[  177.024902][ T8224] netlink: 'syz.2.758': attribute type 4 has an invalid length.
[  177.026877][ T8224] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.758'.
[  177.439224][ T8228] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  177.441091][ T8228] overlayfs: failed to set xattr on upper
[  177.442508][ T8228] overlayfs: ...falling back to redirect_dir=nofollow.
[  177.444276][ T8228] overlayfs: ...falling back to index=off.
[  177.445880][ T8228] overlayfs: ...falling back to uuid=null.
[  177.514593][ T8229] netlink: 44 bytes leftover after parsing attributes in process `syz.3.760'.
[  177.516916][ T8229] netlink: 43 bytes leftover after parsing attributes in process `syz.3.760'.
[  177.520039][ T8229] netlink: 'syz.3.760': attribute type 6 has an invalid length.
[  177.521984][ T8229] netlink: 'syz.3.760': attribute type 5 has an invalid length.
[  177.524054][ T8229] netlink: 43 bytes leftover after parsing attributes in process `syz.3.760'.
[  177.676179][ T8231] syz.1.761: attempt to access beyond end of device
[  177.676179][ T8231] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  177.679647][ T8231] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  177.879604][ T8240] afs: Unknown parameter '00000000000000000000016'
[  178.128133][ T8262] netlink: 'syz.1.769': attribute type 1 has an invalid length.
[  178.131105][ T8262] netlink: 'syz.1.769': attribute type 4 has an invalid length.
[  178.134018][ T8262] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.769'.
[  178.307410][    T8] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  178.457344][    T8] usb 7-1: Using ep0 maxpacket: 8
[  178.464566][    T8] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  178.466684][    T8] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  178.470313][    T8] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  178.477689][    T8] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  178.491796][    T8] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  178.513257][    T8] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  178.528973][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.780315][    T8] usb 7-1: usb_control_msg returned -32
[  178.781902][    T8] usbtmc 7-1:16.0: can't read capabilities
[  178.916690][ T4776] Bluetooth: hci4: sending frame failed (-49)
[  178.921512][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  179.126491][ T8273] syz.1.772: attempt to access beyond end of device
[  179.126491][ T8273] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  179.131392][ T8273] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  179.875572][ T4776] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  180.170227][ T8295] netfs: Couldn't get user pages (rc=-14)
[  180.874460][ T5383] usb 7-1: USB disconnect, device number 11
[  181.031478][ T8299] random: crng reseeded on system resumption
[  181.409476][ T8305] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  181.411578][ T8305] overlayfs: failed to set xattr on upper
[  181.413187][ T8305] overlayfs: ...falling back to redirect_dir=nofollow.
[  181.415323][ T8305] overlayfs: ...falling back to index=off.
[  181.416999][ T8305] overlayfs: ...falling back to uuid=null.
[  181.507027][ T8306] netlink: 44 bytes leftover after parsing attributes in process `syz.0.781'.
[  181.511874][ T8306] netlink: 43 bytes leftover after parsing attributes in process `syz.0.781'.
[  181.515384][ T8306] netlink: 'syz.0.781': attribute type 6 has an invalid length.
[  181.518271][ T8306] netlink: 'syz.0.781': attribute type 5 has an invalid length.
[  181.521211][ T8306] netlink: 43 bytes leftover after parsing attributes in process `syz.0.781'.
[  181.521457][ T8308] syz.2.782: attempt to access beyond end of device
[  181.521457][ T8308] nbd2: rw=0, sector=6, nr_sectors = 2 limit=0
[  181.537982][ T8308] ADFS-fs (nbd2): error: unable to read block 3, try 0
[  181.914462][ T8317] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  181.916900][ T8317] overlayfs: failed to set xattr on upper
[  181.919730][ T8317] overlayfs: ...falling back to redirect_dir=nofollow.
[  181.921863][ T8317] overlayfs: ...falling back to index=off.
[  181.923799][ T8317] overlayfs: ...falling back to uuid=null.
[  181.981499][ T8318] netlink: 44 bytes leftover after parsing attributes in process `syz.2.786'.
[  181.984251][ T8318] netlink: 43 bytes leftover after parsing attributes in process `syz.2.786'.
[  181.987104][ T8318] netlink: 'syz.2.786': attribute type 6 has an invalid length.
[  181.991683][ T8318] netlink: 'syz.2.786': attribute type 5 has an invalid length.
[  181.996110][ T8318] netlink: 43 bytes leftover after parsing attributes in process `syz.2.786'.
[  182.730709][ T8336] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  182.732592][ T8336] overlayfs: failed to set xattr on upper
[  182.734062][ T8336] overlayfs: ...falling back to redirect_dir=nofollow.
[  182.736005][ T8336] overlayfs: ...falling back to index=off.
[  182.741445][ T8336] overlayfs: ...falling back to uuid=null.
[  182.823511][ T8340] netlink: 44 bytes leftover after parsing attributes in process `syz.2.793'.
[  182.826660][ T8340] netlink: 43 bytes leftover after parsing attributes in process `syz.2.793'.
[  182.830168][ T8340] netlink: 'syz.2.793': attribute type 6 has an invalid length.
[  182.832916][ T8340] netlink: 'syz.2.793': attribute type 5 has an invalid length.
[  182.835729][ T8340] netlink: 43 bytes leftover after parsing attributes in process `syz.2.793'.
[  183.462766][ T8393] netlink: 'syz.0.799': attribute type 1 has an invalid length.
[  183.465682][ T8393] netlink: 'syz.0.799': attribute type 4 has an invalid length.
[  183.470693][ T8393] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.799'.
[  184.271160][ T8402] netlink: 'syz.0.803': attribute type 1 has an invalid length.
[  184.397659][ T8408] FAULT_INJECTION: forcing a failure.
[  184.397659][ T8408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.403092][ T8408] CPU: 0 UID: 0 PID: 8408 Comm: syz.1.804 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  184.407011][ T8408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.411064][ T8408] Call Trace:
[  184.412344][ T8408]  <TASK>
[  184.413536][ T8408]  dump_stack_lvl+0x16c/0x1f0
[  184.415441][ T8408]  should_fail_ex+0x497/0x5b0
[  184.416987][ T8408]  save_fsave_header+0x17c/0x2e0
[  184.418416][ T8408]  ? __pfx_save_fsave_header+0x10/0x10
[  184.420066][ T8408]  ? copy_fpstate_to_sigframe+0x2c2/0xae0
[  184.421572][ T8408]  ? __local_bh_enable_ip+0xa4/0x120
[  184.423049][ T8408]  copy_fpstate_to_sigframe+0x76f/0xae0
[  184.424512][ T8408]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  184.426138][ T8408]  ? __pfx___schedule+0x10/0x10
[  184.427447][ T8408]  ? rcu_is_watching+0x12/0xc0
[  184.428773][ T8408]  get_sigframe+0x4aa/0x9c0
[  184.430256][ T8408]  ? __pfx_get_sigframe+0x10/0x10
[  184.431676][ T8408]  ? siginfo_layout+0x177/0x290
[  184.433015][ T8408]  ia32_setup_rt_frame+0xe4/0xb20
[  184.434388][ T8408]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  184.435930][ T8408]  ? fput+0x30/0x390
[  184.436982][ T8408]  arch_do_signal_or_restart+0x47b/0x7e0
[  184.438487][ T8408]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  184.440213][ T8408]  syscall_exit_to_user_mode+0x150/0x2a0
[  184.441783][ T8408]  do_int80_emulation+0x111/0x200
[  184.443220][ T8408]  asm_int80_emulation+0x1a/0x20
[  184.444618][ T8408] RIP: 0023:0xf7f1f577
[  184.445805][ T8408] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  184.450926][ T8408] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  184.453106][ T8408] RAX: 0000000000000172 RBX: 0000000000000007 RCX: 0000000020000340
[  184.455180][ T8408] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  184.457264][ T8408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.459369][ T8408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.461482][ T8408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.463579][ T8408]  </TASK>
[  184.554345][ T8421] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  184.556626][ T8421] overlayfs: failed to set xattr on upper
[  184.558284][ T8421] overlayfs: ...falling back to redirect_dir=nofollow.
[  184.560166][ T8421] overlayfs: ...falling back to index=off.
[  184.561744][ T8421] overlayfs: ...falling back to uuid=null.
[  184.622938][ T8422] netlink: 'syz.0.807': attribute type 6 has an invalid length.
[  184.737976][ T8424] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  184.959049][ T8429] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.265952][ T5348] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  186.564169][ T8473] block device autoloading is deprecated and will be removed.
[  187.268778][ T5401] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  187.427799][ T5401] usb 7-1: Using ep0 maxpacket: 8
[  187.435341][ T5401] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  187.438903][ T5401] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  187.443120][ T5401] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  187.446772][ T5401] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  187.450647][ T5401] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  187.455667][ T5401] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  187.459586][ T5401] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.756107][ T5401] usb 7-1: usb_control_msg returned -32
[  187.759593][ T5401] usbtmc 7-1:16.0: can't read capabilities
[  188.826869][ T8504] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  188.829465][ T8504] overlayfs: failed to set xattr on upper
[  188.831051][ T8504] overlayfs: ...falling back to redirect_dir=nofollow.
[  188.832899][ T8504] overlayfs: ...falling back to index=off.
[  188.834744][ T8504] overlayfs: ...falling back to uuid=null.
[  188.899975][ T8505] __nla_validate_parse: 4 callbacks suppressed
[  188.900023][ T8505] netlink: 44 bytes leftover after parsing attributes in process `syz.0.829'.
[  188.905146][ T8505] netlink: 43 bytes leftover after parsing attributes in process `syz.0.829'.
[  188.911550][ T8505] validate_nla: 3 callbacks suppressed
[  188.911589][ T8505] netlink: 'syz.0.829': attribute type 6 has an invalid length.
[  188.916739][ T8505] netlink: 'syz.0.829': attribute type 5 has an invalid length.
[  188.919746][ T8505] netlink: 43 bytes leftover after parsing attributes in process `syz.0.829'.
[  189.166525][ T8516] random: crng reseeded on system resumption
[  189.233273][ T8518] netlink: 'syz.1.834': attribute type 1 has an invalid length.
[  189.240634][ T8518] netlink: 'syz.1.834': attribute type 4 has an invalid length.
[  189.243490][ T8518] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.834'.
[  189.316444][ T5429] usb 7-1: USB disconnect, device number 12
[  190.197564][   T39] kauditd_printk_skb: 561 callbacks suppressed
[  190.197576][   T39] audit: type=1326 audit(1727894552.702:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.206912][   T39] audit: type=1326 audit(1727894552.702:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.207893][ T8527] FAULT_INJECTION: forcing a failure.
[  190.207893][ T8527] name failslab, interval 1, probability 0, space 0, times 0
[  190.214931][   T39] audit: type=1326 audit(1727894552.702:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.218423][ T8527] CPU: 1 UID: 0 PID: 8527 Comm: syz.1.837 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  190.229060][ T8527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  190.232607][ T8527] Call Trace:
[  190.233729][ T8527]  <TASK>
[  190.234734][ T8527]  dump_stack_lvl+0x16c/0x1f0
[  190.236338][ T8527]  should_fail_ex+0x497/0x5b0
[  190.237930][ T8527]  ? fs_reclaim_acquire+0xae/0x160
[  190.239674][ T8527]  should_failslab+0xc2/0x120
[  190.241273][ T8527]  kmem_cache_alloc_node_noprof+0x71/0x310
[  190.243350][ T8527]  ? __alloc_skb+0x2b3/0x380
[  190.244940][ T8527]  __alloc_skb+0x2b3/0x380
[  190.246391][ T8527]  ? __pfx___alloc_skb+0x10/0x10
[  190.247687][ T8527]  ? rcu_watching_snap_stopped_since+0x70/0x110
[  190.249309][ T8527]  ? trace_kmem_cache_alloc+0x2d/0xe0
[  190.250715][ T8527]  ? kmem_cache_alloc_noprof+0x174/0x2f0
[  190.252179][ T8527]  ? audit_log_start+0x2bc/0x7e0
[  190.253476][ T8527]  audit_log_start+0x2e1/0x7e0
[  190.254741][ T8527]  ? __pfx_audit_log_start+0x10/0x10
[  190.256123][ T8527]  ? __pfx_lock_release+0x10/0x10
[  190.257484][ T8527]  ? migrate_enable+0x1ef/0x260
[  190.258757][ T8527]  ? __pfx_migrate_enable+0x10/0x10
[  190.260130][ T8527]  audit_seccomp+0x61/0x280
[  190.261336][ T8527]  __seccomp_filter+0x816/0xf40
[  190.262647][ T8527]  ? __pfx___seccomp_filter+0x10/0x10
[  190.264054][ T8527]  ? fput+0x30/0x390
[  190.265095][ T8527]  ? ksys_write+0x1ad/0x260
[  190.266309][ T8527]  __secure_computing+0x26c/0x3f0
[  190.267629][ T8527]  syscall_trace_enter+0x8b/0x240
[  190.268953][ T8527]  __do_fast_syscall_32+0xc2/0x120
[  190.270296][ T8527]  do_fast_syscall_32+0x32/0x80
[  190.271536][ T8527]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  190.273181][ T8527] RIP: 0023:0xf7f1f579
[  190.274262][ T8527] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  190.279173][ T8527] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[  190.281259][ T8527] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000000
[  190.283267][ T8527] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  190.285252][ T8527] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  190.287232][ T8527] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  190.289301][ T8527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  190.291365][ T8527]  </TASK>
[  190.293073][ T8527] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  190.293139][   T39] audit: type=1326 audit(1727894552.702:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.295210][ T8527] audit: out of memory in audit_log_start
[  190.307026][   T39] audit: type=1326 audit(1727894552.792:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.314384][   T39] audit: type=1326 audit(1727894552.792:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.323364][   T39] audit: type=1326 audit(1727894552.792:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.332115][   T39] audit: type=1326 audit(1727894552.792:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f1f579 code=0x7ffc0000
[  190.724207][ T8540] syz.3.842: attempt to access beyond end of device
[  190.724207][ T8540] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  190.729387][ T8540] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  191.406682][ T8559] random: crng reseeded on system resumption
[  191.686806][ T8567] 9pnet_rdma: rdma_create_trans (8567): problem binding to privport: 13
[  192.287336][ T5401] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  192.437322][ T5401] usb 5-1: Using ep0 maxpacket: 8
[  192.442264][ T5401] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  192.444413][ T5401] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  192.448360][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  192.453668][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  192.456218][ T5401] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  192.467148][ T5401] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  192.470219][ T5401] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.624968][ T8574] syz.3.853: attempt to access beyond end of device
[  192.624968][ T8574] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  192.629278][ T8574] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  192.698762][ T5401] usb 5-1: usb_control_msg returned -32
[  192.701892][ T5401] usbtmc 5-1:16.0: can't read capabilities
[  193.658201][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  193.842265][ T8595] netlink: 'syz.3.859': attribute type 3 has an invalid length.
[  193.844335][ T8595] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.859'.
[  193.846869][ T8595] FAULT_INJECTION: forcing a failure.
[  193.846869][ T8595] name failslab, interval 1, probability 0, space 0, times 0
[  193.850233][ T8595] CPU: 0 UID: 0 PID: 8595 Comm: syz.3.859 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  193.853023][ T8595] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.855820][ T8595] Call Trace:
[  193.856706][ T8595]  <TASK>
[  193.857490][ T8595]  dump_stack_lvl+0x16c/0x1f0
[  193.858747][ T8595]  should_fail_ex+0x497/0x5b0
[  193.859999][ T8595]  ? fs_reclaim_acquire+0xae/0x160
[  193.861347][ T8595]  should_failslab+0xc2/0x120
[  193.862603][ T8595]  kmem_cache_alloc_node_noprof+0x71/0x310
[  193.864451][ T8595]  ? __alloc_skb+0x2b3/0x380
[  193.865730][ T8595]  ? bpf_lsm_capable+0x9/0x10
[  193.867015][ T8595]  __alloc_skb+0x2b3/0x380
[  193.868194][ T8595]  ? __pfx___alloc_skb+0x10/0x10
[  193.869495][ T8595]  ? genl_rcv_msg+0x4f0/0x800
[  193.870743][ T8595]  ? genl_rcv_msg+0x4bd/0x800
[  193.871984][ T8595]  netlink_ack+0x164/0xb20
[  193.873165][ T8595]  netlink_rcv_skb+0x327/0x410
[  193.874437][ T8595]  ? __pfx_genl_rcv_msg+0x10/0x10
[  193.875758][ T8595]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  193.877152][ T8595]  ? down_read+0xc9/0x330
[  193.878283][ T8595]  ? __pfx_down_read+0x10/0x10
[  193.879544][ T8595]  ? netlink_deliver_tap+0x1ae/0xcf0
[  193.880934][ T8595]  genl_rcv+0x28/0x40
[  193.882007][ T8595]  netlink_unicast+0x53c/0x7f0
[  193.883356][ T8595]  ? __pfx_netlink_unicast+0x10/0x10
[  193.884745][ T8595]  ? const_folio_flags.constprop.0+0x56/0x150
[  193.886309][ T8595]  ? __phys_addr_symbol+0x30/0x80
[  193.887630][ T8595]  ? __check_object_size+0x488/0x710
[  193.889013][ T8595]  netlink_sendmsg+0x8b8/0xd70
[  193.890281][ T8595]  ? __pfx_netlink_sendmsg+0x10/0x10
[  193.891661][ T8595]  ? lock_acquire+0x2f/0xb0
[  193.892867][ T8595]  ____sys_sendmsg+0x9ae/0xb40
[  193.894132][ T8595]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.895515][ T8595]  ? get_compat_msghdr+0x11b/0x170
[  193.896863][ T8595]  ? __pfx___lock_acquire+0x10/0x10
[  193.898313][ T8595]  ___sys_sendmsg+0x135/0x1e0
[  193.899561][ T8595]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.900932][ T8595]  ? lock_acquire+0x2f/0xb0
[  193.902145][ T8595]  ? __fget_files+0x40/0x3f0
[  193.903443][ T8595]  ? fdget+0x176/0x210
[  193.904514][ T8595]  __sys_sendmsg+0x117/0x1f0
[  193.905723][ T8595]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.907066][ T8595]  ? __fget_files+0x244/0x3f0
[  193.908330][ T8595]  __do_fast_syscall_32+0x73/0x120
[  193.909662][ T8595]  do_fast_syscall_32+0x32/0x80
[  193.910947][ T8595]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.912584][ T8595] RIP: 0023:0xf7fb7579
[  193.913702][ T8595] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.918655][ T8595] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  193.920807][ T8595] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  193.922877][ T8595] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  193.924929][ T8595] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.926985][ T8595] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  193.929080][ T8595] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.931142][ T8595]  </TASK>
[  194.235471][ T5401] usb 5-1: USB disconnect, device number 12
[  194.405022][ T8604] random: crng reseeded on system resumption
[  194.449626][ T8606] syz.1.864: attempt to access beyond end of device
[  194.449626][ T8606] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  194.454384][ T8606] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  194.554112][ T8613] trusted_key: encrypted_key: keyword 'ÿÿw' not recognized
[  195.372951][ T8617] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  195.917953][   T57] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  196.067444][   T57] usb 5-1: Using ep0 maxpacket: 8
[  196.072662][   T57] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  196.075482][   T57] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  196.079523][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  196.082814][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  196.086674][   T57] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  196.091154][   T57] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  196.094221][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.327715][   T57] usb 5-1: usb_control_msg returned -32
[  196.329193][   T57] usbtmc 5-1:16.0: can't read capabilities
[  197.702234][ T8648] syz.2.876: attempt to access beyond end of device
[  197.702234][ T8648] nbd2: rw=0, sector=6, nr_sectors = 2 limit=0
[  197.706906][ T8648] ADFS-fs (nbd2): error: unable to read block 3, try 0
[  198.519601][   T56] usb 5-1: USB disconnect, device number 13
[  198.743862][ T8662] netlink: 56 bytes leftover after parsing attributes in process `syz.0.880'.
[  199.693001][ T8675] use of bytesused == 0 is deprecated and will be removed in the future,
[  199.695973][ T8675] use the actual size instead.
[  199.950226][ T8679] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  199.952687][ T8679] overlayfs: failed to set xattr on upper
[  199.954698][ T8679] overlayfs: ...falling back to redirect_dir=nofollow.
[  199.957085][ T8679] overlayfs: ...falling back to index=off.
[  199.960775][ T8679] overlayfs: ...falling back to uuid=null.
[  200.031218][ T8680] netlink: 44 bytes leftover after parsing attributes in process `syz.1.885'.
[  200.033804][ T8680] netlink: 43 bytes leftover after parsing attributes in process `syz.1.885'.
[  200.036267][ T8680] netlink: 'syz.1.885': attribute type 6 has an invalid length.
[  200.038644][ T8680] netlink: 'syz.1.885': attribute type 5 has an invalid length.
[  200.041571][ T8680] netlink: 43 bytes leftover after parsing attributes in process `syz.1.885'.
[  200.747886][ T8697] netlink: 'syz.3.890': attribute type 1 has an invalid length.
[  200.750610][ T8697] netlink: 'syz.3.890': attribute type 4 has an invalid length.
[  200.753289][ T8697] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.890'.
[  200.988390][ T1282] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  201.138475][ T1282] usb 6-1: Using ep0 maxpacket: 8
[  201.144619][ T1282] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  201.146819][ T1282] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  201.149595][ T1282] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  201.152594][ T1282] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  201.155596][ T1282] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  201.159457][ T1282] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  201.161905][ T1282] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.396312][ T1282] usb 6-1: usb_control_msg returned -32
[  201.397964][ T1282] usbtmc 6-1:16.0: can't read capabilities
[  201.999524][ T8711] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  202.001455][ T8711] overlayfs: failed to set xattr on upper
[  202.003066][ T8711] overlayfs: ...falling back to redirect_dir=nofollow.
[  202.005005][ T8711] overlayfs: ...falling back to index=off.
[  202.006775][ T8711] overlayfs: ...falling back to uuid=null.
[  202.059940][ T8712] block device autoloading is deprecated and will be removed.
[  202.068792][ T8713] netlink: 44 bytes leftover after parsing attributes in process `syz.3.895'.
[  202.072748][ T8713] netlink: 43 bytes leftover after parsing attributes in process `syz.3.895'.
[  202.076074][ T8713] netlink: 'syz.3.895': attribute type 6 has an invalid length.
[  202.079081][ T8713] netlink: 'syz.3.895': attribute type 5 has an invalid length.
[  202.081396][ T8713] netlink: 43 bytes leftover after parsing attributes in process `syz.3.895'.
[  202.101326][ T8709] md: could not open device unknown-block(0,0).
[  202.104154][ T8709] md: md_import_device returned -6
[  202.110088][ T8709] netlink: 36 bytes leftover after parsing attributes in process `syz.0.894'.
[  203.276107][ T1282] usb 6-1: USB disconnect, device number 9
[  203.855403][ T8741] netlink: 36 bytes leftover after parsing attributes in process `syz.1.902'.
[  204.267230][ T8750] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  204.270075][ T8750] overlayfs: failed to set xattr on upper
[  204.272320][ T8750] overlayfs: ...falling back to redirect_dir=nofollow.
[  204.275091][ T8750] overlayfs: ...falling back to index=off.
[  204.277316][ T8750] overlayfs: ...falling back to uuid=null.
[  204.336691][ T8751] netlink: 44 bytes leftover after parsing attributes in process `syz.0.905'.
[  204.340392][ T8751] netlink: 43 bytes leftover after parsing attributes in process `syz.0.905'.
[  204.344039][ T8751] netlink: 'syz.0.905': attribute type 6 has an invalid length.
[  204.347027][ T8751] netlink: 'syz.0.905': attribute type 5 has an invalid length.
[  204.351789][ T8751] netlink: 43 bytes leftover after parsing attributes in process `syz.0.905'.
[  205.226746][ T8778] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  205.230177][ T8778] overlayfs: failed to set xattr on upper
[  205.231868][ T8778] overlayfs: ...falling back to redirect_dir=nofollow.
[  205.233685][ T8778] overlayfs: ...falling back to index=off.
[  205.235339][ T8778] overlayfs: ...falling back to uuid=null.
[  205.299517][ T8780] netlink: 44 bytes leftover after parsing attributes in process `syz.2.914'.
[  205.302733][ T8780] netlink: 43 bytes leftover after parsing attributes in process `syz.2.914'.
[  205.305131][ T8780] netlink: 'syz.2.914': attribute type 6 has an invalid length.
[  205.307182][ T8780] netlink: 'syz.2.914': attribute type 5 has an invalid length.
[  205.309527][ T8780] netlink: 43 bytes leftover after parsing attributes in process `syz.2.914'.
[  205.591628][ T5348] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  205.594202][ T5348] CPU: 2 UID: 0 PID: 5348 Comm: kworker/u33:3 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  205.596993][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.599782][ T5348] Workqueue: hci3 hci_rx_work
[  205.601067][ T5348] Call Trace:
[  205.602057][ T5348]  <TASK>
[  205.602850][ T5348]  dump_stack_lvl+0x16c/0x1f0
[  205.604099][ T5348]  sysfs_warn_dup+0x7f/0xa0
[  205.605323][ T5348]  sysfs_create_dir_ns+0x24d/0x2b0
[  205.606692][ T5348]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  205.608179][ T5348]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  205.609724][ T5348]  ? kobject_add_internal+0x12d/0x990
[  205.611168][ T5348]  ? do_raw_spin_unlock+0x172/0x230
[  205.612530][ T5348]  kobject_add_internal+0x2c8/0x990
[  205.613937][ T5348]  kobject_add+0x16f/0x240
[  205.615091][ T5348]  ? __pfx_kobject_add+0x10/0x10
[  205.616395][ T5348]  ? class_to_subsys+0x3e/0x160
[  205.617677][ T5348]  ? do_raw_spin_unlock+0x172/0x230
[  205.619095][ T5348]  ? kobject_put+0xab/0x5a0
[  205.620298][ T5348]  device_add+0x289/0x1a70
[  205.621472][ T5348]  ? __pfx_dev_set_name+0x10/0x10
[  205.622820][ T5348]  ? __pfx_device_add+0x10/0x10
[  205.624096][ T5348]  ? mgmt_send_event_skb+0x2f2/0x460
[  205.625491][ T5348]  hci_conn_add_sysfs+0x17e/0x230
[  205.626830][ T5348]  le_conn_complete_evt+0xfc7/0x1cf0
[  205.628221][ T5348]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  205.629739][ T5348]  ? trace_contention_end+0xea/0x140
[  205.631146][ T5348]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  205.632714][ T5348]  ? skb_pull_data+0x166/0x210
[  205.633987][ T5348]  hci_le_meta_evt+0x2e2/0x5d0
[  205.635248][ T5348]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  205.636917][ T5348]  hci_event_packet+0x666/0x1190
[  205.638222][ T5348]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  205.639605][ T5348]  ? __pfx_hci_event_packet+0x10/0x10
[  205.641005][ T5348]  ? mark_held_locks+0x9f/0xe0
[  205.642287][ T5348]  ? kcov_remote_start+0x3cf/0x6e0
[  205.643647][ T5348]  ? lockdep_hardirqs_on+0x7c/0x110
[  205.645027][ T5348]  hci_rx_work+0x2c6/0x1610
[  205.646249][ T5348]  ? lock_acquire+0x2f/0xb0
[  205.647445][ T5348]  ? process_one_work+0x8bb/0x1b30
[  205.648795][ T5348]  process_one_work+0x958/0x1b30
[  205.650112][ T5348]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  205.651590][ T5348]  ? __pfx_process_one_work+0x10/0x10
[  205.652999][ T5348]  ? assign_work+0x1a0/0x250
[  205.654233][ T5348]  worker_thread+0x6c8/0xf00
[  205.655463][ T5348]  ? __pfx_worker_thread+0x10/0x10
[  205.656816][ T5348]  kthread+0x2c1/0x3a0
[  205.657900][ T5348]  ? _raw_spin_unlock_irq+0x23/0x50
[  205.659269][ T5348]  ? __pfx_kthread+0x10/0x10
[  205.660467][ T5348]  ret_from_fork+0x45/0x80
[  205.661624][ T5348]  ? __pfx_kthread+0x10/0x10
[  205.662935][ T5348]  ret_from_fork_asm+0x1a/0x30
[  205.664268][ T5348]  </TASK>
[  205.665293][    C2] vkms_vblank_simulate: vblank timer overrun
[  205.667269][    C2] hpet_rtc_timer_reinit: 1 callbacks suppressed
[  205.667277][    C2] hpet: Lost 4 RTC interrupts
[  205.672458][ T5348] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  205.676134][ T5348] Bluetooth: hci3: failed to register connection device
[  205.727717][   T57] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  205.877989][   T57] usb 5-1: Using ep0 maxpacket: 8
[  205.882542][   T57] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  205.885467][   T57] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  205.889335][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  205.893026][   T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  205.896575][   T57] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  205.903374][   T57] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  205.906650][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.123316][   T57] usb 5-1: usb_control_msg returned -32
[  206.124938][   T57] usbtmc 5-1:16.0: can't read capabilities
[  207.328905][ T8800] mmap: syz.3.918 (8800): VmData 37400576 exceed data ulimit 65536. Update limits or use boot option ignore_rlimit_data.
[  207.392265][ T8802] binder: 8801:8802 ioctl 400c620e 20000140 returned -22
[  207.737345][ T5348] Bluetooth: hci3: command 0x0405 tx timeout
[  207.944586][ T8815] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  207.946568][ T8815] overlayfs: failed to set xattr on upper
[  207.948672][ T8815] overlayfs: ...falling back to redirect_dir=nofollow.
[  207.950735][ T8815] overlayfs: ...falling back to index=off.
[  207.952306][ T8815] overlayfs: ...falling back to uuid=null.
[  207.991800][   T63] usb 5-1: USB disconnect, device number 14
[  207.999571][ T8815] netlink: 44 bytes leftover after parsing attributes in process `syz.1.923'.
[  208.001955][ T8815] netlink: 43 bytes leftover after parsing attributes in process `syz.1.923'.
[  208.004619][ T8815] netlink: 'syz.1.923': attribute type 6 has an invalid length.
[  208.006779][ T8815] netlink: 'syz.1.923': attribute type 5 has an invalid length.
[  208.008861][ T8815] netlink: 43 bytes leftover after parsing attributes in process `syz.1.923'.
[  208.125145][ T8820] block device autoloading is deprecated and will be removed.
[  208.689280][ T8838] random: crng reseeded on system resumption
[  210.029493][ T8845] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  210.031425][ T8845] overlayfs: failed to set xattr on upper
[  210.032924][ T8845] overlayfs: ...falling back to redirect_dir=nofollow.
[  210.034711][ T8845] overlayfs: ...falling back to index=off.
[  210.036228][ T8845] overlayfs: ...falling back to uuid=null.
[  210.096685][ T8849] netlink: 44 bytes leftover after parsing attributes in process `syz.1.932'.
[  210.100313][ T8849] netlink: 43 bytes leftover after parsing attributes in process `syz.1.932'.
[  210.103765][ T8849] netlink: 'syz.1.932': attribute type 6 has an invalid length.
[  210.106624][ T8849] netlink: 'syz.1.932': attribute type 5 has an invalid length.
[  210.109685][ T8849] netlink: 43 bytes leftover after parsing attributes in process `syz.1.932'.
[  210.122991][ T8850] netlink: 'syz.2.931': attribute type 1 has an invalid length.
[  210.125905][ T8850] netlink: 'syz.2.931': attribute type 4 has an invalid length.
[  210.129799][ T8850] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.931'.
[  210.269313][ T8854] syz.1.934: attempt to access beyond end of device
[  210.269313][ T8854] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0
[  210.274293][ T8854] ADFS-fs (nbd1): error: unable to read block 3, try 0
[  210.564303][ T8859] FAULT_INJECTION: forcing a failure.
[  210.564303][ T8859] name failslab, interval 1, probability 0, space 0, times 0
[  210.576397][ T8859] CPU: 3 UID: 0 PID: 8859 Comm: syz.1.935 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  210.580142][ T8859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.583856][ T8859] Call Trace:
[  210.585183][ T8859]  <TASK>
[  210.586268][ T8859]  dump_stack_lvl+0x16c/0x1f0
[  210.587847][ T8859]  should_fail_ex+0x497/0x5b0
[  210.589513][ T8859]  ? fs_reclaim_acquire+0xae/0x160
[  210.591375][ T8859]  should_failslab+0xc2/0x120
[  210.593070][ T8859]  kmem_cache_alloc_node_noprof+0x71/0x310
[  210.595113][ T8859]  ? __alloc_skb+0x2b3/0x380
[  210.596644][ T8859]  __alloc_skb+0x2b3/0x380
[  210.598218][ T8859]  ? __pfx___alloc_skb+0x10/0x10
[  210.600003][ T8859]  ? __pfx_nf_tables_abort+0x10/0x10
[  210.602004][ T8859]  netlink_ack+0x164/0xb20
[  210.603613][ T8859]  ? kasan_save_track+0x14/0x30
[  210.605361][ T8859]  nfnetlink_rcv_batch+0x1626/0x24e0
[  210.607247][ T8859]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  210.609299][ T8859]  ? __pfx_lock_release+0x10/0x10
[  210.611081][ T8859]  ? __local_bh_enable_ip+0xa4/0x120
[  210.612893][ T8859]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.614698][ T8859]  ? __pfx___dev_queue_xmit+0x10/0x10
[  210.616624][ T8859]  ? __nla_parse+0x40/0x60
[  210.618131][ T8859]  nfnetlink_rcv+0x3c3/0x430
[  210.619687][ T8859]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  210.621507][ T8859]  netlink_unicast+0x53c/0x7f0
[  210.623266][ T8859]  ? __pfx_netlink_unicast+0x10/0x10
[  210.624995][ T8859]  ? __phys_addr_symbol+0x30/0x80
[  210.626660][ T8859]  ? __check_object_size+0x488/0x710
[  210.628415][ T8859]  netlink_sendmsg+0x8b8/0xd70
[  210.630024][ T8859]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.631782][ T8859]  ? lock_acquire+0x2f/0xb0
[  210.633397][ T8859]  ____sys_sendmsg+0x9ae/0xb40
[  210.635125][ T8859]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.636949][ T8859]  ? get_compat_msghdr+0x11b/0x170
[  210.638697][ T8859]  ? __pfx___lock_acquire+0x10/0x10
[  210.640516][ T8859]  ___sys_sendmsg+0x135/0x1e0
[  210.642187][ T8859]  ? __pfx____sys_sendmsg+0x10/0x10
[  210.644015][ T8859]  ? lock_acquire+0x2f/0xb0
[  210.645601][ T8859]  ? __fget_files+0x40/0x3f0
[  210.647207][ T8859]  ? fdget+0x176/0x210
[  210.648699][ T8859]  __sys_sendmsg+0x117/0x1f0
[  210.650358][ T8859]  ? __pfx___sys_sendmsg+0x10/0x10
[  210.652104][ T8859]  ? __fget_files+0x244/0x3f0
[  210.653715][ T8859]  __do_fast_syscall_32+0x73/0x120
[  210.655457][ T8859]  do_fast_syscall_32+0x32/0x80
[  210.657231][ T8859]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.659584][ T8859] RIP: 0023:0xf7f1f579
[  210.661108][ T8859] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  210.668268][ T8859] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  210.670869][ T8859] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  210.672934][ T8859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  210.675057][ T8859] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  210.677143][ T8859] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  210.679512][ T8859] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.682315][ T8859]  </TASK>
[  210.787429][ T5401] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  210.833517][ T8872] netlink: 4 bytes leftover after parsing attributes in process `syz.2.940'.
[  210.835863][ T8872] bridge_slave_1: left allmulticast mode
[  210.837373][ T8872] bridge_slave_1: left promiscuous mode
[  210.839047][ T8872] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.845293][ T8872] bridge_slave_0: left allmulticast mode
[  210.846732][ T8872] bridge_slave_0: left promiscuous mode
[  210.850284][ T8872] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.957596][ T5401] usb 5-1: Using ep0 maxpacket: 8
[  210.965952][ T5401] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  210.968800][ T5401] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  210.974761][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  210.981954][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  210.984658][ T8874] syz.1.939 (8874): drop_caches: 2
[  210.988453][ T5401] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  210.999140][ T5401] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  211.003836][ T5401] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.246290][ T5401] usb 5-1: usb_control_msg returned -32
[  211.248023][ T5401] usbtmc 5-1:16.0: can't read capabilities
[  211.705592][ T8890] syz.3.943: attempt to access beyond end of device
[  211.705592][ T8890] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0
[  211.711280][ T8890] ADFS-fs (nbd3): error: unable to read block 3, try 0
[  211.910107][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.945'.
[  211.912732][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.945'.
[  211.917973][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.945'.
[  211.920604][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.945'.
[  211.926902][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.945'.
[  213.055615][ T8921] syz.2.952: attempt to access beyond end of device
[  213.055615][ T8921] nbd2: rw=0, sector=6, nr_sectors = 2 limit=0
[  213.060207][ T8921] ADFS-fs (nbd2): error: unable to read block 3, try 0
[  213.162340][   T56] usb 5-1: USB disconnect, device number 15
[  215.037341][ T5429] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  215.187457][ T5429] usb 7-1: Using ep0 maxpacket: 8
[  215.190621][ T5429] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  215.193260][ T5429] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  215.195856][ T5429] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  215.207830][ T5429] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  215.210662][ T5429] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  215.213971][ T5429] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  215.216286][ T5429] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.390914][ T8943] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  215.393443][ T8943] overlayfs: failed to set xattr on upper
[  215.395653][ T8943] overlayfs: ...falling back to redirect_dir=nofollow.
[  215.399247][ T8943] overlayfs: ...falling back to index=off.
[  215.401667][ T8943] overlayfs: ...falling back to uuid=null.
[  215.434908][ T5429] usb 7-1: GET_CAPABILITIES returned 0
[  215.436981][ T5429] usbtmc 7-1:16.0: can't read capabilities
[  215.461499][ T8947] __nla_validate_parse: 2 callbacks suppressed
[  215.461511][ T8947] netlink: 44 bytes leftover after parsing attributes in process `syz.3.960'.
[  215.470603][ T8947] netlink: 43 bytes leftover after parsing attributes in process `syz.3.960'.
[  215.472983][ T8947] netlink: 'syz.3.960': attribute type 6 has an invalid length.
[  215.474979][ T8947] netlink: 'syz.3.960': attribute type 5 has an invalid length.
[  215.477063][ T8947] netlink: 43 bytes leftover after parsing attributes in process `syz.3.960'.
[  215.650385][ T8959] netlink: 'syz.3.964': attribute type 1 has an invalid length.
[  215.652869][ T8959] netlink: 'syz.3.964': attribute type 4 has an invalid length.
[  215.655621][ T8959] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.964'.
[  215.692087][ T5429] usb 7-1: USB disconnect, device number 13
[  216.476201][ T8976] FAULT_INJECTION: forcing a failure.
[  216.476201][ T8976] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  216.480713][ T8976] CPU: 3 UID: 0 PID: 8976 Comm: syz.3.973 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  216.483725][ T8976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  216.486616][ T8976] Call Trace:
[  216.487532][ T8976]  <TASK>
[  216.488544][ T8976]  dump_stack_lvl+0x16c/0x1f0
[  216.490065][ T8976]  should_fail_ex+0x497/0x5b0
[  216.491383][ T8976]  ? fs_reclaim_acquire+0xae/0x160
[  216.492715][ T8976]  should_fail_alloc_page+0xe7/0x130
[  216.494147][ T8976]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  216.495776][ T8976]  __alloc_pages_noprof+0x190/0x25c0
[  216.497209][ T8976]  ? __pfx_mark_lock+0x10/0x10
[  216.498551][ T8976]  ? __pfx_mark_lock+0x10/0x10
[  216.499921][ T8976]  ? hlock_class+0x4e/0x130
[  216.501154][ T8976]  ? mark_lock+0xb5/0xc60
[  216.502365][ T8976]  ? __pfx_mark_lock+0x10/0x10
[  216.503661][ T8976]  ? hlock_class+0x4e/0x130
[  216.504894][ T8976]  ? mark_lock+0xb5/0xc60
[  216.506107][ T8976]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  216.507907][ T8976]  ? __pfx_mark_lock+0x10/0x10
[  216.509263][ T8976]  ? hlock_class+0x4e/0x130
[  216.510520][ T8976]  ? mark_lock+0xb5/0xc60
[  216.511730][ T8976]  ? hlock_class+0x4e/0x130
[  216.512959][ T8976]  ? mark_lock+0xb5/0xc60
[  216.514142][ T8976]  ? hlock_class+0x4e/0x130
[  216.515366][ T8976]  ? mark_lock+0xb5/0xc60
[  216.516562][ T8976]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  216.518186][ T8976]  ? policy_nodemask+0xea/0x4e0
[  216.519776][ T8976]  alloc_pages_mpol_noprof+0x2c9/0x610
[  216.521518][ T8976]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  216.523248][ T8976]  ? find_held_lock+0x2d/0x110
[  216.524555][ T8976]  folio_alloc_mpol_noprof+0x36/0xd0
[  216.525980][ T8976]  vma_alloc_folio_noprof+0xee/0x1b0
[  216.527411][ T8976]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  216.528979][ T8976]  ? __pfx___lock_acquire+0x10/0x10
[  216.530547][ T8976]  do_wp_page+0x10d1/0x4930
[  216.531924][ T8976]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  216.533463][ T8976]  ? __pfx_do_wp_page+0x10/0x10
[  216.534831][ T8976]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  216.536547][ T8976]  ? lock_acquire+0x2f/0xb0
[  216.537820][ T8976]  ? __handle_mm_fault+0xdcd/0x2a10
[  216.539384][ T8976]  __handle_mm_fault+0x1a93/0x2a10
[  216.541291][ T8976]  ? __pfx_mt_find+0x10/0x10
[  216.542646][ T8976]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  216.544159][ T8976]  ? __pfx___handle_mm_fault+0x10/0x10
[  216.545678][ T8976]  ? find_vma+0xc0/0x140
[  216.546869][ T8976]  ? __pfx_find_vma+0x10/0x10
[  216.548192][ T8976]  handle_mm_fault+0x3fa/0xaa0
[  216.549685][ T8976]  do_user_addr_fault+0x7a3/0x13f0
[  216.551206][ T8976]  exc_page_fault+0x5c/0xc0
[  216.552467][ T8976]  asm_exc_page_fault+0x26/0x30
[  216.553841][ T8976] RIP: 0010:__put_user_4+0x11/0x20
[  216.555245][ T8976] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  216.560856][ T8976] RSP: 0018:ffffc9002c027cf8 EFLAGS: 00050202
[  216.562738][ T8976] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020000040
[  216.565788][ T8976] RDX: ffff88802adf2440 RSI: ffffffff88b30d92 RDI: ffffffff8bb12060
[  216.568103][ T8976] RBP: ffffc9002c027ea8 R08: 0000000000000000 R09: fffffbfff20398c1
[  216.570397][ T8976] R10: ffffffff901cc60f R11: 0000000000000000 R12: 0000000000000000
[  216.572476][ T8976] R13: ffff88802367c000 R14: 1ffff92005804fa8 R15: 0000000000000003
[  216.574619][ T8976]  ? snd_mixer_oss_ioctl1+0x6d2/0x1a90
[  216.576055][ T8976]  snd_mixer_oss_ioctl1+0x6e9/0x1a90
[  216.577474][ T8976]  ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10
[  216.579040][ T8976]  ? trace_lock_acquire+0x14a/0x1d0
[  216.580969][ T8976]  ? __fget_files+0x244/0x3f0
[  216.582356][ T8976]  snd_mixer_oss_ioctl_compat+0x43/0x70
[  216.583921][ T8976]  ? __pfx_snd_mixer_oss_ioctl_compat+0x10/0x10
[  216.585612][ T8976]  __do_compat_sys_ioctl+0x259/0x2b0
[  216.587027][ T8976]  __do_fast_syscall_32+0x73/0x120
[  216.588391][ T8976]  do_fast_syscall_32+0x32/0x80
[  216.589884][ T8976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  216.591657][ T8976] RIP: 0023:0xf7fb7579
[  216.592854][ T8976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  216.598074][ T8976] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  216.600507][ T8976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040086603
[  216.603328][ T8976] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[  216.605721][ T8976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  216.607928][ T8976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  216.610179][ T8976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  216.612363][ T8976]  </TASK>
[  217.000138][ T9001] netlink: 'syz.0.978': attribute type 1 has an invalid length.
[  217.003067][ T9001] netlink: 'syz.0.978': attribute type 4 has an invalid length.
[  217.005341][ T9001] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.978'.
[  217.033546][ T9000] FAULT_INJECTION: forcing a failure.
[  217.033546][ T9000] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  217.037193][ T9000] CPU: 1 UID: 0 PID: 9000 Comm: syz.1.982 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  217.040022][ T9000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.042897][ T9000] Call Trace:
[  217.043964][ T9000]  <TASK>
[  217.044748][ T9000]  dump_stack_lvl+0x16c/0x1f0
[  217.046014][ T9000]  should_fail_ex+0x497/0x5b0
[  217.047258][ T9000]  _copy_from_user+0x30/0xf0
[  217.048478][ T9000]  input_event_from_user+0x22d/0x3b0
[  217.049885][ T9000]  ? __pfx_input_event_from_user+0x10/0x10
[  217.051425][ T9000]  ? input_inject_event+0x193/0x370
[  217.052809][ T9000]  evdev_write+0x377/0x750
[  217.054031][ T9000]  ? __pfx_evdev_write+0x10/0x10
[  217.055348][ T9000]  ? bpf_lsm_file_permission+0x9/0x10
[  217.056789][ T9000]  ? security_file_permission+0x71/0x210
[  217.058287][ T9000]  ? __pfx_evdev_write+0x10/0x10
[  217.059595][ T9000]  vfs_write+0x28e/0x1140
[  217.060840][ T9000]  ? __fget_files+0x23a/0x3f0
[  217.062110][ T9000]  ? __pfx_lock_release+0x10/0x10
[  217.063500][ T9000]  ? trace_lock_acquire+0x14a/0x1d0
[  217.064877][ T9000]  ? __pfx_vfs_write+0x10/0x10
[  217.066134][ T9000]  ? lock_acquire+0x2f/0xb0
[  217.067341][ T9000]  ? __fget_files+0x40/0x3f0
[  217.068565][ T9000]  ? __fget_files+0x244/0x3f0
[  217.069868][ T9000]  ksys_write+0x1fa/0x260
[  217.071010][ T9000]  ? __pfx_ksys_write+0x10/0x10
[  217.072297][ T9000]  __do_fast_syscall_32+0x73/0x120
[  217.073677][ T9000]  do_fast_syscall_32+0x32/0x80
[  217.074894][ T9000]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  217.076540][ T9000] RIP: 0023:0xf7f1f579
[  217.077592][ T9000] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  217.082482][ T9000] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  217.084698][ T9000] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  217.086798][ T9000] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  217.088908][ T9000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  217.090967][ T9000] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  217.093038][ T9000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  217.095091][ T9000]  </TASK>
[  217.275533][ T9017] netlink: 20 bytes leftover after parsing attributes in process `syz.1.985'.
[  217.767633][ T9028] dccp_invalid_packet: P.Data Offset(80) too large
[  218.390189][ T8995] syz.3.980: vmalloc error: size 536875008, failed to allocated page array size 1048584, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  218.396502][ T8995] CPU: 1 UID: 0 PID: 8995 Comm: syz.3.980 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  218.400125][ T8995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.403037][ T8995] Call Trace:
[  218.404207][ T8995]  <TASK>
[  218.405260][ T8995]  dump_stack_lvl+0x16c/0x1f0
[  218.406894][ T8995]  warn_alloc+0x24d/0x3a0
[  218.408382][ T8995]  ? __pfx_warn_alloc+0x10/0x10
[  218.410062][ T8995]  ? __get_vm_area_node+0x190/0x2d0
[  218.411823][ T8995]  ? __get_vm_area_node+0x1bc/0x2d0
[  218.413650][ T8995]  __vmalloc_node_range_noprof+0x114a/0x15a0
[  218.415707][ T8995]  ? drm_property_create_blob+0x76/0x330
[  218.417631][ T8995]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  218.419848][ T8995]  ? rcu_is_watching+0x12/0xc0
[  218.421512][ T8995]  ? rcu_is_watching+0x12/0xc0
[  218.422819][ T8995]  ? trace_kmalloc+0x2d/0xe0
[  218.424389][ T8995]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  218.426366][ T8995]  ? drm_property_create_blob+0x76/0x330
[  218.428284][ T8995]  __kvmalloc_node_noprof+0x14f/0x1a0
[  218.430194][ T8995]  ? drm_property_create_blob+0x76/0x330
[  218.432092][ T8995]  drm_property_create_blob+0x76/0x330
[  218.433962][ T8995]  drm_mode_createblob_ioctl+0x10d/0x440
[  218.435864][ T8995]  drm_ioctl_kernel+0x1e6/0x3d0
[  218.437519][ T8995]  ? __pfx_drm_mode_createblob_ioctl+0x10/0x10
[  218.439619][ T8995]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  218.441461][ T8995]  ? __pfx_drm_mode_createblob_ioctl+0x10/0x10
[  218.443558][ T8995]  drm_ioctl+0x57e/0xba0
[  218.445046][ T8995]  ? __pfx_drm_ioctl+0x10/0x10
[  218.446694][ T8995]  drm_compat_ioctl+0x327/0x460
[  218.448405][ T8995]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  218.450222][ T8995]  __do_compat_sys_ioctl+0x259/0x2b0
[  218.452022][ T8995]  __do_fast_syscall_32+0x73/0x120
[  218.453777][ T8995]  do_fast_syscall_32+0x32/0x80
[  218.455423][ T8995]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  218.457144][ T8995] RIP: 0023:0xf7fb7579
[  218.458252][ T8995] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  218.463301][ T8995] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  218.465474][ T8995] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c01064bd
[  218.467546][ T8995] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  218.469611][ T8995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  218.471685][ T8995] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  218.473761][ T8995] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  218.475876][ T8995]  </TASK>
[  218.476984][ T8995] Mem-Info:
[  218.477955][ T8995] active_anon:5270 inactive_anon:24 isolated_anon:0
[  218.477955][ T8995]  active_file:20353 inactive_file:18175 isolated_file:0
[  218.477955][ T8995]  unevictable:768 dirty:791 writeback:0
[  218.477955][ T8995]  slab_reclaimable:4795 slab_unreclaimable:51147
[  218.477955][ T8995]  mapped:19921 shmem:3732 pagetables:623
[  218.477955][ T8995]  sec_pagetables:317 bounce:0
[  218.477955][ T8995]  kernel_misc_reclaimable:0
[  218.477955][ T8995]  free:73349 free_pcp:7352 free_cma:0
[  218.489557][ T8995] Node 0 active_anon:32kB inactive_anon:4kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:6844kB dirty:4kB writeback:0kB shmem:1564kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9288kB pagetables:1284kB sec_pagetables:1196kB all_unreclaimable? no
[  218.497866][ T8995] Node 1 active_anon:21048kB inactive_anon:92kB active_file:81412kB inactive_file:72692kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:72840kB dirty:3160kB writeback:0kB shmem:13364kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1660kB pagetables:1208kB sec_pagetables:72kB all_unreclaimable? no
[  218.506227][ T8995] Node 0 DMA free:892kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:32kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:200kB local_pcp:8kB free_cma:0kB
[  218.513344][ T8995] lowmem_reserve[]: 0 273 0 0 0
[  218.514846][ T8995] Node 0 DMA32 free:18024kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:2048KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:4kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:5252kB local_pcp:4264kB free_cma:0kB
[  218.524607][ T8995] lowmem_reserve[]: 0 0 0 0 0
[  218.526193][ T8995] Node 1 DMA32 free:274480kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:21048kB inactive_anon:92kB active_file:81412kB inactive_file:72692kB unevictable:1536kB writepending:3160kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:23948kB local_pcp:7468kB free_cma:0kB
[  218.536174][ T8995] lowmem_reserve[]: 0 0 0 0 0
[  218.537973][ T8995] Node 0 DMA: 19*4kB (UE) 27*8kB (UE) 12*16kB (UE) 14*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 932kB
[  218.542905][ T8995] Node 0 DMA32: 382*4kB (UMEH) 112*8kB (UMEH) 71*16kB (UMEH) 58*32kB (UMEH) 41*64kB (UMEH) 24*128kB (UMEH) 9*256kB (UM) 5*512kB (UM) 2*1024kB (M) 0*2048kB 0*4096kB = 18024kB
[  218.548971][ T8995] Node 1 DMA32: 2*4kB (UE) 2*8kB (UM) 6*16kB (E) 5*32kB (UE) 73*64kB (UME) 36*128kB (UME) 26*256kB (UME) 10*512kB (ME) 29*1024kB (UME) 17*2048kB (UME) 46*4096kB (UM) = 274264kB
[  218.555248][ T8995] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  218.558868][ T8995] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  218.562118][ T8995] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  218.565275][ T8995] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  218.568560][ T8995] 43146 total pagecache pages
[  218.570324][ T8995] 886 pages in swap cache
[  218.571886][ T8995] Free swap  = 111044kB
[  218.573418][ T8995] Total swap = 124996kB
[  218.574649][ T8995] 524155 pages RAM
[  218.575710][ T8995] 0 pages HighMem/MovableOnly
[  218.577004][ T8995] 206681 pages reserved
[  218.578569][ T8995] 0 pages cma reserved
[  218.777386][ T9038] netlink: 64 bytes leftover after parsing attributes in process `syz.0.993'.
[  218.781153][ T9038] netlink: 60 bytes leftover after parsing attributes in process `syz.0.993'.
[  218.790306][ T9038] unsupported nlmsg_type 40
[  220.270771][ T9080] random: crng reseeded on system resumption
[  220.418094][ T9083] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  220.422887][ T9083] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  220.425601][ T9083] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  221.389808][ T9090] netlink: 'syz.3.1010': attribute type 10 has an invalid length.
[  221.398412][ T9090] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.400787][ T9090] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.418943][ T9090] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.420841][ T9090] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.422917][ T9090] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.424797][ T9090] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.428083][ T9090] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  221.788173][ T9098] netlink: 'syz.3.1011': attribute type 1 has an invalid length.
[  221.791144][ T9098] netlink: 'syz.3.1011': attribute type 4 has an invalid length.
[  221.794131][ T9098] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.1011'.
[  223.021743][ T5401] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  223.080948][ T5348] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  223.177763][ T5401] usb 5-1: Using ep0 maxpacket: 8
[  223.193651][ T5401] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  223.196709][ T5401] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  223.210200][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  223.218561][ T5401] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  223.222446][ T5401] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  223.230740][ T5401] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  223.238326][ T5401] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.266731][ T9119] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.1017'.
[  223.595781][ T9125] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  223.664335][ T5401] usb 5-1: usb_control_msg returned -32
[  223.667243][ T5401] usbtmc 5-1:16.0: can't read capabilities
[  223.731757][ T9132] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  223.733642][ T9132] overlayfs: failed to set xattr on upper
[  223.735166][ T9132] overlayfs: ...falling back to redirect_dir=nofollow.
[  223.736952][ T9132] overlayfs: ...falling back to index=off.
[  223.740211][ T9132] overlayfs: ...falling back to uuid=null.
[  223.804655][ T9133] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1022'.
[  223.807849][ T9133] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1022'.
[  223.810171][ T9133] netlink: 'syz.3.1022': attribute type 6 has an invalid length.
[  223.812186][ T9133] netlink: 'syz.3.1022': attribute type 5 has an invalid length.
[  223.814128][ T9133] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1022'.
[  223.818139][ T9132] page: refcount:2 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x21835
[  223.819014][   T45] list_add corruption. next->prev should be prev (ffffe8ffac22fe20), but was ffff888023b59000. (next=ffff888049550400).
[  223.826064][   T45] ------------[ cut here ]------------
[  223.827614][   T45] kernel BUG at lib/list_debug.c:29!
[  223.829041][   T45] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  223.832227][   T45] CPU: 0 UID: 0 PID: 45 Comm: kworker/u32:2 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[  223.836909][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.840278][   T45] Workqueue: zswap1 compact_page_work
[  223.841716][   T45] RIP: 0010:__list_add_valid_or_report+0xa9/0x100
[  223.843394][   T45] Code: 20 b1 8b e8 f9 05 df fc 90 0f 0b 48 c7 c7 80 21 b1 8b e8 ea 05 df fc 90 0f 0b 48 89 d9 48 c7 c7 e0 21 b1 8b e8 d8 05 df fc 90 <0f> 0b 48 89 f1 48 c7 c7 60 22 b1 8b 48 89 de e8 c3 05 df fc 90 0f
[  223.848416][   T45] RSP: 0018:ffffc900006bfc00 EFLAGS: 00010282
[  223.850023][   T45] RAX: 0000000000000075 RBX: ffff888049550400 RCX: ffffffff816cbe59
[  223.852156][   T45] RDX: 0000000000000000 RSI: ffffffff816d6526 RDI: 0000000000000005
[  223.854426][   T45] RBP: ffff888021835000 R08: 0000000000000005 R09: 0000000000000000
[  223.856732][   T45] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000
[  223.858802][   T45] R13: ffff888021835008 R14: ffff888021835000 R15: ffffea0000860d40
[  223.860872][   T45] FS:  0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000
[  223.863247][   T45] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  223.864933][   T45] CR2: 00000000200003c0 CR3: 000000005fcd8000 CR4: 0000000000352ef0
[  223.866997][   T45] DR0: 0000000000000000 DR1: 00000000872c9164 DR2: 0000000000000000
[  223.869199][   T45] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  223.871615][   T45] Call Trace:
[  223.872506][   T45]  <TASK>
[  223.873281][   T45]  ? die+0x31/0x80
[  223.874298][   T45]  ? do_trap+0x232/0x430
[  223.875419][   T45]  ? __list_add_valid_or_report+0xa9/0x100
[  223.876952][   T45]  ? __list_add_valid_or_report+0xa9/0x100
[  223.878601][   T45]  ? do_error_trap+0xf4/0x230
[  223.879841][   T45]  ? __list_add_valid_or_report+0xa9/0x100
[  223.881383][   T45]  ? handle_invalid_op+0x34/0x40
[  223.882749][   T45]  ? __list_add_valid_or_report+0xa9/0x100
[  223.884288][   T45]  ? exc_invalid_op+0x2e/0x50
[  223.885489][   T45]  ? asm_exc_invalid_op+0x1a/0x20
[  223.886845][   T45]  ? __wake_up_klogd.part.0+0x99/0xf0
[  223.888266][   T45]  ? vprintk+0x86/0xa0
[  223.889461][   T45]  ? __list_add_valid_or_report+0xa9/0x100
[  223.891194][   T45]  do_compact_page+0x10b9/0x25d0
[  223.892414][   T45]  ? lock_acquire+0x2f/0xb0
[  223.893604][   T45]  ? process_one_work+0x8bb/0x1b30
[  223.894978][   T45]  process_one_work+0x958/0x1b30
[  223.896273][   T45]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  223.897813][   T45]  ? __pfx_process_one_work+0x10/0x10
[  223.899221][   T45]  ? assign_work+0x1a0/0x250
[  223.900442][   T45]  worker_thread+0x6c8/0xf00
[  223.901682][   T45]  ? __kthread_parkme+0x148/0x220
[  223.903016][   T45]  ? __pfx_worker_thread+0x10/0x10
[  223.904353][   T45]  kthread+0x2c1/0x3a0
[  223.905421][   T45]  ? _raw_spin_unlock_irq+0x23/0x50
[  223.906819][   T45]  ? __pfx_kthread+0x10/0x10
[  223.908013][   T45]  ret_from_fork+0x45/0x80
[  223.909086][   T45]  ? __pfx_kthread+0x10/0x10
[  223.910289][   T45]  ret_from_fork_asm+0x1a/0x30
[  223.911563][   T45]  </TASK>
[  223.912375][   T45] Modules linked in:
[  223.913518][   T45] ---[ end trace 0000000000000000 ]---
[  223.914981][   T45] RIP: 0010:__list_add_valid_or_report+0xa9/0x100
[  223.916652][   T45] Code: 20 b1 8b e8 f9 05 df fc 90 0f 0b 48 c7 c7 80 21 b1 8b e8 ea 05 df fc 90 0f 0b 48 89 d9 48 c7 c7 e0 21 b1 8b e8 d8 05 df fc 90 <0f> 0b 48 89 f1 48 c7 c7 60 22 b1 8b 48 89 de e8 c3 05 df fc 90 0f
[  223.921581][   T45] RSP: 0018:ffffc900006bfc00 EFLAGS: 00010282
[  223.923177][   T45] RAX: 0000000000000075 RBX: ffff888049550400 RCX: ffffffff816cbe59
[  223.925058][   T45] RDX: 0000000000000000 RSI: ffffffff816d6526 RDI: 0000000000000005
[  223.927105][   T45] RBP: ffff888021835000 R08: 0000000000000005 R09: 0000000000000000
[  223.929142][   T45] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000
[  223.931177][   T45] R13: ffff888021835008 R14: ffff888021835000 R15: ffffea0000860d40
[  223.933216][   T45] FS:  0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000
[  223.935595][   T45] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  223.937360][   T45] CR2: 00000000200003c0 CR3: 000000005fcd8000 CR4: 0000000000352ef0
[  223.939450][   T45] DR0: 0000000000000000 DR1: 00000000872c9164 DR2: 0000000000000000
[  223.941528][   T45] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  223.943607][   T45] Kernel panic - not syncing: Fatal exception
[  223.945903][   T45] Kernel Offset: disabled
[  223.947028][   T45] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:43:06  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000004e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035a15 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc900006bf568
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f
R12=0000000000000000 R13=000000000000004e R14=ffffffff850359b0 R15=0000000000000000
RIP=ffffffff85035a3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000200003c0 CR3=000000005fcd8000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000ca88ab RBX=0000000000000001 RCX=ffffffff8b12f739 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12060 RBP=ffffed100376f910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801bb7c880 R14=ffffffff901cc608 R15=0000000000000000
RIP=ffffffff8b130b1f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020029000 CR3=00000000127be000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000003 RCX=1ffffffff2039f1f RDX=ffff88802665c880
RSI=ffffffff813c4884 RDI=ffffffff813c4871 RBP=ffff88802a212c08 RSP=ffffc90003297518
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff901cc60f R11=0000000000000000
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b63fdc0 R15=ffffed1005442581
RIP=ffffffff813c4886 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f746c678 CR3=00000000127be000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff8169391e RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff901cc608 RBP=0000000000000000 RSP=ffffc90000e2f718
R8 =0000000000000000 R9 =0000000000000000 R10=000000000000001c R11=ffff88802b728a40
R12=0000000000000000 R13=0000000000000002 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81edf0c0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7475008 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000