last executing test programs:

5.611553311s ago: executing program 3 (id=845):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000000)={0x12f, &(0x7f0000000080)=[{}, {}, {}]})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x3c, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000090a010400000000000000000000000008000a40000000000900010073797a4d000000000900020073797a3200000000080005400000001f080003400000001408000c40100000000c000b"], 0x80}, 0x1, 0x0, 0x0, 0x1000000}, 0x0)

5.61107779s ago: executing program 3 (id=846):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca0000c441f96ec80fc4c60066400fe2def3ad46c7045300101000f00fc01ec422e10399c5c1202066410f6f15040000000000e1f563df", 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000300))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x40305839, &(0x7f0000000540)={'\x00', @link_local={0x1, 0x80, 0xc2, 0x5}})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000001c0)=0x29f8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000080)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r7, &(0x7f0000000480)={0x2, 0x4e22, @empty}, 0x10)
listen(r7, 0x10000a47)
readv(r7, &(0x7f0000000040)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000040)={'veth0_macvtap\x00', @broadcast})
r8 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r9 = dup(r8)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$HIDIOCSFEATURE(r9, 0xc0404806, &(0x7f0000000080)="abc7dedc1440fe4b7778e8d3d91b77aa401022b41fbd34f60fe733a53cb4923cf5745009fb5c492cbdb80056afbdeb9a77882befc8431092f086b2b36320ac15ee490edc7d86ad6f9ac0963db0386736f35a6e1843fd10af601a32463a6ce8ff7dd2fced76565d5b8904e06fd22b0dac3c15e00ca93f738614704f6d9314ab5e5d736b1788853b792880c026661ab1e034f87952d7b88adc1e2801e09aecd5057ac244b60b35843889eb749df2e54dae7fe3c77f44d37104b9f0b23fe177ece5d8")

4.661840535s ago: executing program 3 (id=858):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="04133edac90004e7"], 0x8)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
socket$netlink(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0x8000}, 0x0, &(0x7f00000002c0)={0x3ff, 0xf7fffffffffff4f3, 0x0, 0x2, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffb1}, 0x0, 0x0)
ioctl$KIOCSOUND(r3, 0x4b2f, 0x4)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x94, r4, 0x300, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x94}}, 0x41)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYRESHEX=0x0, @ANYRESDEC=0x0])
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c00078018000180140002"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)

3.212691035s ago: executing program 1 (id=867):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffdd2)
openat$dsp(0xffffffffffffff9c, 0x0, 0x410bc0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0x1a, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc8180ca8395cc", 0x0, 0xffffffff, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x4c)
syz_open_dev$char_usb(0xc, 0xb4, 0xfc5)
socket$key(0xf, 0x3, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000906010200000000000a0000000000000900020073797a31000000000500010007000000180007800c00018008000140ffffffff080009"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
accept4(r5, &(0x7f0000000240)=@in={0x2, 0x0, @multicast2}, &(0x7f00000001c0)=0x80, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = add_key$user(&(0x7f00000000c0), &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400), 0x0, 0xfffffffffffffffe)
r8 = add_key$user(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r11, 0x4048aecb, &(0x7f0000000000))
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r12 = add_key$user(0x0, &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000006900), 0x0, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r7, r8, r12}, 0x0, 0x0, 0x0)
r13 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r13, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)

2.730679819s ago: executing program 2 (id=870):
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ioctl$VIDIOC_DBG_S_REGISTER(0xffffffffffffffff, 0x4038564f, &(0x7f0000000280)={{0x3, @name="6da5faa55d8696d51e5faa8f0d8a97daeddb93501d9a4e831e97c324f3438882"}, 0x8, 0x1, 0x8})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000040)='./cgroup/../file0\x00')
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = open(&(0x7f0000000040)='.\x00', 0x10000, 0x0)
r5 = timerfd_create(0x0, 0x0)
timerfd_settime(r5, 0x3, &(0x7f0000000140), 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b9ac9ff, 0x0, 0x0, 0x0, 0x0, 0x5a6c103})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="1b00000000000000000000000f00000000000000", @ANYRES32=0x1, @ANYBLOB='r\r\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0400000002000000050000d190ff022bcf87b300000000000000000092ac54936e3131bb99cb910906c570e4d6840d0af29d8140a6106db5382bae8524d1b0a5340271a2a0bdf11acd2ee2421a43e385d01aed7dcf53b60649"], 0x50)
clock_gettime(0x0, &(0x7f0000000100)={<r6=>0x0, <r7=>0x0})
timerfd_settime(r5, 0x3, &(0x7f00000001c0)={{}, {r6, r7+60000000}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x6, 0xe, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffff8, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.730063785s ago: executing program 1 (id=871):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018000000000000004000000040002e000300000000000000000000090300000000000000000000010500000008000000010000000000000700"], 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

2.729761153s ago: executing program 1 (id=872):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000002)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)=0x6)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
read$dsp(r1, &(0x7f00000011c0)=""/4117, 0x200021d5)

1.99915991s ago: executing program 2 (id=875):
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x24c, 0x0, 0x11, 0x148, 0x120, 0x10, 0x1b8, 0x2a8, 0x2a8, 0x1b8, 0x2a8, 0xac, 0x0, {[{{@ip={@empty, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'rose0\x00'}, 0x10, 0xd8, 0x120, 0x1c, {}, [@common=@unspec=@helper={{0x44}, {0x0, 'irc-20000\x00'}}, @common=@unspec=@connlabel={{0x24}, {0x0, 0x7}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00'}}}, {{@ip={@private, @multicast2, 0x0, 0x0, 'wlan0\x00', 'ip_vti0\x00'}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x2a8) (async)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x24c, 0x0, 0x11, 0x148, 0x120, 0x10, 0x1b8, 0x2a8, 0x2a8, 0x1b8, 0x2a8, 0xac, 0x0, {[{{@ip={@empty, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'rose0\x00'}, 0x10, 0xd8, 0x120, 0x1c, {}, [@common=@unspec=@helper={{0x44}, {0x0, 'irc-20000\x00'}}, @common=@unspec=@connlabel={{0x24}, {0x0, 0x7}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00'}}}, {{@ip={@private, @multicast2, 0x0, 0x0, 'wlan0\x00', 'ip_vti0\x00'}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x2a8)
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x80049367, &(0x7f0000000180))
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x2, 0x4, 0x50c, 0xffffffff, 0x0, 0x0, 0x358, 0xfeffffff, 0xffffffff, 0x444, 0x444, 0x444, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0x23c, 0x260, 0x0, {}, [@common=@inet=@hashlimit2={{0x150}, {'bridge0\x00', {0x100000000000, 0x6, 0x0, 0x0, 0x0, 0x40, 0x10000}}}, @common=@hbh={{0x48}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffb}}, {{@uncond, 0x0, 0xd4, 0xf8, 0x0, {}, [@common=@unspec=@cluster={{0x30}}]}, @REJECT={0x24}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @mcast1, [], [], 'team_slave_1\x00', 'syzkaller1\x00'}, 0x0, 0xc8, 0xec, 0x0, {}, [@common=@eui64={{0x24}}]}, @common=@inet=@SYNPROXY={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x568)

1.952582433s ago: executing program 2 (id=876):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a300000f5ff48000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000210cc209800800014000000005600000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000034000380300000802c000180250001002130404c6bfef3a31e2587ebd76200eb3ea056f39e3ab8a93c358099bf8cf3007d00000014000000110001"], 0xf0}}, 0x800)

1.902020768s ago: executing program 2 (id=879):
epoll_create1(0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={<r0=>0xffffffffffffffff, 0xfffffffffffffff8, 0x0, 0x1})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0xa, &(0x7f00000000c0)=[@dstype3={0x7, 0xf}], 0x1)
socket$inet_sctp(0x2, 0x800000000000001, 0x84)
syz_emit_ethernet(0xb6, &(0x7f0000000380)={@broadcast, @random="5b938ebea5c5", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb3, 0x68, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x80, 0x0}, @local}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0x2, "89da8f14a13079403ee39c6e958d3bfaeea30cf2a400c152ad35446f61cdbab36632685ab3a355463f8ef9aadca6d562a2262368f5a2d1898931b64d996ac0526cfbdd69e0025b5a70"}}}}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
openat$vim2m(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r5, 0x104, 0x1, &(0x7f0000000000), 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
preadv(r7, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000240)=""/219, 0xdb}], 0x2, 0x9, 0x0)
io_uring_enter(0xffffffffffffffff, 0x708, 0xafef, 0x0, 0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
unshare(0x22020600)
move_mount(r8, 0x0, r8, 0x0, 0x256)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r9, &(0x7f0000000100)={0x0, 0xec0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000297cb524acb6f32f5e6ffd9a6ec2c099d8c038848251240cff6fa6c43f02ab06c9f7635db2297792aa39f6bcc82d54829c55fb4075bdf5b459dd74f66567aac6d9d1bb434518e5564a469cb305a80ca4d5059438a1a90fec52bae96e41dc1f893a26a584bf4718f592232d3cb91a84cda1844f70056391aa3aa6adeaebd381b26d9ef04000000000000000609bb910bad52105d635ebbee6daf8e74ec8451c506c7f48e2dd831d556079ce42e579d2015309668bf693f2c34e89f376ad798a59eb0e94128000000", @ANYRES16=r10, @ANYBLOB="01032abd7000fedbdf250b000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000090}, 0x40)
write$proc_mixer(r2, &(0x7f0000000500)=[{'RADIO', @val={' \'', 'Synth'}}, {'PHONEIN', @void}, {'PCM', @val={' \'', 'Synth Capture'}}, {'TREBLE', @val={' \'', 'Master Capture Switch'}}, {'RECLEV', @void}, {'MONITOR', @void}, {'IMIX', @val={' \'', 'CD'}}, {'PHONEIN', @void}], 0xbe)

1.702319118s ago: executing program 2 (id=880):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffdd2)
openat$dsp(0xffffffffffffff9c, 0x0, 0x410bc0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0x1a, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc8180ca8395cc", 0x0, 0xffffffff, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x4c)
syz_open_dev$char_usb(0xc, 0xb4, 0xfc5)
socket$key(0xf, 0x3, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000906010200000000000a0000000000000900020073797a31000000000500010007000000180007800c00018008000140ffffffff080009"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
accept4(r5, &(0x7f0000000240)=@in={0x2, 0x0, @multicast2}, &(0x7f00000001c0)=0x80, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = add_key$user(&(0x7f00000000c0), &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400), 0x0, 0xfffffffffffffffe)
r8 = add_key$user(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r11, 0x4048aecb, &(0x7f0000000000))
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r12 = add_key$user(0x0, &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000006900), 0x0, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r7, r8, r12}, 0x0, 0x0, 0x0)
r13 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r13, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)

1.702074195s ago: executing program 0 (id=881):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (fail_nth: 8)

1.557199536s ago: executing program 0 (id=882):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@bridge_getneigh={0x7c, 0x1e, 0x1, 0x70bd29, 0x25dfdbfe, {0x7, 0x0, 0x0, 0x0, 0x0, 0x120}, [@IFLA_LINK={0x8}, @IFLA_PORT_SELF={0x54, 0x19, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x6}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "9378239190a4514e422c6f0869ab67ce"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x1}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x72}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "e2d234af4aa9bd0fc3a56348ae985d00"}, @IFLA_PORT_PROFILE={0x5, 0x2, '\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0xf652}]}]}, 0x7c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, 0x0, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x8, @loopback}, 0x1c)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r6)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007640)=ANY=[], 0x3aa0}}, 0x0)
writev(r0, &(0x7f0000000480)=[{&(0x7f0000000440)="8a", 0x1}], 0x1)

1.392714267s ago: executing program 1 (id=883):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000001c0)={0xa019, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = getpgrp(0x0)
r5 = landlock_create_ruleset(&(0x7f0000000080)={0x220, 0x0, 0x1}, 0x18, 0x0)
landlock_restrict_self(r5, 0x0)
fcntl$setownex(r3, 0xf, &(0x7f0000000100)={0x2, r4})
sendmsg$unix(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="b5", 0x1}], 0x1}, 0x240408c1)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x39}})
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@ipv6_getroute={0x24, 0x1a, 0x1, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x1c}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008011}, 0x8000)

1.392481689s ago: executing program 3 (id=884):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000001c00), 0x400000000000159, 0x40840)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000000000)=""/157)
lseek(0xffffffffffffffff, 0x9, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)=@newnexthop={0x24, 0x68, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x4, 0x0, 0x4}, [@NHA_BLACKHOLE={0x4}, @NHA_GROUP={0x4}, @NHA_FDB={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)

1.342859244s ago: executing program 1 (id=885):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="c50a0000000000006113b800000000001800000000000000000000000000100095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

1.342524483s ago: executing program 1 (id=886):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x64a341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
socket$kcm(0x2, 0xd, 0x2)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x200000)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
semctl$SEM_STAT_ANY(0x0, 0x4, 0x14, 0x0)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r4, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20, 0x1, 0x0, 0x0, 0xffffffff}}, 0x11c)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201000000000040341a02080000000000010902"], 0x0)
r5 = syz_open_dev$hidraw(&(0x7f0000000080), 0x1, 0x200)
ioctl$HIDIOCGFEATURE(r5, 0xc0404807, &(0x7f0000001a40)={0x8c, "895cd46771f00301c1ca639506f24c672ecfd2bd1050f9c5774eb3e02ce08f61bb32758aa48d8b91deae8e868458c5a16302ef180c82320b8e92c2821ee0eb19"})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
close(r4)
ioctl$HIDIOCGFEATURE(r5, 0xc0404807, &(0x7f00000000c0)={0x8, "53bab9ea1cc27f70d208f2adddd2e861831db579b2c1746e9406fdf5849dda870743fa9db4f5c2df09b40f7fab01f215d7a0bd9c8e87a5c677eb6580167fa645"})
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x1c, 0x1, 0x4, 0x101, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFULA_CFG_CMD={0x5, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8045}, 0x40000)
r6 = dup(r0)
write$UHID_INPUT(r6, &(0x7f0000001980)={0xc, {"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", 0x5c1}}, 0x505)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)={0x38, r8, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r10}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xd}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9a8}]]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1.061896814s ago: executing program 0 (id=887):
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x4, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a0051"], 0x40}, 0x1, 0x0, 0x0, 0x11}, 0x0)

835.019616ms ago: executing program 2 (id=888):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f000000000000000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cdrom(0xffffff9c, &(0x7f00000012c0), 0x42880, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
syz_usbip_server_init(0x3)
add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe)
lstat(&(0x7f00000004c0)='./file0\x00', 0x0)
mount$9p_xen(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', &(0x7f0000000440), 0x942820, &(0x7f00000006c0)=ANY=[@ANYBLOB='trans=xen,euid>', @ANYBLOB, @ANYRESDEC, @ANYBLOB="2c7f626a5f75736572354d6465762f666230002c6f626a5f757365723d7b2c736d61636b66737472616e736d7592c674653d242f5b2625295b24738d4d2c6f626a5f726f6c650b6173796d6d6574726963002c646f6e745f6d656173757265"])
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

332.484044ms ago: executing program 3 (id=889):
r0 = socket$inet6(0xa, 0x3, 0x262)
r1 = eventfd2(0x6, 0x180801)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000000)={0x484c, 0x2, 0x8, r1, 0xc})
r3 = openat$ttynull(0xffffff9c, &(0x7f0000000040), 0x4000, 0x0)
ioctl$VT_GETSTATE(r3, 0x5603, &(0x7f0000000080)={0x6, 0x7, 0x8})
read$FUSE(0xffffffffffffffff, &(0x7f00000000c0)={0x2020, 0x0, <r4=>0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000002100)={0x50, 0x0, r4, {0x7, 0x2b, 0x8, 0x50000002, 0x8, 0x1, 0x7, 0xf16, 0x0, 0x0, 0x2, 0x7fff}}, 0x50)
r6 = fsmount(0xffffffffffffffff, 0x1, 0x8)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000002180)={0x8, 0xf000, 0x2, r1, 0xa})
syz_emit_ethernet(0x6d, &(0x7f00000021c0)={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x88a8, 0x2, 0x0, 0x4}, {0x8100, 0x1, 0x0, 0x1}}, {@x25={0x805, {0x3, 0x5, 0xf3, "f1a2120fcd662507f982f34284bcc7948d501b789a2e4d429e6d3be7ed945921133b6ec3a9fa0383d9f26b9c163793ac44bb09adac56b6f40578352f970d6841723c316b614d71b0593f88843cad13e9cd5ad2da"}}}}, &(0x7f0000002240)={0x1, 0x3, [0x62f, 0x687, 0x3fa, 0xfad]})
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000023c0)={&(0x7f0000002280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002380)={&(0x7f00000022c0)={0x8c, 0x2, 0x6, 0x201, 0x0, 0x0, {0xa}, [@IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x401}]}, @IPSET_ATTR_DATA={0x3c, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x40}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x2}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x8}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x8c}}, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r6, 0xc0045005, &(0x7f0000002400)=0xcd7)
prlimit64(r5, 0xc, &(0x7f0000002440)={0x1, 0xffff}, &(0x7f0000002480))
r7 = openat$vmci(0xffffff9c, &(0x7f0000002580), 0x2, 0x0)
io_submit(0x0, 0x3, &(0x7f0000003700)=[&(0x7f0000002540)={0x0, 0x0, 0x0, 0x0, 0x6, r3, &(0x7f00000024c0)="1f7a5eaecaf961b13cf1a075c8e069a89d741afdcaa62ba8dc6fdfabfefca64f62f098743671f15218e94af61663a8db41dada5699718fa3b87fe1570adb43131fcb7b9b1c7200409d7d6f4105530195cc8c3e4b5f257036932ddd88e55fc8fb0b1bf7e0bc4d45eb3642783da21db0ac37c6fd12", 0x74, 0x5, 0x0, 0x2, r1}, &(0x7f00000035c0)={0x0, 0x0, 0x0, 0x2, 0xa13, r7, &(0x7f00000025c0)="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", 0x1000, 0x1, 0x0, 0x7}, &(0x7f00000036c0)={0x0, 0x0, 0x0, 0x7, 0x4, r1, &(0x7f0000003600)="412ad99b85ad1be893c6379bf6b3a018b5f1f2920bd5dbb34a76630c341121a1546780db418da8769a82666babb19549058168de9ad9cd681e380192b7bf650fcb488f1e083c94e1b1bf0cc0b0db7efde93e824acd439bb7f1057918ec94faa913e61adce2f71959ce58fb663f8c3fae5f3d2e8093a3d247f5ed414078d92c630e80735871468f7e9adbd73fbc2c9fd3ba77d253b275a5289edb8b7682ec6eedea2b35c49cc6c26a65c7ff3aab0e84970bc06b3483", 0xb5, 0x401, 0x0, 0x1, r1}])
ioctl$KDGKBDIACR(r6, 0x4b4a, &(0x7f0000003740)=""/148)
getsockopt(r0, 0x9, 0x1, &(0x7f0000003800)=""/100, &(0x7f0000003880)=0x64)
fcntl$setflags(r1, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000003940)={'syztnl1\x00', &(0x7f00000038c0)={'ip6gre0\x00', <r8=>0x0, 0x29, 0xb, 0x9, 0x3, 0xeb, @private2, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x80, 0x8000, 0x3, 0x4}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000003a00)={'ip6tnl0\x00', &(0x7f0000003980)={'ip6tnl0\x00', r8, 0x4, 0x0, 0x1, 0x8, 0x20, @dev={0xfe, 0x80, '\x00', 0x38}, @empty, 0x20, 0x80, 0xb, 0xb2ca}})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000003a40)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x57, r8})
syz_extract_tcp_res(&(0x7f0000003a80), 0x7, 0xc52)
socket$inet6(0xa, 0xa, 0xf9)
prlimit64(r5, 0x3, &(0x7f0000003ac0)={0x3, 0x1}, &(0x7f0000003b00))
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r6, 0x800442d3, &(0x7f0000003b40)={0x1, 0xc5a6, 0x5606, @random="52452ec382cb", 'vlan0\x00'})
ioctl$SNDCTL_TMR_METRONOME(r6, 0x40045407)
openat$dlm_control(0xffffff9c, &(0x7f0000003b80), 0x103001, 0x0)
getrlimit(0xc, &(0x7f0000003bc0))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

252.615616ms ago: executing program 3 (id=890):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x80}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x16, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000811053000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb2)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f000, 0x4})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x6d8a, &(0x7f0000000300)={0x0, 0x37b5, 0x10100, 0x3, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_emit_ethernet(0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd606410a600000000fc020000000000000000000000000000fe8800000000000000000000000001014a21ebfecfc9d23e6d8b7c0037ef11f7519e79ced9bdc65cdfa52516a45aec34c2e0948e1432ae2330b01d0c3308b1d292d32b7251e487f1144b02e97707f56ea99f240e93cd8af688a675"], 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_tables_targets\x00')
preadv(r6, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/66, 0x42}], 0x1, 0x85, 0xa)
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
userfaultfd(0x80801)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="500000001000010400000000000000c300000000", @ANYRES32=0x0, @ANYBLOB="7c5b0200000000001c001a8018000a8014000700fe8800000000000000fe0000000001011400350077673100"/56], 0x50}}, 0x44040)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffffb}]})
rt_sigsuspend(0xffffffffffffffff, 0x8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f00000001c0)={0x7, @raw_data="3c68b8b6d35f7606d9613d90769c91e8b6f10080407b7768f0ef49d1ddb92ec52c18750b962d1365fad20340e10c26ae34e0f14d4ebc351598e235b51e7050c216af9e11741141cba67938a8286097abae464d598bd4f6a8ba0628800371dde87cfbe1b47fc86da23f7f03bc29bb7538f746017fbc2a0a3a466193aecd8a2bb45cd3b52fc6b1f0cd3517707c2a53a624c3c36e43d28d97f949af3374ce02f7e73f6d34b89c50c1e26b80641014deb45160e28320191528ffb027013be60140dd0c4a8845625d0e64"})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x2}, 0x0, 0x0)

71.738511ms ago: executing program 0 (id=891):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000000)={0x12f, &(0x7f0000000080)=[{}, {}, {}]})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x3c, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000090a010400000000000000000000000008000a40000000000900010073797a4d000000000900020073797a3200000000080005400000001f080003400000001408000c40100000000c000b"], 0x80}, 0x1, 0x0, 0x0, 0x48000000}, 0x0)

378.987µs ago: executing program 0 (id=892):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000000)=ANY=[])
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f00000000c0)={0x18, 0x0, {0x2, @random="f41c0cedfafd", 'ip6_vti0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r0, 0x80047453, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x2fe, 0x10)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r2, 0x5408, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000025c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, {{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x20000004}}], 0x2, 0x0)

0s ago: executing program 0 (id=893):
epoll_create1(0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={<r0=>0xffffffffffffffff, 0xfffffffffffffff8, 0x0, 0x1})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0xa, &(0x7f00000000c0)=[@dstype3={0x7, 0xf}], 0x1)
socket$inet_sctp(0x2, 0x800000000000001, 0x84)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x50, 0x68, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x80, 0x0}, @local}, @redirect={0x5, 0x0, 0x0, @multicast2, {0xd, 0x4, 0x1, 0x5, 0x6, 0x67, 0x3, 0xf4, 0x29, 0x4, @remote, @loopback, {[@noop, @ra={0x94, 0x4, 0x1}, @generic={0x94, 0x8, "8abf5041c5fd"}, @timestamp={0x44, 0x10, 0x7e, 0x0, 0x3, [0x100, 0x9, 0x7]}]}}}}}}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
openat$vim2m(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r4, 0x104, 0x1, &(0x7f0000000000), 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x708, 0xafef, 0x0, 0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
unshare(0x22020600)
move_mount(r5, 0x0, r5, 0x0, 0x256)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r6, &(0x7f0000000100)={0x0, 0xec0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r7, 0x301, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000090}, 0x40) (fail_nth: 5)

0s ago: executing program 1 (id=894):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) (async)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x1) (async)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000140)=0x10)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
syz_pidfd_open(r0, 0x0) (async)
r3 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0}) (async, rerun: 64)
io_uring_enter(r3, 0x7a98, 0x0, 0x0, 0x0, 0x0) (rerun: 64)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f00000013c0)=""/102369, 0xda6f, 0xffffffffffffffff, 0x0) (async)
r7 = socket$tipc(0x1e, 0x5, 0x0) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10) (async, rerun: 64)
r9 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4400000010004b04000023dc5ad93c5c2b7b0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500160003000000080004"], 0x44}}, 0x0)
ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f0000000040)={0x25, 0x14, &(0x7f0000000340)}) (async)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x26, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x4, 0x81, 0xffffffff, 0x0, 0x17, 0x4, 0x0, [0x0, 0x100000]}}) (async)
socket$inet6(0x10, 0x3, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414000800080004"], 0x2c}}, 0x0) (async, rerun: 32)
r10 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) (async)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r11)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x2c, r12, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x6}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000840}, 0x46000)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000008, 0x4010, r10, 0x30afb000)

kernel console output (not intermixed with test programs):

2b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   66.185999][ T6363] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001740
[   66.186009][ T6363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   66.186017][ T6363] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   66.186026][ T6363] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   66.186035][ T6363] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   66.186056][ T6363]  </TASK>
[   67.050070][ T6381] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   67.097272][ T6382] netlink: 8 bytes leftover after parsing attributes in process `syz.1.111'.
[   67.100193][ T6382] netlink: 'syz.1.111': attribute type 9 has an invalid length.
[   67.288522][ T6395] netlink: 12 bytes leftover after parsing attributes in process `syz.2.115'.
[   67.713525][ T6406] random: crng reseeded on system resumption
[   67.786114][ T6406] netlink: 'syz.0.118': attribute type 10 has an invalid length.
[   67.789150][ T6406] netlink: 40 bytes leftover after parsing attributes in process `syz.0.118'.
[   68.296570][ T5290] Bluetooth: hci3: Unable to find connection for big 0xc9
[   68.645108][ T6421] netlink: 12 bytes leftover after parsing attributes in process `syz.2.123'.
[   68.702201][ T6424] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   68.706117][ T6424] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   68.983028][ T6432] netlink: 20 bytes leftover after parsing attributes in process `syz.0.127'.
[   69.024680][ T6434] Cannot find set identified by id 0 to match
[   69.166904][ T6445] netlink: 224 bytes leftover after parsing attributes in process `syz.1.132'.
[   69.338931][ T6450] netlink: 8 bytes leftover after parsing attributes in process `syz.3.133'.
[   69.341958][ T6450] netlink: 'syz.3.133': attribute type 9 has an invalid length.
[   69.424598][ T6452] netlink: 4 bytes leftover after parsing attributes in process `syz.0.134'.
[   69.526139][ T6424] overlayfs: statfs failed on './file0'
[   69.778635][ T6463] random: crng reseeded on system resumption
[   69.818922][ T6463] netlink: 'syz.0.135': attribute type 10 has an invalid length.
[   69.821643][ T6463] netlink: 40 bytes leftover after parsing attributes in process `syz.0.135'.
[   70.520913][ T6474] process 'syz.2.138' launched '/dev/fd/8' with NULL argv: empty string added
[   70.912381][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[   70.914743][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[   71.188209][ T6491] __nla_validate_parse: 1 callbacks suppressed
[   71.188222][ T6491] netlink: 12 bytes leftover after parsing attributes in process `syz.0.145'.
[   71.246186][ T6495] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   71.504030][ T6500] fuse: Bad value for 'fd'
[   71.715862][ T5994] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   71.869093][ T5994] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   71.877130][ T6519] netlink: 8 bytes leftover after parsing attributes in process `syz.1.152'.
[   71.877793][ T5994] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   71.880332][ T6519] netlink: 'syz.1.152': attribute type 9 has an invalid length.
[   71.885087][ T5994] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.898793][ T5994] usb 8-1: Product: syz
[   71.901160][ T5994] usb 8-1: Manufacturer: syz
[   71.904793][ T5994] usb 8-1: SerialNumber: syz
[   72.128260][ T5994] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   72.385851][ T5974] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   72.413688][ T6526] wireguard0: entered promiscuous mode
[   72.415609][ T6526] wireguard0: entered allmulticast mode
[   72.442189][ T5995] usb 8-1: USB disconnect, device number 2
[   72.501285][ T5995] usblp0: removed
[   72.566140][ T5974] usb 6-1: Using ep0 maxpacket: 16
[   72.570995][ T5974] usb 6-1: config 253 has an invalid interface number: 186 but max is 0
[   72.573954][ T5974] usb 6-1: config 253 has no interface number 0
[   72.576788][ T5974] usb 6-1: config 253 interface 186 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[   72.580458][ T5974] usb 6-1: config 253 interface 186 altsetting 5 endpoint 0xD has invalid maxpacket 512, setting to 64
[   72.584499][ T5974] usb 6-1: config 253 interface 186 altsetting 5 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[   72.590098][ T5974] usb 6-1: config 253 interface 186 has no altsetting 0
[   72.594289][ T5974] usb 6-1: New USB device found, idVendor=041e, idProduct=400a, bcdDevice=99.09
[   72.597656][ T5974] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.600273][ T5974] usb 6-1: Product: syz
[   72.601752][ T5974] usb 6-1: Manufacturer: syz
[   72.603404][ T5974] usb 6-1: SerialNumber: syz
[   72.644396][ T6533] netlink: 12 bytes leftover after parsing attributes in process `syz.3.156'.
[   72.957559][ T6542] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   72.959614][ T6542] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   72.970795][ T6542] vhci_hcd vhci_hcd.0: Device attached
[   73.023225][ T5974] gspca_main: spca500-2.14.0 probing 041e:400a
[   73.039060][ T5974] usb 6-1: USB disconnect, device number 2
[   73.435865][ T5994] usb 43-1: new high-speed USB device number 3 using vhci_hcd
[   73.571885][ T6544] vhci_hcd: connection reset by peer
[   73.576395][   T13] vhci_hcd: stop threads
[   73.578804][   T13] vhci_hcd: release socket
[   73.581110][   T13] vhci_hcd: disconnect device
[   73.682476][ T6554] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[   74.883486][ T6569] loop2: detected capacity change from 0 to 7
[   74.890607][ T5948]  loop2: [POWERTEC] p1 p2 p3
[   74.893217][ T5948] loop2: p1 start 65535 is beyond EOD, truncated
[   74.896152][ T5948] loop2: p2 start 1680832101 is beyond EOD, truncated
[   74.898797][ T5948] loop2: p3 start 22020096 is beyond EOD, truncated
[   74.903821][ T6569]  loop2: [POWERTEC] p1 p2 p3
[   74.907751][ T6569] loop2: p1 start 65535 is beyond EOD, truncated
[   74.910424][ T6569] loop2: p2 start 1680832101 is beyond EOD, truncated
[   74.912695][ T6569] loop2: p3 start 22020096 is beyond EOD, truncated
[   74.914853][ T6571] random: crng reseeded on system resumption
[   74.994701][ T6571] netlink: 'syz.0.163': attribute type 10 has an invalid length.
[   74.998168][ T6571] netlink: 40 bytes leftover after parsing attributes in process `syz.0.163'.
[   75.027079][ T6578] netlink: 4 bytes leftover after parsing attributes in process `syz.3.166'.
[   75.030685][ T6578] bridge_slave_1: left allmulticast mode
[   75.033006][ T6578] bridge_slave_1: left promiscuous mode
[   75.035781][ T6578] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.094553][ T6582] hub 6-0:1.0: USB hub found
[   75.096964][ T6582] hub 6-0:1.0: 1 port detected
[   75.125083][ T6578] bridge_slave_0: left allmulticast mode
[   75.127986][ T6578] bridge_slave_0: left promiscuous mode
[   75.132815][ T6578] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.744991][ T6583] netlink: 'syz.1.167': attribute type 39 has an invalid length.
[   76.066056][ T5974] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   76.218103][ T5974] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   76.223936][ T5974] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   76.228510][ T5974] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.231168][ T5974] usb 7-1: Product: syz
[   76.232565][ T5974] usb 7-1: Manufacturer: syz
[   76.234563][ T5974] usb 7-1: SerialNumber: syz
[   76.531466][ T5974] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   76.671312][ T6601] wireguard0: entered promiscuous mode
[   76.673773][ T6601] wireguard0: entered allmulticast mode
[   77.165343][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.0.175'.
[   77.183378][ T6611] hub 6-0:1.0: USB hub found
[   77.185388][ T6611] hub 6-0:1.0: 1 port detected
[   77.660800][   T24] IPVS: starting estimator thread 0...
[   77.745908][ T6619] IPVS: using max 26 ests per chain, 62400 per kthread
[   77.786933][ T5290] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   77.790818][ T5290] Bluetooth: hci0: Injecting HCI hardware error event
[   77.793809][ T5290] Bluetooth: hci0: hardware error 0x00
[   77.904177][ T6622] nft_compat: unsupported protocol 0
[   78.251944][ T6636] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[   78.253614][ T6636] netlink: 32 bytes leftover after parsing attributes in process `syz.0.179'.
[   78.592831][ T5994] vhci_hcd: vhci_device speed not set
[   78.836702][   T34] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   78.948613][ T6646] netlink: 224 bytes leftover after parsing attributes in process `syz.1.186'.
[   78.987619][   T34] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   78.997228][   T34] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   79.000128][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.002780][   T34] usb 8-1: Product: syz
[   79.014440][   T34] usb 8-1: Manufacturer: syz
[   79.024540][   T34] usb 8-1: SerialNumber: syz
[   79.247260][   T34] usblp 8-1:1.0: usblp1: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   79.469132][ T6031] usb 8-1: USB disconnect, device number 3
[   79.484785][ T6031] usblp1: removed
[   79.866748][ T5290] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   80.471349][ T6672] netlink: 'syz.1.194': attribute type 39 has an invalid length.
[   81.150445][   T58] cfg80211: failed to load regulatory.db
[   81.171043][ T6688] program syz.0.199 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   81.254553][ T6690] syz.0.199 uses obsolete (PF_INET,SOCK_PACKET)
[   81.335873][   T34] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   81.497883][   T34] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   81.508091][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   81.511396][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.525849][   T34] usb 6-1: Product: syz
[   81.528794][   T34] usb 6-1: Manufacturer: syz
[   81.530764][   T34] usb 6-1: SerialNumber: syz
[   81.762910][   T34] usblp 6-1:1.0: usblp1: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   81.973058][   T34] usb 6-1: USB disconnect, device number 3
[   81.981336][   T34] usblp1: removed
[   82.818613][ T6718] Cannot find map_set index 0 as target
[   83.332437][ T6721] netlink: 44 bytes leftover after parsing attributes in process `syz.0.207'.
[   83.397145][  T837] usb 7-1: USB disconnect, device number 3
[   83.400929][  T837] usblp0: removed
[   83.712927][ T6741] exFAT-fs (nullb0): invalid boot record signature
[   83.715248][ T6741] exFAT-fs (nullb0): failed to read boot sector
[   83.717951][ T6741] exFAT-fs (nullb0): failed to recognize exfat type
[   83.840993][ T6746] FAULT_INJECTION: forcing a failure.
[   83.840993][ T6746] name failslab, interval 1, probability 0, space 0, times 0
[   83.845368][ T6746] CPU: 2 UID: 0 PID: 6746 Comm: syz.2.214 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[   83.845382][ T6746] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.845387][ T6746] Call Trace:
[   83.845392][ T6746]  <TASK>
[   83.845396][ T6746]  dump_stack_lvl+0x16c/0x1f0
[   83.845426][ T6746]  should_fail_ex+0x512/0x640
[   83.845440][ T6746]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   83.845453][ T6746]  should_failslab+0xc2/0x120
[   83.845465][ T6746]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   83.845476][ T6746]  ? __alloc_skb+0x2b2/0x380
[   83.845489][ T6746]  __alloc_skb+0x2b2/0x380
[   83.845499][ T6746]  ? __pfx___alloc_skb+0x10/0x10
[   83.845507][ T6746]  ? do_raw_spin_lock+0x12c/0x2b0
[   83.845522][ T6746]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   83.845541][ T6746]  sock_wmalloc+0xd4/0x120
[   83.845551][ T6746]  l2tp_ip_sendmsg+0x1b5/0x18d0
[   83.845565][ T6746]  ? __import_iovec+0x1c8/0x660
[   83.845579][ T6746]  ? __pfx_l2tp_ip_sendmsg+0x10/0x10
[   83.845592][ T6746]  inet_sendmsg+0x119/0x140
[   83.845606][ T6746]  ____sys_sendmsg+0x973/0xc70
[   83.845621][ T6746]  ? __pfx_____sys_sendmsg+0x10/0x10
[   83.845634][ T6746]  ? get_compat_msghdr+0x11a/0x170
[   83.845646][ T6746]  ? __pfx__kstrtoull+0x10/0x10
[   83.845660][ T6746]  ___sys_sendmsg+0x134/0x1d0
[   83.845672][ T6746]  ? __pfx____sys_sendmsg+0x10/0x10
[   83.845690][ T6746]  ? find_held_lock+0x2b/0x80
[   83.845704][ T6746]  ? __pfx___might_resched+0x10/0x10
[   83.845728][ T6746]  __sys_sendmmsg+0x2f9/0x420
[   83.845742][ T6746]  ? __pfx___sys_sendmmsg+0x10/0x10
[   83.845758][ T6746]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   83.845777][ T6746]  ? fput+0x70/0xf0
[   83.845788][ T6746]  ? ksys_write+0x1b9/0x240
[   83.845798][ T6746]  ? __pfx_ksys_write+0x10/0x10
[   83.845809][ T6746]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   83.845820][ T6746]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   83.845833][ T6746]  __do_fast_syscall_32+0x73/0x120
[   83.845848][ T6746]  do_fast_syscall_32+0x32/0x80
[   83.845861][ T6746]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.845873][ T6746] RIP: 0023:0xf7f93579
[   83.845881][ T6746] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.845891][ T6746] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   83.845900][ T6746] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[   83.845906][ T6746] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[   83.845911][ T6746] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   83.845916][ T6746] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   83.845922][ T6746] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.845934][ T6746]  </TASK>
[   84.452510][ T6755] netlink: 'syz.0.218': attribute type 1 has an invalid length.
[   84.456002][ T6755] nbd: error processing sock list
[   84.796811][ T6761] wg1: entered promiscuous mode
[   84.798760][ T6761] wg1: entered allmulticast mode
[   85.242834][ T6774] random: crng reseeded on system resumption
[   85.253124][ T6774] netlink: 'syz.0.223': attribute type 10 has an invalid length.
[   85.255704][ T6774] netlink: 40 bytes leftover after parsing attributes in process `syz.0.223'.
[   85.406528][ T6776] Cannot find map_set index 0 as target
[   86.681732][ T6793] netlink: 12 bytes leftover after parsing attributes in process `syz.1.230'.
[   86.701881][ T6795] netlink: 8 bytes leftover after parsing attributes in process `syz.2.231'.
[   86.731397][ T6793] netlink: 160 bytes leftover after parsing attributes in process `syz.1.230'.
[   86.748653][   T40] kauditd_printk_skb: 10 callbacks suppressed
[   86.748707][   T40] audit: type=1326 audit(1746532078.076:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.3.225" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x0
[   87.347165][ T6800] netlink: 'syz.2.232': attribute type 39 has an invalid length.
[   87.357189][ T6800] veth0_macvtap: left promiscuous mode
[   87.969265][ T6826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.235'.
[   88.190573][ T6835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.241'.
[   88.198370][ T6835] netlink: 160 bytes leftover after parsing attributes in process `syz.2.241'.
[   88.330945][ T6810] overlayfs: statfs failed on './file0'
[   88.559898][ T6841] random: crng reseeded on system resumption
[   88.602615][ T6841] netlink: 'syz.0.242': attribute type 10 has an invalid length.
[   88.606150][ T6841] netlink: 40 bytes leftover after parsing attributes in process `syz.0.242'.
[   89.184311][ T6848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.244'.
[   89.449742][ T6860] NILFS (loop1): device size too small
[   89.555493][ T6858] tty tty23: ldisc open failed (-12), clearing slot 22
[   89.616684][ T6870] netlink: 12 bytes leftover after parsing attributes in process `syz.0.250'.
[   89.632533][ T6872] FAULT_INJECTION: forcing a failure.
[   89.632533][ T6872] name failslab, interval 1, probability 0, space 0, times 0
[   89.646298][ T6872] CPU: 1 UID: 0 PID: 6872 Comm: syz.1.249 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[   89.646313][ T6872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.646318][ T6872] Call Trace:
[   89.646322][ T6872]  <TASK>
[   89.646326][ T6872]  dump_stack_lvl+0x16c/0x1f0
[   89.646344][ T6872]  should_fail_ex+0x512/0x640
[   89.646358][ T6872]  ? fs_reclaim_acquire+0xae/0x150
[   89.646373][ T6872]  ? tomoyo_encode2+0x100/0x3e0
[   89.646387][ T6872]  should_failslab+0xc2/0x120
[   89.646398][ T6872]  __kmalloc_noprof+0xd2/0x510
[   89.646412][ T6872]  tomoyo_encode2+0x100/0x3e0
[   89.646427][ T6872]  tomoyo_encode+0x29/0x50
[   89.646439][ T6872]  tomoyo_mount_acl+0x314/0x850
[   89.646450][ T6872]  ? kernel_text_address+0x8d/0x100
[   89.646466][ T6872]  ? __kernel_text_address+0xd/0x40
[   89.646483][ T6872]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[   89.646510][ T6872]  ? tomoyo_domain+0xbb/0x150
[   89.646524][ T6872]  ? tomoyo_profile+0x47/0x60
[   89.646540][ T6872]  tomoyo_mount_permission+0x16d/0x420
[   89.646551][ T6872]  ? tomoyo_mount_permission+0x14f/0x420
[   89.646564][ T6872]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[   89.646584][ T6872]  security_sb_mount+0x9b/0x260
[   89.646596][ T6872]  path_mount+0x128/0x1f20
[   89.646607][ T6872]  ? kmem_cache_free+0x2d4/0x4d0
[   89.646617][ T6872]  ? __pfx_path_mount+0x10/0x10
[   89.646628][ T6872]  ? putname+0x154/0x1a0
[   89.646641][ T6872]  __ia32_sys_mount+0x28b/0x310
[   89.646651][ T6872]  ? __pfx___ia32_sys_mount+0x10/0x10
[   89.646663][ T6872]  ? rcu_is_watching+0x12/0xc0
[   89.646674][ T6872]  __do_fast_syscall_32+0x73/0x120
[   89.646688][ T6872]  do_fast_syscall_32+0x32/0x80
[   89.646702][ T6872]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.646714][ T6872] RIP: 0023:0xf707e579
[   89.646723][ T6872] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.646732][ T6872] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   89.646742][ T6872] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[   89.646747][ T6872] RDX: 00000000800005c0 RSI: 0000000000000000 RDI: 0000000080000400
[   89.646753][ T6872] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.646758][ T6872] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.646763][ T6872] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.646776][ T6872]  </TASK>
[   89.743511][ T6871] netlink: 228 bytes leftover after parsing attributes in process `syz.3.247'.
[   89.824665][ T6879] FAULT_INJECTION: forcing a failure.
[   89.824665][ T6879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.833094][ T6879] CPU: 0 UID: 0 PID: 6879 Comm: syz.0.251 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[   89.833116][ T6879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.833125][ T6879] Call Trace:
[   89.833145][ T6879]  <TASK>
[   89.833153][ T6879]  dump_stack_lvl+0x16c/0x1f0
[   89.833180][ T6879]  should_fail_ex+0x512/0x640
[   89.833210][ T6879]  _copy_from_user+0x2e/0xd0
[   89.833235][ T6879]  get_compat_msghdr+0xa7/0x170
[   89.833253][ T6879]  ? __pfx_get_compat_msghdr+0x10/0x10
[   89.833271][ T6879]  ? __pfx__kstrtoull+0x10/0x10
[   89.833294][ T6879]  ___sys_sendmsg+0x1ae/0x1d0
[   89.833314][ T6879]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.833343][ T6879]  ? find_held_lock+0x2b/0x80
[   89.833367][ T6879]  ? __pfx___might_resched+0x10/0x10
[   89.833390][ T6879]  __sys_sendmmsg+0x2f9/0x420
[   89.833411][ T6879]  ? __pfx___sys_sendmmsg+0x10/0x10
[   89.833437][ T6879]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   89.833469][ T6879]  ? fput+0x70/0xf0
[   89.833488][ T6879]  ? ksys_write+0x1b9/0x240
[   89.833503][ T6879]  ? __pfx_ksys_write+0x10/0x10
[   89.833523][ T6879]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   89.833541][ T6879]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   89.833563][ T6879]  __do_fast_syscall_32+0x73/0x120
[   89.833587][ T6879]  do_fast_syscall_32+0x32/0x80
[   89.833609][ T6879]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.833629][ T6879] RIP: 0023:0xf709e579
[   89.833642][ T6879] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.833657][ T6879] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   89.833672][ T6879] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[   89.833682][ T6879] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[   89.833691][ T6879] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.833699][ T6879] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.833708][ T6879] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.833729][ T6879]  </TASK>
[   90.115668][ T6887] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[   90.165877][ T6889] xt_time: unknown flags 0xf0
[   90.222343][ T6891] overlayfs: missing 'workdir'
[   90.414337][ T6867] overlayfs: statfs failed on './file0'
[   90.579687][ T6900] netlink: 4 bytes leftover after parsing attributes in process `syz.1.257'.
[   90.583245][ T6900] bridge_slave_1: left allmulticast mode
[   90.585130][ T6900] bridge_slave_1: left promiscuous mode
[   90.587609][ T6900] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.593092][ T6900] bridge_slave_0: left allmulticast mode
[   90.595369][ T6900] bridge_slave_0: left promiscuous mode
[   90.601121][ T6900] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.641009][ T6898] hub 6-0:1.0: USB hub found
[   90.643064][ T6898] hub 6-0:1.0: 1 port detected
[   90.994421][ T6889] overlayfs: statfs failed on './file0'
[   91.100035][ T6902] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   91.102986][ T6902] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   91.106874][ T6902] vhci_hcd vhci_hcd.0: Device attached
[   91.366072][ T5994] usb 43-1: new high-speed USB device number 4 using vhci_hcd
[   91.409926][ T6904] vhci_hcd: connection reset by peer
[   91.412234][   T86] vhci_hcd: stop threads
[   91.413743][   T86] vhci_hcd: release socket
[   91.415303][   T86] vhci_hcd: disconnect device
[   91.523417][ T6914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.261'.
[   91.526805][ T6914] netlink: 'syz.1.261': attribute type 5 has an invalid length.
[   91.530653][ T6914] netlink: 28 bytes leftover after parsing attributes in process `syz.1.261'.
[   91.538931][ T6914] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[   91.541952][ T6914] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[   91.544707][ T6914] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[   91.552213][ T6914] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[   91.554978][ T6914] geneve2: entered promiscuous mode
[   91.557122][ T6914] geneve2: entered allmulticast mode
[   92.354519][ T6951] netlink: 4 bytes leftover after parsing attributes in process `syz.1.271'.
[   92.375639][ T6950] ipt_ECN: cannot use operation on non-tcp rule
[   92.380589][ T6950] netlink: 'syz.3.273': attribute type 1 has an invalid length.
[   92.383690][ T6950] netlink: 8 bytes leftover after parsing attributes in process `syz.3.273'.
[   92.394942][   T40] audit: type=1326 audit(1746532083.716:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6949 comm="syz.3.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[   92.406816][   T40] audit: type=1326 audit(1746532083.716:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6949 comm="syz.3.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[   92.415533][ T6951] hub 6-0:1.0: USB hub found
[   92.418916][ T6951] hub 6-0:1.0: 1 port detected
[   93.075908][  T837] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   93.497328][  T837] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   93.501600][ T6974] Cannot find set identified by id 0 to match
[   93.503375][  T837] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   93.508863][  T837] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.511519][  T837] usb 7-1: Product: syz
[   93.513001][  T837] usb 7-1: Manufacturer: syz
[   93.514534][  T837] usb 7-1: SerialNumber: syz
[   93.659978][ T6982] netlink: 160 bytes leftover after parsing attributes in process `syz.1.281'.
[   93.770925][  T837] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   93.972556][ T5974] usb 7-1: USB disconnect, device number 4
[   93.978368][ T5974] usblp0: removed
[   94.503564][ T6998] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[   94.506184][ T6998] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   94.510687][ T6998] vhci_hcd vhci_hcd.0: Device attached
[   94.619236][ T7002] 9pnet_fd: Insufficient options for proto=fd
[   94.622321][ T7002] 9pnet_fd: Insufficient options for proto=fd
[   94.657539][ T7008] netlink: 12 bytes leftover after parsing attributes in process `syz.2.289'.
[   94.753255][ T7013] overlay: filesystem on ./bus not supported as upperdir
[   94.845894][   T65] usb 39-1: new high-speed USB device number 3 using vhci_hcd
[   95.435585][ T6999] vhci_hcd: connection reset by peer
[   95.438706][ T1140] vhci_hcd: stop threads
[   95.440684][ T1140] vhci_hcd: release socket
[   95.443384][ T1140] vhci_hcd: disconnect device
[   95.525935][  T837] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   95.687047][  T837] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   95.694724][  T837] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   95.699203][  T837] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.702966][  T837] usb 8-1: Product: syz
[   95.704824][  T837] usb 8-1: Manufacturer: syz
[   95.707236][  T837] usb 8-1: SerialNumber: syz
[   95.920026][  T837] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   96.113233][ T7051] netlink: 4 bytes leftover after parsing attributes in process `syz.2.303'.
[   96.539197][  T837] usb 8-1: USB disconnect, device number 4
[   96.547257][  T837] usblp0: removed
[   96.589613][ T5994] vhci_hcd: vhci_device speed not set
[   96.971980][ T7063] netlink: 8 bytes leftover after parsing attributes in process `syz.2.307'.
[   96.975042][ T7063] netlink: 48 bytes leftover after parsing attributes in process `syz.2.307'.
[   96.982182][ T7063] macvlan3: entered allmulticast mode
[   97.119705][ T5974] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   97.281090][ T5974] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   97.297851][ T5974] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   97.306281][ T5974] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.309082][ T5974] usb 6-1: Product: syz
[   97.310450][ T5974] usb 6-1: Manufacturer: syz
[   97.311969][ T5974] usb 6-1: SerialNumber: syz
[   97.364719][ T7079] loop2: detected capacity change from 0 to 7
[   97.367913][ T7079]  loop2: [POWERTEC] p1 p2 p3
[   97.369617][ T7079] loop2: p1 start 65535 is beyond EOD, truncated
[   97.371916][ T7079] loop2: p2 start 1680832101 is beyond EOD, truncated
[   97.375000][ T7079] loop2: p3 start 22020096 is beyond EOD, truncated
[   97.398033][ T7076] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[   97.400894][ T7076] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   97.418658][ T7076] vhci_hcd vhci_hcd.0: Device attached
[   97.428854][ T7084] Cannot find map_set index 0 as target
[   97.534188][ T5974] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   97.857825][ T5974] usb 6-1: USB disconnect, device number 4
[   97.861976][ T5974] usblp0: removed
[   97.878002][ T6031] usb 41-1: new high-speed USB device number 2 using vhci_hcd
[   98.061326][ T7080] vhci_hcd: connection reset by peer
[   98.068474][   T86] vhci_hcd: stop threads
[   98.070677][   T86] vhci_hcd: release socket
[   98.073302][   T86] vhci_hcd: disconnect device
[   98.656473][ T7097] netlink: 'syz.1.316': attribute type 39 has an invalid length.
[   98.929300][ T7106] netlink: 32 bytes leftover after parsing attributes in process `syz.0.319'.
[   99.040326][ T7115] netlink: 12 bytes leftover after parsing attributes in process `syz.1.323'.
[   99.104988][ T7117] Cannot find map_set index 0 as target
[   99.123039][ T7119] loop2: detected capacity change from 0 to 7
[   99.127534][ T6802]  loop2: [POWERTEC] p1 p2 p3
[   99.130374][ T6802] loop2: p1 start 65535 is beyond EOD, truncated
[   99.133285][ T6802] loop2: p2 start 1680832101 is beyond EOD, truncated
[   99.136307][ T6802] loop2: p3 start 22020096 is beyond EOD, truncated
[   99.139901][ T7119]  loop2: [POWERTEC] p1 p2 p3
[   99.145892][ T7119] loop2: p1 start 65535 is beyond EOD, truncated
[   99.148674][ T7119] loop2: p2 start 1680832101 is beyond EOD, truncated
[   99.151640][ T7119] loop2: p3 start 22020096 is beyond EOD, truncated
[   99.253174][ T7132] Cannot find set identified by id 0 to match
[   99.294592][ T7135] netlink: 156 bytes leftover after parsing attributes in process `syz.1.331'.
[   99.323516][ T7133] netlink: 140 bytes leftover after parsing attributes in process `syz.0.328'.
[   99.460846][ T7138] netlink: 140 bytes leftover after parsing attributes in process `syz.2.329'.
[   99.619478][ T7135] binder: Unknown parameter '+'
[   99.916071][ T7146] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  100.026404][   T65] vhci_hcd: vhci_device speed not set
[  100.208008][ T7156] netlink: 8 bytes leftover after parsing attributes in process `syz.3.337'.
[  100.212072][ T7156] netlink: 'syz.3.337': attribute type 9 has an invalid length.
[  100.228446][ T7156] macvlan5: entered allmulticast mode
[  100.616931][ T7142] overlayfs: statfs failed on './file0'
[  101.008077][ T7179] random: crng reseeded on system resumption
[  101.657311][ T7187] overlay: Unknown parameter 'func'
[  101.723839][ T7189] fuse: Unknown parameter 'group_id�W�E��'
[  103.156300][ T6031] vhci_hcd: vhci_device speed not set
[  103.553616][ T7204] loop2: detected capacity change from 0 to 7
[  103.556631][ T5948]  loop2: [POWERTEC] p1 p2 p3
[  103.558290][ T5948] loop2: p1 start 65535 is beyond EOD, truncated
[  103.560330][ T5948] loop2: p2 start 1680832101 is beyond EOD, truncated
[  103.562649][ T5948] loop2: p3 start 22020096 is beyond EOD, truncated
[  103.571779][ T7204]  loop2: [POWERTEC] p1 p2 p3
[  103.573508][ T7204] loop2: p1 start 65535 is beyond EOD, truncated
[  103.575580][ T7204] loop2: p2 start 1680832101 is beyond EOD, truncated
[  103.578961][ T7204] loop2: p3 start 22020096 is beyond EOD, truncated
[  103.597456][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'.
[  103.600885][ T7209] netlink: 'syz.2.354': attribute type 9 has an invalid length.
[  103.631313][ T7212] netlink: 12 bytes leftover after parsing attributes in process `syz.0.356'.
[  103.718002][ T7217] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  104.433121][ T7210] overlayfs: statfs failed on './file0'
[  104.568225][ T7238] netlink: 8 bytes leftover after parsing attributes in process `syz.1.364'.
[  104.799139][ T7246] netlink: 'syz.1.366': attribute type 39 has an invalid length.
[  105.120753][ T7250] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  105.122965][ T7250] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  105.125589][ T7250] vhci_hcd vhci_hcd.0: Device attached
[  105.505815][   T72] usb 41-1: new high-speed USB device number 3 using vhci_hcd
[  105.664664][ T7268] netlink: 8 bytes leftover after parsing attributes in process `syz.1.373'.
[  105.668401][ T7268] netlink: 'syz.1.373': attribute type 9 has an invalid length.
[  105.680750][ T7268] macvlan4: entered allmulticast mode
[  105.706551][ T7251] vhci_hcd: connection reset by peer
[  105.709292][   T46] vhci_hcd: stop threads
[  105.710835][   T46] vhci_hcd: release socket
[  105.712433][   T46] vhci_hcd: disconnect device
[  105.977880][ T7273] cdrom: dropping to single frame dma
[  105.998532][ T7274] netlink: 12 bytes leftover after parsing attributes in process `syz.1.375'.
[  106.170591][ T7278] syz.1.376: attempt to access beyond end of device
[  106.170591][ T7278] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  106.176674][ T7278] syz.1.376: attempt to access beyond end of device
[  106.176674][ T7278] nbd1: rw=0, sector=120, nr_sectors = 8 limit=0
[  106.180861][ T7278] Mount JFS Failure: -5
[  106.779460][ T7310] Bluetooth: MGMT ver 1.23
[  107.404462][ T7318] netlink: 4 bytes leftover after parsing attributes in process `syz.3.387'.
[  107.449471][ T7318] hub 6-0:1.0: USB hub found
[  107.452596][ T7318] hub 6-0:1.0: 1 port detected
[  107.550821][ T7327] FAULT_INJECTION: forcing a failure.
[  107.550821][ T7327] name failslab, interval 1, probability 0, space 0, times 0
[  107.563205][ T7327] CPU: 3 UID: 0 PID: 7327 Comm: syz.0.389 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  107.563229][ T7327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.563239][ T7327] Call Trace:
[  107.563245][ T7327]  <TASK>
[  107.563252][ T7327]  dump_stack_lvl+0x16c/0x1f0
[  107.563298][ T7327]  should_fail_ex+0x512/0x640
[  107.563324][ T7327]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  107.563344][ T7327]  should_failslab+0xc2/0x120
[  107.563364][ T7327]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  107.563381][ T7327]  ? trace_kmalloc+0x2b/0xd0
[  107.563401][ T7327]  ? getname_kernel+0x52/0x370
[  107.563422][ T7327]  getname_kernel+0x52/0x370
[  107.563441][ T7327]  kern_path+0x1d/0x50
[  107.563465][ T7327]  ovl_mount_dir+0x13e/0x1f0
[  107.563490][ T7327]  ovl_parse_param+0x10ae/0x1570
[  107.563517][ T7327]  ? __pfx_ovl_parse_param+0x10/0x10
[  107.563539][ T7327]  ? rcu_is_watching+0x12/0xc0
[  107.563554][ T7327]  ? trace_kmalloc+0x2b/0xd0
[  107.563573][ T7327]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  107.563594][ T7327]  ? static_key_count+0x5a/0x70
[  107.563611][ T7327]  ? __pfx_ovl_parse_param+0x10/0x10
[  107.563633][ T7327]  vfs_parse_fs_param+0x208/0x3c0
[  107.563650][ T7327]  vfs_parse_fs_string+0xe9/0x150
[  107.563666][ T7327]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  107.563705][ T7327]  ? ovl_next_opt+0x143/0x1c0
[  107.563728][ T7327]  ? __pfx_ovl_next_opt+0x10/0x10
[  107.563755][ T7327]  vfs_parse_monolithic_sep+0x16f/0x1f0
[  107.563771][ T7327]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  107.563786][ T7327]  ? alloc_fs_context+0x59b/0x9c0
[  107.563807][ T7327]  path_mount+0x148d/0x1f20
[  107.563826][ T7327]  ? kmem_cache_free+0x2d4/0x4d0
[  107.563842][ T7327]  ? __pfx_path_mount+0x10/0x10
[  107.563862][ T7327]  ? putname+0x154/0x1a0
[  107.563884][ T7327]  __ia32_sys_mount+0x28b/0x310
[  107.563902][ T7327]  ? __pfx___ia32_sys_mount+0x10/0x10
[  107.563922][ T7327]  ? rcu_is_watching+0x12/0xc0
[  107.563940][ T7327]  __do_fast_syscall_32+0x73/0x120
[  107.563965][ T7327]  do_fast_syscall_32+0x32/0x80
[  107.563987][ T7327]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.564007][ T7327] RIP: 0023:0xf709e579
[  107.564020][ T7327] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.564035][ T7327] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  107.564051][ T7327] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  107.564061][ T7327] RDX: 00000000800005c0 RSI: 0000000000000000 RDI: 0000000080000400
[  107.564071][ T7327] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.564080][ T7327] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.564089][ T7327] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.564109][ T7327]  </TASK>
[  107.564404][ T7327] overlayfs: failed to resolve './bus': -12
[  108.185956][ T7335] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  108.188625][ T7335] netlink: 32 bytes leftover after parsing attributes in process `syz.2.392'.
[  108.211006][ T7335] netlink: 'syz.2.392': attribute type 10 has an invalid length.
[  108.229270][ T7335] veth0_vlan: left promiscuous mode
[  108.237761][ T7335] veth0_vlan: entered promiscuous mode
[  108.256380][ T7335] team0: Device veth0_vlan failed to register rx_handler
[  108.315396][ T7324] overlayfs: statfs failed on './file0'
[  108.369174][ T7342] Cannot find set identified by id 0 to match
[  109.074055][ T7359] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  109.076239][ T7359] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  109.080772][ T7359] vhci_hcd vhci_hcd.0: Device attached
[  109.235594][ T7369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.404'.
[  109.336607][ T5994] usb 43-1: new high-speed USB device number 5 using vhci_hcd
[  109.496577][ T7379] program syz.1.407 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  109.505268][ T7379] netlink: 8 bytes leftover after parsing attributes in process `syz.1.407'.
[  109.515366][ T7379] netlink: 12 bytes leftover after parsing attributes in process `syz.1.407'.
[  109.518636][ T7379] netlink: 'syz.1.407': attribute type 5 has an invalid length.
[  109.637635][ T7382] FAULT_INJECTION: forcing a failure.
[  109.637635][ T7382] name failslab, interval 1, probability 0, space 0, times 0
[  109.641822][ T7382] CPU: 2 UID: 0 PID: 7382 Comm: syz.1.408 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  109.641836][ T7382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.641841][ T7382] Call Trace:
[  109.641845][ T7382]  <TASK>
[  109.641849][ T7382]  dump_stack_lvl+0x16c/0x1f0
[  109.641867][ T7382]  should_fail_ex+0x512/0x640
[  109.641882][ T7382]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  109.641894][ T7382]  should_failslab+0xc2/0x120
[  109.641906][ T7382]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  109.641917][ T7382]  ? trace_kmalloc+0x2b/0xd0
[  109.641929][ T7382]  ? getname_kernel+0x52/0x370
[  109.641942][ T7382]  getname_kernel+0x52/0x370
[  109.641953][ T7382]  kern_path+0x1d/0x50
[  109.641968][ T7382]  ovl_mount_dir+0x13e/0x1f0
[  109.641983][ T7382]  ovl_parse_param+0x10ae/0x1570
[  109.642000][ T7382]  ? __pfx_ovl_parse_param+0x10/0x10
[  109.642013][ T7382]  ? rcu_is_watching+0x12/0xc0
[  109.642022][ T7382]  ? trace_kmalloc+0x2b/0xd0
[  109.642033][ T7382]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  109.642046][ T7382]  ? static_key_count+0x5a/0x70
[  109.642055][ T7382]  ? __pfx_ovl_parse_param+0x10/0x10
[  109.642070][ T7382]  vfs_parse_fs_param+0x208/0x3c0
[  109.642080][ T7382]  vfs_parse_fs_string+0xe9/0x150
[  109.642089][ T7382]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  109.642102][ T7382]  ? ovl_next_opt+0x143/0x1c0
[  109.642115][ T7382]  ? __pfx_ovl_next_opt+0x10/0x10
[  109.642127][ T7382]  vfs_parse_monolithic_sep+0x16f/0x1f0
[  109.642137][ T7382]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  109.642147][ T7382]  ? alloc_fs_context+0x59b/0x9c0
[  109.642158][ T7382]  path_mount+0x148d/0x1f20
[  109.642169][ T7382]  ? kmem_cache_free+0x2d4/0x4d0
[  109.642178][ T7382]  ? __pfx_path_mount+0x10/0x10
[  109.642190][ T7382]  ? putname+0x154/0x1a0
[  109.642202][ T7382]  __ia32_sys_mount+0x28b/0x310
[  109.642212][ T7382]  ? __pfx___ia32_sys_mount+0x10/0x10
[  109.642224][ T7382]  ? rcu_is_watching+0x12/0xc0
[  109.642234][ T7382]  __do_fast_syscall_32+0x73/0x120
[  109.642249][ T7382]  do_fast_syscall_32+0x32/0x80
[  109.642262][ T7382]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.642275][ T7382] RIP: 0023:0xf707e579
[  109.642283][ T7382] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.642292][ T7382] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  109.642301][ T7382] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  109.642307][ T7382] RDX: 00000000800005c0 RSI: 0000000000000000 RDI: 0000000080000400
[  109.642313][ T7382] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.642318][ T7382] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.642323][ T7382] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.642335][ T7382]  </TASK>
[  109.642339][ T7382] overlayfs: failed to resolve './bus': -12
[  109.669722][ T7360] vhci_hcd: connection reset by peer
[  109.763640][   T46] vhci_hcd: stop threads
[  109.765494][   T46] vhci_hcd: release socket
[  109.768145][   T46] vhci_hcd: disconnect device
[  109.917953][ T7384] netlink: 8 bytes leftover after parsing attributes in process `syz.0.409'.
[  109.920990][ T7384] netlink: 'syz.0.409': attribute type 9 has an invalid length.
[  109.990565][ T7386] loop2: detected capacity change from 0 to 7
[  109.994352][ T7386]  loop2: [POWERTEC] p1 p2 p3
[  109.997044][ T7386] loop2: p1 start 65535 is beyond EOD, truncated
[  110.002831][ T7386] loop2: p2 start 1680832101 is beyond EOD, truncated
[  110.007482][ T7386] loop2: p3 start 22020096 is beyond EOD, truncated
[  110.402291][ T7381] overlayfs: statfs failed on './file0'
[  110.437544][ T7396] Cannot find map_set index 0 as target
[  110.782782][ T7403] netlink: 'syz.1.416': attribute type 39 has an invalid length.
[  110.786155][   T72] vhci_hcd: vhci_device speed not set
[  110.839242][ T7406] FAULT_INJECTION: forcing a failure.
[  110.839242][ T7406] name failslab, interval 1, probability 0, space 0, times 0
[  110.843346][ T7406] CPU: 3 UID: 0 PID: 7406 Comm: syz.2.417 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  110.843361][ T7406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.843366][ T7406] Call Trace:
[  110.843370][ T7406]  <TASK>
[  110.843386][ T7406]  dump_stack_lvl+0x16c/0x1f0
[  110.843403][ T7406]  should_fail_ex+0x512/0x640
[  110.843417][ T7406]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  110.843431][ T7406]  should_failslab+0xc2/0x120
[  110.843443][ T7406]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  110.843454][ T7406]  ? __alloc_skb+0x2b2/0x380
[  110.843467][ T7406]  __alloc_skb+0x2b2/0x380
[  110.843476][ T7406]  ? __pfx___alloc_skb+0x10/0x10
[  110.843485][ T7406]  ? do_raw_spin_lock+0x12c/0x2b0
[  110.843500][ T7406]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  110.843518][ T7406]  sock_wmalloc+0xd4/0x120
[  110.843528][ T7406]  l2tp_ip_sendmsg+0x1b5/0x18d0
[  110.843541][ T7406]  ? __import_iovec+0x1c8/0x660
[  110.843556][ T7406]  ? __pfx_l2tp_ip_sendmsg+0x10/0x10
[  110.843568][ T7406]  inet_sendmsg+0x119/0x140
[  110.843582][ T7406]  ____sys_sendmsg+0x973/0xc70
[  110.843597][ T7406]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.843610][ T7406]  ? get_compat_msghdr+0x11a/0x170
[  110.843622][ T7406]  ? __pfx__kstrtoull+0x10/0x10
[  110.843636][ T7406]  ___sys_sendmsg+0x134/0x1d0
[  110.843647][ T7406]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.843665][ T7406]  ? find_held_lock+0x2b/0x80
[  110.843679][ T7406]  ? __pfx___might_resched+0x10/0x10
[  110.843692][ T7406]  __sys_sendmmsg+0x2f9/0x420
[  110.843705][ T7406]  ? __pfx___sys_sendmmsg+0x10/0x10
[  110.843720][ T7406]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.843740][ T7406]  ? fput+0x70/0xf0
[  110.843751][ T7406]  ? ksys_write+0x1b9/0x240
[  110.843759][ T7406]  ? __pfx_ksys_write+0x10/0x10
[  110.843767][ T7406]  ? rcu_is_watching+0x12/0xc0
[  110.843779][ T7406]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  110.843790][ T7406]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  110.843804][ T7406]  __do_fast_syscall_32+0x73/0x120
[  110.843819][ T7406]  do_fast_syscall_32+0x32/0x80
[  110.843832][ T7406]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.843844][ T7406] RIP: 0023:0xf7f93579
[  110.843852][ T7406] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.843861][ T7406] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  110.843870][ T7406] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  110.843876][ T7406] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  110.843882][ T7406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.843887][ T7406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.843892][ T7406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.843904][ T7406]  </TASK>
[  110.967287][ T7408] netlink: 8 bytes leftover after parsing attributes in process `syz.2.418'.
[  111.062538][ T7413] ALSA: mixer_oss: invalid OSS volume '�����Y�'
[  111.133336][ T7420] netlink: 12 bytes leftover after parsing attributes in process `syz.2.423'.
[  111.320840][ T7427] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  111.323063][ T7427] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  111.324326][ T7426] syzkaller1: entered promiscuous mode
[  111.325693][ T7427] vhci_hcd vhci_hcd.0: Device attached
[  111.328815][ T7426] syzkaller1: entered allmulticast mode
[  111.641661][   T40] audit: type=1326 audit(1746532103.965:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.1.428" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0
[  111.641906][ T7431] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  111.651682][ T7431] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  111.655696][ T7431] vhci_hcd vhci_hcd.0: Device attached
[  111.675948][   T29] usb 37-1: new high-speed USB device number 2 using vhci_hcd
[  111.843699][ T7429] vhci_hcd: connection reset by peer
[  111.846270][   T86] vhci_hcd: stop threads
[  111.847650][   T86] vhci_hcd: release socket
[  111.849483][   T86] vhci_hcd: disconnect device
[  111.945969][   T34] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  111.975868][   T72] usb 41-1: new high-speed USB device number 4 using vhci_hcd
[  112.011747][ T7436] vhci_hcd: connection reset by peer
[  112.014463][   T13] vhci_hcd: stop threads
[  112.016012][   T13] vhci_hcd: release socket
[  112.018938][   T13] vhci_hcd: disconnect device
[  112.111323][   T34] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  112.114429][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.117117][   T34] usb 6-1: Product: syz
[  112.118514][   T34] usb 6-1: Manufacturer: syz
[  112.120037][   T34] usb 6-1: SerialNumber: syz
[  112.127017][   T34] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  112.148755][ T5975] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  112.207813][ T7448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.431'.
[  112.210716][ T7448] netlink: 'syz.3.431': attribute type 9 has an invalid length.
[  112.495847][ T6031] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  112.647839][ T6031] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  112.653577][ T6031] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  112.655929][   T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  112.656720][ T6031] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.661963][ T6031] usb 8-1: Product: syz
[  112.663383][ T6031] usb 8-1: Manufacturer: syz
[  112.665399][ T6031] usb 8-1: SerialNumber: syz
[  112.808144][   T34] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  112.813983][   T34] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  112.817086][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.819731][   T34] usb 5-1: Product: syz
[  112.821170][   T34] usb 5-1: Manufacturer: syz
[  112.822799][   T34] usb 5-1: SerialNumber: syz
[  112.875977][ T5974] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  112.877761][ T6031] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  113.025871][ T5974] usb 7-1: Using ep0 maxpacket: 16
[  113.029294][ T5974] usb 7-1: config 0 has an invalid interface number: 145 but max is 0
[  113.032059][ T5974] usb 7-1: config 0 has no interface number 0
[  113.036581][ T5974] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  113.040486][ T5974] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.043426][   T34] usblp 5-1:1.0: usblp1: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  113.046980][ T5974] usb 7-1: Product: syz
[  113.048402][ T5974] usb 7-1: Manufacturer: syz
[  113.050013][ T5974] usb 7-1: SerialNumber: syz
[  113.054425][ T5974] usb 7-1: config 0 descriptor??
[  113.061172][ T5974] hub 7-1:0.145: bad descriptor, ignoring hub
[  113.063304][ T5974] hub 7-1:0.145: probe with driver hub failed with error -5
[  113.069720][ T5974] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.145/input/input5
[  113.083246][ T6031] usb 8-1: USB disconnect, device number 5
[  113.089667][ T6031] usblp0: removed
[  113.225918][ T5975] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  113.228715][ T5975] ath9k_htc: Failed to initialize the device
[  113.248544][ T5975] usb 6-1: ath9k_htc: USB layer deinitialized
[  113.256508][   T65] usb 5-1: USB disconnect, device number 2
[  113.260596][   T65] usblp1: removed
[  113.457153][   T24] usb 7-1: USB disconnect, device number 5
[  113.620157][ T7458] netlink: 12 bytes leftover after parsing attributes in process `syz.3.436'.
[  113.982692][ T7467] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  114.088122][ T7475] random: crng reseeded on system resumption
[  114.127465][ T7476] netlink: 36 bytes leftover after parsing attributes in process `syz.3.440'.
[  114.139476][ T7476] netlink: 16 bytes leftover after parsing attributes in process `syz.3.440'.
[  114.164850][ T7476] netlink: 36 bytes leftover after parsing attributes in process `syz.3.440'.
[  114.191231][ T7475] netlink: 'syz.2.439': attribute type 10 has an invalid length.
[  114.194134][ T7475] netlink: 40 bytes leftover after parsing attributes in process `syz.2.439'.
[  114.225032][ T7476] netlink: 36 bytes leftover after parsing attributes in process `syz.3.440'.
[  114.282886][ T7475] team0: Port device geneve0 added
[  114.415992][ T5994] vhci_hcd: vhci_device speed not set
[  114.791701][   T34] usb 6-1: USB disconnect, device number 5
[  115.039117][ T7493] random: crng reseeded on system resumption
[  115.057355][ T7493] netlink: 'syz.1.442': attribute type 10 has an invalid length.
[  115.059875][ T7493] netlink: 40 bytes leftover after parsing attributes in process `syz.1.442'.
[  115.807163][ T7501] FAULT_INJECTION: forcing a failure.
[  115.807163][ T7501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.811397][ T7501] CPU: 2 UID: 0 PID: 7501 Comm: syz.3.443 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  115.811411][ T7501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.811417][ T7501] Call Trace:
[  115.811421][ T7501]  <TASK>
[  115.811425][ T7501]  dump_stack_lvl+0x16c/0x1f0
[  115.811442][ T7501]  should_fail_ex+0x512/0x640
[  115.811458][ T7501]  _copy_from_user+0x2e/0xd0
[  115.811473][ T7501]  get_compat_msghdr+0xa7/0x170
[  115.811484][ T7501]  ? __pfx_get_compat_msghdr+0x10/0x10
[  115.811495][ T7501]  ? __pfx__kstrtoull+0x10/0x10
[  115.811508][ T7501]  ___sys_sendmsg+0x1ae/0x1d0
[  115.811520][ T7501]  ? __pfx____sys_sendmsg+0x10/0x10
[  115.811537][ T7501]  ? find_held_lock+0x2b/0x80
[  115.811551][ T7501]  ? __pfx___might_resched+0x10/0x10
[  115.811565][ T7501]  __sys_sendmmsg+0x2f9/0x420
[  115.811577][ T7501]  ? __pfx___sys_sendmmsg+0x10/0x10
[  115.811592][ T7501]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.811611][ T7501]  ? fput+0x70/0xf0
[  115.811623][ T7501]  ? ksys_write+0x1b9/0x240
[  115.811631][ T7501]  ? __pfx_ksys_write+0x10/0x10
[  115.811642][ T7501]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  115.811657][ T7501]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  115.811671][ T7501]  __do_fast_syscall_32+0x73/0x120
[  115.811686][ T7501]  do_fast_syscall_32+0x32/0x80
[  115.811699][ T7501]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.811711][ T7501] RIP: 0023:0xf7f82579
[  115.811720][ T7501] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.811729][ T7501] RSP: 002b:00000000f503355c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  115.811738][ T7501] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  115.811744][ T7501] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  115.811749][ T7501] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  115.811755][ T7501] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  115.811760][ T7501] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.811772][ T7501]  </TASK>
[  115.904513][ T7493] team0: Port device geneve0 added
[  115.998273][ T7503] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  116.000486][ T7503] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  116.003235][ T7503] vhci_hcd vhci_hcd.0: Device attached
[  116.067711][ T7511] loop2: detected capacity change from 0 to 7
[  116.071039][ T7511]  loop2: [POWERTEC] p1 p2 p3
[  116.072752][ T7511] loop2: p1 start 65535 is beyond EOD, truncated
[  116.074860][ T7511] loop2: p2 start 1680832101 is beyond EOD, truncated
[  116.077339][ T7511] loop2: p3 start 22020096 is beyond EOD, truncated
[  116.117043][ T7513] netlink: 140 bytes leftover after parsing attributes in process `syz.1.447'.
[  116.603338][ T7506] vhci_hcd: connection closed
[  116.616055][   T86] vhci_hcd: stop threads
[  116.619122][   T86] vhci_hcd: release socket
[  116.620725][   T86] vhci_hcd: disconnect device
[  116.816366][   T29] vhci_hcd: vhci_device speed not set
[  116.845408][ T7529] Cannot find set identified by id 0 to match
[  116.992634][ T7536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.455'.
[  117.014650][ T7536] hub 6-0:1.0: USB hub found
[  117.017572][ T7536] hub 6-0:1.0: 1 port detected
[  117.066470][   T72] vhci_hcd: vhci_device speed not set
[  117.936345][ T7544] netlink: 8 bytes leftover after parsing attributes in process `syz.2.457'.
[  118.301003][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.3.461'.
[  118.304174][ T7557] netlink: 'syz.3.461': attribute type 9 has an invalid length.
[  118.321235][ T7557] macvlan6: entered allmulticast mode
[  118.349411][ T7558] netlink: 'syz.1.460': attribute type 39 has an invalid length.
[  118.425121][ T7559] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  118.427549][ T7559] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  118.433909][ T7559] vhci_hcd vhci_hcd.0: Device attached
[  118.779782][   T29] usb 41-1: new high-speed USB device number 5 using vhci_hcd
[  118.886376][ T7560] vhci_hcd: connection reset by peer
[  118.891058][  T160] vhci_hcd: stop threads
[  118.892526][  T160] vhci_hcd: release socket
[  118.897709][  T160] vhci_hcd: disconnect device
[  119.495481][ T7578] loop2: detected capacity change from 0 to 7
[  119.502715][ T7578]  loop2: [POWERTEC] p1 p2 p3
[  119.504742][ T7578] loop2: p1 start 65535 is beyond EOD, truncated
[  119.508785][ T7578] loop2: p2 start 1680832101 is beyond EOD, truncated
[  119.512152][ T7578] loop2: p3 start 22020096 is beyond EOD, truncated
[  120.657050][ T7600] random: crng reseeded on system resumption
[  120.670684][ T7600] netlink: 'syz.2.473': attribute type 10 has an invalid length.
[  120.673628][ T7600] netlink: 40 bytes leftover after parsing attributes in process `syz.2.473'.
[  122.158947][ T7620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.479'.
[  122.285728][ T7621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.478'.
[  122.300536][ T7621] hub 6-0:1.0: USB hub found
[  122.302389][ T7621] hub 6-0:1.0: 1 port detected
[  122.567328][ T7636] netlink: 32 bytes leftover after parsing attributes in process `syz.1.484'.
[  123.336057][ T7640] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  123.338904][ T7640] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  123.342174][ T7640] vhci_hcd vhci_hcd.0: Device attached
[  123.533056][ T7643] vhci_hcd: connection closed
[  123.540739][   T46] vhci_hcd: stop threads
[  123.544598][   T46] vhci_hcd: release socket
[  123.546266][   T46] vhci_hcd: disconnect device
[  123.855907][   T29] vhci_hcd: vhci_device speed not set
[  124.249601][ T7661] netlink: 140 bytes leftover after parsing attributes in process `syz.2.491'.
[  124.351359][ T7666] FAULT_INJECTION: forcing a failure.
[  124.351359][ T7666] name failslab, interval 1, probability 0, space 0, times 0
[  124.358238][ T7666] CPU: 0 UID: 0 PID: 7666 Comm: syz.1.493 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  124.358261][ T7666] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.358270][ T7666] Call Trace:
[  124.358286][ T7666]  <TASK>
[  124.358292][ T7666]  dump_stack_lvl+0x16c/0x1f0
[  124.358332][ T7666]  should_fail_ex+0x512/0x640
[  124.358357][ T7666]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  124.358377][ T7666]  should_failslab+0xc2/0x120
[  124.358396][ T7666]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  124.358412][ T7666]  ? __alloc_skb+0x2b2/0x380
[  124.358432][ T7666]  __alloc_skb+0x2b2/0x380
[  124.358447][ T7666]  ? __pfx___alloc_skb+0x10/0x10
[  124.358461][ T7666]  ? do_raw_spin_lock+0x12c/0x2b0
[  124.358484][ T7666]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  124.358514][ T7666]  sock_wmalloc+0xd4/0x120
[  124.358530][ T7666]  l2tp_ip_sendmsg+0x1b5/0x18d0
[  124.358552][ T7666]  ? __import_iovec+0x1c8/0x660
[  124.358574][ T7666]  ? __pfx_l2tp_ip_sendmsg+0x10/0x10
[  124.358594][ T7666]  inet_sendmsg+0x119/0x140
[  124.358616][ T7666]  ____sys_sendmsg+0x973/0xc70
[  124.358640][ T7666]  ? __pfx_____sys_sendmsg+0x10/0x10
[  124.358665][ T7666]  ? get_compat_msghdr+0x11a/0x170
[  124.358685][ T7666]  ? __pfx__kstrtoull+0x10/0x10
[  124.358707][ T7666]  ___sys_sendmsg+0x134/0x1d0
[  124.358725][ T7666]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.358754][ T7666]  ? find_held_lock+0x2b/0x80
[  124.358779][ T7666]  ? __pfx___might_resched+0x10/0x10
[  124.358800][ T7666]  __sys_sendmmsg+0x2f9/0x420
[  124.358820][ T7666]  ? __pfx___sys_sendmmsg+0x10/0x10
[  124.358843][ T7666]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  124.358872][ T7666]  ? fput+0x70/0xf0
[  124.358891][ T7666]  ? ksys_write+0x1b9/0x240
[  124.358904][ T7666]  ? __pfx_ksys_write+0x10/0x10
[  124.358916][ T7666]  ? rcu_is_watching+0x12/0xc0
[  124.358935][ T7666]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  124.358952][ T7666]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  124.358974][ T7666]  __do_fast_syscall_32+0x73/0x120
[  124.358998][ T7666]  do_fast_syscall_32+0x32/0x80
[  124.359020][ T7666]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.359039][ T7666] RIP: 0023:0xf707e579
[  124.359052][ T7666] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  124.359067][ T7666] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  124.359081][ T7666] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  124.359091][ T7666] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  124.359100][ T7666] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.359109][ T7666] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  124.359118][ T7666] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.359140][ T7666]  </TASK>
[  124.551323][ T7669] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  124.566052][ T7678] Cannot find set identified by id 0 to match
[  124.780883][ T7686] netlink: 8 bytes leftover after parsing attributes in process `syz.1.499'.
[  124.784067][ T7686] netlink: 'syz.1.499': attribute type 9 has an invalid length.
[  125.240312][ T7700] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  125.242584][ T7700] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  125.246224][ T7700] vhci_hcd vhci_hcd.0: Device attached
[  125.462521][ T7705] netlink: 8 bytes leftover after parsing attributes in process `syz.1.505'.
[  125.466450][ T7705] netlink: 'syz.1.505': attribute type 9 has an invalid length.
[  125.485915][   T29] usb 41-1: new high-speed USB device number 6 using vhci_hcd
[  125.719704][ T7714] netlink: 8 bytes leftover after parsing attributes in process `syz.3.509'.
[  125.750105][ T7701] vhci_hcd: connection reset by peer
[  125.757215][  T160] vhci_hcd: stop threads
[  125.758558][  T160] vhci_hcd: release socket
[  125.759994][  T160] vhci_hcd: disconnect device
[  125.887888][ T7725] netlink: 12 bytes leftover after parsing attributes in process `syz.0.512'.
[  125.949832][ T7729] loop2: detected capacity change from 0 to 7
[  125.952705][ T7525]  loop2: [POWERTEC] p1 p2 p3
[  125.954576][ T7525] loop2: p1 start 65535 is beyond EOD, truncated
[  125.957933][ T7525] loop2: p2 start 1680832101 is beyond EOD, truncated
[  125.960292][ T7525] loop2: p3 start 22020096 is beyond EOD, truncated
[  125.963879][ T7729]  loop2: [POWERTEC] p1 p2 p3
[  125.965679][ T7729] loop2: p1 start 65535 is beyond EOD, truncated
[  125.968005][ T7729] loop2: p2 start 1680832101 is beyond EOD, truncated
[  125.970333][ T7729] loop2: p3 start 22020096 is beyond EOD, truncated
[  126.074466][ T7734] netlink: 140 bytes leftover after parsing attributes in process `syz.0.515'.
[  126.431610][ T7744] netlink: 8 bytes leftover after parsing attributes in process `syz.1.518'.
[  126.434656][ T7744] netlink: 'syz.1.518': attribute type 9 has an invalid length.
[  126.508981][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.2.517'.
[  126.518859][ T7747] hub 6-0:1.0: USB hub found
[  126.521191][ T7747] hub 6-0:1.0: 1 port detected
[  127.428050][   T65] hid (null): unknown global tag 0xdc
[  127.430105][   T65] hid (null): unknown global tag 0xd
[  127.431892][   T65] hid (null): invalid report_count 1834541732
[  127.434001][   T65] hid (null): invalid report_size -373633037
[  127.436114][   T65] hid (null): unknown global tag 0xe
[  127.438157][   T65] hid (null): unknown global tag 0xc
[  127.439952][   T65] hid (null): invalid report_size 47448
[  127.442020][   T65] hid (null): unknown global tag 0xc
[  127.443897][   T65] hid (null): unknown global tag 0xe
[  127.445832][   T65] hid (null): global environment stack underflow
[  127.447996][   T65] hid (null): unknown global tag 0xe
[  127.449964][   T65] hid (null): report_id 2659610795 is invalid
[  127.452076][   T65] hid (null): unknown global tag 0xe
[  127.453935][   T65] hid (null): unknown global tag 0xd
[  127.455789][   T65] hid (null): unknown global tag 0xd
[  127.457603][   T65] hid (null): report_id 2143113745 is invalid
[  127.459680][   T65] hid (null): unknown global tag 0xcb
[  127.461692][   T65] hid (null): unknown global tag 0xf5
[  127.463562][   T65] hid (null): invalid report_size 8200
[  127.467351][   T65] hid (null): bogus close delimiter
[  127.469381][   T65] hid (null): invalid report_count 49735
[  127.470166][ T7763] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  127.473388][   T65] hid (null): unknown global tag 0x33
[  127.475508][   T65] hid (null): unknown global tag 0xd
[  127.479063][   T65] hid (null): unknown global tag 0xc
[  127.481231][   T65] hid (null): unknown global tag 0xe
[  127.483017][   T65] hid (null): unknown global tag 0xd
[  127.484793][   T65] hid (null): unknown global tag 0xa1
[  127.485335][ T7767] netlink: 4 bytes leftover after parsing attributes in process `syz.3.522'.
[  127.486609][   T65] hid (null): unknown global tag 0x6d
[  127.486623][   T65] hid (null): unknown global tag 0xc5
[  127.486641][   T65] hid (null): unknown global tag 0xd
[  127.486699][   T65] hid (null): unknown global tag 0xd
[  127.486707][   T65] hid (null): unknown global tag 0xcd
[  127.486714][   T65] hid (null): invalid report_count -568906460
[  127.486766][   T65] hid (null): unknown global tag 0x82
[  127.486817][   T65] hid (null): invalid report_size 626338545
[  127.495588][ T7767] hub 6-0:1.0: USB hub found
[  127.496826][   T65] hid (null): report_id 2119404966 is invalid
[  127.508078][ T7767] hub 6-0:1.0: 1 port detected
[  127.508080][   T65] hid-generic 0091:0002:0F0B.0002: unexpected long global item
[  127.513453][   T65] hid-generic 0091:0002:0F0B.0002: probe with driver hid-generic failed with error -22
[  127.742400][ T7775] FAULT_INJECTION: forcing a failure.
[  127.742400][ T7775] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.802827][ T7787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.529'.
[  127.806266][ T7787] netlink: 'syz.2.529': attribute type 9 has an invalid length.
[  127.814295][ T7787] macvlan5: entered allmulticast mode
[  127.951153][ T7775] CPU: 3 UID: 0 PID: 7775 Comm: syz.0.525 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  127.951171][ T7775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.951176][ T7775] Call Trace:
[  127.951181][ T7775]  <TASK>
[  127.951185][ T7775]  dump_stack_lvl+0x16c/0x1f0
[  127.951203][ T7775]  should_fail_ex+0x512/0x640
[  127.951220][ T7775]  _copy_from_user+0x2e/0xd0
[  127.951235][ T7775]  get_compat_msghdr+0xa7/0x170
[  127.951246][ T7775]  ? __pfx_get_compat_msghdr+0x10/0x10
[  127.951257][ T7775]  ? __pfx__kstrtoull+0x10/0x10
[  127.951270][ T7775]  ___sys_sendmsg+0x1ae/0x1d0
[  127.951282][ T7775]  ? __pfx____sys_sendmsg+0x10/0x10
[  127.951299][ T7775]  ? find_held_lock+0x2b/0x80
[  127.951313][ T7775]  ? __pfx___might_resched+0x10/0x10
[  127.951327][ T7775]  __sys_sendmmsg+0x2f9/0x420
[  127.951339][ T7775]  ? __pfx___sys_sendmmsg+0x10/0x10
[  127.951354][ T7775]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  127.951373][ T7775]  ? fput+0x70/0xf0
[  127.951385][ T7775]  ? ksys_write+0x1b9/0x240
[  127.951393][ T7775]  ? __pfx_ksys_write+0x10/0x10
[  127.951404][ T7775]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  127.951415][ T7775]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  127.951429][ T7775]  __do_fast_syscall_32+0x73/0x120
[  127.951444][ T7775]  do_fast_syscall_32+0x32/0x80
[  127.951457][ T7775]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.951469][ T7775] RIP: 0023:0xf709e579
[  127.951477][ T7775] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.951487][ T7775] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  127.951496][ T7775] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  127.951502][ T7775] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  127.951507][ T7775] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.951512][ T7775] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.951518][ T7775] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.951529][ T7775]  </TASK>
[  128.117361][ T7792] netlink: 'syz.2.531': attribute type 23 has an invalid length.
[  128.644128][ T7813] netlink: 3 bytes leftover after parsing attributes in process `syz.1.539'.
[  128.647222][ T7813] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  128.899380][ T7820] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  128.902786][ T7820] netlink: 32 bytes leftover after parsing attributes in process `syz.3.538'.
[  128.909239][ T7820] netlink: 'syz.3.538': attribute type 10 has an invalid length.
[  128.916701][ T7820] veth0_vlan: left promiscuous mode
[  128.919918][ T7820] veth0_vlan: entered promiscuous mode
[  128.924460][ T7820] team0: Device veth0_vlan failed to register rx_handler
[  129.359594][ T7836] FAULT_INJECTION: forcing a failure.
[  129.359594][ T7836] name failslab, interval 1, probability 0, space 0, times 0
[  129.363908][ T7836] CPU: 1 UID: 0 PID: 7836 Comm: syz.2.544 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  129.363922][ T7836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.363928][ T7836] Call Trace:
[  129.363932][ T7836]  <TASK>
[  129.363936][ T7836]  dump_stack_lvl+0x16c/0x1f0
[  129.363966][ T7836]  should_fail_ex+0x512/0x640
[  129.363981][ T7836]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  129.363994][ T7836]  should_failslab+0xc2/0x120
[  129.364007][ T7836]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  129.364018][ T7836]  ? __alloc_skb+0x2b2/0x380
[  129.364031][ T7836]  __alloc_skb+0x2b2/0x380
[  129.364040][ T7836]  ? __pfx___alloc_skb+0x10/0x10
[  129.364049][ T7836]  ? do_raw_spin_lock+0x12c/0x2b0
[  129.364064][ T7836]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  129.364082][ T7836]  sock_wmalloc+0xd4/0x120
[  129.364092][ T7836]  l2tp_ip_sendmsg+0x1b5/0x18d0
[  129.364106][ T7836]  ? __import_iovec+0x1c8/0x660
[  129.364120][ T7836]  ? __pfx_l2tp_ip_sendmsg+0x10/0x10
[  129.364133][ T7836]  inet_sendmsg+0x119/0x140
[  129.364147][ T7836]  ____sys_sendmsg+0x973/0xc70
[  129.364162][ T7836]  ? __pfx_____sys_sendmsg+0x10/0x10
[  129.364175][ T7836]  ? get_compat_msghdr+0x11a/0x170
[  129.364187][ T7836]  ? __pfx__kstrtoull+0x10/0x10
[  129.364201][ T7836]  ___sys_sendmsg+0x134/0x1d0
[  129.364213][ T7836]  ? __pfx____sys_sendmsg+0x10/0x10
[  129.364230][ T7836]  ? find_held_lock+0x2b/0x80
[  129.364244][ T7836]  ? __pfx___might_resched+0x10/0x10
[  129.364258][ T7836]  __sys_sendmmsg+0x2f9/0x420
[  129.364271][ T7836]  ? __pfx___sys_sendmmsg+0x10/0x10
[  129.364286][ T7836]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  129.364306][ T7836]  ? fput+0x70/0xf0
[  129.364317][ T7836]  ? ksys_write+0x1b9/0x240
[  129.364326][ T7836]  ? __pfx_ksys_write+0x10/0x10
[  129.364334][ T7836]  ? rcu_is_watching+0x12/0xc0
[  129.364366][ T7836]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  129.364381][ T7836]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  129.364400][ T7836]  __do_fast_syscall_32+0x73/0x120
[  129.364417][ T7836]  do_fast_syscall_32+0x32/0x80
[  129.364431][ T7836]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  129.364443][ T7836] RIP: 0023:0xf7f93579
[  129.364451][ T7836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  129.364460][ T7836] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  129.364470][ T7836] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  129.364476][ T7836] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  129.364482][ T7836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.364487][ T7836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  129.364492][ T7836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.364505][ T7836]  </TASK>
[  129.463326][    C1] vkms_vblank_simulate: vblank timer overrun
[  130.014720][ T7858] netlink: 8 bytes leftover after parsing attributes in process `syz.0.551'.
[  130.017914][ T7858] netlink: 'syz.0.551': attribute type 9 has an invalid length.
[  130.025582][ T7858] macvlan2: entered allmulticast mode
[  130.119524][ T7861] Cannot find set identified by id 0 to match
[  130.625840][   T29] vhci_hcd: vhci_device speed not set
[  130.889983][ T7877] block device autoloading is deprecated and will be removed.
[  131.738778][ T7901] __nla_validate_parse: 1 callbacks suppressed
[  131.738790][ T7901] netlink: 8 bytes leftover after parsing attributes in process `syz.0.563'.
[  131.745296][ T7901] netlink: 'syz.0.563': attribute type 9 has an invalid length.
[  132.034312][ T7916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.568'.
[  132.038234][ T7915] fuse: Unknown parameter '���rootmode'
[  132.206469][ T7932] netlink: 'syz.1.565': attribute type 21 has an invalid length.
[  132.215818][ T7932] netlink: 156 bytes leftover after parsing attributes in process `syz.1.565'.
[  132.229296][ T7934] netlink: 'syz.2.575': attribute type 7 has an invalid length.
[  132.348508][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  132.351435][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  133.469772][ T7968] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  133.472506][ T7968] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  133.476481][ T7968] vhci_hcd vhci_hcd.0: Device attached
[  133.683744][ T7976] FAULT_INJECTION: forcing a failure.
[  133.683744][ T7976] name failslab, interval 1, probability 0, space 0, times 0
[  133.688266][ T7976] CPU: 3 UID: 0 PID: 7976 Comm: syz.3.585 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  133.688317][ T7976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.688327][ T7976] Call Trace:
[  133.688333][ T7976]  <TASK>
[  133.688337][ T7976]  dump_stack_lvl+0x16c/0x1f0
[  133.688355][ T7976]  should_fail_ex+0x512/0x640
[  133.688369][ T7976]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  133.688381][ T7976]  should_failslab+0xc2/0x120
[  133.688393][ T7976]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  133.688404][ T7976]  ? __alloc_skb+0x2b2/0x380
[  133.688417][ T7976]  __alloc_skb+0x2b2/0x380
[  133.688427][ T7976]  ? __pfx___alloc_skb+0x10/0x10
[  133.688436][ T7976]  ? do_raw_spin_lock+0x12c/0x2b0
[  133.688451][ T7976]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  133.688469][ T7976]  sock_wmalloc+0xd4/0x120
[  133.688479][ T7976]  l2tp_ip_sendmsg+0x1b5/0x18d0
[  133.688493][ T7976]  ? __import_iovec+0x1c8/0x660
[  133.688507][ T7976]  ? __pfx_l2tp_ip_sendmsg+0x10/0x10
[  133.688520][ T7976]  inet_sendmsg+0x119/0x140
[  133.688534][ T7976]  ____sys_sendmsg+0x973/0xc70
[  133.688549][ T7976]  ? __pfx_____sys_sendmsg+0x10/0x10
[  133.688562][ T7976]  ? get_compat_msghdr+0x11a/0x170
[  133.688574][ T7976]  ? __pfx__kstrtoull+0x10/0x10
[  133.688588][ T7976]  ___sys_sendmsg+0x134/0x1d0
[  133.688600][ T7976]  ? __pfx____sys_sendmsg+0x10/0x10
[  133.688617][ T7976]  ? find_held_lock+0x2b/0x80
[  133.688631][ T7976]  ? __pfx___might_resched+0x10/0x10
[  133.688645][ T7976]  __sys_sendmmsg+0x2f9/0x420
[  133.688657][ T7976]  ? __pfx___sys_sendmmsg+0x10/0x10
[  133.688673][ T7976]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  133.688692][ T7976]  ? fput+0x70/0xf0
[  133.688704][ T7976]  ? ksys_write+0x1b9/0x240
[  133.688713][ T7976]  ? __pfx_ksys_write+0x10/0x10
[  133.688721][ T7976]  ? rcu_is_watching+0x12/0xc0
[  133.688732][ T7976]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  133.688743][ T7976]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  133.688757][ T7976]  __do_fast_syscall_32+0x73/0x120
[  133.688772][ T7976]  do_fast_syscall_32+0x32/0x80
[  133.688790][ T7976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.688802][ T7976] RIP: 0023:0xf7f82579
[  133.688809][ T7976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.688819][ T7976] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  133.688829][ T7976] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  133.688835][ T7976] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  133.688841][ T7976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.688846][ T7976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  133.688852][ T7976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.688864][ T7976]  </TASK>
[  133.725837][   T29] usb 39-1: new high-speed USB device number 4 using vhci_hcd
[  134.020871][ T7970] vhci_hcd: connection reset by peer
[  134.022850][ T1140] vhci_hcd: stop threads
[  134.024356][ T1140] vhci_hcd: release socket
[  134.026061][ T1140] vhci_hcd: disconnect device
[  134.253000][ T7984] loop2: detected capacity change from 0 to 7
[  134.256338][ T7525]  loop2: [POWERTEC] p1 p2 p3
[  134.258706][ T7525] loop2: p1 start 65535 is beyond EOD, truncated
[  134.261062][ T7525] loop2: p2 start 1680832101 is beyond EOD, truncated
[  134.263484][ T7525] loop2: p3 start 22020096 is beyond EOD, truncated
[  134.271516][ T7984]  loop2: [POWERTEC] p1 p2 p3
[  134.273428][ T7984] loop2: p1 start 65535 is beyond EOD, truncated
[  134.275636][ T7984] loop2: p2 start 1680832101 is beyond EOD, truncated
[  134.278299][ T7984] loop2: p3 start 22020096 is beyond EOD, truncated
[  134.637197][ T7993] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  134.706750][ T7999] netlink: 36 bytes leftover after parsing attributes in process `syz.0.594'.
[  134.777010][ T8008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.596'.
[  134.780752][ T8008] netlink: 'syz.2.596': attribute type 9 has an invalid length.
[  134.913298][ T8009] netlink: 277 bytes leftover after parsing attributes in process `syz.1.597'.
[  134.916543][ T8009] netlink: 277 bytes leftover after parsing attributes in process `syz.1.597'.
[  134.923364][ T8009] overlayfs: conflicting options: metacopy=off,verity=on
[  135.413806][ T8028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.602'.
[  135.520316][ T8031] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  135.522544][ T8031] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  135.525688][ T8031] vhci_hcd vhci_hcd.0: Device attached
[  135.654552][ T8038] netlink: 8 bytes leftover after parsing attributes in process `syz.0.605'.
[  135.669080][ T8038] netlink: 'syz.0.605': attribute type 9 has an invalid length.
[  135.767543][ T7446] usb 43-1: new high-speed USB device number 6 using vhci_hcd
[  135.918762][ T8035] vhci_hcd: connection reset by peer
[  135.923554][   T46] vhci_hcd: stop threads
[  135.926014][   T46] vhci_hcd: release socket
[  135.927661][   T46] vhci_hcd: disconnect device
[  136.848067][ T8062] block device autoloading is deprecated and will be removed.
[  137.000547][ T8068] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  137.004109][ T8068] netlink: 'syz.1.612': attribute type 10 has an invalid length.
[  137.023915][ T8068] veth0_vlan: left promiscuous mode
[  137.029496][ T8068] veth0_vlan: entered promiscuous mode
[  137.037681][ T8068] team0: Device veth0_vlan failed to register rx_handler
[  137.693362][ T8078] netlink: 140 bytes leftover after parsing attributes in process `syz.2.617'.
[  137.777558][ T8079] netlink: 140 bytes leftover after parsing attributes in process `syz.0.618'.
[  137.839884][ T8081] netlink: 'syz.3.619': attribute type 1 has an invalid length.
[  138.655874][  T837] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  138.808229][  T837] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  138.815108][  T837] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  138.826801][  T837] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.830206][  T837] usb 6-1: Product: syz
[  138.832042][  T837] usb 6-1: Manufacturer: syz
[  138.834201][  T837] usb 6-1: SerialNumber: syz
[  139.089047][ T8108] netlink: 8 bytes leftover after parsing attributes in process `syz.0.626'.
[  139.093364][ T8108] netlink: 'syz.0.626': attribute type 9 has an invalid length.
[  139.135839][   T29] vhci_hcd: vhci_device speed not set
[  139.201130][  T837] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  139.439326][ T8116] netlink: 32 bytes leftover after parsing attributes in process `syz.3.627'.
[  139.448811][ T8116] netlink: 140 bytes leftover after parsing attributes in process `syz.3.627'.
[  139.499407][ T6031] usb 6-1: USB disconnect, device number 6
[  139.515682][ T6031] usblp0: removed
[  139.702101][ T8127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.630'.
[  139.724922][ T8128] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  139.732384][ T8128] netlink: 'syz.2.629': attribute type 10 has an invalid length.
[  139.739316][ T8128] veth0_vlan: left promiscuous mode
[  139.743455][ T8128] veth0_vlan: entered promiscuous mode
[  139.755118][ T8128] team0: Device veth0_vlan failed to register rx_handler
[  139.995415][ T8134] netlink: 12 bytes leftover after parsing attributes in process `syz.3.632'.
[  140.574822][ T8144] input: syz0 as /devices/virtual/input/input8
[  140.896250][ T7446] vhci_hcd: vhci_device speed not set
[  140.928099][ T8159] random: crng reseeded on system resumption
[  140.939391][ T8158] netlink: 240 bytes leftover after parsing attributes in process `syz.2.642'.
[  140.942535][ T8158] NCSI netlink: No device for ifindex 0
[  140.954921][ T8159] netlink: 'syz.0.638': attribute type 10 has an invalid length.
[  140.957662][ T8159] netlink: 40 bytes leftover after parsing attributes in process `syz.0.638'.
[  141.051392][ T8160] netlink: 'syz.1.639': attribute type 1 has an invalid length.
[  141.129605][ T8160] netlink: 140 bytes leftover after parsing attributes in process `syz.1.639'.
[  142.358165][ T8195] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  142.363388][ T8195] netlink: 'syz.3.649': attribute type 10 has an invalid length.
[  142.392352][ T8195] veth0_vlan: left promiscuous mode
[  142.408642][ T8195] veth0_vlan: entered promiscuous mode
[  142.436333][ T8195] team0: Device veth0_vlan failed to register rx_handler
[  142.750525][ T8202] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  142.752777][ T8202] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  142.756473][ T8202] vhci_hcd vhci_hcd.0: Device attached
[  142.832648][ T8207] netlink: 'syz.1.653': attribute type 1 has an invalid length.
[  142.837057][ T8207] __nla_validate_parse: 1 callbacks suppressed
[  142.837069][ T8207] netlink: 140 bytes leftover after parsing attributes in process `syz.1.653'.
[  143.005798][ T7446] usb 37-1: new high-speed USB device number 3 using vhci_hcd
[  143.277982][ T8203] vhci_hcd: connection reset by peer
[  143.280857][   T86] vhci_hcd: stop threads
[  143.282355][   T86] vhci_hcd: release socket
[  143.283919][   T86] vhci_hcd: disconnect device
[  143.295408][ T8213] netlink: 12 bytes leftover after parsing attributes in process `syz.3.655'.
[  143.372706][ T8217] loop2: detected capacity change from 0 to 7
[  143.375105][ T8217]  loop2: [POWERTEC] p1 p2 p3
[  143.377297][ T8217] loop2: p1 start 65535 is beyond EOD, truncated
[  143.379384][ T8217] loop2: p2 start 1680832101 is beyond EOD, truncated
[  143.381855][ T8217] loop2: p3 start 22020096 is beyond EOD, truncated
[  143.421667][ T8215] tipc: Started in network mode
[  143.423344][ T8215] tipc: Node identity 5634a1a0ea02, cluster identity 4711
[  143.435962][ T8215] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  143.442814][ T8214] tipc: Resetting bearer <eth:syzkaller0>
[  143.662562][ T8233] random: crng reseeded on system resumption
[  143.692909][ T8233] netlink: 'syz.1.660': attribute type 10 has an invalid length.
[  143.695594][ T8233] netlink: 40 bytes leftover after parsing attributes in process `syz.1.660'.
[  144.557383][   T34] tipc: Node number set to 3157696928
[  145.407885][ T8214] tipc: Disabling bearer <eth:syzkaller0>
[  145.452617][ T8245] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  145.536489][ T8247] Cannot find map_set index 0 as target
[  145.573314][ T8252] 9pnet_fd: Insufficient options for proto=fd
[  145.679634][ T8264] netlink: 'syz.0.668': attribute type 1 has an invalid length.
[  145.683290][ T8264] netlink: 140 bytes leftover after parsing attributes in process `syz.0.668'.
[  145.734510][ T8266] loop6: detected capacity change from 0 to 63
[  145.748951][ T7525] Buffer I/O error on dev loop6, logical block 0, async page read
[  145.751787][ T7525] Buffer I/O error on dev loop6, logical block 0, async page read
[  145.754818][ T7525] Buffer I/O error on dev loop6, logical block 0, async page read
[  145.776668][ T7525] Buffer I/O error on dev loop6, logical block 0, async page read
[  145.779490][ T7525] Buffer I/O error on dev loop6, logical block 0, async page read
[  146.253141][ T8279] netlink: 12 bytes leftover after parsing attributes in process `syz.3.675'.
[  146.402833][ T8288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.678'.
[  146.405801][ T8288] netlink: 'syz.2.678': attribute type 9 has an invalid length.
[  147.165817][ T5974] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  147.317418][ T5974] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  147.323401][ T5974] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  147.326741][ T5974] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.329333][ T5974] usb 7-1: Product: syz
[  147.330663][ T5974] usb 7-1: Manufacturer: syz
[  147.332139][ T5974] usb 7-1: SerialNumber: syz
[  147.502567][ T8310] FAULT_INJECTION: forcing a failure.
[  147.502567][ T8310] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.508395][ T8310] CPU: 2 UID: 0 PID: 8310 Comm: syz.0.685 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  147.508418][ T8310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.508428][ T8310] Call Trace:
[  147.508434][ T8310]  <TASK>
[  147.508440][ T8310]  dump_stack_lvl+0x16c/0x1f0
[  147.508488][ T8310]  should_fail_ex+0x512/0x640
[  147.508521][ T8310]  _copy_from_user+0x2e/0xd0
[  147.508545][ T8310]  __tun_chr_ioctl+0x1de/0x4740
[  147.508576][ T8310]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  147.508603][ T8310]  ? find_held_lock+0x2b/0x80
[  147.508619][ T8310]  ? hook_file_ioctl_common+0x145/0x410
[  147.508648][ T8310]  ? __fget_files+0x20e/0x3c0
[  147.508671][ T8310]  ? fput+0x20/0xf0
[  147.508694][ T8310]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  147.508718][ T8310]  __ia32_compat_sys_ioctl+0x24c/0x360
[  147.508745][ T8310]  __do_fast_syscall_32+0x73/0x120
[  147.508771][ T8310]  do_fast_syscall_32+0x32/0x80
[  147.508794][ T8310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.508813][ T8310] RIP: 0023:0xf709e579
[  147.508826][ T8310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.508843][ T8310] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  147.508859][ T8310] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  147.508868][ T8310] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  147.508877][ T8310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.508886][ T8310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.508895][ T8310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.508917][ T8310]  </TASK>
[  147.572123][ T5974] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  147.819900][ T5974] usb 7-1: USB disconnect, device number 6
[  147.828903][ T5974] usblp0: removed
[  148.018348][ T8323] netlink: 140 bytes leftover after parsing attributes in process `syz.2.688'.
[  148.105952][ T7446] vhci_hcd: vhci_device speed not set
[  148.915908][ T5975] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  149.081595][ T8356] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  149.084104][ T8356] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  149.087316][ T8356] vhci_hcd vhci_hcd.0: Device attached
[  149.087530][ T5975] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  149.094973][ T5975] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  149.100429][ T5975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.102916][ T5975] usb 8-1: Product: syz
[  149.104378][ T5975] usb 8-1: Manufacturer: syz
[  149.106199][ T5975] usb 8-1: SerialNumber: syz
[  149.318879][ T5975] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  149.335946][ T7446] usb 41-1: new high-speed USB device number 7 using vhci_hcd
[  149.344184][ T8363] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  149.345921][ T8363] netlink: 32 bytes leftover after parsing attributes in process `syz.0.698'.
[  149.353963][ T8363] netlink: 'syz.0.698': attribute type 10 has an invalid length.
[  149.370082][ T8363] veth0_vlan: left promiscuous mode
[  149.377578][ T8363] veth0_vlan: entered promiscuous mode
[  149.386584][ T8363] team0: Device veth0_vlan failed to register rx_handler
[  149.479709][ T8358] vhci_hcd: connection reset by peer
[  149.481951][   T12] vhci_hcd: stop threads
[  149.483497][   T12] vhci_hcd: release socket
[  149.485080][   T12] vhci_hcd: disconnect device
[  149.630384][ T8365] netlink: 12 bytes leftover after parsing attributes in process `syz.1.699'.
[  150.777054][ T8392] loop2: detected capacity change from 0 to 7
[  150.781877][ T8392]  loop2: [POWERTEC] p1 p2 p3
[  150.783519][ T8392] loop2: p1 start 65535 is beyond EOD, truncated
[  150.785554][ T8392] loop2: p2 start 1680832101 is beyond EOD, truncated
[  150.798746][ T8392] loop2: p3 start 22020096 is beyond EOD, truncated
[  150.907082][ T8396] random: crng reseeded on system resumption
[  151.007657][ T8400] Cannot find map_set index 0 as target
[  151.033072][ T8404] netlink: 'syz.1.712': attribute type 4 has an invalid length.
[  151.036801][ T8404] netlink: 17 bytes leftover after parsing attributes in process `syz.1.712'.
[  151.118253][ T8404] binder: 8401:8404 ioctl 54a0 0 returned -22
[  151.120426][ T8404] binder: 8401:8404 ioctl d000943e 80000600 returned -22
[  151.122736][ T8404] binder: BINDER_SET_CONTEXT_MGR already set
[  151.124772][ T8404] binder: 8401:8404 ioctl 4018620d 80000040 returned -16
[  151.155604][ T8405] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  151.477736][ T8423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.719'.
[  151.542912][ T8423] hub 6-0:1.0: USB hub found
[  151.547121][ T8423] hub 6-0:1.0: 1 port detected
[  151.851926][ T8439] netlink: 5456 bytes leftover after parsing attributes in process `syz.2.724'.
[  151.859021][ T8439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.724'.
[  151.861826][ T8439] netlink: 4 bytes leftover after parsing attributes in process `syz.2.724'.
[  152.156983][ T8454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.727'.
[  152.157595][ T8456] netlink: 12 bytes leftover after parsing attributes in process `syz.0.729'.
[  152.160041][ T8454] netlink: 'syz.2.727': attribute type 9 has an invalid length.
[  152.190022][ T8458] 9pnet_fd: Insufficient options for proto=fd
[  152.193896][ T8458] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  152.782046][ T8468] Cannot find set identified by id 0 to match
[  152.972105][ T8477] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  152.974208][ T8477] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  152.977161][ T8477] vhci_hcd vhci_hcd.0: Device attached
[  153.066552][ T8481] FAULT_INJECTION: forcing a failure.
[  153.066552][ T8481] name failslab, interval 1, probability 0, space 0, times 0
[  153.071745][ T8481] CPU: 2 UID: 0 PID: 8481 Comm: syz.2.737 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  153.071759][ T8481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.071765][ T8481] Call Trace:
[  153.071769][ T8481]  <TASK>
[  153.071774][ T8481]  dump_stack_lvl+0x16c/0x1f0
[  153.071791][ T8481]  should_fail_ex+0x512/0x640
[  153.071805][ T8481]  ? fs_reclaim_acquire+0xae/0x150
[  153.071820][ T8481]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  153.071834][ T8481]  should_failslab+0xc2/0x120
[  153.071846][ T8481]  __kmalloc_noprof+0xd2/0x510
[  153.071860][ T8481]  tomoyo_realpath_from_path+0xc2/0x6e0
[  153.071875][ T8481]  ? tomoyo_profile+0x47/0x60
[  153.071891][ T8481]  tomoyo_path_number_perm+0x245/0x580
[  153.071902][ T8481]  ? tomoyo_path_number_perm+0x237/0x580
[  153.071914][ T8481]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.071939][ T8481]  ? find_held_lock+0x2b/0x80
[  153.071949][ T8481]  ? hook_file_ioctl_common+0x145/0x410
[  153.071960][ T8481]  ? __fget_files+0x204/0x3c0
[  153.071977][ T8481]  ? __fget_files+0x20e/0x3c0
[  153.071990][ T8481]  ? fput+0x20/0xf0
[  153.072003][ T8481]  security_file_ioctl_compat+0x9b/0x240
[  153.072016][ T8481]  __ia32_compat_sys_ioctl+0xc3/0x360
[  153.072031][ T8481]  __do_fast_syscall_32+0x73/0x120
[  153.072046][ T8481]  do_fast_syscall_32+0x32/0x80
[  153.072060][ T8481]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.072072][ T8481] RIP: 0023:0xf7f93579
[  153.072080][ T8481] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.072090][ T8481] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  153.072099][ T8481] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  153.072105][ T8481] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  153.072111][ T8481] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.072116][ T8481] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.072142][ T8481] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.072161][ T8481]  </TASK>
[  153.072166][ T8481] ERROR: Out of memory at tomoyo_realpath_from_path.
[  153.245817][   T29] usb 37-1: new high-speed USB device number 4 using vhci_hcd
[  153.515196][ T8478] vhci_hcd: connection reset by peer
[  153.526051][   T12] vhci_hcd: stop threads
[  153.527455][   T12] vhci_hcd: release socket
[  153.529265][   T12] vhci_hcd: disconnect device
[  154.475940][ T7446] vhci_hcd: vhci_device speed not set
[  154.513789][ T8511] Cannot find map_set index 0 as target
[  154.514111][ T8510] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  154.521020][ T8510] netlink: 'syz.2.744': attribute type 10 has an invalid length.
[  154.528032][ T8510] veth0_vlan: left promiscuous mode
[  154.531585][ T8510] veth0_vlan: entered promiscuous mode
[  154.536801][ T8510] team0: Device veth0_vlan failed to register rx_handler
[  154.598065][ T8519] netlink: 'syz.1.751': attribute type 2 has an invalid length.
[  154.667095][ T8524] __nla_validate_parse: 1 callbacks suppressed
[  154.667107][ T8524] netlink: 140 bytes leftover after parsing attributes in process `syz.0.750'.
[  156.155141][ T5974] usb 8-1: USB disconnect, device number 6
[  156.178459][ T5974] usblp0: removed
[  156.410015][ T8554] Cannot find set identified by id 0 to match
[  156.572009][ T8559] netlink: 140 bytes leftover after parsing attributes in process `syz.3.763'.
[  157.404604][ T8571] loop2: detected capacity change from 0 to 7
[  157.410828][ T7525]  loop2: [POWERTEC] p1 p2 p3
[  157.412633][ T7525] loop2: p1 start 65535 is beyond EOD, truncated
[  157.414714][ T7525] loop2: p2 start 1680832101 is beyond EOD, truncated
[  157.417330][ T7525] loop2: p3 start 22020096 is beyond EOD, truncated
[  157.417795][ T8572] netlink: 140 bytes leftover after parsing attributes in process `syz.1.766'.
[  157.423534][ T8571]  loop2: [POWERTEC] p1 p2 p3
[  157.425486][ T8571] loop2: p1 start 65535 is beyond EOD, truncated
[  157.428509][ T8571] loop2: p2 start 1680832101 is beyond EOD, truncated
[  157.430734][ T8571] loop2: p3 start 22020096 is beyond EOD, truncated
[  157.471444][ T8574] warning: `syz.3.769' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  157.698753][   T10] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  158.046055][   T10] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  158.060891][   T10] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  158.063982][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.067623][   T10] usb 7-1: Product: syz
[  158.069238][   T10] usb 7-1: Manufacturer: syz
[  158.070852][   T10] usb 7-1: SerialNumber: syz
[  158.283778][   T10] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  158.345834][   T29] vhci_hcd: vhci_device speed not set
[  158.482989][ T8595] Cannot find map_set index 0 as target
[  158.589624][ T7446] usb 7-1: USB disconnect, device number 7
[  158.602280][ T7446] usblp0: removed
[  158.618396][ T8602] netlink: 140 bytes leftover after parsing attributes in process `syz.1.777'.
[  158.662072][ T8606] netlink: 'syz.2.779': attribute type 10 has an invalid length.
[  158.667741][ T8607] FAULT_INJECTION: forcing a failure.
[  158.667741][ T8607] name failslab, interval 1, probability 0, space 0, times 0
[  158.674401][ T8607] CPU: 2 UID: 0 PID: 8607 Comm: syz.0.778 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  158.674423][ T8607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.674433][ T8607] Call Trace:
[  158.674439][ T8607]  <TASK>
[  158.674446][ T8607]  dump_stack_lvl+0x16c/0x1f0
[  158.674472][ T8607]  should_fail_ex+0x512/0x640
[  158.674495][ T8607]  ? __kmalloc_noprof+0xbf/0x510
[  158.674514][ T8607]  ? __list_lru_init+0xe8/0x4c0
[  158.674531][ T8607]  should_failslab+0xc2/0x120
[  158.674550][ T8607]  __kmalloc_noprof+0xd2/0x510
[  158.674572][ T8607]  __list_lru_init+0xe8/0x4c0
[  158.674592][ T8607]  alloc_super+0x8bf/0xbd0
[  158.674621][ T8607]  sget_fc+0x116/0xc20
[  158.674644][ T8607]  ? apparmor_capable+0x114/0x1d0
[  158.674660][ T8607]  ? __pfx_set_anon_super_fc+0x10/0x10
[  158.674684][ T8607]  ? __pfx_ovl_fill_super+0x10/0x10
[  158.674707][ T8607]  get_tree_nodev+0x28/0x190
[  158.674723][ T8607]  vfs_get_tree+0x8b/0x340
[  158.674745][ T8607]  path_mount+0x14d4/0x1f20
[  158.674763][ T8607]  ? kmem_cache_free+0x2d4/0x4d0
[  158.674780][ T8607]  ? __pfx_path_mount+0x10/0x10
[  158.674800][ T8607]  ? putname+0x154/0x1a0
[  158.674821][ T8607]  __ia32_sys_mount+0x28b/0x310
[  158.674839][ T8607]  ? __pfx___ia32_sys_mount+0x10/0x10
[  158.674860][ T8607]  ? rcu_is_watching+0x12/0xc0
[  158.674878][ T8607]  __do_fast_syscall_32+0x73/0x120
[  158.674902][ T8607]  do_fast_syscall_32+0x32/0x80
[  158.674925][ T8607]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.674945][ T8607] RIP: 0023:0xf709e579
[  158.674958][ T8607] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  158.674973][ T8607] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  158.674990][ T8607] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  158.675001][ T8607] RDX: 00000000800005c0 RSI: 0000000000000000 RDI: 0000000080000400
[  158.675011][ T8607] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.675020][ T8607] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  158.675029][ T8607] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.675051][ T8607]  </TASK>
[  159.443508][ T8604] overlayfs: statfs failed on './file0'
[  159.726169][  T837] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  159.888894][  T837] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  159.918196][  T837] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  159.922248][  T837] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.928423][  T837] usb 5-1: Product: syz
[  159.930329][  T837] usb 5-1: Manufacturer: syz
[  159.932480][  T837] usb 5-1: SerialNumber: syz
[  159.978734][ T8660] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  160.065097][ T8663] netlink: 8 bytes leftover after parsing attributes in process `syz.1.793'.
[  160.069662][ T8663] netlink: 40 bytes leftover after parsing attributes in process `syz.1.793'.
[  160.161207][  T837] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  160.176596][ T8668] netlink: 140 bytes leftover after parsing attributes in process `syz.1.794'.
[  160.391660][ T8671] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  160.393657][ T8671] netlink: 32 bytes leftover after parsing attributes in process `syz.2.795'.
[  160.403906][ T8671] netlink: 'syz.2.795': attribute type 10 has an invalid length.
[  160.408941][ T8671] veth0_vlan: left promiscuous mode
[  160.415196][ T8671] veth0_vlan: entered promiscuous mode
[  160.421578][ T8671] team0: Device veth0_vlan failed to register rx_handler
[  160.447268][ T6033] usb 5-1: USB disconnect, device number 3
[  160.452456][ T6033] usblp0: removed
[  161.272447][ T8689] loop2: detected capacity change from 0 to 7
[  161.274816][ T8689]  loop2: [POWERTEC] p1 p2 p3
[  161.277445][ T8689] loop2: p1 start 65535 is beyond EOD, truncated
[  161.279508][ T8689] loop2: p2 start 1680832101 is beyond EOD, truncated
[  161.281718][ T8689] loop2: p3 start 22020096 is beyond EOD, truncated
[  161.342037][ T8693] netlink: 64 bytes leftover after parsing attributes in process `syz.2.804'.
[  161.357501][ T8695] Cannot find map_set index 0 as target
[  161.406437][ T8697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.805'.
[  161.679356][   T24] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  161.818666][ T8703] netlink: 140 bytes leftover after parsing attributes in process `syz.3.807'.
[  161.837239][   T24] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  161.847289][   T24] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  161.850249][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.852844][   T24] usb 6-1: Product: syz
[  161.855333][   T24] usb 6-1: Manufacturer: syz
[  161.859052][   T24] usb 6-1: SerialNumber: syz
[  162.098373][   T24] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  162.180164][ T8706] vivid-007: =================  START STATUS  =================
[  162.182918][ T8706] vivid-007: Enable Output Cropping: true
[  162.184990][ T8706] vivid-007: Enable Output Composing: true
[  162.188319][ T8706] vivid-007: Enable Output Scaler: true
[  162.190177][ T8706] vivid-007: Tx RGB Quantization Range: Automatic
[  162.192292][ T8706] vivid-007: Transmit Mode: HDMI
[  162.194012][ T8706] vivid-007: Hotplug Present: 0x00000000
[  162.196899][ T8706] vivid-007: RxSense Present: 0x00000000
[  162.198768][ T8706] vivid-007: EDID Present: 0x00000000
[  162.200556][ T8706] vivid-007: ==================  END STATUS  ==================
[  162.234027][ T8709] FAULT_INJECTION: forcing a failure.
[  162.234027][ T8709] name failslab, interval 1, probability 0, space 0, times 0
[  162.238286][ T8709] CPU: 2 UID: 0 PID: 8709 Comm: syz.3.809 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  162.238299][ T8709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.238306][ T8709] Call Trace:
[  162.238309][ T8709]  <TASK>
[  162.238319][ T8709]  dump_stack_lvl+0x16c/0x1f0
[  162.238336][ T8709]  should_fail_ex+0x512/0x640
[  162.238351][ T8709]  ? __kmalloc_noprof+0xbf/0x510
[  162.238362][ T8709]  ? __list_lru_init+0xe8/0x4c0
[  162.238373][ T8709]  should_failslab+0xc2/0x120
[  162.238385][ T8709]  __kmalloc_noprof+0xd2/0x510
[  162.238395][ T8709]  ? lockdep_init_map_type+0x5c/0x280
[  162.238411][ T8709]  __list_lru_init+0xe8/0x4c0
[  162.238423][ T8709]  alloc_super+0x904/0xbd0
[  162.238441][ T8709]  sget_fc+0x116/0xc20
[  162.238455][ T8709]  ? apparmor_capable+0x114/0x1d0
[  162.238465][ T8709]  ? __pfx_set_anon_super_fc+0x10/0x10
[  162.238480][ T8709]  ? __pfx_ovl_fill_super+0x10/0x10
[  162.238494][ T8709]  get_tree_nodev+0x28/0x190
[  162.238503][ T8709]  vfs_get_tree+0x8b/0x340
[  162.238516][ T8709]  path_mount+0x14d4/0x1f20
[  162.238527][ T8709]  ? kmem_cache_free+0x2d4/0x4d0
[  162.238537][ T8709]  ? __pfx_path_mount+0x10/0x10
[  162.238549][ T8709]  ? putname+0x154/0x1a0
[  162.238561][ T8709]  __ia32_sys_mount+0x28b/0x310
[  162.238572][ T8709]  ? __pfx___ia32_sys_mount+0x10/0x10
[  162.238583][ T8709]  ? rcu_is_watching+0x12/0xc0
[  162.238594][ T8709]  __do_fast_syscall_32+0x73/0x120
[  162.238609][ T8709]  do_fast_syscall_32+0x32/0x80
[  162.238623][ T8709]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  162.238635][ T8709] RIP: 0023:0xf7f82579
[  162.238643][ T8709] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  162.238652][ T8709] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  162.238661][ T8709] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  162.238667][ T8709] RDX: 00000000800005c0 RSI: 0000000000000000 RDI: 0000000080000400
[  162.238673][ T8709] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  162.238679][ T8709] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  162.238684][ T8709] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  162.238696][ T8709]  </TASK>
[  162.392796][   T34] usb 6-1: USB disconnect, device number 7
[  162.407256][   T34] usblp0: removed
[  162.488314][ T8719] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  162.498709][ T8722] Cannot find set identified by id 0 to match
[  162.645694][ T8728] loop2: detected capacity change from 0 to 7
[  162.650060][ T8728]  loop2: [POWERTEC] p1 p2 p3
[  162.651999][ T8728] loop2: p1 start 65535 is beyond EOD, truncated
[  162.654173][ T8728] loop2: p2 start 1680832101 is beyond EOD, truncated
[  162.656631][ T8728] loop2: p3 start 22020096 is beyond EOD, truncated
[  162.746351][ T8732] netlink: 8 bytes leftover after parsing attributes in process `syz.1.818'.
[  162.749263][ T8732] netlink: 'syz.1.818': attribute type 9 has an invalid length.
[  163.003241][ T8708] overlayfs: statfs failed on './file0'
[  163.116536][ T8738] FAULT_INJECTION: forcing a failure.
[  163.116536][ T8738] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.120915][ T8738] CPU: 3 UID: 0 PID: 8738 Comm: syz.3.820 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  163.120929][ T8738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.120946][ T8738] Call Trace:
[  163.120951][ T8738]  <TASK>
[  163.120956][ T8738]  dump_stack_lvl+0x16c/0x1f0
[  163.120974][ T8738]  should_fail_ex+0x512/0x640
[  163.120990][ T8738]  _copy_from_user+0x2e/0xd0
[  163.121005][ T8738]  get_compat_msghdr+0xa7/0x170
[  163.121016][ T8738]  ? __pfx_get_compat_msghdr+0x10/0x10
[  163.121027][ T8738]  ? __pfx__kstrtoull+0x10/0x10
[  163.121041][ T8738]  ___sys_sendmsg+0x1ae/0x1d0
[  163.121054][ T8738]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.121071][ T8738]  ? find_held_lock+0x2b/0x80
[  163.121098][ T8738]  ? __pfx___might_resched+0x10/0x10
[  163.121112][ T8738]  __sys_sendmmsg+0x2f9/0x420
[  163.121124][ T8738]  ? __pfx___sys_sendmmsg+0x10/0x10
[  163.121139][ T8738]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.121159][ T8738]  ? fput+0x70/0xf0
[  163.121171][ T8738]  ? ksys_write+0x1b9/0x240
[  163.121180][ T8738]  ? __pfx_ksys_write+0x10/0x10
[  163.121188][ T8738]  ? rcu_is_watching+0x12/0xc0
[  163.121199][ T8738]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  163.121210][ T8738]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.121224][ T8738]  __do_fast_syscall_32+0x73/0x120
[  163.121238][ T8738]  do_fast_syscall_32+0x32/0x80
[  163.121252][ T8738]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.121265][ T8738] RIP: 0023:0xf7f82579
[  163.121273][ T8738] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.121282][ T8738] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  163.121291][ T8738] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000900
[  163.121297][ T8738] RDX: 00000000040000cf RSI: 0000000000000000 RDI: 0000000000000000
[  163.121303][ T8738] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.121308][ T8738] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.121314][ T8738] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.121326][ T8738]  </TASK>
[  163.346016][ T8742] tipc: Started in network mode
[  163.347711][ T8742] tipc: Node identity 4000004, cluster identity 4711
[  163.350300][ T8742] tipc: Node number set to 67108868
[  163.358934][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.822'.
[  163.362928][ T8744] netlink: 40 bytes leftover after parsing attributes in process `syz.3.822'.
[  163.456197][ T6031] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  163.464811][ T8749] netlink: 'syz.3.823': attribute type 9 has an invalid length.
[  163.503139][ T8750] loop8: detected capacity change from 0 to 7
[  163.516158][ T7525] Dev loop8: unable to read RDB block 7
[  163.518578][ T7525]  loop8: unable to read partition table
[  163.521130][ T7525] loop8: partition table beyond EOD, truncated
[  163.527068][ T8750] Dev loop8: unable to read RDB block 7
[  163.529405][ T8750]  loop8: unable to read partition table
[  163.531637][ T8750] loop8: partition table beyond EOD, truncated
[  163.534650][ T8750] loop_reread_partitions: partition scan of loop8 (�被x������ڬ��dƤ����ݡ�����
[  163.534650][ T8750] 
) failed (rc=-5)
[  163.625879][ T6031] usb 5-1: Using ep0 maxpacket: 16
[  163.629467][ T6031] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  163.636628][ T6031] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  163.645058][ T6031] usb 5-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  163.647733][ T6031] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.650064][ T6031] usb 5-1: Product: syz
[  163.651268][ T6031] usb 5-1: Manufacturer: syz
[  163.652643][ T6031] usb 5-1: SerialNumber: syz
[  163.658990][ T6031] usb 5-1: config 0 descriptor??
[  163.914923][ T8758] hub 6-0:1.0: USB hub found
[  163.915072][ T8758] hub 6-0:1.0: 1 port detected
[  163.929283][ T6031] appledisplay 5-1:0.0: Error while getting initial brightness: -110
[  163.932311][ T6031] appledisplay 5-1:0.0: probe with driver appledisplay failed with error -110
[  163.945182][   T58] usb 5-1: USB disconnect, device number 4
[  164.641008][ T8781] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  164.682142][ T8785] binder: 8782:8785 ioctl c018620c 800000c0 returned -22
[  164.992488][ T8794] netlink: 'syz.0.837': attribute type 10 has an invalid length.
[  164.995495][ T8794] veth0_vlan: left promiscuous mode
[  164.998847][ T8794] veth0_vlan: entered promiscuous mode
[  165.085388][ T8794] team0: Device veth0_vlan failed to register rx_handler
[  165.796955][ T6031] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  165.977306][ T6031] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  165.983437][ T6031] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  165.986544][ T6031] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.992908][ T6031] usb 7-1: Product: syz
[  165.995395][ T6031] usb 7-1: Manufacturer: syz
[  165.998208][ T6031] usb 7-1: SerialNumber: syz
[  166.031467][ T8823] Cannot find set identified by id 0 to match
[  166.192367][ T8833] __nla_validate_parse: 5 callbacks suppressed
[  166.192378][ T8833] netlink: 12 bytes leftover after parsing attributes in process `syz.0.850'.
[  166.197836][ T8833] netlink: 12 bytes leftover after parsing attributes in process `syz.0.850'.
[  166.202506][ T8833] =======================================================
[  166.202506][ T8833] WARNING: The mand mount option has been deprecated and
[  166.202506][ T8833]          and is ignored by this kernel. Remove the mand
[  166.202506][ T8833]          option from the mount to silence this warning.
[  166.202506][ T8833] =======================================================
[  166.214445][ T6031] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  166.490063][ T6031] usb 7-1: USB disconnect, device number 8
[  166.498635][ T6031] usblp0: removed
[  166.575620][ T8844] netlink: 8 bytes leftover after parsing attributes in process `syz.1.854'.
[  166.578966][ T8844] netlink: 'syz.1.854': attribute type 9 has an invalid length.
[  166.592382][ T8844] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  166.595457][ T8844] macvlan7: entered allmulticast mode
[  166.598480][ T8844] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  166.630100][ T8846] netlink: 12 bytes leftover after parsing attributes in process `syz.1.855'.
[  166.684520][   T10] libceph: connect (1)[c::]:6789 error -101
[  166.689650][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  166.809307][ T5290] Bluetooth: hci3: Malformed Event: 0x13
[  166.947312][   T10] libceph: connect (1)[c::]:6789 error -101
[  166.950112][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  167.042167][ T8863] Cannot find map_set index 0 as target
[  167.055797][ T6031] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  167.099989][ T8865] dummy0: entered promiscuous mode
[  167.102190][ T8865] macsec2: entered allmulticast mode
[  167.103974][ T8865] dummy0: entered allmulticast mode
[  167.215852][ T6031] usb 8-1: Using ep0 maxpacket: 16
[  167.221130][ T6031] usb 8-1: config 0 has an invalid interface number: 8 but max is 0
[  167.223836][ T6031] usb 8-1: config 0 has no interface number 0
[  167.227794][ T6031] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  167.236698][ T6031] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  167.241280][ T6031] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  167.244319][ T6031] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  167.247335][ T6031] usb 8-1: Product: syz
[  167.248806][ T6031] usb 8-1: SerialNumber: syz
[  167.255095][ T6031] usb 8-1: config 0 descriptor??
[  167.259214][ T6031] cm109 8-1:0.8: invalid payload size 0, expected 4
[  167.262452][ T6031] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.8/input/input10
[  167.457573][ T6031] libceph: connect (1)[c::]:6789 error -101
[  167.459746][ T6031] libceph: mon0 (1)[c::]:6789 connect error
[  167.461900][    C0] cm109 8-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  167.475577][ T8848] ceph: No mds server is up or the cluster is laggy
[  167.782365][ T8878] netlink: 4 bytes leftover after parsing attributes in process `syz.2.863'.
[  167.792286][ T8878] hub 6-0:1.0: USB hub found
[  167.794697][ T8878] hub 6-0:1.0: 1 port detected
[  168.083906][ T8887] ALSA: seq fatal error: cannot create timer (-22)
[  169.472325][ T8916] Unknown options in mask 7
[  169.472350][ T8917] Unknown options in mask 7
[  169.479469][ T8916] xt_hashlimit: overflow, try lower: 17592186044416/6
[  169.517580][ T8919] netlink: 12 bytes leftover after parsing attributes in process `syz.2.876'.
[  169.608240][ T8929] netlink: 8 bytes leftover after parsing attributes in process `syz.0.878'.
[  169.611258][ T8929] netlink: 'syz.0.878': attribute type 9 has an invalid length.
[  169.778168][ T8934] FAULT_INJECTION: forcing a failure.
[  169.778168][ T8934] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.783815][ T8934] CPU: 3 UID: 0 PID: 8934 Comm: syz.0.881 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  169.783837][ T8934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.783846][ T8934] Call Trace:
[  169.783852][ T8934]  <TASK>
[  169.783859][ T8934]  dump_stack_lvl+0x16c/0x1f0
[  169.783900][ T8934]  should_fail_ex+0x512/0x640
[  169.783926][ T8934]  strncpy_from_user+0x3b/0x2e0
[  169.783948][ T8934]  bpf_prog_load+0x1aef/0x2490
[  169.783995][ T8934]  ? __pfx_bpf_prog_load+0x10/0x10
[  169.784036][ T8934]  ? bpf_lsm_bpf+0x9/0x10
[  169.784054][ T8934]  __sys_bpf+0x433c/0x4d80
[  169.784079][ T8934]  ? __pfx___sys_bpf+0x10/0x10
[  169.784099][ T8934]  ? ksys_write+0x190/0x240
[  169.784119][ T8934]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  169.784151][ T8934]  ? fput+0x70/0xf0
[  169.784177][ T8934]  ? ksys_write+0x1b9/0x240
[  169.784190][ T8934]  ? __pfx_ksys_write+0x10/0x10
[  169.784208][ T8934]  __ia32_sys_bpf+0x76/0xe0
[  169.784229][ T8934]  __do_fast_syscall_32+0x73/0x120
[  169.784252][ T8934]  do_fast_syscall_32+0x32/0x80
[  169.784272][ T8934]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.784291][ T8934] RIP: 0023:0xf709e579
[  169.784303][ T8934] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.784317][ T8934] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  169.784332][ T8934] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0
[  169.784342][ T8934] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  169.784351][ T8934] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.784359][ T8934] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.784368][ T8934] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.784389][ T8934]  </TASK>
[  169.863699][    C3] vkms_vblank_simulate: vblank timer overrun
[  169.913124][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71
[  169.916638][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71
[  169.919100][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71
[  169.921567][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71
[  169.923903][   T58] usb 8-1: USB disconnect, device number 7
[  169.925918][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: urb status -71
[  169.925929][    C2] cm109 8-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  169.951453][   T58] cm109 8-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  170.085294][ T8941] netlink: 'syz.1.883': attribute type 28 has an invalid length.
[  170.157959][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.170239][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.172865][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.175375][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.178503][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.181039][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.183721][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.187636][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.190097][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.192528][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.195074][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.200528][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.202984][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.205560][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.212868][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.219151][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.222291][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.224611][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.228598][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.231011][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.233511][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.236081][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.238503][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.240918][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.243361][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.252280][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.254746][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.262420][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.266409][ T5943] Bluetooth: hci1: command 0x0406 tx timeout
[  170.268041][ T5936] Bluetooth: hci3: command 0x0405 tx timeout
[  170.269492][ T5939] Bluetooth: hci2: command 0x0406 tx timeout
[  170.276404][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.332269][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.334698][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.337471][   T58] hid-generic 0001:0000:0000.0003: unknown main item tag 0x0
[  170.342905][   T58] hid-generic 0001:0000:0000.0003: hidraw1: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[  170.485818][   T24] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  170.549500][ T8956] wireguard0: entered promiscuous mode
[  170.551383][ T8956] wireguard0: entered allmulticast mode
[  170.638403][   T24] usb 6-1: config 0 has no interfaces?
[  170.640346][   T24] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  170.644428][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.671465][   T24] usb 6-1: config 0 descriptor??
[  170.937959][ T8961] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  170.940904][ T8961] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  170.958801][ T8961] vhci_hcd vhci_hcd.0: Device attached
[  171.132763][ T5975] usb 6-1: USB disconnect, device number 8
[  171.195856][ T7446] usb 41-1: new high-speed USB device number 8 using vhci_hcd
[  171.507727][ T8962] vhci_hcd: connection reset by peer
[  171.509995][ T1138] vhci_hcd: stop threads
[  171.511496][ T1138] vhci_hcd: release socket
[  171.513218][ T1138] vhci_hcd: disconnect device
[  171.621106][ T8982] FAULT_INJECTION: forcing a failure.
[  171.621106][ T8982] name failslab, interval 1, probability 0, space 0, times 0
[  171.625329][ T8982] CPU: 2 UID: 0 PID: 8982 Comm: syz.0.893 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  171.625343][ T8982] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.625349][ T8982] Call Trace:
[  171.625353][ T8982]  <TASK>
[  171.625358][ T8982]  dump_stack_lvl+0x16c/0x1f0
[  171.625387][ T8982]  should_fail_ex+0x512/0x640
[  171.625403][ T8982]  should_failslab+0xc2/0x120
[  171.625416][ T8982]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  171.625428][ T8982]  ? skb_clone+0x190/0x3f0
[  171.625441][ T8982]  skb_clone+0x190/0x3f0
[  171.625453][ T8982]  netlink_deliver_tap+0xabd/0xd30
[  171.625467][ T8982]  netlink_unicast+0x5df/0x7f0
[  171.625481][ T8982]  ? __pfx_netlink_unicast+0x10/0x10
[  171.625496][ T8982]  netlink_sendmsg+0x8d1/0xdd0
[  171.625511][ T8982]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.625523][ T8982]  ? __import_iovec+0x1c8/0x660
[  171.625541][ T8982]  ____sys_sendmsg+0xa95/0xc70
[  171.625559][ T8982]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.625572][ T8982]  ? get_compat_msghdr+0x11a/0x170
[  171.625589][ T8982]  ___sys_sendmsg+0x134/0x1d0
[  171.625601][ T8982]  ? __pfx____sys_sendmsg+0x10/0x10
[  171.625624][ T8982]  ? __pfx_vfs_write+0x10/0x10
[  171.625633][ T8982]  ? do_sys_openat2+0x157/0x1d0
[  171.625647][ T8982]  __sys_sendmsg+0x16d/0x220
[  171.625658][ T8982]  ? __pfx___sys_sendmsg+0x10/0x10
[  171.625673][ T8982]  ? rcu_is_watching+0x12/0xc0
[  171.625684][ T8982]  ? rcu_is_watching+0x12/0xc0
[  171.625694][ T8982]  __do_fast_syscall_32+0x73/0x120
[  171.625709][ T8982]  do_fast_syscall_32+0x32/0x80
[  171.625735][ T8982]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.625748][ T8982] RIP: 0023:0xf709e579
[  171.625756][ T8982] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.625766][ T8982] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  171.625775][ T8982] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000080000100
[  171.625781][ T8982] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  171.625787][ T8982] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.625792][ T8982] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.625797][ T8982] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.625810][ T8982]  </TASK>
[  171.697394][ T8987] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000021: 0000 [#1] SMP KASAN NOPTI
[  171.706559][ T8987] KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f]
[  171.710368][ T8987] CPU: 0 UID: 0 PID: 8987 Comm: syz.1.894 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  171.714436][ T8987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.717892][ T8987] RIP: 0010:bcsp_recv+0x10a/0x17f0
[  171.719564][ T8987] Code: 18 48 c1 e8 03 48 01 e8 48 89 04 24 48 8d 83 78 01 00 00 48 89 44 24 28 48 c1 e8 03 48 89 44 24 08 e8 6a 3d 60 f9 48 8b 04 24 <80> 38 00 0f 85 d1 12 00 00 4c 8b ab 08 01 00 00 31 ff 4c 89 ee e8
[  171.725838][ T8987] RSP: 0018:ffffc90021a37ba0 EFLAGS: 00010293
[  171.727822][ T8987] RAX: dffffc0000000021 RBX: 0000000000000000 RCX: ffffffff885a6f1a
[  171.730384][ T8987] RDX: ffff888022f34880 RSI: ffffffff885a6f66 RDI: 0000000000000005
[  171.732948][ T8987] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  171.735513][ T8987] R10: 0000000000000001 R11: 000000000000001e R12: ffffc90021a37d38
[  171.738075][ T8987] R13: ffffc90021a37d38 R14: 0000000000000001 R15: ffff888053d34c00
[  171.740708][ T8987] FS:  0000000000000000(0000) GS:ffff8880977ec000(0063) knlGS:00000000f502cb40
[  171.743602][ T8987] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  171.745768][ T8987] CR2: 00000000f502cda4 CR3: 000000002572e000 CR4: 0000000000352ef0
[  171.748352][ T8987] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  171.750911][ T8987] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  171.753508][ T8987] Call Trace:
[  171.754615][ T8987]  <TASK>
[  171.755602][ T8987]  ? __pfx_bcsp_recv+0x10/0x10
[  171.757193][ T8987]  hci_uart_tty_receive+0x251/0x7e0
[  171.758898][ T8987]  ? __pfx_hci_uart_tty_receive+0x10/0x10
[  171.760792][ T8987]  tty_ioctl+0x57d/0x1610
[  171.762234][ T8987]  ? __pfx_tty_ioctl+0x10/0x10
[  171.763806][ T8987]  ? find_held_lock+0x2b/0x80
[  171.765387][ T8987]  ? hook_file_ioctl_common+0x145/0x410
[  171.767190][ T8987]  ? __fget_files+0x20e/0x3c0
[  171.768746][ T8987]  tty_compat_ioctl+0x24a/0x4d0
[  171.770344][ T8987]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  171.772113][ T8987]  __ia32_compat_sys_ioctl+0x24c/0x360
[  171.773932][ T8987]  __do_fast_syscall_32+0x73/0x120
[  171.775610][ T8987]  do_fast_syscall_32+0x32/0x80
[  171.777251][ T8987]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.779302][ T8987] RIP: 0023:0xf707e579
[  171.780646][ T8987] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.786883][ T8987] RSP: 002b:00000000f502c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  171.789606][ T8987] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000005412
[  171.792181][ T8987] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  171.794719][ T8987] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.797267][ T8987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  171.799809][ T8987] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.802391][ T8987]  </TASK>
[  171.803426][ T8987] Modules linked in:
[  171.805158][ T8987] ---[ end trace 0000000000000000 ]---
[  171.807409][ T8987] RIP: 0010:bcsp_recv+0x10a/0x17f0
[  171.809144][ T8987] Code: 18 48 c1 e8 03 48 01 e8 48 89 04 24 48 8d 83 78 01 00 00 48 89 44 24 28 48 c1 e8 03 48 89 44 24 08 e8 6a 3d 60 f9 48 8b 04 24 <80> 38 00 0f 85 d1 12 00 00 4c 8b ab 08 01 00 00 31 ff 4c 89 ee e8
[  171.815298][ T8987] RSP: 0018:ffffc90021a37ba0 EFLAGS: 00010293
[  171.817361][ T8987] RAX: dffffc0000000021 RBX: 0000000000000000 RCX: ffffffff885a6f1a
[  171.819908][ T8987] RDX: ffff888022f34880 RSI: ffffffff885a6f66 RDI: 0000000000000005
[  171.822476][ T8987] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  171.825035][ T8987] R10: 0000000000000001 R11: 000000000000001e R12: ffffc90021a37d38
[  171.827654][ T8987] R13: ffffc90021a37d38 R14: 0000000000000001 R15: ffff888053d34c00
[  171.830212][ T8987] FS:  0000000000000000(0000) GS:ffff8880977ec000(0063) knlGS:00000000f502cb40
[  171.833107][ T8987] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  171.835264][ T8987] CR2: 00000000f502cda4 CR3: 000000002572e000 CR4: 0000000000352ef0
[  171.837891][ T8987] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  171.840460][ T8987] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  171.843054][ T8987] Kernel panic - not syncing: Fatal exception
[  171.845740][ T8987] Kernel Offset: disabled
[  171.847168][ T8987] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:49:20  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff854c2770 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc90021a37548
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bbfca R15=dffffc0000000000
RIP=ffffffff854c2797 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f502cda4 CR3=000000002572e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001f000000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88802b241480 RCX=ffffffff81ae9e69 RDX=ffff88801d6c0000
RSI=ffffffff81ae9e43 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900001f7938
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed1005648291 R13=0000000000000001 R14=dffffc0000000000 R15=ffff88802b33b180
RIP=ffffffff81ae9e45 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f741500c CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fd818188 Opmask01=00000000003fffff Opmask02=000000003bbfffff Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff25d471e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 00000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d37ab2428b50f297 737326aeccabe5bc
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d8ca003078 30004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d8ca003078 303d4e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d8ca000d45 0d004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000035326c6c 696b66722f346963
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a009c131f82381e4 000055ddbfd912cf 0000000000000221 0000000000003330
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 59647a305f474f5b 647c79303a243a78 68303e3b3a38253b 3a253e3a6e68303b
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffff88801d6d0080 RCX=ffff88802b239fd4 RDX=1ffff11005647403
RSI=ffff88801d6d0080 RDI=ffff88802b23a138 RBP=ffff88802b239fc0 RSP=ffffc90002f0f550
R8 =ffff88802b239f00 R9 =fffffbfff210a462 R10=ffffffff90852317 R11=ffffc90002f0f83c
R12=ffff88802b239fc0 R13=0000000000000008 R14=ffff8880220ac000 R15=ffff88802b239fc0
RIP=ffffffff818db40d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979ec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f9f85b24ba0 CR3=0000000067041000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffff888022e97b38 RCX=0000000000000000 RDX=fffff52004185f52
RSI=0000000000000000 RDI=ffff888022e97b3c RBP=1ffff92004185f52 RSP=ffffc90020c2fa88
R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff90852317 R11=0000000000000000
R12=0000000000001000 R13=000000007f409000 R14=dffffc0000000000 R15=0000000080bf6000
RIP=ffffffff8197f3c7 RFL=00000802 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097aec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080bf6000 CR3=000000002250f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000