fae70f266a760b1126e9362242579bafdad326874b584b9c7beedddaa09e386802c1423e0c69c637f255c76b2594115b4c69a76f96b8dd9d358051703a80aa6ee812614ce9d3f15e20ed115adf7cf6a7f304fd49d917e5ad499e53e470f8673014a44a646a19e3faa3ac8af5f98fca4794f98888752774c6332b1aec36b79d41a3d58b384ee32fa0b02b4c0c8423e41be35fd51546299244fb4da729328b2d182c00eb87db31f756e6351c910360eb5e402c9c86563578c7eba7d88e69478ab703b056c4d8506c5af45364ba1e215c91a146a85b", 0xde}, {&(0x7f0000000400)="6dd7a18e0e28ac66e89ee71a697b59077b97be9e67b7a383920dd66b0e0bfb7ba56959ea8a7269585f4900e942b7eae92853aea824bf554f6a80d73fbb20f79cb6b4d2615d662bf5823c80af816538bbae1463263facc12b94304f0d77f21d29", 0x60}, {&(0x7f0000000480)="c342d77f8ada52af839380e3fb86d87a1cdca26a70d043f34d0e7dcff99d976880d0c2dfc90387a8b8741c34990e5a13db333f25ff0d62a43168a36e434306161061dab0d38c8e08a9e448601fc1af4c7a2c96e78abd3412dce27034bbdb3ed564db8ac9e1f5e0407f74640dce2e6ed3db445fc160185aabf182e6a02c976eb314931b97dd0939cf78ecbe64b0171bcd3fd171488c99241f50bfb3e593d35273cc44c00477", 0xa5}, {&(0x7f0000000540)="5224505058d8592f2ca3d76e020c672a3f6b2ad0c7f4813b978013351dc8215aa72c953ebe46b1fb", 0x28}, {&(0x7f0000000580)="c35679274722e9abe7bde5c2fa3e93732b52f567ee85c2011e9733c4ec3877863e350520e237c4b6c4529d0a6037ff1c5109bb19a3331f625129945ed17b79a4577bf6425c392c716b119d8dbf43fe8340776bb7521ab88488e01f86cd8ac2285e8fa4d6ad2f04cc67d014fd37ed7bd2788e01cea5e23dd26aa63599ce8235f5eb0c1ff636783f9d25fd554101bcb4ad415573cf955ec5b56292dbc84f3044578070d5f9dd89598c4abb17cdc1b74b3cc6f175bda5105b9cc99bcf44f9a80d22e5df7103c157ed13332be34335b976890f8a306fb0589ea3e38644fe9e805067a4205affc13e984ee395542600595f2e04872f0d52", 0xf5}, {&(0x7f0000000680)="2226ad299dcd9be0ff945ef4bee1fe610e06aaed8989efdc807b592a7e0bfb3a1742b23826b55cb4cfbdf43b10492cfe618c6fd552fb6124ed27d4ec3b4cb21ebd40e95ba8c8efa3a0e3179284b23e1bdef792ee495bede3fdb7c4f62c9ff1165a94644c36e30354d3aaf743f70d3baf213f94f2e72bf1ed1de0cb24862e943c8815e47824769a3dfe0cbf51db1cd55bfb1407db5c1059b47fc65ece79", 0x9d}, {&(0x7f0000000740)="98acd6cf5ede5f1e1d1198671ca4db95afff2a434920f3242184f77db251a58e255915", 0x23}], 0x7, &(0x7f0000000800)=[{0xe0, 0x104, 0x9, "df0da2e5545a83bdf5726d7aaca6a04e33f4da30bd62505d13ccbe424c92c8d35ebec41963790a19499a009a7e35a3a61c1203270144b9208f1de1dbfed598bac9ba95613e31e832bd09cd2d6caba062122622782d5bfb37691aa0797a3dbfe1cdeb9425056b75612c6fa91d8e359a7c573ae59e01f6d2cf26f98efe2ba67682e6b1c125f328db24c16805723ab1477dda24a88e74dd51b13976de0b19164ad8d440565f8ac9562ea7c912e5c9ba0f59465403802b5fb130222201ae5b4be4598e252045b02493eb47"}, {0x88, 0x0, 0x13, "d956d5b5b1307609bb08a63a6434353995125c629f9688c9eb81d4296475cf85f7ce0b4851b4c65ba5acb61e0d5e3a574d1823c86f003da2f9fc2de01e6f14a77167894f6fc91569a3f2eb43c64c8835dced710f91b3879b54a112482a663a871449a7d18b8a1e93de24d8c1ed6134dfc5de"}, {0x88, 0xff, 0x2, "625698fe8e0a4b54ce112f0c8e855abfd38df5695831a3e40bc19a8a50d119e1a26711e933a655d31a81866e6a5b27837d11ab61e5f86024d7565507e1b0454399a993da5ff38e09dbb81f5dc454381255838512321864bad12c93a05c171550621a86797d14e77e26ec9b05222ff5b970"}, {0x20, 0x10c, 0x3c7f327, "69a1997881c80e9fc833cf5e4cab"}, {0xc8, 0x1, 0x80000001, "68f56d355af9bc95f899816f7916b1354a8dccc1f9bc844aa30ac16d23c0f866327febe2d341f2a62343b27bc4b261c67cbf8e7e16d288db3277f00481c13dcf3628e4e36deb0edc72225893bb4c902da24cefb8f87ca7f72a907ed0353cccf310829b4630ca66e746775f87bbd6bfbd54661eca959f23506ff87e52e98d094a417faab83525a8f2c8682626ba8201f8d780ddd6e399ec40612c2a4cadb06f1cb48221eda0fecea08f15d26229b180b3f53831"}], 0x2d8}}], 0x1, 0x0)
r1 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000000)='pkcs7_test\x00', 0x0, &(0x7f0000000100)="9b29d78d9d368ed5eb4153e197f9e3df440f6d1c9f7ff77f78f0975fc5fa9f184359860c7bf5aa1c78eb578a15d44555a57e8b5751c1546eec05a4d9e2ac7d79448f4dd1c18633c3ca0b922ca96b51ec20c7fd22ff692fd3fc", 0x59, r1)

06:04:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  405.490201][   T18] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  405.501014][    T7] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
06:04:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  405.673817][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  405.683400][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.691969][    T7] usb 3-1: Product: syz
[  405.696309][    T7] usb 3-1: Manufacturer: syz
[  405.701374][    T7] usb 3-1: SerialNumber: syz
[  405.728440][    T7] usb 3-1: config 0 descriptor??
[  405.820874][   T18] usb 5-1: too many configurations: 78, using maximum allowed: 8
[  405.960849][   T18] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  405.968940][   T18] usb 5-1: can't read configurations, error -22
[  406.006897][   T18] usb usb5-port1: attempt power cycle
[  406.444454][   T18] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  406.590696][   T18] usb 5-1: too many configurations: 78, using maximum allowed: 8
[  406.721084][   T18] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  406.729161][   T18] usb 5-1: can't read configurations, error -22
[  406.910039][   T18] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  407.050852][   T18] usb 5-1: too many configurations: 78, using maximum allowed: 8
[  407.181548][   T18] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  407.189712][   T18] usb 5-1: can't read configurations, error -22
[  407.230071][   T18] usb usb5-port1: unable to enumerate USB device
06:04:16 executing program 4:
mmap(&(0x7f0000009000/0x3000)=nil, 0x3000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000140)={'filter\x00', 0x4}, 0x68)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000000)="fc0000001d000724ab09254ec100070007ab08001b000000f0ffff002100057e0000000000000e000039000000039815fad151ba0101099cecb94b46fe0000000a00020025", 0xffffff0c)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
pipe(&(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, 0x0, 0xfffffecc)
splice(r3, 0x0, r1, 0x0, 0xffffffffffff8001, 0x0)
close(r2)
memfd_create(&(0x7f0000000300)='[\x00\xdf\xae\xcb;:\xfe]\\\x9a\xeb\xfb7\x7f\x9arI\xb3\x8b?\xe0\xf3\xa6\x9fj\x8fZ6\xe9N\xe0,\x11_\x8bp\xa7\xdc\xed)\x02B\x9a\x8a\\\xf8\x04\f\xf7>\xd5\x88\xd3\ry\xe5IXCiuhT\x9bB\x88\xc8\x0e\x98\xf1n\xafy\xb0\x18\xd2)V&hL\xc2\xca\xa2\x83\xca\xc2+\xc4\xdd/\xee\xa8\xb8\t\xb7\x7f\xc9j\xcf\xd7\xae\xe6]~`\x85Z\x91\xc4\xf5\xa4\xfa\xa0}\xb9\xb9\x14}hx\x94f&\x87\x94pT\xe2s\xa5\xbd\x96\xc9\x0fV\xb0\xfaEm\xa1\xea\x80ctt\x8c\x02T\x03\xe5\x8e\xf7\xaa\x82\x80\xf288\xf6\x05Bi-\x17\x9c\xbd\xf7D\xb0Y\x14\xaf\x98\xe4(\xb2\x12o4\x98\x94\xd7\xbf\xbeC\xa7\x06\xd6\xa0\\\xc3\xceA\a\xf46\xaa\xef\x1f\xe0\x95i\xc8\x18\xb3\x8e\xdd\x9b\xe3\x8b\xa6\x0f\x11gnR\x14\xae\x98p`\xb3,+jCHo\xc4\xf0k\x86\xb0\x98\xc0\xab\xc0\xfb\x97&\xee\xb0\xf5h\xcd&\x9c\xaf\xc4\xa7\xf9\xe8\xc9sK\x19r\xee\xd3\x8a\xb8\x01\x7f\x8e\xe2\xce~\x9d\x89\x8f\xd5\x15\x17+v\xd6\x9f)\x96\x9f\xad=u\x13v\xc1f+\x99\x96\x95WA`\xff$\x1d@)\x9d\xcc\x15a\xf2\xa0U\x91\xfbY\xb4\x1d\xb8G\xa3\xbb\xbc\x04\x88\x1b\x96D\t\x9c\x01\x03\xe8w\x17-\x87CQ\xb7e\x10\x17\x8dv|\x8b\x12\x88\'\b]\xd2<D\xfbx5^(\xf3 v(F\x8c\xa2\xab\x00\x03\t\x03s\xb6\xee\x9duQG\x02\xbdz\xc1r\xa9\xe9\xf7\xe6\xeb\x8c-\xe9\xbdx\xdf\x0e\xb6\xb0q\'\x7f~\x84u\xce\xbf\xbd\x99\f\xd0=\xa9\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x7)
splice(r0, 0x0, r2, 0x0, 0x4ffdc, 0x0)

06:04:17 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:17 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0xfdffffffffff0700)

06:04:17 executing program 5:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x402000, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
setns(r1, 0x22020000)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x2020000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000003c0)="f46d5b005ddea6a3c2e1111982a82285ea07e7", 0x13, 0x0, &(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10)
r2 = fsopen(&(0x7f0000000100)='erofs\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, 0x10)
clone(0x46880580, &(0x7f0000000400)="3be371914f525b9e75f1e9c38a9cd4d1875c5c40f281c7a6f39985f5f2294701874ba5d291d64ef80c39d04558fe5c73957b0816cb9fa78becccd5f01b89342d472db89a81cc438963a0579ea881a321127a95fa0c6ba55046d937726e463fe3ec89a74f4312acb76af01deb27b56c37708d21e11dc6af884ddb7e8e80b96b2748fc4ed7c5229dc478ab8346bffaf65f1af776be9365166ae6dc38fdd35faa229ca379ebf57bfd441398ca13b48073d47ee82cc4527ae94174f47f3cfa3a486045c662ec30d46edab1b0ab3192b8d0bf1c5f28aa57a552cdff64e4a9d2f7f014d2242ec8271be5fd2fe3721f5ebe761ddd347b7a5e2f", &(0x7f0000000080), &(0x7f0000000180), &(0x7f00000002c0)="a4ca3104ff14bbdc4683bc0cb04c8b7026b300a0c7a681260a3ae32dba9103fac47baaf99926bf6fb1c47793f9be5753572185caa3189c9b07ed174fcb0df3b8f631f4047fa28a3479fb81c9fd07795074471399712755975934f94e0b9702688b6d07ce4e36d691f21924e960848a92eadb63b3753de6463d47dc941c3081a15335b4822d302d126c8527881dab0dd4e4c100a44dfb89eff5fb09d419882a0c4ac27e897476ed7f51f10a561beca71a0833fc438d8f87b2555d17")
close(r2)

06:04:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:04:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  407.793995][   T18] usb 3-1: USB disconnect, device number 73
06:04:17 executing program 3:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x25e000, 0x0)
ioctl$SNDRV_PCM_IOCTL_LINK(r0, 0x40044160, &(0x7f0000000040)=0x3)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xffffd000)

06:04:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  408.574351][   T18] usb 3-1: new high-speed USB device number 74 using dummy_hcd
06:04:18 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000040)={r1, r2/1000+60000}, 0x10)

06:04:18 executing program 4:
r0 = accept(0xffffffffffffffff, 0xfffffffffffffffe, &(0x7f0000001900))
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001980), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000001a40)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001a00)={&(0x7f00000019c0)={0x24, r1, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x81}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040001}, 0x20000086)
r2 = syz_usb_connect(0x0, 0x2f, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x7f, 0xe2, 0x4b, 0x20, 0x421, 0x10e, 0x293b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0x2, 0xff, 0x0, [], [{{0x9, 0x5, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, [@generic={0x2}]}}]}}]}}]}}, 0x0)
r3 = syz_usb_connect$cdc_ncm(0x4, 0x9f, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8d, 0x2, 0x1, 0x1, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xfeff}, {0xd, 0x24, 0xf, 0x1, 0x8000, 0x0, 0x8}, {0x6, 0x24, 0x1a, 0x2, 0x10}, [@mdlm_detail={0x31, 0x24, 0x13, 0x0, "809d5ac1cbb8c724445e057aa7e8ac66daf3b53967e943e421e8a138a0c27d7c6e2c5384e18194d7167d58ff47"}]}, {{0x9, 0x5, 0x81, 0x3, 0x468, 0x7f, 0x0, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x2, 0x1f, 0x3f}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x1, 0x3f}}}}}}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x200, 0x9, 0x2b, 0x0, 0xff, 0x1}, 0x20, &(0x7f0000000040)={0x5, 0xf, 0x20, 0x2, [@ptm_cap={0x3}, @ssp_cap={0x18, 0x10, 0xa, 0x6, 0x3, 0xfff, 0xf0f, 0x81, [0xe1, 0xc000, 0xc0c0]}]}, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x861}}]})
syz_usb_control_io(r3, &(0x7f00000003c0)={0x2c, &(0x7f0000000200)={0x40, 0x4, 0x8d, {0x8d, 0xf, "efbb5e6dcc068c4bcfbf2aa3e44506e1613d8f93de61cca815ddda48f4cec5fcba03e566e1469c6205913c9f073ddabe497a04938bad4d4c847744d9675fcde4fa18540e011eba8d23dd9fca68bc7a295cbe6c6ed205680698bb8c343e82bb654106373bebebc0480bc6c4b4cc82b4b76c36a257b01230bf322d04aa6e814c9ca236337183612eab411132"}}, &(0x7f00000002c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x436}}, &(0x7f0000000300)={0x0, 0xf, 0x2e, {0x5, 0xf, 0x2e, 0x5, [@ext_cap={0x7, 0x10, 0x2, 0x4, 0x9, 0xb, 0x81}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x8, 0x0, 0xfff}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x1, 0x9, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x80, 0x7f, 0x9}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x8, 0x6, 0xffab}]}}, &(0x7f0000000340)={0x20, 0x29, 0xf, {0xf, 0x29, 0x57, 0x10, 0x3, 0x2, "2aaeca29", "c2fb78d2"}}, &(0x7f0000000380)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x0, 0x0, 0x88, 0x77, 0x0, 0x3f, 0x7f}}}, &(0x7f0000000800)={0x84, &(0x7f0000000400)={0x40, 0x0, 0x9, "0af41becd93bdb9a25"}, &(0x7f0000000440)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000480)={0x0, 0x8, 0x1, 0x1f}, &(0x7f00000004c0)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000000500)={0x20, 0x0, 0x8, {0x160, 0x40, [0x0]}}, &(0x7f0000000540)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x9, 0x1, 0xe0}, &(0x7f00000005c0)={0x40, 0xb, 0x2, "ca77"}, &(0x7f0000000600)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000640)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000680)={0x40, 0x17, 0x6, @multicast}, &(0x7f00000006c0)={0x40, 0x19, 0x2, '26'}, &(0x7f0000000700)={0x40, 0x1a, 0x2, 0x3}, &(0x7f0000000740)={0x40, 0x1c, 0x1, 0x3}, &(0x7f0000000780)={0x40, 0x1e, 0x1, 0x2}, &(0x7f00000007c0)={0x40, 0x21, 0x1, 0xf8}})
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000090018105e04da0500000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io(r4, &(0x7f00000003c0)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x0, 0x0, 0x0, '\b\x00', "006cf200"}}, 0x0}, 0x0)
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000d80)={0x2c, &(0x7f0000000bc0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000400000068"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000140)={0x2c, &(0x7f0000000280)={0x0, 0x0, 0x4, '\t\x00\x00\x00'}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f00000012c0)={0x24, &(0x7f0000001180)={0x40, 0x22, 0x75, {0x75, 0xf, "3849cae484a86d6c66089e7de4ab622864f2adeac312b2379f3c9036e48d84cb6ac93fd7158625a4cd35e81cfd2ed1f4af7c269518ba99524acff5b56c3da7789aea5f74f8a94209c4bafd8a55356da9061dc32ae196046c0717e8f51fc8c868e62e851cacbcac026a556ca26f53041217fbb1"}}, &(0x7f0000001200)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000001240)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0xa, "4b1f9572"}]}}, &(0x7f0000001280)={0x0, 0x21, 0x9, {0x9, 0x21, 0x8, 0x5, 0x1, {0x22, 0x9b4}}}}, &(0x7f0000001480)={0x2c, &(0x7f0000001300)={0x40, 0xf, 0x36, "eea15050a247f0ce92d7b7bba75f69e1da559446a0c8f46d1dd1cf4fecc749f92689ce49ff88700db203ad05999bd57a4b5fcc24c2bc"}, &(0x7f0000001340)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000001380)={0x0, 0x8, 0x1}, &(0x7f00000013c0)={0x20, 0x1, 0x51, "932f449a77a2781604df706ee6f0973c5d331a3f65634aaca01936cb5f47d1d56b6c8698de96ae2b09853bcc1252e98bc1c94e4d2b0b23c21fa9aeeda50939c3fbff5db9d29a63c0cd72dc159d4814d2f7"}, &(0x7f0000001440)={0x20, 0x3, 0x1, 0x1}})
syz_usb_control_io$hid(r2, &(0x7f0000001640)={0x24, &(0x7f00000014c0)={0x0, 0xc, 0x8a, {0x8a, 0xf, "ec4442adca8137684a56c4b486d5113fdde3403963a2a2d1c35845cc5062c3b2b3eb66bddc827732f20414756ba3dbe4d0c0eaa527fe50395372e0727da4f19096b70a07b10964639afa3b74c12c423af48d46c5c7c3e3c71af6b9ef670782c873c7272613de28451acf3e6a1c3beae1576b8898102ceef543f59c0b024147930a791b867d0eadd5"}}, &(0x7f0000001580)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x860}}, &(0x7f00000015c0)={0x0, 0x22, 0x8, {[@local=@item_012={0x1, 0x2, 0x8, "d5"}, @main=@item_4={0x3, 0x0, 0x9, "c84fb883"}, @main=@item_012={0x0, 0x0, 0xb}]}}, &(0x7f0000001600)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x1, 0x1, {0x22, 0x7c6}}}}, &(0x7f00000018c0)={0x2c, &(0x7f0000001680)={0x40, 0xe, 0xb3, "2d1a28acb450a14ccba22d39ab39ece371d36ff68930de0a10029b71a6f64b4fc7bb941097d6bf7c3bcc2efbe757f333a76f0c2d77210da40be5d469dd85ce1612a9af57f4e46abec89e2fe3487ff19f5016f36966de31d88bedc18616c000deea47cca5001027526ce75e42bbed068d3b59c86a2cafebb94ec3a9a74d1b84c2b4bb774d0e73b8204d59b9c304dca85ac857a14af2c73218506a8a49bd027f0234e511e2b3ebac18ac465ba671d7429b8b72a3"}, &(0x7f0000001740)={0x0, 0xa, 0x1, 0x81}, &(0x7f0000001780)={0x0, 0x8, 0x1, 0x98}, &(0x7f00000017c0)={0x20, 0x1, 0x88, "693b41e31e2144f9593db8515decdc85e4ac486456d07777d58b4cde53da47ce313093d985089aafba1e6b6bac1d3fae2abd76144af069d6607d9fddd14c247f6889ca2c915c6cb09886886433c2452c81e4af8b7b8c5d0b3f69317ee876e80c8e104f78f6f232ad032a658e2c1edfbc37f0f6489a1300d053c37acc8505ba5881a748701d37bdf5"}, &(0x7f0000001880)={0x20, 0x3, 0x1, 0x3}})
r5 = syz_usb_connect$cdc_ncm(0x2, 0x82, &(0x7f00000008c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x70, 0x2, 0x1, 0x80, 0x0, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "70278e97"}, {0x5, 0x24, 0x0, 0x4}, {0xd, 0x24, 0xf, 0x1, 0x80000000, 0x12, 0x0, 0x3f}, {0x6, 0x24, 0x1a, 0x1ff, 0x14}, [@obex={0x5, 0x24, 0x15, 0x4}, @network_terminal={0x7, 0x24, 0xa, 0x6, 0x7f, 0xa9, 0x6}, @acm={0x4, 0x24, 0x2, 0x2}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0xf6, 0x1, 0xfc}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x79, 0x0, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x69, 0x5, 0x7}}}}}}}]}}, &(0x7f0000000c80)={0xa, &(0x7f0000000980)={0xa, 0x6, 0x250, 0x3f, 0xd5, 0x5, 0x20, 0xf9}, 0x5, &(0x7f00000009c0)={0x5, 0xf, 0x5}, 0x6, [{0x4, &(0x7f0000000a00)=@lang_id={0x4, 0x3, 0x457}}, {0xda, &(0x7f0000000a40)=@string={0xda, 0x3, "9274b5e83d6c66947387c53caecefcfbb2d6092058ed2f18f919816dd8122e9f218a1da9e939db266732ea7b952c869950f43fcc8d130167bda516d6666562a755bb953e20bd18cc8cba1ac42b4d14635feca14b41e27f1564dc5eebad176b343cd1aca9c346e7cdd6c44099ed9bcd0b0ca502182ee0a91320781a51d2fa352faac11bd1b441bef81d1e1ff05ba3f061b76d78b9771d40d7e149be11163654d0e3e161a03d69920f6af4677b2845c6a5abd284bb2e747b1fefc1c7b039e839d8def45a5b43c24af3f21fe0777f64038ca277a67ee9af669f"}}, {0x77, &(0x7f0000000b40)=@string={0x77, 0x3, "8f746ad83a9ee75343d713ea012fbc9c035d7cf660df7fe945640124e3a82e38152a30caea8dac91897d85d204d67e930f66bda9f7126411612019637999c7f5f1f365e7bd11e9a48f609987663508e510c6ab4cec0251154450b4462d8ae09f18a5aa3568993d30cba65187faaa480cdc5b342609"}}, {0x4, &(0x7f0000000bc0)=@lang_id={0x4, 0x3, 0x446}}, {0x4, &(0x7f0000000c00)=@lang_id={0x4, 0x3, 0x820}}, {0x25, &(0x7f0000000c40)=@string={0x25, 0x3, "759da4f2add9264a8569555eb84ae95ea40ea6b38fa3245dc2aba9976647d7b51b7d24"}}]})
syz_usb_control_io$cdc_ncm(r5, &(0x7f0000000e40)={0x14, &(0x7f0000000d00)={0x0, 0x1, 0xf2, {0xf2, 0x2, "ebfaac742d622f9891fcec2d7e73b3c89caa25df5c93e365461e9b0c5afff342036842dc2ea30f9c56bd432cac05ebb449b66273e878e4db8b125c37b88aa4b599ab7c1ecdeca7b156d2a2baca1e3e68c6e25b48146a4960c131b60c0090aaa4b21264a5430e7bf0b9fd8d652e17750aaec0a40a7d23f85002d8a91e1015639819aefa0315463d10bca9b1bf14593f61ef101e75316baf422a9334ba9b2e2fda9bb06086cedf04df6afeedb4716e5fb0992cb897a34750d53b082195eba639f8d4d63b5ae9c49eeea8dcf2c4eba91bf9e746d2f092bed39ccb23932b62ccbcecc75b94239798f58043679248ddeacc1b"}}, &(0x7f0000000e00)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000001100)={0x44, &(0x7f0000000e80)={0x20, 0xd, 0x8f, "8ba0a5ad575defdb08e7aa7cb2f189fd90a99c05bed7c242c58e8532482d10fd8817a5fb95d2f7c8c71f36f2c85e5242cdc90744023078fbae1b4259d6710c55180b2c6307346d1da78e9ca7e410787683c1d3b99cd8c1be4e5f1ecf8b19d80af620b285f4717e683a2d4122d2f37593a015991a8e8cea09b426c33eb9bcdaaa3665cc7571def3b7fbd7445d34ece1"}, &(0x7f0000000f40)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000f80)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000000fc0)={0x20, 0x80, 0x1c, {0x1d9, 0x7fff, 0x4, 0xfff, 0x4, 0x4, 0x1, 0x10001, 0x7ff, 0x81, 0x8001, 0x2}}, &(0x7f0000001000)={0x20, 0x85, 0x4, 0x5}, &(0x7f0000001040)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000001080)={0x20, 0x87, 0x2, 0x7}, &(0x7f00000010c0)={0x20, 0x89, 0x2}})

06:04:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:18 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

[  409.421116][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  409.430559][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  409.438686][   T18] usb 3-1: Product: syz
[  409.443349][   T18] usb 3-1: Manufacturer: syz
[  409.448062][   T18] usb 3-1: SerialNumber: syz
[  409.661482][    T7] usb 5-1: new high-speed USB device number 34 using dummy_hcd
06:04:19 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = accept4(r0, &(0x7f0000000000)=@qipcrtr, &(0x7f0000000080)=0x80, 0x1000)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

[  409.799809][   T18] usb 3-1: config 0 descriptor??
[  409.930920][    T7] usb 5-1: Using ep0 maxpacket: 32
[  410.050347][    T7] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  410.130210][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  410.141176][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  410.150239][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  410.231720][    T7] usb 5-1: New USB device found, idVendor=0421, idProduct=010e, bcdDevice=29.3b
[  410.241094][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  410.249281][    T7] usb 5-1: Product: syz
[  410.253765][    T7] usb 5-1: Manufacturer: syz
[  410.258550][    T7] usb 5-1: SerialNumber: syz
[  410.299650][    T7] usb 5-1: config 0 descriptor??
[  410.345177][    T7] rndis_wlan 5-1:0.0: invalid descriptor buffer length
[  410.353022][    T7] usb 5-1: bad CDC descriptors
[  410.373015][    T7] rndis_host 5-1:0.0: invalid descriptor buffer length
[  410.380746][    T7] usb 5-1: bad CDC descriptors
[  410.386563][    T7] cdc_acm 5-1:0.0: invalid descriptor buffer length
[  410.545725][T13687] udc-core: couldn't find an available UDC or it's busy
[  410.553185][T13687] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  410.921899][T13727] udc-core: couldn't find an available UDC or it's busy
[  410.929137][T13727] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
06:04:20 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:20 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:04:20 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000040)=[{0x34, 0x0, 0x0, 0xfffffff9}, {0x5}, {0x6, 0x0, 0x0, 0x7fff7ffe}]})
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x8e7, 0x100)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000000c0)={0x4, &(0x7f0000000080)=[{0x1, 0x81, 0xc1, 0x80000001}, {0x9, 0x7a, 0x7f, 0x7}, {0xfff9, 0x0, 0x69, 0x3}, {0xb06, 0xe0, 0x9, 0x5}]}, 0x10)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)

06:04:20 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x2, 0x8000, 0x6, 0x40, 0x0, 0x7}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:21 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:04:21 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x406, 0x8000, 0x6, 0x0, 0x4}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:21 executing program 5:
sendmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="5500000018007f5b01fe01b2a40080930a060000ffa84308910000023900080005000a00fb7b00dc1338d54400009b7a136ef75afb83de448daa72540d8102d2c55327c43a", 0x45}], 0x1}, 0x0)
r0 = socket$inet(0x10, 0x80002, 0x0)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000100)="24000000180007041dfffd946f610500020000e80202080100010800050012000a00ff7e", 0x24}], 0x1}, 0x0)
sendmsg(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)="14d1a03d0870e610c40428de545f9d1ca9d37aa8989d75f1df9be6da63ba25bfa8ee", 0x22}, {&(0x7f0000000280)="4c44206ff611d59f90722bc84dcf7aea629f288d0efeec909b1e604a1bf033883c79072c8688ae27d914026d399db40d83f11ad17b2fb7bd8db616bb1889627a6c7a9ac1990121030ea072d6b2ae90c759a2535fa7bfc978e7be77bb6cce66e8d993096900568cfc53da44efe3e621aac4a411050089d7445915d2e17ca2f9ceec131854556f1458fd82", 0x8a}, {&(0x7f00000004c0)="6422442498558e89bb5f68ef6375a0911bc6bf5bcccb04191aa37b77ecf50b4aab5c74efccfcae52acccfa847b4d53aac363453fa883efe08efd9a555b5bb5e3242c6ca3884869e9d0218c0234a85c82c0613cdde216a35d05cc38487790ebe9adff655fd4ee290df55c010b1a6c4ad9bce9c0d7e9a99444846a8d783245ebadaa5470714721f34d1f989763948231632483c23172b6906d824152423b", 0x9d}, {&(0x7f0000000440)}, {&(0x7f0000000580)}], 0x5, &(0x7f0000000b80)=ANY=[@ANYBLOB="38000000000000000d010000050000004aa96204c7c0bbeddb5839f631cfaf34f585d96780f81834d6305ad33c987ed7928ca83f670bac00c800000000000000080100000101000090071c88d18a47ddd3f1cece3f63de862d2f94718feca07badace583d15e79e717687675e54b96f7de412c4c8bc9b5be327ad1e0bc651b90ed5b7e9e8c0b5aeeb0771655b7e6e1497c42ae3563b64e9d21b1f963ef41b7b3a3e08ffeb06670cf583b25f3ca6be76b59a9bcfba97b9bb725426b6673f512c1ade1a638e50546afe6633c510edcfd7995e808b6a7e4006a7c3783d5406df010a64cf7e24f2bc08314fbbcf0d9fd0612e9dfea38ae8bd8503990c18c94b8c20000000000800000000000000004010000fdffffffbd3c4d251e3ee12105b2dd644f9adc95d5ac00e8e60af4ad5ae0f7a9bb61abd0e347d8f6a65ba1c73e135ec8dabec7707fd21d88efee290976c0cdfe04e64e517cef4867f51aaba832ea9a6fb811c6d0df192d9734a3107fb120f1d65e076cf4706178480010a146a9000000000000002000000000000000000000000101000030f9ff443becfda0686dc2412b000000"], 0x1a0}, 0x40)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x2)
r4 = getuid()
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000740)=ANY=[@ANYBLOB="2c0000001800dd8d00000000fcdbdf2502000000ff00ff00001d0000060015000200000008001900", @ANYRES32=r4, @ANYBLOB="912d"], 0x2c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)=@ipv6_deladdr={0x18, 0x15, 0x800, 0x70bd2a, 0x25dfdbfb, {0xa, 0x1f, 0x0, 0xff}}, 0x18}, 0x1, 0x0, 0x0, 0x20048884}, 0x4001)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'ip6gre0\x00', 0x0, 0x2f, 0xfd, 0x5, 0x101, 0xb, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x700, 0x1, 0x8, 0xfffffffb}})
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000070a01020000000001e2000003000005045dff308054bc8de7cb789ede2be883b51900009fb10a09987cdd05def7a682bb18e49e91ba0620bd1492c166c189a92d187695f49906eadb28d7b2c23fb50475c0bc44d69fa1a01f60e5197bd2d3e577f0f07cc7188dccae6fd451ec2eea7af2b71fb116e66c79174b104c6c7d67d4097a294e944b721d4dd18912e2b8"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x14)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="d5ebc178ec233433291c0035bc3f5134bd3905bd2fd8953be5b2cd06a43a7a896d5da4544e023e68efa03c7299a71ba6b0e66a4f676400005403506b96bbda23622e1753f6e3c21db88ccea173bf1996a18b0f7a6bbccce70c2684e0153bcced086e000000000000000000", @ANYRES16, @ANYBLOB="00032bbd7000fbdbdf250200000008000100", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x28, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_O_TEI={0x8, 0x9, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x8051}, 0x0)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200025bd7000fedbdf2500000000080005000a01010500ac1414aa0800090002000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x2404c004)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x1c, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_FLOW={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44800}, 0x40)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x68000000, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}}, 0x810)

[  412.049102][T13754] device geneve2 entered promiscuous mode
06:04:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:21 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:21 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000000)=0xfff, 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:21 executing program 4:
clone(0x2104480, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x1006e00, &(0x7f0000000340)="addfa3b2a349c774625b10c0df7e5854c0a67a005aac5a75aea9c373b6eba5ffc2d734b54fda19b3b90ae6fc6c18a711aa57edd2a18e165e5dbd35814e2d5161ba90ef8d738544ea2f61ab711ac54605501d573e37c512011272ddb8e3fb9e0733e113ffa20dc26d9db2e90370be2ce8c0576998c9d74e6c", &(0x7f0000000440), &(0x7f0000000400), &(0x7f0000000b00)="59c97d378dea6923bb6058bad9a754a39428f022c8183a87083e61108899dccca45d35c784a8ff4e0000000000004020f1d9710122edda9e1f6c27387d751c8ce18792ec5f51f208824f74bf9a8767ed3b783efd2c15fdbadf6ef4f19d2fc6189afdaf7982c44cdfe688cec669f316be19a2ee8034b68af89ed6a99fa082849e8a53e94eb07b107931231cf895a15e72ae8064d04e2a9679d66118deeda5cec25f818c39d1882eec06c406bb0950354af9863072656251c0f07e820aca92d23f6fba1e08")
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e0, 0x140, 0xffffff80, 0x178, 0x0, 0x178, 0x210, 0x258, 0x258, 0x210, 0x258, 0x3, 0x0, {[{{@ipv6={@dev, @mcast2, [], [], 'veth1_to_bond\x00', 'netpci0\x00'}, 0x0, 0x120, 0x140, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x400, 0x0, 0x0, 0x0, 0x2}}, @common=@inet=@tcp={{0x30}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @dev, [], [], 'veth0_to_team\x00', 'hsr0\x00'}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
sendto$inet6(r0, &(0x7f0000000480)="a666b84f32c279f0d867dc5bed9fa956f0f4214e624689129e19119dacdb50acc6063fe530d1faf4c51c6888d38b55433d32cca3850cff098a06afcb3e54a15f2456924cb3415835a5ff09425d4995511abde65e884b0f2b92392e65ae50be6a999e32379bebf495dd6466705d727d63b923e1388a9b931c57f1301665bb329524966d4684cad7976b312deb2f6a084cab", 0x91, 0x20000000, &(0x7f00000003c0)={0xa, 0x4e22, 0xffffffff, @remote}, 0x1c)

[  412.202543][   T66] usb 5-1: USB disconnect, device number 34
[  412.302377][T13761] device geneve2 entered promiscuous mode
[  412.959143][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  412.975554][   T18] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
[  413.051461][   T18] usb 3-1: USB disconnect, device number 74
[  413.450012][   T18] usb 3-1: new high-speed USB device number 75 using dummy_hcd
[  414.030994][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  414.040535][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.048755][   T18] usb 3-1: Product: syz
[  414.053236][   T18] usb 3-1: Manufacturer: syz
[  414.058037][   T18] usb 3-1: SerialNumber: syz
[  414.127271][   T18] usb 3-1: config 0 descriptor??
[  414.410285][   T66] Bluetooth: hci5: command 0x0406 tx timeout
[  414.419310][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  414.431150][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  414.440975][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  414.481144][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  414.497237][   T18] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:24 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:24 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:24 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_NMI(r0, 0xae9a)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:04:24 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x1, 0x6, 0x2, 0x4, 0xffffffff, 0x1, 0xb5e}, 0x1c)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000000)={0x0, 0xea60}, 0x10)

06:04:24 executing program 5:
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
set_mempolicy(0x1, &(0x7f0000000040)=0x8b7b, 0x23)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e22}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0x8001, 0x8}}, './file0\x00'})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000180))
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
set_mempolicy(0x3, &(0x7f0000000140)=0xf15, 0x2)
syz_emit_ethernet(0x4f, &(0x7f00000001c0)={@broadcast, @empty, @void, {@mpls_mc={0x8848, {[{0x8}, {0x100, 0x0, 0x1}, {0x1}, {0x5}, {0xa50b}, {0x8, 0x0, 0x1}, {0x5, 0x0, 0x1}], @llc={@snap={0xab, 0xab, "e5", "01265c", 0x8100, "9b1691ae9657faf871d343a02cba2d70c7c8182fb71031cf42c47a250b"}}}}}}, 0x0)
clone(0x4c000300, 0x0, 0x0, 0x0, 0x0)
set_mempolicy(0x0, &(0x7f0000000240)=0x7, 0x400)

06:04:24 executing program 4:
modify_ldt$write(0x1, &(0x7f0000000000)={0x0, 0x20000000, 0x1000, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
modify_ldt$write(0x1, &(0x7f00000000c0)={0x735d, 0x20000800, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x0)
modify_ldt$write(0x1, &(0x7f0000000080)={0x9, 0x20001000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1}, 0x10)
set_mempolicy(0x2, &(0x7f0000000200)=0x7fffe, 0x41a)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="02000000000000001c00128009006bb43a6a12b9f8e2e54ee5626f6e64000000000c000280050001000000aafa"], 0x3c}}, 0x0)

[  415.430310][    T7] usb 3-1: USB disconnect, device number 75
[  415.592026][T13822] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
06:04:25 executing program 4:
modify_ldt$write(0x1, &(0x7f0000000000)={0x0, 0x20000000, 0x1000, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
modify_ldt$write(0x1, &(0x7f00000000c0)={0x735d, 0x20000800, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x0)
modify_ldt$write(0x1, &(0x7f0000000080)={0x9, 0x20001000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1}, 0x10)
set_mempolicy(0x2, &(0x7f0000000200)=0x7fffe, 0x41a)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="02000000000000001c00128009006bb43a6a12b9f8e2e54ee5626f6e64000000000c000280050001000000aafa"], 0x3c}}, 0x0)

06:04:25 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:25 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_NMI(r0, 0xae9a)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:04:25 executing program 3:
r0 = socket$packet(0x11, 0x1, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x101083, 0x0)
bind$packet(r1, &(0x7f0000000040)={0x11, 0xf7, 0x0, 0x1, 0xc5}, 0x14)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20010, r0, 0x0)

[  416.034405][T13856] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
06:04:25 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040))
r1 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000006e80)={0x0, @rand_addr, @initdev}, &(0x7f0000000100)=0x5e)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
recvmsg$can_raw(r1, &(0x7f00000017c0)={&(0x7f00000002c0)=@xdp={0x2c, 0x0, <r3=>0x0}, 0x80, &(0x7f0000001740)=[{&(0x7f0000000340)=""/127, 0x7f}, {&(0x7f00000003c0)=""/136, 0x88}, {&(0x7f0000000480)=""/245, 0xf5}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/202, 0xca}, {&(0x7f0000001680)=""/41, 0x29}, {&(0x7f00000016c0)=""/70, 0x46}], 0x7}, 0x40010003)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000001800)={@local, 0x2b, r3})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x60, 0x10, 0xffffff0f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x24821}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x28, 0x5, 0x0, 0x1, [@IFLA_BRPORT_FLUSH={0x4}, @IFLA_BRPORT_PROXYARP={0x5}, @IFLA_BRPORT_MODE={0x5, 0x4, 0x1}, @IFLA_BRPORT_MCAST_FLOOD={0x5}, @IFLA_BRPORT_GUARD={0x5}]}}}]}, 0x60}}, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x115001, 0x0)

[  416.100178][   T18] usb 3-1: new high-speed USB device number 76 using dummy_hcd
06:04:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  416.671592][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  416.681926][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.690553][   T18] usb 3-1: Product: syz
[  416.694836][   T18] usb 3-1: Manufacturer: syz
[  416.699663][   T18] usb 3-1: SerialNumber: syz
[  416.740067][   T18] usb 3-1: config 0 descriptor??
[  416.990213][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  417.000881][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  417.010183][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  417.087416][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  417.103825][   T18] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:27 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:27 executing program 4:
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000180), 0x1)
sendmsg$FOU_CMD_GET(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, 0x0, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e21}, @FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0x1d}}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @rand_addr=0x64010102}]}, 0x74}, 0x1, 0x0, 0x0, 0x4004004}, 0x4048004)
set_mempolicy(0x3, &(0x7f0000000000)=0x3, 0x9)
set_mempolicy(0x1, &(0x7f0000000040)=0x5, 0xfff)
set_mempolicy(0x1, &(0x7f00000000c0)=0xfffffffffffffffd, 0x5)
io_setup(0x2, &(0x7f0000000140))
clone(0x4c0003f6, 0x0, 0x0, 0x0, 0x0)
set_mempolicy(0x1, &(0x7f0000000100), 0xffffffffffffbc0f)
set_mempolicy(0x1, &(0x7f0000000080)=0x94, 0x0)

06:04:27 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
ioctl$KVM_NMI(r0, 0xae9a)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:04:27 executing program 3:
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="2e2c2e7c2bbee09bcfbac9e2916b91637363f303a9be23ab8dc46005bb1d6c20cc38336ded730570ef49a105f5f6", 0x2e, 0x4000000, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0x7fff}, 0x1c)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:27 executing program 5:
r0 = socket$inet6(0xa, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000740)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=ANY=[@ANYBLOB="b800000019000100000006f55a000000ff6ea6267bdd080000000000baa1068ee0001f010000000080db0c000000000000000000000000000a00010000000043", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000006299fb62842700f5ff0000fd85d16e7930af0ab6794899000000000005000000000000000000d94bfeadbfce0d4ed61c013b3c42000000ea00060000000000000000000000000000000005000000000000000000000000000000000000a3ee0100000001"], 0xb8}}, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000))
write$binfmt_misc(r2, &(0x7f00000000c0)=ANY=[@ANYRESDEC, @ANYRESDEC], 0x37cb1133)
perf_event_open(&(0x7f0000001340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg$unix(r4, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000100)}, {&(0x7f0000000140)=""/246, 0xf6}, {&(0x7f0000000240)=""/135, 0x87}, {&(0x7f0000000300)=""/235, 0xeb}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x5, &(0x7f0000000480)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x140}}, {{&(0x7f00000005c0), 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000640)=""/187, 0xbb}, {&(0x7f0000000780)=""/106, 0x6a}, {&(0x7f0000000800)=""/65, 0x41}, {&(0x7f0000000880)=""/159, 0x9f}, {&(0x7f0000000940)=""/212, 0xd4}], 0x5, &(0x7f0000000ac0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}], 0x2, 0x80, &(0x7f0000000700)={0x0, 0x989680})
connect$inet(r6, &(0x7f0000000c40)={0x2, 0x4e24, @remote}, 0x10)
splice(r1, 0x0, r3, 0x0, 0x19410, 0x0)

[  418.671629][    T7] usb 3-1: USB disconnect, device number 76
06:04:28 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:28 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000002c0)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=@ipv6_getnetconf={0x3c, 0x52, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x18}, @NETCONFA_FORWARDING={0x8, 0x2, 0x3}, @NETCONFA_IFINDEX={0x8, 0x1, r1}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x200}, @NETCONFA_RP_FILTER={0x8, 0x3, 0xfff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008800}, 0x20000814)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r2, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={<r3=>0x0, 0x84, &(0x7f0000000000)=[@in6={0xa, 0x4e24, 0x10001, @dev={0xfe, 0x80, '\x00', 0x36}, 0x3f}, @in6={0xa, 0x4e21, 0x1f, @mcast2, 0x6}, @in={0x2, 0x4e21, @empty}, @in={0x2, 0x4e21, @broadcast}, @in={0x2, 0x4e24, @rand_addr=0x64010101}, @in6={0xa, 0x4e20, 0x0, @loopback, 0x7}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000003c0)={r3, 0x84, &(0x7f0000000200)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e21, 0x1, @rand_addr=' \x01\x00', 0x20}, @in={0x2, 0x4e23, @private=0xa010101}, @in6={0xa, 0x4e20, 0x3ff, @ipv4={'\x00', '\xff\xff', @remote}, 0x7}, @in6={0xa, 0x4e24, 0xffff7e01, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}, @in={0x2, 0x4e24, @empty}]}, &(0x7f0000000400)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000440)={<r4=>0x0, @in6={{0xa, 0x4e21, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x642}}}, &(0x7f0000000500)=0x84)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f0000000180)={r4, 0x1000, 0x1}, 0x8)
r5 = fcntl$dupfd(r0, 0x0, r2)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r2)

[  419.330266][    T7] usb 3-1: new high-speed USB device number 77 using dummy_hcd
06:04:28 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:28 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:29 executing program 5:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000640), 0x400000, 0x0)
connect$can_bcm(r1, &(0x7f0000000680), 0x10)
clock_gettime(0x0, &(0x7f0000000080)={<r2=>0x0, <r3=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000200)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="00000000140000001f00000000000000", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=r2, @ANYRES64=r3/1000+60000, @ANYBLOB="0200008001000000030000400c020000b0724570db625c28c5a58f9cc5046d6b163f43b332cf7184bf9aeee9359e22d60535c87310c43401730cdbbbee28f9bae702d347ac0014927995ef606988"], 0x80}, 0x1, 0x0, 0x0, 0x1}, 0x400400c)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vxcan1\x00', <r4=>0x0})
r5 = socket$kcm(0xa, 0x3, 0x11)
sendmsg$can_bcm(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x1d, r4}, 0x10, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="0100"/16, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYBLOB="0000000001"], 0x48}}, 0x0)
socket$kcm(0x29, 0x5, 0x0)
sendmsg$can_bcm(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x1d, r4}, 0x10, &(0x7f0000000240)={&(0x7f0000000800)={0x5, 0x82c, 0x0, {}, {}, {}, 0x1, @can={{0x2, 0x1, 0x1}, 0x7, 0x1, 0x0, 0x0, "f5b5bcd50193c301"}}, 0x48}}, 0x4000000)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>0xffffffffffffffff, @ANYBLOB="00000000000000000000000000000000c03bea7019eca9701dd858b52b3cc8507e1f889661709399a79b48cac5f33b04735583982adfb9c3f39df9000000000000000000000000000000b04333a1ea40d0f9748617c7559ec6523d50283d4d215cb9f76b0cc836e7b232101734b51323ee098035d4c38ce2cbd24313446a6559ddc2f66b75ea9768718761178e8fbda3e114cae129275665f43de02a82296cd5"])
clock_gettime(0x0, &(0x7f0000000700)={<r7=>0x0, <r8=>0x0})
sendmsg$can_bcm(r6, &(0x7f0000001880)={&(0x7f00000006c0)={0x1d, r4}, 0x10, &(0x7f00000007c0)={&(0x7f0000000740)={0x3, 0x400, 0x1ff, {0x0, 0x2710}, {r7, r8/1000+10000}, {0x3, 0x1, 0x1, 0x1}, 0x1, @can={{0x4, 0x0, 0x1, 0x1}, 0x8, 0x1, 0x0, 0x0, "5dca1cfdf15f85ad"}}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x4004080)
dup3(r5, r0, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={&(0x7f0000000340)=@isdn={0x22, 0x1, 0x0, 0x7, 0x20}, 0x80, &(0x7f0000000280)=[{&(0x7f00000004c0)="63007bbb06b83d4c471702decc1504ea7724ed178b308af87f0a1925f6e8d6548f093ab743d7df8c975c4d5cc4fe925f2554a66cb9b2c641d720c8ac26fb5fd9c65081f95bf7c9d8c10f48183b1a97b1bbc87c70a86ec462832355ed3b491fc75647ae85d8cb7e11bfbc7f48fdb134f274d2f8efc3078b84296e3f20c0832beaf1bf32328bb774e4ae9bc0b9615c8d3be4506623bbfc911c96ceaeed6305018a4d05dd8a8e92c2a2e4df44663f28", 0xae}], 0x1, &(0x7f0000000580)=[{0x80, 0x3a, 0x4, "0a2184e237eede850adee2e725ae0ccdcbba1e7f75720351a4ce6b2cc439abcf67a7f21b331edc43dcd4e4bccf4b28ec99eb311fcd7135b3a8cd79d40c24c25c03db5d0ce695e368b5c7c226fae28645963aaf732b20a871571d63e002f2d7b4c8e23a801b2abbd81f2e05fffb7d3e"}], 0x80}, 0x40050)

[  419.851885][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  419.861371][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.869836][    T7] usb 3-1: Product: syz
[  419.874157][    T7] usb 3-1: Manufacturer: syz
[  419.878923][    T7] usb 3-1: SerialNumber: syz
[  419.961831][    T7] usb 3-1: config 0 descriptor??
[  420.220103][    T7] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  420.230956][    T7] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  420.240302][    T7] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  420.677686][    T7] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  420.693377][    T7] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:31 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:31 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:31 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:31 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="4a0000000600000000000000000000000000000f0000000000f77d602e25318a65846676c190836dcba709e0f400009000000000fc03b32efa6fd2a4de0fb529abd27a3b009f8d2e7ed6a95e1190b5d1ba9a9db866206c7402333d5e586358669a707463369d6d1224fcd081fd97979d30799ca28daf05e56454456aa9b27df452583c044939b38c994fc7fa76af473afdb69a0a88fb2c02716b36def9164860daf1b05dc8b24a76e4b395c008133abfa14a7f8ae61ba623b1e0294c38ef8084aec2142eab5f7fb98bec17292c0ec7976528c277b20374"], 0x21)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000040)={r2, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x5, 0x8000, 0x6, 0xbb}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:31 executing program 5:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4)
pwrite64(r0, &(0x7f0000000500)="6894f6090eb15449511fba68cec337b2035a3e2b869ef453a3c669b31d563a369ac1e1cc1f68dc4a24f3163eeb07cdba1ab2c4d430bb5ed25387b18408feee2daf33697986d9d0dade111e6406ac9f4150836936db54b86407463aee3b7bd11de0fb2fb45e90d61f7f369e2986bca2c79a661be1501dca47b60149721fb29045cc730cb45dbe126ac7670b1d8bc19ecf2aa362e6c9b1cba8b780d634afd0c734d97349c2c2b5e84cd7dd9a132a1d07f9b830c7588924bb528b4b776b3419243606bbcc28c6358c0cc6103ef430c6240c388a7d75d7c42bd48e25e562ea7b3c205311df1a9eee7b6c", 0xe8, 0x1)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/150, 0x96}, {&(0x7f0000000340)=""/84, 0x54}, {0x0}, {0x0}, {&(0x7f00000001c0)=""/207, 0xcf}, {&(0x7f00000003c0)=""/255, 0xff}, {&(0x7f00000004c0)=""/60, 0x3c}], 0x7, &(0x7f0000000900)=""/149, 0x95}, 0x9c1a72b}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000001500)=""/4096, 0x1000}], 0x1}}], 0x2, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4620, 0xffffffff, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x90}, 0x1c)

06:04:31 executing program 4:
socketpair$unix(0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000000)=ANY=[@ANYRES64=<r3=>0x0, @ANYBLOB="000100000000000006000000000000002e030000000000000400000000000000010400000000000000000000000000000200000001000000040000000700000000810000000000000000000000000000000000008000"/104])
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000001c0)={0x0, ""/256, 0x0, <r4=>0x0})
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f0000000040)=0x76, 0x4)
bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000003c0)={<r6=>0x0, ""/256, <r7=>0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005ccc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}], 0x0, "bbaa4e94a84a65"})
r9 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r9, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4)
perf_event_open(&(0x7f0000001340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000005c0)={0x1, &(0x7f00000000c0)=[{0x2, 0x3f, 0x8, 0x7fffffff}]}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19410, 0xa)

[  421.928573][ T1092] usb 3-1: USB disconnect, device number 77
06:04:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:31 executing program 5:
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
geteuid()
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x541d}]}, 0x28}}, 0x44080)

06:04:31 executing program 3:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x112481, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
fcntl$dupfd(r0, 0x0, r1)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)

[  422.540218][   T18] usb 3-1: new high-speed USB device number 78 using dummy_hcd
06:04:32 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  423.092938][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  423.102438][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.110876][   T18] usb 3-1: Product: syz
[  423.115184][   T18] usb 3-1: Manufacturer: syz
[  423.120060][   T18] usb 3-1: SerialNumber: syz
06:04:32 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = fcntl$dupfd(r0, 0x406, r0)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x17, 0x0, 0x1, 0xe0, 0x6, @broadcast}, 0x14)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

[  423.264896][   T18] usb 3-1: config 0 descriptor??
[  423.533121][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  423.544908][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  423.554349][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  423.956226][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  423.971924][   T18] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:34 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:34 executing program 5:
ioctl$VIDIOC_S_CROP(0xffffffffffffffff, 0x4014563c, &(0x7f0000000000)={0x3, {0x5, 0x7f, 0x2, 0x6}})
r0 = syz_open_dev$video(&(0x7f0000000c80), 0x7, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000040)={0x0, 0x31324d4e, 0x280})

06:04:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:34 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x6, 0x1000, 0x4, 0x0, 0x80000001, 0x26f1}, 0x1c)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/pm_async', 0x40403, 0x92)
getsockname$packet(r1, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000600)=0x14)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r2, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
getsockopt$packet_buf(r2, 0x107, 0x16, &(0x7f0000000080)=""/175, &(0x7f0000000140)=0xaf)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:34 executing program 4:
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r2=>r0, {0xee00, 0xee00}}, './file0\x00'})
getsockopt$inet_tcp_buf(r2, 0x6, 0x21, &(0x7f0000000480)=""/165, &(0x7f0000000380)=0xa5)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000024000b0f00"/20, @ANYRES32=r3, @ANYBLOB="00000000ffffffff0000000008000100657466001400020010000100000000000b00000000000000060005000800f02f"], 0x48}}, 0x0)
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb)

[  425.186003][   T18] usb 3-1: USB disconnect, device number 78
06:04:34 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

06:04:34 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x8008, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000200), 0x88a02, 0x0)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
syz_open_dev$mouse(0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x10, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
read$hiddev(r0, &(0x7f0000000100)=""/72, 0x48)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)

06:04:34 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x800, 0x3, 0xff, 0x21d6d2bf, 0x7adc, 0x4, 0x7ff}, 0xfffffffffffffeaa)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:34 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001b40)=[{{&(0x7f0000000080)={0xa, 0x2, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f0000000200)=[{&(0x7f00000000c0)="0f", 0x1}], 0x1}}, {{&(0x7f00000002c0)={0xa, 0x0, 0x0, @loopback}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000300)='e', 0x1}], 0x1}}], 0x2, 0x48042)

06:04:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  425.779962][   T18] usb 3-1: new high-speed USB device number 79 using dummy_hcd
06:04:35 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  426.380652][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  426.389937][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.398245][   T18] usb 3-1: Product: syz
[  426.402712][   T18] usb 3-1: Manufacturer: syz
[  426.407423][   T18] usb 3-1: SerialNumber: syz
[  426.495809][   T18] usb 3-1: config 0 descriptor??
[  426.749910][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  426.760977][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  426.770144][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  427.314121][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  427.330862][   T18] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:37 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:37 executing program 3:
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
io_setup(0x7fffffff, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
io_submit(r0, 0x4, &(0x7f00000003c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x2, 0x42d, r1, &(0x7f0000000100)="418aea4ac289e289ca01b483d05234fa3c8eb2e7c3aea0a2d30e7cc42b444f6c1a2edcafbaa6906bffc2f9e659017c3cf11cf44ca3b0b8aab7cc1e6501db2b7791a7e0d3eb15a01168218dab3882d1e13537472b52ef30b93710bf221c61d6d15d63c87c155802a51b7d8917730cfd866ff663118ee21d9f1a944deea600dcf16f4ac4db60a0eb95c59411c3e1b06cee2e3c8fcf35a894d58a90ce35d216013e28d67c4402105c402e47ad6813eada320477760c72303be13c6a", 0xba, 0xfffffffffffffff9}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x7, 0x7, 0xffffffffffffffff, &(0x7f00000001c0)="8bbc205fd1dc262ca3c8305e5a07ac0c7ee731b999039a40ed13fd6207c65e0721c2e63776bbd19a91b277ed7a2d18fd63a2382e958946263673c4c0c01961821c7b0b1c0eac021c9fa6017bee8433f52c4712a05fdca582d835fdba83f5328e6b2492fc8333fe4651f67bcc81b0e9df0f69af1a49e9b8b3fb2f3d63e229705c827cc8293caa9138437858c6edbb1139fb013b820bda6a3d9e8a2db117b0a19ff2a81c2bb70f20749395e618d306800d1d3f01736e2bb4386f9017c293fc57f06c72a4b8fbb37803922f4c93734fd9217e3171cedc107d8c85d6d7323ef8cd505b92c072e91db2c7272a5d981b0fb0de20b439", 0xf3, 0x8, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x6, r4, &(0x7f00000002c0)="c173890b", 0x4, 0x1, 0x0, 0x3}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x8, 0x5, 0xffffffffffffffff, &(0x7f0000000340)="f3acd8b64436e50324f47ed39d87f35f12c3e93818ce63f75976709c78d2f98d31df53e4c0a34e96e211ceb90e405dbf13caada1", 0x34, 0x7, 0x0, 0x3, r5}])
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r7, &(0x7f0000000100)=[{}], 0x1, 0x0)
epoll_pwait(r7, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}, {}], 0x7, 0x3, &(0x7f0000000480)={[0xeb0]}, 0x8)

06:04:37 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000500)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x2}])

06:04:37 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
sendmmsg(r0, &(0x7f0000004540), 0x0, 0x84)
socket$unix(0x1, 0x1, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
r3 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000480), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000980)={0x8})
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
close(0xffffffffffffffff)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000040)=0xe1fd, 0x4)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000000)={@multicast2, @loopback}, 0xc)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000004, 0x11, r2, 0x26abb000)
close(r4)
recvmmsg(r4, &(0x7f00000008c0)=[{{&(0x7f0000000080)=@rc, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000240)=""/169, 0xa9}, {&(0x7f0000000300)=""/231, 0xe7}, {&(0x7f0000000100)=""/74, 0x4a}, {&(0x7f00000001c0)=""/56, 0x38}, {&(0x7f0000000400)=""/100, 0x64}, {&(0x7f0000000480)}], 0x6, &(0x7f0000000540)=""/175, 0xaf}, 0x3}, {{&(0x7f0000000600)=@nl, 0x80, &(0x7f0000000800)=[{&(0x7f0000000680)=""/150, 0x96}, {&(0x7f0000000740)=""/157, 0x9d}], 0x2, &(0x7f0000000840)=""/93, 0x5d}, 0x3}], 0x2, 0x40002000, &(0x7f0000000940)={0x0, 0x989680})
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000e80)=ANY=[@ANYBLOB="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"], 0x21)
write$cgroup_type(r5, &(0x7f00000009c0), 0x9)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000000)={0x8, 'syzkaller1\x00', {'bridge_slave_0\x00'}, 0x7ff})

06:04:37 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SMI(r1, 0xaeb7)
ioctl$KVM_NMI(r1, 0xae9a)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  428.427782][ T1092] usb 3-1: USB disconnect, device number 79
06:04:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:38 executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x10, 0x94, 0xe2, 0x40, 0x6189, 0x182d, 0x964e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa4, 0x55, 0x82}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000240)={0x2c, &(0x7f0000000000)={0x0, 0x7, 0xbf, {0xbf, 0x5, "923561b54ed3e9e33d18919b77bf03dafe656f846b8b8d7ae2f0d869e6ec3880418e5703c37dc8159496fba11fb11330730a7359c0aa1940a461142535a63ebeb4711cceba3a77ea99fbf0b0cf343753d42cfc97b340fc03ef8ee7dd7d3c423ebc7044adcace04061268d82a805d894f20a0d136cf3c48c73df7d0e517f02d88e5c018cba6bc214bfd09174eebe5ca5af0febfd255e99e364587cadd50c47f8b05318176c2307b39656d454b463be3daab70d880fda211cc33a13717e6"}}, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1001}}, &(0x7f0000000140)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f00000001c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x2, 0x39, 0x5, "dda35ab5", "55f6b63b"}}, &(0x7f0000000200)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7, 0x10, 0xff, 0x60, 0x0, 0x6, 0x9}}}, &(0x7f00000006c0)={0x84, &(0x7f0000000280)={0x40, 0x14, 0x7a, "73a8fe24a3f7ff9ae3c95d7b0b215281719af8b2956d874d17a1f71081d27bffe1ca105e0eb7534720371ec6a568222641c414bbbe4de0976925dabc342c0777e70fa757f9c18dea53e2285f65735269cd2c0c3ca7844583a74f9042c75c9690b86a84be060dd3f3c301fe67061389de8518d568e6060b74b3a8"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x18}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000380)={0x20, 0x0, 0x4, {0x3}}, &(0x7f00000003c0)={0x20, 0x0, 0x8, {0x8, 0x1, [0x0]}}, &(0x7f0000000400)={0x40, 0x7, 0x2, 0x9}, &(0x7f0000000440)={0x40, 0x9, 0x1, 0xdb}, &(0x7f0000000480)={0x40, 0xb, 0x2, "3ef0"}, &(0x7f00000004c0)={0x40, 0xf, 0x2, 0x4}, &(0x7f0000000500)={0x40, 0x13, 0x6, @local}, &(0x7f0000000540)={0x40, 0x17, 0x6}, &(0x7f0000000580)={0x40, 0x19, 0x2, "531d"}, &(0x7f00000005c0)={0x40, 0x1a, 0x2, 0x5}, &(0x7f0000000600)={0x40, 0x1c, 0x1, 0x1f}, &(0x7f0000000640)={0x40, 0x1e, 0x1, 0x9}, &(0x7f0000000680)={0x40, 0x21, 0x1, 0x1}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000a00)={0x24, &(0x7f0000000780)={0x40, 0x5, 0xec, {0xec, 0x31, "15fb1b82c018b8747fc2a6a2f30b92dd875d45bfc30627310375365840e0e2291bc3792b43b96b25e307cb949d13f3b0675136aefd850bb26976be5a0793037cfda016b00144ef9de8f3f156ec913dce761ff6dad5c70e6bae9af957b6e2be15d9ed01647eb94b70b797c9e9b150804d473e4f308fcc0479555ce94cbaba67e952a45d2de74be7173ff8b832965c1452b6dfd9f8c24d5caadcf0cb1e1e9544a0a43b3eec226381f7ec8377261b800560506f7951d6775de9a74bc06324dbe6b6ad555169035930b846d91ebcabff61ec2e003b87658fb07bf50908c3a1e5d897d6832e8212c36b8dea25"}}, &(0x7f0000000880)={0x0, 0x3, 0xc4, @string={0xc4, 0x3, "31ee9bc7cc700f8f6e9d5ba4bc6c56e21f62c3d5345b654ab545b806259169fdd8580516b536652e2f9cf118faa98a758bb03a19c0f03c14165c76e4c34dc02f2995dabbadff52de2e5463e126c67b869cae8cf42eae9769d510e481e0ac88059e74b03684374e5c9094f875c4d1eb7208dfd42ead2d1de746897440627adc23832994ac4f451622714b73cbf5f029388ff49e3811be7a20e6a2b4c15d9f248894f58f4ce1726af336a781bf14c826157fd774e6e7cbb6115da843f7dea8fc1b5d76"}}, &(0x7f0000000980)={0x0, 0x22, 0x7, {[@main=@item_4={0x3, 0x0, 0xa, "6a258987"}, @local=@item_012={0x1, 0x2, 0xa, 'W'}]}}, &(0x7f00000009c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x7, 0x98, 0x1, {0x22, 0x62b}}}}, &(0x7f0000000c00)={0x2c, &(0x7f0000000a40)={0x0, 0x31, 0x29, "0ef7e227ee20a33dfcd8b322772e24d702d33c1a6b79aa7e46631f585d07117abefb7cfade7d75c1bb"}, &(0x7f0000000a80)={0x0, 0xa, 0x1, 0x4}, &(0x7f0000000ac0)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000000b00)={0x20, 0x1, 0xae, "4d1f70c48e77eba924b4c2099b746ea1e03fe36ab7c5da802f5143b58eeaa230eb49c824f92a53f7f5d485313cbc36b4a3e73321914d3cbccb2c20d067dd58d9965bbe69321a999033f69cefc2db533a9a68cf64c9f9652494f2b3544eebbcc0cc81425c063f46a3c0ef08b13b067917086908e4d9a0e02b4c3596c92c895d600fc9f0a2a086350c3f4d266107db2a99d7aca606f58b9fcd4fbbaeda21bff8a19badc06611f54a7871a0fe4308ce"}, &(0x7f0000000bc0)={0x20, 0x3, 0x1, 0xc0}})
syz_usb_control_io(r0, 0x0, 0x0)

06:04:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:38 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x8000, 0x8, 0x8000, 0x6, 0xfffffffe}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:38 executing program 5:
clock_gettime(0x0, &(0x7f0000000080)={<r0=>0x0})
r1 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000180)={&(0x7f0000000040), 0x10, &(0x7f0000000140)={&(0x7f00000000c0)={0x6, 0x804, 0x1000004, {}, {0x0, 0xea60}, {0x3, 0x1, 0x0, 0x1}, 0x1, @canfd={{0x3, 0x1, 0x0, 0x1}, 0x37, 0x1, 0x0, 0x0, "1e194242314ebe25a5c51741e211983f7540c0ee48cd7ce660b5ed1c2ed8b4f8e090ceef58a2eb7fcb866d31fc57c030004c4fc590a8b36107d58c3f9c8d496a"}}, 0x80}, 0x1, 0x0, 0x0, 0x20008094}, 0x8001)
syz_usb_connect(0x5, 0x19e, &(0x7f0000000000)=ANY=[@ANYRES32=r0], 0x0)
pselect6(0x40, &(0x7f0000000200)={0x0, 0xf68a, 0x8, 0x0, 0x8, 0x664, 0x40000000000, 0x357}, &(0x7f0000000240)={0xfff, 0x10021, 0x10001, 0x10000, 0x200000, 0x200000000000, 0x3, 0x5}, &(0x7f0000000280)={0x6, 0x9a1, 0x3ff, 0x2b6b, 0xffffffffffffffc1, 0x9, 0x751, 0x7fffffff}, &(0x7f00000002c0), &(0x7f0000000340)={&(0x7f0000000300)={[0x7]}, 0x8})

[  429.039559][ T1092] usb 3-1: new high-speed USB device number 80 using dummy_hcd
06:04:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  429.330764][    T7] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  429.420529][    T5] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  429.560479][ T1092] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  429.570031][ T1092] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.578482][ T1092] usb 3-1: Product: syz
[  429.583337][ T1092] usb 3-1: Manufacturer: syz
[  429.588051][ T1092] usb 3-1: SerialNumber: syz
[  429.611554][    T5] usb 6-1: device descriptor read/64, error 18
[  429.625863][ T1092] usb 3-1: config 0 descriptor??
[  429.870437][    T7] usb 5-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice=96.4e
[  429.880101][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.888631][    T7] usb 5-1: Product: syz
[  429.893587][    T7] usb 5-1: Manufacturer: syz
[  429.898366][    T7] usb 5-1: SerialNumber: syz
[  429.909465][    T5] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  429.919987][ T1092] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  429.930822][ T1092] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  429.940036][ T1092] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  429.958773][    T7] usb 5-1: config 0 descriptor??
[  430.119643][    T5] usb 6-1: device descriptor read/64, error 18
[  430.243609][    T5] usb usb6-port1: attempt power cycle
[  430.602310][ T1092] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  430.617710][ T1092] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
[  430.659953][    T5] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  430.840876][    T5] usb 6-1: device descriptor read/8, error -61
[  431.109515][    T5] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  431.281576][    T7] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  431.292372][    T7] asix 5-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  431.303230][    T7] asix: probe of 5-1:0.0 failed with error -71
[  431.316261][    T5] usb 6-1: device descriptor read/8, error -61
[  431.350980][    T7] usb 5-1: USB disconnect, device number 35
[  431.439960][    T5] usb usb6-port1: unable to enumerate USB device
06:04:41 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:41 executing program 3:
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000100)=""/216, 0xd8, &(0x7f0000000080)=""/23, 0x2, 0x1}}, 0x48)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000500"/20, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00./file0\x00'])
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x3)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  431.695257][    T7] usb 3-1: USB disconnect, device number 80
[  432.039800][   T18] usb 5-1: new high-speed USB device number 36 using dummy_hcd
06:04:41 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000480)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd=r2, 0x6}, 0x3)
syz_io_uring_setup(0x58ac, &(0x7f00000003c0), &(0x7f00000de000/0x7000)=nil, &(0x7f00000da000/0x2000)=nil, &(0x7f0000000580), &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000005c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2001}, 0x0)
r4 = syz_io_uring_setup(0x77b, &(0x7f0000000080), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ee7000/0x4000)=nil, &(0x7f00000014c0), &(0x7f0000000040))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x9)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:41 executing program 5:
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000100)='.log\x00', 0x400000, 0x103)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000080)="e5239e79f83629f2b36ad2c1d6fe4fb3450260ea20567e0dc8a2996765bbdee7016af2e398b9a6da4dfd5d643d8c0b3b51b12947d1d8bb15f5c8fa871d78e48359b649ee7815c5273d1885f918", &(0x7f0000000140)=@tcp6=r0}, 0x20)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
fcntl$setlease(r2, 0x400, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x3, &(0x7f0000000040)=[{0x15, 0x0, 0x1}, {0x35}, {0x6, 0x0, 0x0, 0x7ffffdbf}]})
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)

[  432.240541][   T66] usb 3-1: new high-speed USB device number 81 using dummy_hcd
[  432.621445][   T18] usb 5-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice=96.4e
[  432.631281][   T18] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.640884][   T18] usb 5-1: Product: syz
[  432.645168][   T18] usb 5-1: Manufacturer: syz
[  432.650042][   T18] usb 5-1: SerialNumber: syz
[  432.660221][   T18] usb 5-1: config 0 descriptor??
06:04:42 executing program 4:
r0 = syz_io_uring_setup(0x1a5, &(0x7f00000002c0), &(0x7f0000ffd000/0x3000)=nil, &(0x7f000042c000/0x2000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x100000d, 0x13, r0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000040)=@IORING_OP_WRITEV={0x2, 0x7d042899a9d37912, 0x0, @fd_index, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000480)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000600)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)=@ethernet={0x6}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000180)="4bfabdc2c1a97347b79978f71742d66c48f5be0be823", 0x16}, {&(0x7f00000001c0)="924e621b9abb029c860eefb5640cdeed9e354b2982cd922b66afda06bd00dfa0efc613cbe2e3bfc9e1106a1ebd66c84be3ba7438591c5ab2aedfb382fa1fe1f5d368175084874b", 0x47}, {&(0x7f0000000240)="c86d505f6775fe3be342e31dfd07faa5e4408b45d9b743599309596d735430a8cce96eb154c20abc407d230ee986b213def0a4cb4139ff317b28ab90362b3ad2acc27da8ebaddbede508471de74f67c004d989621c518d", 0x57}, {&(0x7f0000000340)="c3b9544d82389070d6c4cae732fb0d63ddf0b1cbdc4ea10e2344f9d4b564ddfc54d8fa8ebdf08d65aaf092a99dc1d8b038a091c9a12bc0d74b29e154016f3085d02c7e88a1da14d369f8e067740221", 0x4f}, {&(0x7f00000003c0)="61e5b18545f3110d3083047a21a3dbd592747593286914021211d8ce1899918afaa10311e071cd82385464c679d152831e6d38ae21c675c47e6f2cb3761ff21da3", 0x41}], 0x5, &(0x7f00000004c0)=[{0x30, 0x104, 0xae9, "52653a50353b53527a3040fe07be3aff5af7db1b13b716e06d88c8"}, {0x68, 0x118, 0x7, "0507f6c5824ffe7d96f6a46aa4959579eea90a54b27bf2819a7958382b058e023735adcd4fee8b8e262e69aeaf7aa278c80b4e0730f17266e0cff9a2df01d59039f61edddd27a9ac087fad01b426e0283b7bb4dadbe324"}, {0x20, 0x118, 0x8, "ce89b9ddce899dfb7bdb"}, {0x18, 0x10f, 0x1, "3171dc118e2f"}], 0xd0}, 0x0, 0x20000000, 0x1, {0x0, r5}}, 0x467)
io_uring_enter(r0, 0x2a71, 0x0, 0x0, 0x0, 0x0)

06:04:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:42 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140), 0xa82, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000180))
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"])

06:04:42 executing program 5:
syz_usb_connect(0x0, 0x12c, &(0x7f0000000140)=ANY=[@ANYBLOB="14010000060109021a0101000000000904c0007aff20000109050209000000006c6117dba97ae2ee"], 0x0)

06:04:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  432.751340][   T18] usb 5-1: can't set config #0, error -71
[  432.782535][   T18] usb 5-1: USB disconnect, device number 36
[  432.820321][   T66] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  432.829699][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.838350][   T66] usb 3-1: Product: syz
[  432.843037][   T66] usb 3-1: Manufacturer: syz
[  432.847753][   T66] usb 3-1: SerialNumber: syz
[  433.018990][   T66] usb 3-1: config 0 descriptor??
[  433.119844][    T5] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  433.303689][   T66] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  433.310299][    T5] usb 6-1: device descriptor read/64, error 18
[  433.314312][   T66] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  433.328330][   T66] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  433.589630][    T5] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  433.790386][    T5] usb 6-1: device descriptor read/64, error 18
[  433.911736][    T5] usb usb6-port1: attempt power cycle
[  434.248887][   T66] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  434.264252][   T66] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
[  434.330843][    T5] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  434.433181][    T5] usb 6-1: Invalid ep0 maxpacket: 2
[  434.589471][    T5] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  434.680881][    T5] usb 6-1: Invalid ep0 maxpacket: 2
[  434.686359][    T5] usb usb6-port1: unable to enumerate USB device
06:04:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:44 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:44 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8002, 0x6, 0x0, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @local}})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100), 0x0, 0x0)
close_range(r0, r2, 0x2)

06:04:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:44 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @private=0xa010101}]}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1}], 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @private2}, 0x1c)
r1 = syz_io_uring_complete(0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
r5 = socket$pptp(0x18, 0x1, 0x2)
r6 = syz_io_uring_complete(0x0)
io_submit(0x0, 0x7, &(0x7f0000000700)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x6, 0x100, r0, &(0x7f0000000280)="d11ebd8abaacb0e0793ad2c10e30812eae03da6151c877", 0x17, 0x5}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x5, 0x568d, r1, &(0x7f0000000340)="2db8cc1f5728da68b4a0a3114c1e1e52f94a", 0x12, 0x1, 0x0, 0x2}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0xbd88, 0xffffffffffffffff, &(0x7f0000000440)="725a932a465d305e3ad0a6ce0e9560df403352002666e7f7807d686552182fc18bbd5dae74e0fe", 0x27, 0x28, 0x0, 0x3}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x5, 0x2d8, r0, &(0x7f00000004c0)="ef2ce885e0858b206be53d49ec27b15278232bd44263c5612b1236c3c2071442bd85d40ac35fd7f4f98e2e776646f2fa17a595", 0x33, 0x2, 0x0, 0x0, r1}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000540), 0x0, 0x7fffffff, 0x0, 0x2}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x2, 0x2, r4, &(0x7f00000005c0)="3b3aa3e8b03afc6e5745a8965885a2c900162e8cf6ff8a227f98f40135f5f97c88a10482d04ab68d63c29f", 0x2b, 0x40, 0x0, 0x1, r1}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0xe000, r5, &(0x7f0000000640)="4a9563b80524a3d3d9749085ebc85f6a467d6b6a1c2df7f9f08a6932a77f241a6fe89eb6f802aceadff678d3e5703a1fa6b024524d04352e7704c319b26443cd955f172b638ce479d6e197", 0x4b, 0x3, 0x0, 0x0, r6}])
sendmmsg$inet_sctp(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=@in={0x2, 0x0, @dev}, 0x10, 0x0}], 0x1, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f00000002c0)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={r8}, 0xc)
sendto$inet6(r1, &(0x7f0000000740)="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", 0x1fe, 0x20008004, &(0x7f0000000140)={0xa, 0x4e20, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3}, 0x1c)

[  434.914584][   T66] usb 3-1: USB disconnect, device number 81
06:04:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:44 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wg2\x00'})
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x2, 0x7, 0x9, 0x7f}, 0x10)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x80010, r0, 0x1000)

06:04:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  435.510091][   T66] usb 3-1: new high-speed USB device number 82 using dummy_hcd
06:04:44 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x7, 0x400001)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x89b, 0xfffffff7, 0xc5b2, 0x4, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}, 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r4})
bind$packet(r1, &(0x7f0000000040)={0x11, 0x9, r4, 0x1, 0x3f, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:04:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:45 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:45 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x10)
pipe(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
write$binfmt_misc(r2, &(0x7f0000000280)=ANY=[], 0x4240a2a0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r3, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r1, 0x0, r3, 0x0, 0x19403, 0x0)

06:04:45 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x21)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={0x0, 0x1, 0x6, @remote}, 0x10)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB="7800000024000b0f000000000000000060000000", @ANYRES32=r4, @ANYBLOB="09df79e356aa927b3a00000000ffffffff0000000008000100736671004c0002009b080000f7ffffffb2c500000400000006000024fc39f52aeed50f000000000000000081000000000000050000000000000000000000000000000000000000000000000000000000448b837aac12d8e1c5f976dfbb91c03395479f85f58536d182125adc071a9514ccc0f99a6f4aa44eea01dca09da814d9821da635c13be9ced365e3757e915bc3b0d6c135803dda53d2e7ddc1fc5746d6664b2456c00b2118bb8de08f6fabace31dbf0f0d8fecf3d68e1620ede224a9a373062a3b17cc7aaa0ce87c035d7b14"], 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r4})
bind$packet(r0, &(0x7f0000000000)={0x11, 0x5, r4, 0x1, 0x5, 0x6, @link_local}, 0x14)

[  436.080226][   T66] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  436.089650][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.097776][   T66] usb 3-1: Product: syz
[  436.102279][   T66] usb 3-1: Manufacturer: syz
[  436.106999][   T66] usb 3-1: SerialNumber: syz
[  436.243757][   T66] usb 3-1: config 0 descriptor??
[  436.512354][   T66] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  436.522944][   T66] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  436.532301][   T66] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  437.352732][   T66] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  437.369238][   T66] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
06:04:47 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:47 executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000037ec594086051a4058ac000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000b00)={0x84, &(0x7f0000000400)={0x0, 0x0, 0x1, '\f'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000003c0)={0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB="000000450716"], 0x0, 0x0, 0x0, 0x0})

06:04:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:47 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xa, 0x13, r0, 0x1d48e000)

06:04:47 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x10)
pipe(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
write$binfmt_misc(r2, &(0x7f0000000280)=ANY=[], 0x4240a2a0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r3, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r1, 0x0, r3, 0x0, 0x19403, 0x0)

[  438.204398][    T5] usb 3-1: USB disconnect, device number 82
06:04:47 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r2 = socket(0x3, 0xa, 0xfff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x89b, 0xfffffff7, 0xc5b2, 0x4, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}, 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r4})
bind$packet(r1, &(0x7f0000000100)={0x11, 0x5, r4, 0x1, 0x3, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}}, 0x14)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
setsockopt$packet_int(r5, 0x107, 0xc, &(0x7f0000000080)=0x800, 0x4)
r6 = syz_open_dev$vcsa(&(0x7f0000000140), 0x627c, 0x2100)
getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)

06:04:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  438.639456][    T7] usb 5-1: new high-speed USB device number 37 using dummy_hcd
06:04:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  438.819953][   T66] usb 3-1: new high-speed USB device number 83 using dummy_hcd
[  439.000152][    T7] usb 5-1: New USB device found, idVendor=0586, idProduct=401a, bcdDevice=ac.58
[  439.009810][    T7] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.045266][    T7] usb 5-1: config 0 descriptor??
06:04:48 executing program 3:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0xfffffc6a, <r1=>0xffffffffffffffff, {0x2}}, './file0\x00'})
sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1400bc6bbf5067453ca4a8c60dbaae5564eea24c2fe79fb17000ffdbdf2500000000"], 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000280)={'syztnl1\x00', &(0x7f0000000200)={'ip_vti0\x00', 0x0, 0x20, 0x8, 0x3, 0x7, {{0xa, 0x4, 0x1, 0x34, 0x28, 0x68, 0x0, 0x3, 0x4, 0x0, @loopback, @multicast1, {[@ra={0x94, 0x4, 0x1}, @rr={0x7, 0x7, 0x2a, [@broadcast]}, @generic={0x7, 0x4, 's\''}, @noop, @noop]}}}}})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000004c0)={{{@in6=@private1, @in=@multicast1}}, {{@in6=@private1}, 0x0, @in=@broadcast}}, &(0x7f0000000000)=0xe8)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r3, &(0x7f0000000100)=[{}], 0x1, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r5, &(0x7f0000000100)=[{}], 0x1, 0x0)
syz_open_dev$vbi(&(0x7f0000000400), 0x3, 0x2)
syz_open_dev$rtc(&(0x7f0000000440), 0x81, 0x40c00)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f00000000c0)=@req={0x9, 0x7, 0x8ab, 0x2}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0)

06:04:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  439.212843][T14435] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:04:48 executing program 5:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
setns(0xffffffffffffffff, 0x80)
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000000)={{}, {@val, @max}})
unshare(0x2020000)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0x9}}, './file0\x00'})
r3 = open(&(0x7f0000000080)='.\x00', 0x0, 0x0)
getdents(r3, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYRESOCT, @ANYBLOB="29fc5e9fee425e98879416b7afbdfc17b1be2b402e", @ANYRESHEX=r2], 0x1c}}, 0x40041)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc)
setns(r0, 0x0)
setns(0xffffffffffffffff, 0x20000000)
r4 = openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
unshare(0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000440)={'wg1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)=@newlink={0x20, 0x10, 0x300, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x48814, 0x4000}}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x8000000)
clone(0x7022413a, 0x0, 0x0, 0x0, 0x0)

[  439.381130][   T66] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  439.390423][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  439.398640][   T66] usb 3-1: Product: syz
[  439.403094][   T66] usb 3-1: Manufacturer: syz
[  439.407827][   T66] usb 3-1: SerialNumber: syz
[  439.455098][   T66] usb 3-1: config 0 descriptor??
[  439.732134][   T66] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  439.742988][   T66] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  439.752303][   T66] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  439.881604][    T7] (unnamed net_device) (uninitialized): Assigned a random MAC address: 06:a7:8f:1d:a0:1e
[  440.153040][    T7] rtl8150 5-1:0.0: eth1: rtl8150 is detected
[  440.183707][    T7] usb 5-1: USB disconnect, device number 37
[  441.132684][    T7] usb 5-1: new high-speed USB device number 38 using dummy_hcd
06:04:50 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:50 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x4, 0x1, 0x0, 0x400}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x13, r0, 0x0)

06:04:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:50 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000040)="120000001200edc5b27c513a8aff966c7696", 0x12, 0x80440d0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000002180)=[{{&(0x7f0000000080)=@xdp, 0x80, &(0x7f0000000580)=[{&(0x7f0000000100)=""/190, 0xbe}, {&(0x7f00000001c0)=""/125, 0x7d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/121, 0xfffffffffffffff4}, {&(0x7f0000000380)=""/167, 0xa7}, {&(0x7f0000000440)=""/182, 0xb6}, {&(0x7f0000000500)=""/82, 0x52}], 0x7, &(0x7f0000000600)=""/105, 0x69}, 0xe53}, {{&(0x7f0000000680)=@tipc=@name, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000700)=""/53, 0x35}, {&(0x7f0000002240)=""/80, 0x50}, {&(0x7f00000007c0)=""/208, 0xd0}], 0x3}, 0x1}, {{&(0x7f0000000900)=@alg, 0x80, &(0x7f0000002000)=[{&(0x7f0000000980)=""/196, 0xc4}, {&(0x7f0000000a80)=""/214, 0xd6}, {&(0x7f0000000b80)=""/162, 0xa2}, {&(0x7f0000000c40)=""/209, 0xd1}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/218, 0xda}, {&(0x7f0000001fc0)=""/18, 0x12}, {&(0x7f0000001e80)=""/6, 0x6}, {&(0x7f0000001ec0)=""/251, 0xfb}, {&(0x7f0000001fc0)}], 0xa, &(0x7f00000020c0)=""/186, 0xba}, 0x7f}], 0x3, 0x0, &(0x7f0000000000)={0x77359400})

[  441.579580][    T7] usb 5-1: device descriptor read/all, error -71
06:04:51 executing program 4:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x402000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004100)={0x2020}, 0x2020)
setns(r1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x2020000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r2 = fsopen(&(0x7f0000000100)='erofs\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8054}, 0x400)
close(r2)
clone(0x70224100, 0x0, 0x0, 0x0, 0x0)

06:04:51 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ip6erspan0\x00'})
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
connect(r0, &(0x7f0000000000)=@ieee802154={0x24, @long={0x3, 0xfff9}}, 0x80)
r2 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x100000000, 0x100)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000000, 0x20853, r2, 0xf93c5000)

06:04:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:51 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2})
r3 = eventfd(0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x41)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000100)={r4, 0x4, 0x80000001, r3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r3})
close(r1)

06:04:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  442.928033][T14546] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:04:52 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000000)="5fac45c2c30c3766655b86a433236e78c6f5764b334f8d942962bb93a2afa5dca8fecf1f2b20656f7b6a4a5cc2dd5c523b5b7d1f63a320c0778ef7b4c7b8d5e0a5c2f9d06a81b43e93f4f7eff7b0295770867926d11f42595fd564e6145e581475fb679afd71ee3803d96891498ef933b3b2fc3ad22bcf3b594df7344f6b038ff7f29f72b2585107f63d0c50ff84fb119b3e9ce12070beaf3c085879a52ca9c7b655216dd0bb36221ed87fa66e506e1442cfb24159", 0xb5)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

[  443.070362][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  443.076914][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  444.110170][   T66] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  444.126643][   T66] dvb_usb_az6027: probe of 3-1:0.0 failed with error -2
[  444.184262][   T66] usb 3-1: USB disconnect, device number 83
[  444.549409][   T66] usb 3-1: new high-speed USB device number 84 using dummy_hcd
06:04:54 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:04:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:54 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x6, 0x1ff0}, 0x40)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1404, r0}, 0x38)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0xee01, 0xee00}}, './file0\x00'})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600), 0x44000, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r6, 0x8915, &(0x7f0000000640)={'gre0\x00'})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)={0x48, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_KEY={0x2c, 0x50, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "d19fcf3a5a1f4f620100"}, @NL80211_KEY_SEQ={0x4}]}]}, 0x48}}, 0x0)
sendmsg$NL80211_CMD_SET_WDS_PEER(r3, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x44, r5, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @random="d2e9b4e94f0e"}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000d5}, 0x4048050)
sendmsg$TIPC_NL_MON_SET(r2, &(0x7f0000000440)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)={0xc4, 0x0, 0x400, 0x70bd25, 0x4, {}, [@TIPC_NLA_MEDIA={0x40, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x62d6d878}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1eb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}]}, @TIPC_NLA_MEDIA={0x70, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffff52}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x38ca00}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x80)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r9=>0x0})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_ext={0x1c, 0x1, &(0x7f0000000100)=@raw=[@ldst={0x0, 0x0, 0x0, 0x0, 0x6}], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000080)=ANY=[@ANYBLOB="48040000", @ANYRES16=r10, @ANYBLOB="010000000000000004003b1c210008000300", @ANYRES32=r9, @ANYBLOB="2c0433005000de295b3acba512e4080211000001505050505050"], 0x448}}, 0x0)

06:04:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:54 executing program 4:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x402000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004100)={0x2020}, 0x2020)
setns(r1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x2020000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r2 = fsopen(&(0x7f0000000100)='erofs\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8054}, 0x400)
close(r2)
clone(0x70224100, 0x0, 0x0, 0x0, 0x0)

[  444.939129][   T66] usb 3-1: device descriptor read/all, error -71
06:04:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:55 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x5)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x10e}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000100)={'veth0_to_team\x00'})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x5)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000004c0)={0x0, 0xffffffffffffffff, 0x1000, 0x5, @buffer={0x0, 0x8e, &(0x7f0000000140)=""/142}, &(0x7f0000001ac0)="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", &(0x7f0000000400)=""/134, 0x257, 0x10000, 0x1, &(0x7f0000000040)})
write$binfmt_misc(r1, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x259)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f00000002c0)=ANY=[@ANYBLOB="4800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000093bb52489303d6d4469301ea02ab70edeba85707d9d5b6ee5ec26375e1f897e475813a01c6bb7a786d7ae983e42af7b3be560f179b2eda5ddd3b715b36c2f23278e341bf17da68e8bf35353124de9f3c3019a560e47878f28d0742a2316b106f9367cb818a8effc28c04718bb676013766879119ab8720502349c3516da6a4163ae5a6a27afafd1937ee4d43e2ad84c046c90cadc59c7349d169b0d082408204cbe123bef139dbf690e72800"/262])
r2 = memfd_create(&(0x7f0000000080)='systo\xee8\x00\x00\x00\x00\x00\x008\x14e\x00', 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1000004, 0x4000051, r2, 0x0)
write$binfmt_misc(r2, &(0x7f0000000480)=ANY=[], 0x100)
r3 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000ac0)={{r3}, "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"})
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
clone(0x68880000, 0x0, 0x0, 0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000900)=ANY=[], 0x259)
r4 = socket(0xa, 0x1, 0x0)
close(r4)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)

[  446.052067][   T66] usb 3-1: new high-speed USB device number 85 using dummy_hcd
[  446.084128][    C1] sd 0:0:1:0: tag#6279 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  446.094399][    C1] sd 0:0:1:0: tag#6279 CDB: Test Unit Ready
[  446.100665][    C1] sd 0:0:1:0: tag#6279 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.110016][    C1] sd 0:0:1:0: tag#6279 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.119328][    C1] sd 0:0:1:0: tag#6279 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.128570][    C1] sd 0:0:1:0: tag#6279 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.137894][    C1] sd 0:0:1:0: tag#6279 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.147192][    C1] sd 0:0:1:0: tag#6279 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.156518][    C1] sd 0:0:1:0: tag#6279 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.165818][    C1] sd 0:0:1:0: tag#6279 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.175128][    C1] sd 0:0:1:0: tag#6279 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.184455][    C1] sd 0:0:1:0: tag#6279 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.193772][    C1] sd 0:0:1:0: tag#6279 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
06:04:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  446.203136][    C1] sd 0:0:1:0: tag#6279 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.212497][    C1] sd 0:0:1:0: tag#6279 CDB[c0]: 00 00 00 00 00 00 00 00
[  446.360396][    C1] sd 0:0:1:0: tag#6280 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  446.370538][    C1] sd 0:0:1:0: tag#6280 CDB: Test Unit Ready
[  446.376648][    C1] sd 0:0:1:0: tag#6280 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.386038][    C1] sd 0:0:1:0: tag#6280 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.395373][    C1] sd 0:0:1:0: tag#6280 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.404707][    C1] sd 0:0:1:0: tag#6280 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.414140][    C1] sd 0:0:1:0: tag#6280 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.423509][    C1] sd 0:0:1:0: tag#6280 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.432872][    C1] sd 0:0:1:0: tag#6280 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.442250][    C1] sd 0:0:1:0: tag#6280 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.451606][    C1] sd 0:0:1:0: tag#6280 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.461005][    C1] sd 0:0:1:0: tag#6280 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.470375][    C1] sd 0:0:1:0: tag#6280 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.479758][    C1] sd 0:0:1:0: tag#6280 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  446.489151][    C1] sd 0:0:1:0: tag#6280 CDB[c0]: 00 00 00 00 00 00 00 00
06:04:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  447.354357][    C1] sd 0:0:1:0: tag#6281 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  447.364494][    C1] sd 0:0:1:0: tag#6281 CDB: Test Unit Ready
[  447.370720][    C1] sd 0:0:1:0: tag#6281 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.380077][    C1] sd 0:0:1:0: tag#6281 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.389409][    C1] sd 0:0:1:0: tag#6281 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.398661][    C1] sd 0:0:1:0: tag#6281 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.407978][    C1] sd 0:0:1:0: tag#6281 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.417300][    C1] sd 0:0:1:0: tag#6281 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.426629][    C1] sd 0:0:1:0: tag#6281 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.435981][    C1] sd 0:0:1:0: tag#6281 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.445393][    C1] sd 0:0:1:0: tag#6281 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.454759][    C1] sd 0:0:1:0: tag#6281 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.464144][    C1] sd 0:0:1:0: tag#6281 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.473507][    C1] sd 0:0:1:0: tag#6281 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.482880][    C1] sd 0:0:1:0: tag#6281 CDB[c0]: 00 00 00 00 00 00 00 00
[  447.490248][    C1] sd 0:0:1:0: tag#6282 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  447.500441][    C1] sd 0:0:1:0: tag#6282 CDB: Test Unit Ready
[  447.506548][    C1] sd 0:0:1:0: tag#6282 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.515939][    C1] sd 0:0:1:0: tag#6282 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.525326][    C1] sd 0:0:1:0: tag#6282 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.534651][    C1] sd 0:0:1:0: tag#6282 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.543970][    C1] sd 0:0:1:0: tag#6282 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.553460][    C1] sd 0:0:1:0: tag#6282 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.562789][    C1] sd 0:0:1:0: tag#6282 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.572177][    C1] sd 0:0:1:0: tag#6282 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.581507][    C1] sd 0:0:1:0: tag#6282 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.590842][    C1] sd 0:0:1:0: tag#6282 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.600181][    C1] sd 0:0:1:0: tag#6282 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.609522][    C1] sd 0:0:1:0: tag#6282 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.618772][    C1] sd 0:0:1:0: tag#6282 CDB[c0]: 00 00 00 00 00 00 00 00
06:04:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:57 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  448.439424][   T66] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  448.448651][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.613077][   T66] usb 3-1: config 0 descriptor??
[  448.629211][   T66] usb 3-1: can't set config #0, error -71
[  448.640627][   T66] usb 3-1: USB disconnect, device number 85
06:04:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:04:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  449.049876][   T66] usb 3-1: new high-speed USB device number 86 using dummy_hcd
[  449.395976][T14752] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:04:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  449.725594][   T66] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  449.735004][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.743528][   T66] usb 3-1: Product: syz
[  449.747799][   T66] usb 3-1: Manufacturer: syz
[  449.753437][   T66] usb 3-1: SerialNumber: syz
06:04:59 executing program 4:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x402000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004100)={0x2020}, 0x2020)
setns(r1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x2020000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r2 = fsopen(&(0x7f0000000100)='erofs\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8054}, 0x400)
close(r2)
clone(0x70224100, 0x0, 0x0, 0x0, 0x0)

06:04:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  449.918309][   T66] usb 3-1: config 0 descriptor??
[  450.173181][   T66] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  450.211916][   T66] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  450.297661][T14771] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  450.342109][   T66] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  450.349799][   T66] usb 3-1: media controller created
[  450.485661][   T66] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  451.857790][   T66] stb0899_attach: Driver disabled by Kconfig
[  451.864156][   T66] az6027: no front-end attached
[  451.864156][   T66] 
[  451.949948][   T66] az6027: usb out operation failed. (-71)
[  451.955936][   T66] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  451.965508][   T66] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input43
[  452.172947][   T66] dvb-usb: schedule remote query interval to 400 msecs.
[  452.180242][   T66] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  452.301672][   T66] usb 3-1: USB disconnect, device number 86
[  452.635710][   T66] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:02 executing program 5:
r0 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='#ource', &(0x7f0000000100)='afs\x00', 0x0)
readv(r0, &(0x7f0000002300)=[{&(0x7f0000000240)=""/86, 0x56}], 0x1)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
write$binfmt_script(r2, &(0x7f0000002480)={'#! ', './file0', [{0x20, 'V+'}, {0x20, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}, {0x20, '@-#}/@@'}], 0xa, "8e067ccdd7c5d9d7317c6023c88d4b7c7b330153bde6c8db8a3692a8ea147d2c8b641b1950ceafb5bd4efca76550c5b4f46855bd2f8c9d30054d500a3e693b4814cfb803b2b41fa8b980fec1deb698a979c5380c5c3021ecd258c538d4f992e0036035882f57b58a3cbaea4c8ddf61d4627bccd9"}, 0xd6)
readv(r0, &(0x7f0000002400)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/4096, 0x1000}, {&(0x7f0000000140)=""/179, 0xb3}, {&(0x7f0000000200)=""/53, 0x35}, {&(0x7f0000002340)=""/171, 0xab}], 0x5)
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000022c0)={0x10000002})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='\x00', &(0x7f00000000c0)='afs\x00', 0x0)

06:05:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:02 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  454.118982][ T8705] usb 3-1: new high-speed USB device number 87 using dummy_hcd
06:05:03 executing program 4:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x402000, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004100)={0x2020}, 0x2020)
setns(r1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x2020000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r2 = fsopen(&(0x7f0000000100)='erofs\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8054}, 0x400)
close(r2)
clone(0x70224100, 0x0, 0x0, 0x0, 0x0)

06:05:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:03 executing program 5:
r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = gettid()
tkill(r1, 0x100008)
tkill(r1, 0x7)
sendmsg$nl_generic(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000001b00)=ANY=[@ANYBLOB="ac1500003d00020028bd7000fddbdf251b00000008000000", @ANYRES32=r1, @ANYBLOB="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"], 0x15ac}, 0x1, 0x0, 0x0, 0x20000190}, 0x24000840)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = gettid()
tkill(r3, 0x100008)
tkill(r3, 0x7)
tkill(r3, 0x11)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="68000000100005070000000000000000000000002b9d3d782e31f2bb2e39ff62eccc46a52a372419b803c2ae8193f5fb822bf4dfba34cad3130285b67dba9083a5b1254e2bb5946c1a5460763152dd2a31e413b267357ec7a06287b6080f2fffffffffa969", @ANYRES32=0x0, @ANYBLOB="00000000000000004800128008000100736974003c0002800500050000000000060010005dd1000006000f000000000006000d001f00000006000e008100000008000c000000000008000300e0000001"], 0x68}}, 0x0)

[  454.645890][ T8705] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  454.655360][ T8705] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.664144][ T8705] usb 3-1: Product: syz
[  454.668432][ T8705] usb 3-1: Manufacturer: syz
[  454.673705][ T8705] usb 3-1: SerialNumber: syz
[  454.784507][ T8705] usb 3-1: config 0 descriptor??
[  455.015370][T14859] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.5'.
[  455.089477][ T8705] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
06:05:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:04 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x121a02, 0x0)
write$cgroup_int(r0, &(0x7f0000000000)=0x9, 0x12)
read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020)
sendfile(r0, r0, 0x0, 0x117)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, {0x388}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x0)
r1 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000480)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_setup(0x58ac, &(0x7f00000003c0)={0x0, 0x4e2d}, &(0x7f00000de000/0x7000)=nil, &(0x7f00000da000/0x2000)=nil, &(0x7f0000000580), &(0x7f0000000540)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000005c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x200, 0x1, &(0x7f0000000040)="352bbe54c79691aaf5d626fa14ea401c229e260a09a2f11a11934d0fb2d9c387f5b26913b807a4723276e74f529d937907aa4ead5d35cd4c8576b40b89f7c5ef2dac456e22a1735237f99a86b73e6e65be42eccbbb46495ac45162de8c3c93e7a457d74be3943aba3a0ff2cd6acb4ed942e50365b01a8a3f1b6d58f285bce8147fb27873cab4", 0x6, 0x0, 0x0, {0x2, r3}}, 0x8)

06:05:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  456.520708][ T8705] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  456.579422][ T8705] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  456.586717][ T8705] usb 3-1: media controller created
[  456.686171][ T8705] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:06 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 1)

[  457.099706][ T8705] az6027: usb out operation failed. (-71)
[  457.124940][ T8705] az6027: usb out operation failed. (-71)
[  457.131111][ T8705] stb0899_attach: Driver disabled by Kconfig
[  457.137183][ T8705] az6027: no front-end attached
[  457.137183][ T8705] 
06:05:06 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x121a02, 0x0)
write$cgroup_int(r0, &(0x7f0000000000)=0x9, 0x12)
read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020)
sendfile(r0, r0, 0x0, 0x117)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, {0x388}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x0)
r1 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000480)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_setup(0x58ac, &(0x7f00000003c0)={0x0, 0x4e2d}, &(0x7f00000de000/0x7000)=nil, &(0x7f00000da000/0x2000)=nil, &(0x7f0000000580), &(0x7f0000000540)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000005c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x200, 0x1, &(0x7f0000000040)="352bbe54c79691aaf5d626fa14ea401c229e260a09a2f11a11934d0fb2d9c387f5b26913b807a4723276e74f529d937907aa4ead5d35cd4c8576b40b89f7c5ef2dac456e22a1735237f99a86b73e6e65be42eccbbb46495ac45162de8c3c93e7a457d74be3943aba3a0ff2cd6acb4ed942e50365b01a8a3f1b6d58f285bce8147fb27873cab4", 0x6, 0x0, 0x0, {0x2, r3}}, 0x8)

[  457.295669][ T8705] az6027: usb out operation failed. (-71)
[  457.301888][ T8705] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  457.310905][ T8705] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input44
[  457.508247][T14942] FAULT_INJECTION: forcing a failure.
[  457.508247][T14942] name failslab, interval 1, probability 0, space 0, times 0
[  457.521611][T14942] CPU: 0 PID: 14942 Comm: syz-executor.1 Not tainted 5.15.0-rc7-syzkaller #0
[  457.530523][T14942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  457.540693][T14942] Call Trace:
[  457.544054][T14942]  dump_stack_lvl+0x1ff/0x28e
[  457.548880][T14942]  dump_stack+0x25/0x28
[  457.553180][T14942]  should_fail+0x8bc/0x9c0
[  457.557744][T14942]  __should_failslab+0x223/0x2b0
[  457.562845][T14942]  should_failslab+0x29/0x70
[  457.567621][T14942]  __kmalloc+0x199/0x1150
[  457.572106][T14942]  ? kmsan_get_metadata+0x11b/0x180
[  457.577441][T14942]  ? tomoyo_realpath_from_path+0x152/0xc30
[  457.583486][T14942]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  457.589438][T14942]  ? kmsan_get_metadata+0x11b/0x180
[  457.594782][T14942]  ? kmsan_get_metadata+0x11b/0x180
[  457.600327][T14942]  tomoyo_realpath_from_path+0x152/0xc30
[  457.606141][T14942]  ? kmsan_get_metadata+0x11b/0x180
[  457.611509][T14942]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  457.617478][T14942]  ? __srcu_read_lock+0x93/0x100
[  457.622645][T14942]  tomoyo_path_number_perm+0x2c1/0xb00
[  457.628378][T14942]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  457.634841][T14942]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  457.641107][T14942]  ? __msan_instrument_asm_store+0x13c/0x180
[  457.647268][T14942]  tomoyo_file_ioctl+0x72/0x90
[  457.652224][T14942]  ? tomoyo_inode_getattr+0x60/0x60
[  457.657593][T14942]  security_file_ioctl+0x10a/0x210
[  457.662923][T14942]  __se_sys_ioctl+0x133/0x4a0
[  457.667782][T14942]  __x64_sys_ioctl+0xd8/0x110
[  457.672600][T14942]  do_syscall_64+0x54/0xd0
[  457.677132][T14942]  ? exc_page_fault+0x76/0x120
[  457.682027][T14942]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  457.688074][T14942] RIP: 0033:0x7f78698f1ae9
[  457.692576][T14942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  457.712301][T14942] RSP: 002b:00007f7866e46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  457.720836][T14942] RAX: ffffffffffffffda RBX: 00007f7869a05020 RCX: 00007f78698f1ae9
[  457.728900][T14942] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  457.736958][T14942] RBP: 00007f7866e461d0 R08: 0000000000000000 R09: 0000000000000000
[  457.745013][T14942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.753064][T14942] R13: 00007f7869f38b2f R14: 00007f7866e46300 R15: 0000000000022000
[  457.762247][T14942] ERROR: Out of memory at tomoyo_realpath_from_path.
[  457.829575][ T8705] dvb-usb: schedule remote query interval to 400 msecs.
[  457.836728][ T8705] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  457.970003][ T8705] usb 3-1: USB disconnect, device number 87
[  458.135989][ T8705] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:07 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r2, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
recvmsg$unix(r2, &(0x7f00000003c0)={&(0x7f0000000000), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/53, 0x35}, {&(0x7f0000000140)=""/33, 0x21}, {&(0x7f00000002c0)=""/236, 0xec}, {&(0x7f0000000180)=""/36, 0x24}], 0x4, &(0x7f0000000240)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}, 0x40000020)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0)

[  458.538917][ T8705] usb 3-1: new high-speed USB device number 88 using dummy_hcd
06:05:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:08 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r1 = epoll_create1(0x0)
write$sequencer(r0, &(0x7f0000000400)=[@t={0x4, 0x3, 0x65, 0x6, @generic=0x10000}, @t={0x8, 0x1, 0x86, 0x7}], 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0xa000000d})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, &(0x7f0000000b40)=ANY=[@ANYBLOB="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", @ANYRES16=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000b00), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x78)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a80)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x48)
r3 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r3, 0x0, 0x12, 0xd0, &(0x7f0000000040)="91d531f276d1b0d0aeff8cb2931c363cc929", &(0x7f0000000140)=""/208, 0x1, 0x0, 0x71, 0xa3, &(0x7f0000000240)="b4b5c381e7f2f0a5e9eb72e8b73cef6ed18ef0f8a3bb9ab01dcace7b4cb9ed5b0f6c8a4f0f05f16ea81eaa81ad48c08d30e5acfc5961f28917bd83630d3bd62e3f7e980c945fda14c19a768b412ed11c191b3e1130dc48dcdd1baa8b42ff25a53ede3232dfce431ae921b4cadd29baf778", &(0x7f00000002c0)="fbbda0900c1ad0237ba617d1b867bf9371f1eb17ebf29dd0eaeb21456640eb6d056b0daedc0ab4b68668a45e10cdb1eed3d4ffdae24692a52e16c8e2ec4f05b1714710b5e446fa48c34f748887f6b5a815fed5a8da9878a0b88e5bc387c984356d98fbc4c547b4e89a35400fa6adb13bae481f82dff34312dd14bb77d2ce614cb594ef9b98dfc89a76ce2770557f388f50d4d1e67ab60cd5314812d79ef2c079fa87f9", 0x1, 0x6}, 0x48)

06:05:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  459.069889][ T8705] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  459.079349][ T8705] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.087557][ T8705] usb 3-1: Product: syz
[  459.092187][ T8705] usb 3-1: Manufacturer: syz
[  459.096883][ T8705] usb 3-1: SerialNumber: syz
[  459.279851][ T8705] usb 3-1: config 0 descriptor??
06:05:08 executing program 4:
rseq(&(0x7f0000000000), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0000}]})
getresuid(&(0x7f0000000080)=<r0=>0x0, &(0x7f0000000200), &(0x7f0000000240))
statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getresgid(&(0x7f0000002880)=<r1=>0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x6000)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, r2}, 0xc)
statx(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1000, 0x8, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0, <r4=>0x0}, &(0x7f00000003c0)=0xc)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)={{}, {0x1, 0x4}, [{0x2, 0x5, 0xffffffffffffffff}, {0x2, 0x2, r0}], {0x4, 0x7}, [{0x8, 0xa, r2}, {0x8, 0x6, r1}, {0x8, 0x1, r3}, {0x8, 0x0, r4}, {0x8, 0x3, r5}], {0x10, 0x1}, {0x20, 0x7}}, 0x5c, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getgid()

06:05:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  459.529015][   T23] audit: type=1326 audit(1635919508.824:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.539141][ T8705] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  459.657708][ T8705] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  459.705262][   T23] audit: type=1326 audit(1635919508.864:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.729450][   T23] audit: type=1326 audit(1635919508.864:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
06:05:09 executing program 5:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r1, &(0x7f00003cef9f)='7', 0xfffa, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000024002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
read$fb(0xffffffffffffffff, 0x0, 0x0)
preadv(r1, &(0x7f0000000280)=[{&(0x7f00000003c0)=""/237, 0xed}], 0x407, 0x0, 0x3)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x4200, 0x0)
r5 = socket(0xa, 0x1, 0x0)
close(r5)
sendmmsg$inet_sctp(r5, &(0x7f0000000bc0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="300000000000000084000000010000000000000004"], 0x30}], 0x1, 0x0)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000680), 0x0)
sendmsg$NL80211_CMD_DEL_STATION(r5, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x60d6c65e68577b89}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x80, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x6}}}}, [@NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x10, 0xbd, [0x0, 0x7f, 0x0, 0x3ff, 0xfff, 0x1]}, @NL80211_ATTR_STA_FLAGS={0x1c, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x1}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x1}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}]}, 0x80}, 0x1, 0x0, 0x0, 0x10}, 0x0)
close(r4)

[  459.752796][   T23] audit: type=1326 audit(1635919508.864:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.776108][   T23] audit: type=1326 audit(1635919508.864:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.799546][   T23] audit: type=1326 audit(1635919508.874:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.822835][   T23] audit: type=1326 audit(1635919508.874:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
06:05:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x2, 0x0)

[  459.846017][   T23] audit: type=1326 audit(1635919508.884:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.869306][   T23] audit: type=1326 audit(1635919508.884:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.892642][   T23] audit: type=1326 audit(1635919508.884:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14994 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f74e9df9ae9 code=0x7ffc0000
[  459.961054][ T8705] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  459.968321][ T8705] usb 3-1: media controller created
[  460.015458][ T8705] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:09 executing program 4:
rseq(&(0x7f0000000000), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0000}]})
getresuid(&(0x7f0000000080)=<r0=>0x0, &(0x7f0000000200), &(0x7f0000000240))
statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getresgid(&(0x7f0000002880)=<r1=>0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x6000)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, r2}, 0xc)
statx(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1000, 0x8, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0, <r4=>0x0}, &(0x7f00000003c0)=0xc)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)={{}, {0x1, 0x4}, [{0x2, 0x5, 0xffffffffffffffff}, {0x2, 0x2, r0}], {0x4, 0x7}, [{0x8, 0xa, r2}, {0x8, 0x6, r1}, {0x8, 0x1, r3}, {0x8, 0x0, r4}, {0x8, 0x3, r5}], {0x10, 0x1}, {0x20, 0x7}}, 0x5c, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getgid()

[  461.079402][ T8705] stb0899_attach: Driver disabled by Kconfig
[  461.085669][ T8705] az6027: no front-end attached
[  461.085669][ T8705] 
[  461.111041][ T8705] az6027: usb out operation failed. (-71)
[  461.117350][ T8705] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  461.126406][ T8705] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input45
[  461.189765][ T8705] dvb-usb: schedule remote query interval to 400 msecs.
[  461.196904][ T8705] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  461.230033][ T8705] usb 3-1: USB disconnect, device number 88
[  461.313374][ T8705] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:10 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:10 executing program 5:
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000080)="580000001400379b9fb61b47", 0xc}], 0x1)
close(r3)
socket$nl_sock_diag(0x10, 0x3, 0x4)
bind(0xffffffffffffffff, &(0x7f0000000140)=@vsock={0x28, 0x0, 0x54e7547e02afa628, @my=0x1}, 0x80)
recvfrom$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)={0xa000000d})
write$binfmt_elf64(r4, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x81, 0x0, 0x0, 0x1, 0x2, 0x3, 0x1, 0xf5, 0x40, 0x203, 0x3, 0x6, 0x38, 0x2, 0x0, 0x0, 0x81}, [{0x1, 0x7f, 0x3, 0x4, 0x20, 0x7, 0xb888, 0x5}], "6db0ce04d93d", ['\x00', '\x00', '\x00', '\x00']}, 0x47e)
write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r1, 0x0, r3, 0x0, 0x4ffde, 0x0)

06:05:10 executing program 4:
rseq(&(0x7f0000000000), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0000}]})
getresuid(&(0x7f0000000080)=<r0=>0x0, &(0x7f0000000200), &(0x7f0000000240))
statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getresgid(&(0x7f0000002880)=<r1=>0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x6000)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, r2}, 0xc)
statx(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1000, 0x8, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0, <r4=>0x0}, &(0x7f00000003c0)=0xc)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)={{}, {0x1, 0x4}, [{0x2, 0x5, 0xffffffffffffffff}, {0x2, 0x2, r0}], {0x4, 0x7}, [{0x8, 0xa, r2}, {0x8, 0x6, r1}, {0x8, 0x1, r3}, {0x8, 0x0, r4}, {0x8, 0x3, r5}], {0x10, 0x1}, {0x20, 0x7}}, 0x5c, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getgid()

06:05:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x10, 0x0)

06:05:11 executing program 4:
rseq(&(0x7f0000000000), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0000}]})
getresuid(&(0x7f0000000080)=<r0=>0x0, &(0x7f0000000200), &(0x7f0000000240))
statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getresgid(&(0x7f0000002880)=<r1=>0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x6000)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, r2}, 0xc)
statx(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1000, 0x8, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0, <r4=>0x0}, &(0x7f00000003c0)=0xc)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)={{}, {0x1, 0x4}, [{0x2, 0x5, 0xffffffffffffffff}, {0x2, 0x2, r0}], {0x4, 0x7}, [{0x8, 0xa, r2}, {0x8, 0x6, r1}, {0x8, 0x1, r3}, {0x8, 0x0, r4}, {0x8, 0x3, r5}], {0x10, 0x1}, {0x20, 0x7}}, 0x5c, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getgid()

[  462.162530][  T214] usb 3-1: new high-speed USB device number 89 using dummy_hcd
06:05:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4c01, 0x0)

06:05:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:11 executing program 4:
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x2b, 0x80000, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3401000010000507efffffff780039db17b25e78", @ANYRES32, @ANYBLOB="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"], 0x134}}, 0x0)
r1 = epoll_create(0x6)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000001c0)={0x90000011})
fgetxattr(r0, &(0x7f0000000040)=@known='security.selinux\x00', &(0x7f0000000200)=""/143, 0x8f)
epoll_pwait(r1, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)
sendmmsg$alg(r0, &(0x7f0000000140)=[{0x2a0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100)}], 0x1, 0xeeceedfe2314d318)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IMADDTIMER(r3, 0x80044940, &(0x7f0000000100)=0x32)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000180)=[{&(0x7f0000000100)="390000001300034700bb65e1c3e4ffff06000000010000004500000025000000190004000400ad000200000000000006040000000000000000", 0x39}], 0x1)
getsockname$netlink(0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f00000006c0)={0x1358, 0x0, 0x409, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xffffffff, 0x14}}}}, [@NL80211_ATTR_CSA_IES={0x12e8, 0xb9, 0x0, 0x1, [@beacon_params=[@NL80211_ATTR_IE_PROBE_RESP={0x43, 0x7f, [@link_id={0x65, 0x12, {@from_mac=@broadcast, @device_a, @device_b}}, @ht={0x2d, 0x1a, {0x8000, 0x2, 0x0, 0x0, {0x5, 0x51, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x800, 0x100, 0x40}}, @chsw_timing={0x68, 0x4, {0x83, 0x6}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x20, 0x80}}]}], @beacon_params=[@NL80211_ATTR_PROBE_RESP={0x544, 0x91, "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"}, @NL80211_ATTR_BEACON_TAIL={0x26, 0xf, [@ssid={0x0, 0x6, @default_ap_ssid}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x7, 0x72, 0x1}}, @ibss={0x6, 0x2, 0x1f}, @mesh_id={0x72, 0x6}]}, @NL80211_ATTR_IE_PROBE_RESP={0x27f, 0x7f, [@perr={0x84, 0xc9, {0x2, 0xd, [@not_ext={{}, @broadcast, 0x8, "", 0x3c}, @not_ext={{}, @broadcast, 0x0, "", 0x3b}, @ext={{}, @device_a, 0x6, @device_b, 0x1a}, @ext={{}, @broadcast, 0x20000, @device_b, 0x6}, @ext={{}, @device_b, 0x5bbe0cd3, @device_a, 0x41}, @not_ext={{}, @device_b, 0x101, "", 0x9}, @not_ext={{}, @device_b, 0x28, "", 0x10}, @not_ext={{}, @device_a, 0x8000, "", 0x2c}, @not_ext={{}, @device_a, 0x6, "", 0x37}, @ext={{}, @broadcast, 0x7fffffff, @device_a, 0x2f}, @not_ext={{}, @device_a, 0x598f035, "", 0x1f}, @not_ext={{}, @device_a, 0x1ff, "", 0x39}, @ext={{}, @device_b, 0xffffffff, @broadcast, 0xb}]}}, @channel_switch={0x25, 0x3, {0x1, 0xb9, 0x3}}, @random={0x8, 0x8d, "ff41c9825a91c30d05f19481900a0a99b706aabfe9c18fbb117950a5f2ddd04c988f38daa2b1dc8c2a2c8981541f3287833fe8e3f507e1ce1fd86fd48c5246bca8f527e6546a8d02f359b65f86d488a68442fc9a33180f256591bdffd9eed017566e53fbd7c0fee0f5535a6b560cdaca13f001b44aabd1316d0bcf859e60454ca9a5b12dc5780cc59c16741d3d"}, @fast_bss_trans={0x37, 0x11a, {0x20, 0x9, "e0c1f55ee97b0e51e623db6c6cdac2cb", "72c5f6fd769f202bb3715ca85bef83a046df6f8bd7b5bbbb564b266061155f28", "411c96b75b33f28d876dc7422865eba810eb49409ce7fa850906ce4281ab1a00", [{0x4, 0x15, "89227df211ddfe76e300f891a44452a4c6db4fdebf"}, {0x3, 0xc, "ec78ae7247e8689513aec4b6"}, {0x2, 0xa, "b3fc0f1658bf4a3970a4"}, {0x4, 0x19, "0addae625d907c3fda503ab641bfb0ad00aa6387032769defa"}, {0x3, 0x19, "5a4877bd5e1065a9c48108c0896d9d5c651cfdd509b499d49c"}, {0x4, 0xc, "5494ab8e1f2e0b521fd38a65"}, {0x4, 0x24, "29e6dd79893b9f50ea32b92a0ec04edc4fe02c69d58c1b8fe9bc39e92771a36270ffc1f6"}, {0x3, 0x10, "0309f753359572ba2fa3126fab9d2dd1"}, {0x4, 0x19, "a0355001852e58906bebf252c2adc9b2c4d7c73e3efcb43dd2"}]}}]}, @NL80211_ATTR_BEACON_HEAD={0x193, 0xe, {@with_ht={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x7f}, @device_a, @device_a, @from_mac=@broadcast, {0x5, 0x5f}}, @ver_80211n={0x0, 0xc, 0x1, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1}}, 0x6d19, @random, 0x800, @val={0x0, 0xf, @random="f9e904f2ba260f0f680403866bc2c7"}, @val={0x1, 0x3, [{0x6c, 0x1}, {0x2}, {0x6c}]}, @void, @val={0x4, 0x6, {0x1, 0x0, 0x400, 0x8000}}, @void, @void, @val={0x25, 0x3, {0x0, 0xac, 0x7f}}, @val={0x2a, 0x1, {0x1, 0x1}}, @val={0x3c, 0x4, {0x1, 0x8, 0xad, 0x7}}, @val={0x2d, 0x1a, {0x8000, 0x0, 0x1, 0x0, {0xffffffff80000000, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1}, 0x300, 0x82, 0x1f}}, @void, @val={0x71, 0x7, {0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x49}}, @val={0x76, 0x6, {0x7, 0x20, 0x25, 0x4}}, [{0xdd, 0xe7, "e9f16d27995b7657ea8c70b33caa13b8197bf2767e79128ea9ca9ce20242881a1c2c73f8f4ba88323d291bf5cbd41f92c535ba9eba973911a88755a9f87443022e6ff7242a6dc041aac88795f82c9c4c07b49ef1d0a5bb263b17898d3389d0758fbfb2c4890f191c516ac2f45d0dfea82923809c29d78aea2c5bd13bdb1e5b5a68424b2935c57743dc73219013dca4cfc3cf2d93b9f8e97ddf65e47bc1ea2a16d5401a370805dabe919e33c2030dc25387f28379900f0ecd48fe8f47468d8cec69bd2904d1ed76ec4d198676f9e5539cd2c7c655242e57505382c2a39cadbe0731ae1392210065"}, {0xdd, 0x23, "ea99eaa1696bf55f66a248fcf9f4a0eabadeeecd1e8ce5137779dec621aeea56abaee8"}]}}, @NL80211_ATTR_IE={0x6d, 0x2a, [@preq={0x82, 0x67, @not_ext={{0x1, 0x0, 0x1}, 0x7f, 0x9, 0x4, @device_b, 0x4, "", 0x9, 0x6, 0x7, [{{}, @device_b, 0x978}, {{0x1}, @device_a, 0x8}, {{0x1, 0x0, 0x1}, @broadcast, 0xfd0}, {{0x1}, @broadcast, 0x2}, {{0x1}, @device_a, 0x4}, {{}, @device_b, 0x3}, {{0x1}, @device_b, 0x7}]}}]}, @NL80211_ATTR_BEACON_HEAD={0x250, 0xe, {@wo_ht={{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1}, {0x1}, @device_b, @broadcast, @random="ffaac9e62c3d", {0x6, 0x5}}, 0x8, @default, 0x2000, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x5, [{0x24, 0x1}, {0x9, 0x1}, {0x30, 0x1}, {0x30, 0x1}, {0x60, 0x1}]}, @void, @val={0x4, 0x6, {0x8, 0x20, 0xfffe, 0x8000}}, @val={0x6, 0x2, 0x1}, @void, @val={0x25, 0x3, {0x0, 0x99, 0x1}}, @val={0x2a, 0x1, {0x1}}, @val={0x3c, 0x4, {0x0, 0x3, 0x9d, 0xff}}, @val={0x2d, 0x1a, {0x2, 0x1, 0x0, 0x0, {0x1, 0x81, 0x0, 0xca, 0x0, 0x1, 0x1, 0x1}, 0x1, 0x5, 0x9}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x0, 0xffffffffffffffff, 0x1, 0x1, 0x1, 0xff, 0x41}}, @void, [{0xdd, 0x94, "2e14e0506fe207c9ba9f0ae90474dfec153bf27b9e782357059a77ea1ca0bce6847f1dd8766bd5929ee9f246896f5c988702175fdbd269ce2f94816fe9538d2b616960dba0f8e6ddfe6508a03ae7cad9e31506cbbed4dbcbd7c1b4a7f79a63b75534ac50edf4aae28a65abd0d50fa89965caae893b93204895ed89ca5dc983202051d42fa56c25b82cefc3d74beccb644999ee13"}, {0xdd, 0xa7, "4b6f8f1b23fe527a38e21c7a7171f624f1595cf17ed9ed7b31ab8c8d48ff954c849fef1553c6a9cb8e90157747d7855054d065f48ae26482cd296e9085193db425dd40d47fba70ad36a6cabd1f784b91d52cbc535ff5307a1fc3d7d9a081430bd957836228c76e8ad232859c4031e6facab40e3ff9ab78d1a677392d28d2ae72ca548bf2cbb36ad8e6c475cd4b0b9e5e8fe0054541d049de4fd9662d370f5dbba0cc53636f3416"}, {0xdd, 0x91, "8e004c53b18a4ffe73dfb4a5f1fe287ba2ca75996a233ea25add911669d301fa713d92a1fc53fe49dc8ab89116588db1ff53c7d2fecff038243013fbbf83198fc4402a377ed81bdf636d716329c34938fff7d87599b0acd3fe0b1fbc1259678c4d3614044c3282176bb613b5937d48a02c0a4212452c6699e5e5f804ec62daba4013c78795871b087d246482d291685e8d"}]}}, @NL80211_ATTR_PROBE_RESP={0x622, 0x91, "f3d7cf095a6851b57daad678f95e8c451995ed9ab3a3365fcf530b7376560ed3de9c486e15c5fa865bea47ba64070829965a50c97ef732a62197e280a75fc303523ed5682f089b2b1c1bd05a8048d3c9bb7ba0e6e6118617d29ad6e77813668b7ce194d97a4548768541c3cf27a9f0e5c8f40703f6e35b06c89ad740d82576f732c4ec3a63ec2d3c5bf23a57a133dddead44e206f556e93dececdb0ac5545999c0c6a6584dfddc0dced7ca32a8906dda2a6bba8258570b1ca6241bfca04c08af60d356c4f15424b299db97d15c76af12dc9f450686eb3d7c9219f5e9df180944cb12aeae194bd27c4c7cf836bc27b7cc44b6bb07ad85c7a568c94f5aa8de1d089147822d06f2b2b933bde110f8931b6becca22bcd5beb2eaa49081dce745cd1b613d943f14ec8652d941c5019767b06ac55d7635e947718714a3eadd07e8a6f83fea21fa940c88471e686f67d0fc3028f8dd2039ebfc310abba2340e0fa526149d3b3511941cb851d4f21322784e4022dfdcd6c5549a09205025c207da01017348f0bb768dc815e1a308ccbe3aa3da84362c70650b0963666a83c4e8c96b8869d178f84cdedc1b5f0a37f8796954355ede0197ef369dd6433a06e727ee485dc13d999fd05aee03991cf278cd87f04b7b8e147947c319d0c67d0f7402f49b180af06db5aeda88e6aeb924baf13cde62e6ce83a3c506a7fcd1d0134ff605ad60dbfc58b27a8bc7148ce59200ce33c3bd817503ababf0502bb2b10c327ac1a5661a760b8634163d4aff21b895ce0f6a5d39d274f327bd5c8cb25d1b530a2efd009650bd616297c401b19bdb2a806522f1231ca36df38bfd6b1584c23b4a574c252400c8e67aa13db2aeb4921a2e6c9beb40a98ad5e8b4ca7c87a5e065897887221ebf274aec8a4e20640a97e0270ee32a98ce99ba3a6ebf6f36798589741efda62cc20b949f6da73480813bde44319d3443e5725fde5e64f3edfae11e718ccfe0b24073db12357f145b85fed50ed1df2e26b5459c95b4b6f5cb34f43351f3fde77d407a4fdc34f0562bb8b7661635d27ac54ed273ab04c4c5d39b952f7f46967822ac75dcf1c2e3b4cba99a46f88773878a47b7db0bd196e4bbb0018fa11b3c721e54cbc79c001503c58d49dd8ff170b743babb110d2054b9dd1916a174e619ae284b80230c7290d9d92f55521032e6c9454c0bc50fe85f696a7aea36d25e832a826b9ed173e53eb79fd265d233dd72b711ee2384bc395328563f356e02743ab74c7d3dcaead43a1d55c96ae1fdf129f2e77b355d3434fcd53507f475e70fb5db6982ef934f46f6078e9fe9ed5a704e269e0ae345809c9eb1f022b649eeea58b1d27e1a83f3fa16b6c8e00d0397bfccf2bf8e16382fac3e9f64814806b00fd353771771bb295eca9799d400b26ef4cd811ea9b0e05be69856c0af7da03081bd3c4b3e471f51881f23d00b930e99d47bf456244464138f9826efd190c13441e535c524e68736fad42f00ae28cf179166b70033cd138ab5d0db80d4024bd22a0a7aa7b06f69ec9507037302d308de5348ff7dacef4629b36e61a9ed7f4c57bd92c2c69eff8650d6fdeb4ffd7bb969951c04a085164ac2c311f168ab05e093d9438d2d1c74579bf98453490fd4047e6dd17389c17065884661ed7a711d7510fbf2bf43a5dd98f5f835ad70113275da0a00d8f70df0e21e4cb20c8b50da3344a696722766f15de6bd4e4d65823de4b58ad6985b5d540338bd779e5ba846977c1fe1ebb1e6d803c37ecda3aafc626f14933a6b2110d2ab29e9cd01111f5d75d16c9afa442a3e504d031b18d8fb8ec2d1ceb60121bd9d257eb67b0d1db12a059b69b42d35c900569a93a3f4abeea79f9313700ceb0bc17c3cecefa064f5e179c21479e3f87b83aa487b0cfb94373b1881a5a4cfc97a241b6eb15bda9e0832524e74cb6bacf289e0080c683a0b443378d4cb451d097e790a57e6bab89c508d1cd4a5083b596c4db24ad7c6d67eb28994d204918747e92e8278f0b3616c60b049ea971bfabf0ae57cd718203a1dd0c32da8f6c5380c4f6aec815462a0285b4705d35d35834396de63c85d0451dff1220e10b75ea7614aebad973ae6a58c9bf14058f041231599273ed872dacc67c68a4388a511c966e7440d37bf5402ab9f724a7ec96ea4ee11a321f220f15ba0fa0cb7e520933904276fbeedecb40b3a8e447cad2a80"}], @NL80211_ATTR_CSA_C_OFF_BEACON={0xa, 0xba, [0x6, 0x3ff, 0x20]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0x8, 0xbb, [0xfff8, 0x2]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0x8, 0xbb, [0x1f, 0x7]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0x16, 0xbb, [0x0, 0x401, 0x1ff, 0x3, 0x2, 0x9, 0x6, 0x0, 0x977]}, @NL80211_ATTR_CSA_C_OFF_BEACON={0x6, 0xba, [0x7]}]}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x92}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xc6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2a}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7056}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xe}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}], @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0xfd}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}]}, 0x1358}}, 0x8000)

[  462.722686][  T214] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  462.732035][  T214] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.740492][  T214] usb 3-1: Product: syz
[  462.744769][  T214] usb 3-1: Manufacturer: syz
[  462.749769][  T214] usb 3-1: SerialNumber: syz
[  462.832740][T15092] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
06:05:12 executing program 5:
r0 = socket(0x40000000002, 0x3, 0x2)
r1 = socket(0x40000000002, 0x3, 0x80000000002)
socket(0x2c, 0x4, 0x6)
recvmmsg(0xffffffffffffffff, &(0x7f0000001580)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/14, 0xe}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=""/4096, 0x1000}}], 0x2, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='veth1_virt_wifi\x00', 0x10)
sendto$unix(r1, 0x0, 0x0, 0x0, &(0x7f0000000180)=@abs={0x0, 0x0, 0x10000e0}, 0x6e)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000040)=0x9, 0x4)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x100, 0x4)
recvmmsg(r0, &(0x7f0000000240)=[{{0x0, 0xfffffffffffffea7, 0x0, 0x0, 0x0, 0xfffffffffffffec8}}], 0x4000000000002c5, 0x2, 0x0)

06:05:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x541b, 0x0)

[  462.923319][  T214] usb 3-1: config 0 descriptor??
[  462.996921][T15094] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
06:05:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  463.101867][T15099] raw_sendmsg: syz-executor.5 forgot to set AF_INET. Fix it!
[  463.193342][  T214] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  463.215897][  T214] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  463.306042][  T214] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  463.313666][  T214] usb 3-1: media controller created
[  463.405426][  T214] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  464.552942][  T214] stb0899_attach: Driver disabled by Kconfig
[  464.559314][  T214] az6027: no front-end attached
[  464.559314][  T214] 
[  464.589815][  T214] az6027: usb out operation failed. (-71)
[  464.596777][  T214] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  464.605950][  T214] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input46
[  464.649685][  T214] dvb-usb: schedule remote query interval to 400 msecs.
[  464.656806][  T214] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  464.695798][  T214] usb 3-1: USB disconnect, device number 89
[  464.765213][  T214] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:14 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:14 executing program 4:
r0 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'geneve1\x00', @remote})
r1 = socket$kcm(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x2d, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000007c0)={'geneve1\x00', @link_local})

06:05:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5421, 0x0)

06:05:14 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x48, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6}, @IFLA_GRE_ENCAP_SPORT={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x48}}, 0x0)

06:05:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 1)

[  465.266281][T15149] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.5'.
[  465.317224][T15154] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.326667][T15154] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.336249][T15154] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.345482][T15154] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.399252][T15159] FAULT_INJECTION: forcing a failure.
[  465.399252][T15159] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  465.414130][T15159] CPU: 0 PID: 15159 Comm: syz-executor.0 Not tainted 5.15.0-rc7-syzkaller #0
[  465.423130][T15159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  465.433301][T15159] Call Trace:
[  465.436666][T15159]  dump_stack_lvl+0x1ff/0x28e
[  465.441519][T15159]  dump_stack+0x25/0x28
[  465.446708][T15159]  should_fail+0x8bc/0x9c0
[  465.451288][T15159]  should_fail_usercopy+0x39/0x40
[  465.456470][T15159]  _copy_to_user+0x61/0x270
[  465.461256][T15159]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  465.467231][T15159]  simple_read_from_buffer+0x2ee/0x490
[  465.472959][T15159]  proc_fail_nth_read+0x320/0x3f0
[  465.478248][T15159]  ? proc_fault_inject_write+0x5d0/0x5d0
[  465.484057][T15159]  vfs_read+0x6c8/0x1980
[  465.488563][T15159]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  465.495029][T15159]  ? kmsan_get_metadata+0x11b/0x180
[  465.500392][T15159]  ksys_read+0x28c/0x520
[  465.504822][T15159]  __x64_sys_read+0xdb/0x120
[  465.509603][T15159]  do_syscall_64+0x54/0xd0
[  465.514174][T15159]  ? exc_page_fault+0x76/0x120
[  465.519107][T15159]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  465.525277][T15159] RIP: 0033:0x7fb28c59469c
[  465.529816][T15159] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
06:05:14 executing program 5:
r0 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x40046109, &(0x7f0000000080)={0x32})
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f00000001c0)={0xe8a, 0x3, 0x9, 0x9})
ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000200)={0x0, 0x7, @status={[0x7fff, 0x3279, 0x1, 0x353, 0x1, 0x3]}, [0xfffffffffffffff9, 0x5, 0x2, 0x3, 0x9, 0x1f, 0x40, 0x4, 0x7ff, 0x100000000, 0x2, 0x1, 0x0, 0x1, 0x400, 0x3, 0x1, 0xfff, 0x8e, 0x1000, 0x0, 0x10000, 0x9, 0x54c, 0x7, 0x2, 0x1, 0x85b6, 0x1000, 0x800, 0x1, 0xd300, 0x3bb, 0xc60, 0x2, 0x5, 0x0, 0x4, 0x8001, 0x3, 0xfffffffffffffff7, 0x1, 0x11d6000000000, 0x6, 0x5, 0x1, 0x9, 0x5, 0x7, 0x10001, 0x101, 0x5877, 0x84, 0x6, 0x9, 0x8000, 0x1, 0x4, 0xfffffffffffffffb, 0x7f, 0x9770, 0xffffffffffff0000, 0x200000002, 0x2]})
close(r0)
writev(r0, &(0x7f0000000040)=[{&(0x7f00000000c0)="8eb307d4c40e297b918641cab099d84ebe8970c52917c2e4d4b85919c18b040f0f5e9e1a5eebac5e5c4d31d69beb1774d250bbdf2d09536f6556b9415342d65f368a181c9bb952c4cca745f16f59dbd018d5c8cdb2572a75500c97a581f811d4defe6e", 0x63}, {&(0x7f0000000140)="7e7f709d2a0eb989ad89f9b998979e5e354273befee2b65f0a16694962cc03b1a729839591fae2e50ea71287d989e402e13f8b67b89850f31fb395556625c66fa0338ab3be9f21eaa060260b67b62ff9dd5e2dcfcbb6fc425c0d9c5ea91bb6665a", 0x61}], 0x2)

[  465.549577][T15159] RSP: 002b:00007fb289b36170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  465.558240][T15159] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fb28c59469c
[  465.566340][T15159] RDX: 000000000000000f RSI: 00007fb289b361e0 RDI: 0000000000000004
[  465.574438][T15159] RBP: 00007fb289b361d0 R08: 0000000000000000 R09: 0000000000000000
[  465.582532][T15159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.590712][T15159] R13: 00007fb28cc28b2f R14: 00007fb289b36300 R15: 0000000000022000
06:05:15 executing program 5:
r0 = syz_io_uring_setup(0x1375, &(0x7f0000000080)={0x0, 0x8b4b, 0x22, 0x1}, &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x4}, 0x0, {0x0, r3}}, 0x0)
add_key$user(&(0x7f00000001c0), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
io_uring_enter(r0, 0x688c, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r0, @ANYBLOB="00000000000000002e2f66696c65300041a0a204efc2ff4394cf63ea16c117e3c586a5a181adfd5b168d863a3e98399c8fc509a4db58aba4dd67bdb4708fc6fb12bc3e5c48c7f29030f33e4b92ef867887c03c43009295910124a3705217335d0940643cfd792c396707173e8c245d7e5152e1c48843475cd85e08818517798aff417b"])
io_uring_enter(r4, 0x3510, 0xe5fc, 0x3, &(0x7f0000000180)={[0x6]}, 0x8)

06:05:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5450, 0x0)

06:05:15 executing program 4:
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f00000000c0)={0x2, @raw_data="05d76308eae9d188f7f609f0d4a80795a8d1da79bc088adbc2cbf9a9e2abf8aac839d3a939514103adac36182d1f9bf2de0f37b334dbf79eec9147f1301494df45b23b987b2ac7ec15036c429bf4cc7bb1483fe2b8271e5684f2d1c8537416477ee69a7f0163ac48b35cd2c1cc7459922f9692b704689f438b308f591b9880850e5a15f2e63058c20a4f152da07e36dc022ac0e957a32bbb42560c2b78eeb0cd1f867aa5ba79db8b75f2581a775a7dfa9065a98a07c92423d5ca02d6c8a5737e2502b2e49103b371"})
ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f0000000280))

[  465.968727][  T214] usb 3-1: new high-speed USB device number 90 using dummy_hcd
06:05:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:15 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r2, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r4 = open(&(0x7f0000000140)='./file0\x00', 0x200, 0x50)
getsockname$packet(r4, &(0x7f0000005400)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0xfffffffffffffff9)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x10, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x2}]}}]}, 0x40}}, 0x0)

06:05:15 executing program 4:
syz_usb_connect(0x0, 0x24, &(0x7f0000000880)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000090018105e04da0500000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x0, 0x0, 0x0, '\b\x00', "006cf200"}}, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000d80)={0x2c, &(0x7f0000000bc0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000400000068"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000140)={0x2c, &(0x7f0000000280)={0x0, 0x0, 0x4, '\t\x00\x00\x00'}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x673, &(0x7f0000000dc0)={{0x12, 0x1, 0x250, 0x94, 0xc7, 0xc5, 0xff, 0x572, 0x58a0, 0xb4a3, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x661, 0x3, 0xb3, 0x5, 0x90, 0x7d, [{{0x9, 0x4, 0xca, 0xc8, 0xd, 0xc, 0xa4, 0x4e, 0x6, [@uac_control={{0xa, 0x24, 0x1, 0xd3, 0x8}, [@processing_unit={0x9, 0x24, 0x7, 0x4, 0x0, 0x7f, '5J'}, @feature_unit={0x13, 0x24, 0x6, 0x4, 0x4, 0x6, [0x1, 0x3, 0x3, 0x6, 0x1, 0x7], 0x9}, @output_terminal={0x9, 0x24, 0x3, 0x5, 0x301, 0x3, 0x5, 0x1}]}], [{{0x9, 0x5, 0x1, 0x0, 0x40, 0x1, 0x4, 0xc5, [@generic={0x2e, 0x21, "fdfe17eff8471c9eba35ad414c040957e8dfb37c62053bdec87a3583575045f70fe6a04c1732df8396d378cb"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x20, 0xffff}]}}, {{0x9, 0x5, 0x9, 0x0, 0x400, 0xff, 0xff, 0x1f, [@generic={0x56, 0x21, "4220bc5eb00ea6ace83f960f7c1c60d578767d412020acdadfbc48465701ce735ab68078f1443dd4026bf80f012537549d84ca6b6b8b5ab05dc8828d6e05f25e2daf4e71a5c203c6124b0d867e0ed699bce15bc4"}]}}, {{0x9, 0x5, 0x7, 0x0, 0x20, 0xac, 0xe1, 0x8}}, {{0x9, 0x5, 0x6, 0x8, 0x3df, 0x0, 0x1f, 0x7, [@generic={0x58, 0x21, "04581c922e11f30a5b0368913a3160539b4f34eb81ad0598e91ab06b3cb75f10e7982f148fab52abcff0d4f3e80c3d0fd6b5ad990d09037b08c2841dbc9336929cf9afe5f639f0eb1fe178f676db9df421c4592f70a1"}]}}, {{0x9, 0x5, 0xd, 0x10, 0x40, 0x6, 0x2, 0x20, [@generic={0xf1, 0x4, "78220f6334374ee9eb0cfea7ba1197ae8e2e5c37c45cd6323bfbe62528d56dc0a18521eba099a3f7b40033ac64aa981f37a4d70f328b4378c90b808ff80547e5fe133a57fb675922fdb8c95c74321031ef06a4ca96e55d11960a061e9ed5d8eff9e03aa24992ca6995b1b9ec97a8de6ea4e27cb9b4d53c02beb20713e510fa2bb11123b9bfa629e346fff11643cde099caf802d3407f9a99e58de5e412750b4be6bdbb605a01cf58e2200ea3a088f81eb200da732c2af2015d715d61dab0a866c9ec09535a207db54148d89a4636fb461cbf8334ac8b7eae3ab3e5933886f5f576ca58a9f23ea330ff8cd364f4f91b"}]}}, {{0x9, 0x5, 0x3, 0x0, 0x20, 0x7f, 0x9, 0x5}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0x81, 0x1, 0x3f}}, {{0x9, 0x5, 0xe, 0x1, 0x10, 0x20, 0x81, 0x9, [@generic={0xbb, 0x5, "0a4013920efb4a5c72d844e709e260da9e2f4e33001d45464706a6f1315082ac1303eb512f58c916ac224539378f319058620b3e0a2d1fa00bfff941ef709176e568e215f3f570e6f8cffd217d993942971e8fc9c57aeea9b90129923196ac101abfb34d6080f1c1e194e7c36a0610ec6971f53e24692f0186384af9da760fef3b90d6cacde1f68742e1f85d08058a0a45daf264eb0d816a8ce235d3c6c2fe1da7106bd350313b010df57814fc38e287d4a530fa15dfa25d49"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x1, 0x6}]}}, {{0x9, 0x5, 0x8, 0x2, 0x40, 0x9, 0x1, 0x1f}}, {{0x9, 0x5, 0xd, 0x10, 0x20, 0x7, 0x1, 0x4, [@generic={0x2f, 0x36, "c9327ac909f482fa7d95e34f67ad81f0df663d4bc941820def8bccf7d2bf51cf5d912158738e8a99e97b60c408"}]}}, {{0x9, 0x5, 0xc, 0x2, 0x10, 0x6, 0x8, 0x3}}, {{0x9, 0x5, 0x7, 0x0, 0x20, 0x80, 0x3, 0xa0}}, {{0x9, 0x5, 0x1, 0x10, 0x10, 0x3, 0x1, 0xed}}]}}, {{0x9, 0x4, 0xd2, 0xad, 0x3, 0xdd, 0x48, 0x6d, 0x9, [@generic={0x5, 0x1, "2910a8"}, @hid_hid={0x9, 0x21, 0x9, 0x81, 0x1, {0x22, 0xb6f}}], [{{0x9, 0x5, 0xf, 0x4, 0x40, 0x1, 0x81, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x40}, @generic={0x60, 0x24, "3ce82ca09bcec8c5850941a8444a474955aa0ac95575a8acbea9536ac6c9e7d04fe711dad776b49c2a1678ff14f119a23dcf24c566036552fe6dca8e30dde9222e3feca16eebc4987cdb54c1f3b361f4f6bde40c30e8ca475b7ab91b9f9d"}]}}, {{0x9, 0x5, 0xa, 0x0, 0x3ff, 0x4, 0x9, 0x5}}, {{0x9, 0x5, 0x7, 0x4, 0x3ff, 0x4, 0x80, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x182, 0x3f, 0x2}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x6, 0x100}]}}]}}, {{0x9, 0x4, 0x0, 0x50, 0x2, 0xae, 0x61, 0x94, 0x1, [@cdc_ecm={{0x9, 0x24, 0x6, 0x0, 0x0, "a388bf5c"}, {0x5, 0x24, 0x0, 0xd4}, {0xd, 0x24, 0xf, 0x1, 0x1, 0x7, 0x2, 0xfd}}, @cdc_ecm={{0xb, 0x24, 0x6, 0x0, 0x0, "bd439e6e018c"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x101, 0x3, 0x0, 0x84}, [@mbim={0xc, 0x24, 0x1b, 0x3f1, 0x3, 0x4, 0x8, 0x1f, 0x20}, @mdlm_detail={0xe0, 0x24, 0x13, 0x4, "ead4be14f4490ec68ae3206fa1538ca84d05ae6e48a8a19b238e97a1ac594d154695ba8631ec10ee05788c937f8ec44e32f601420c86383998ccd9c743b77816deab9b61e0b8d7c0da79e31adf9e87ea512f416c0feee7a3465aba0c13b29e9a79e69429c5a28bf5ebda47acbb02f792f758057ced6756d5056e0b65321db8f75eaaeb329ef8bf90b2974bb119dc962766294b42c4222ffac68b1e4d31e553492bf0f84690ff92cb14e6846d1304f067f10df7509d4443f956dd40c4fd5760842b242ba420c02535f3f3f1d95d2a9d1df318c9725cc28cc8efc65eee"}, @mdlm={0x15, 0x24, 0x12, 0x40}, @dmm={0x7, 0x24, 0x14, 0x4, 0x6}]}], [{{0x9, 0x5, 0xd, 0x0, 0x200, 0x61, 0xb8, 0x3}}, {{0x9, 0x5, 0x0, 0x3, 0x400, 0x1, 0x7, 0x7, [@generic={0xe5, 0x22, "6b03a1800c5ea15681d421c9dcee4130aaa53c4e46e81be449555cfefecf3f19422442a40f8984840ff7c3614964a8b25c79dbac44e2a36106accbaf764285536e2c57b519848699b70708ac1138d300cdb9de1b05406beaf4855aa5d82fc85fb318142c1309b32af796eeaa8bf4dc487761ce9613e86bccd64731404313370250fe75d5ee13482149fc6d2d079a1092affc5b515a6718e88b80d4a89c2c926ff402caecadb18ddd88ccb172b9c14c2367136013c277eae649431eff19328d2a632850ec1d96121df5d5a2abc113c8e8ea3b793cc62d0bdc4a2c7598d8ec08b20bd162"}]}}]}}]}}]}}, &(0x7f0000000240)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x110, 0x0, 0x9, 0xc1, 0x40, 0x7}, 0x15, &(0x7f0000000080)={0x5, 0xf, 0x15, 0x1, [@ssp_cap={0x10, 0x10, 0xa, 0x40, 0x1, 0x8000, 0xff00, 0x1, [0xffc000]}]}, 0x3, [{0x2b, &(0x7f0000000100)=@string={0x2b, 0x3, "f1222d1e267f9f737fd7c9f7bfc874e96b01b871678ea5d37ad062b3fed87ff85ab4798d8bfa4f26e9"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x421}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x44f}}]})
syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000440)={0x14, &(0x7f0000000300)={0x40, 0x22, 0x8d, {0x8d, 0xb, "5eaf28ec6074d7e050869c197f49be6bda29ba8f798a5f043b0d16430aa91e6663727eac5440e4642712b0c1e9892f2e26cdd9522d863416cb4f1f448353d99dea601390fd87f939e78632da41bd950a6d100dfa3c869bd6b7070c76515adaf261168ff2634b1b7afe009b6dbddbecf2d0980bbee84524aca2ec0f6c2ad959a2871dc3057ee8258b7e4cae"}}, &(0x7f0000000400)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000700)={0x44, &(0x7f0000000480)={0x0, 0xc, 0x62, "ae01cd3ca8586aec2c590d555731526ac9a0ae06475d86665be241057e4b10f63647cb6ee96f7ad56307006b31be382c96477f2b1cf6beb9b5a41a6e06484df8f963c519bacc37572ff3ab0ff7e07be0fe06802903ce7fa39515f8a091dff0b091f1"}, &(0x7f0000000500)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000540)={0x0, 0x8, 0x1, 0x8}, &(0x7f00000005c0)={0x20, 0x80, 0x1c, {0x0, 0xffff, 0x9, 0x1a53, 0x0, 0xb6, 0x6, 0x1, 0x640, 0x7, 0xff, 0x1}}, &(0x7f0000000600)={0x20, 0x85, 0x4, 0x5}, &(0x7f0000000640)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000680)={0x20, 0x87, 0x2, 0xfff9}, &(0x7f00000006c0)={0x20, 0x89, 0x2, 0x1}})
syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x4, @string={0x4, 0x3, "53ba"}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000900)={0x24, &(0x7f0000000780)={0x40, 0x24, 0x74, {0x74, 0x7, "dbbbd485fbae732f88ed18850503c6615593ee26d313afea98239a79d8c5fc06c8e12a429a7c74cb822e10954840a2baa4ba7df018630c6deeb484c44776c035c22e1ca33387419ad2f3e3d2e8e64b2bedc6629b17ad951ada009a93bd9fb71560472bb331d12ac61b8bcee56b9b73d23396"}}, &(0x7f0000000800)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1828}}, &(0x7f0000000840)={0x0, 0x22, 0x1, {[@global=@item_012={0x0, 0x1, 0x1}]}}, &(0x7f00000008c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x9, 0x4, 0x1, {0x22, 0xbfd}}}}, &(0x7f0000000b80)={0x2c, &(0x7f0000000940)={0x0, 0x14, 0xd9, "af111584b43e87fe0c6a25868ae2d37f9ee43e0a9fe94eec592e1732b0f66663a479534a17bde9fa5f44cb3db75637a022de1b35cac351558a890cb389d22c0b67590ce8659df96e023993d34355d494d1f0d99b719220c3e50a3f49b5bfc649ac1582b40d010b2fc53e7fa8319bd8dea0b0c26824ecadcc4d9770cafddc366dcf6a16d5dc66c836522bd28fa461f0223303d133ace13c33dd0a6e892242a0346990ceceed04e85833e486e2600dac4189d348b1cce1843c38136689352f7fdef6bcf7340f43cdb7d3aa741c580a8ec4065ffe8ca48911bebc"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0x88}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0xb4}, &(0x7f0000000ac0)={0x20, 0x1, 0x74, "e6a59f729cb179abeafcb26cd8fc64a240b645b79ca05449c5452ee16159d11a48bf8906410930c436687aed692b06b3e6a2ff417954023f7a2edc0abf08e79befe7ab589c20b274b7ddbc218ed0d7beb4a91d84f0e372e337d0e095d1293e4ddc6aa61bab97728b2a6c39d44ae81bc8a392ea3b"}, &(0x7f0000000b40)={0x20, 0x3, 0x1, 0x5}})

[  466.552090][  T214] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  466.561723][  T214] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.570111][  T214] usb 3-1: Product: syz
[  466.574386][  T214] usb 3-1: Manufacturer: syz
[  466.579272][  T214] usb 3-1: SerialNumber: syz
[  466.708772][  T214] usb 3-1: config 0 descriptor??
[  466.928798][   T18] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  466.992249][  T214] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  467.014697][  T214] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  467.052703][  T214] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  467.061362][  T214] usb 3-1: media controller created
[  467.103811][  T214] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  467.169592][   T18] usb 5-1: Using ep0 maxpacket: 32
[  467.452673][   T18] usb 5-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc
[  467.462068][   T18] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.471169][   T18] usb 5-1: Product: syz
[  467.475455][   T18] usb 5-1: Manufacturer: syz
[  467.480479][   T18] usb 5-1: SerialNumber: syz
[  467.544946][   T18] usb 5-1: config 0 descriptor??
[  467.805013][T15201] udc-core: couldn't find an available UDC or it's busy
[  467.812316][T15201] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  467.978680][   T18] usb 5-1: probing VID:PID(0424:012C)   
[  467.986001][   T18] usb 5-1: Could not find two sets of bulk-in/out endpoint pairs
[  468.029686][   T18] vub300: probe of 5-1:0.0 failed with error -22
[  468.044527][   T18] usb 5-1: USB disconnect, device number 40
[  468.188479][  T214] stb0899_attach: Driver disabled by Kconfig
[  468.194683][  T214] az6027: no front-end attached
[  468.194683][  T214] 
[  468.218702][  T214] az6027: usb out operation failed. (-71)
[  468.224646][  T214] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  468.233879][  T214] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input47
[  468.278896][  T214] dvb-usb: schedule remote query interval to 400 msecs.
[  468.287244][  T214] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  468.321715][  T214] usb 3-1: USB disconnect, device number 90
[  468.634081][  T214] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  468.644573][ T8705] usb 5-1: new high-speed USB device number 41 using dummy_hcd
06:05:18 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5451, 0x0)

06:05:18 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @private=0xa010102}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x110)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000000)={@multicast2, @loopback}, 0xc)
close(r2)
setsockopt$inet_group_source_req(r2, 0x0, 0x1, &(0x7f00000002c0)={0x40, {{0x2, 0x4e20, @remote}}, {{0x2, 0x4e24, @local}}}, 0x108)
dup3(r1, r0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000000)={@multicast2, @loopback}, 0xc)
close(r3)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000040)={0x4, {{0x2, 0x4e24, @private=0xa010101}}}, 0x88)

06:05:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
preadv(r2, &(0x7f00000013c0)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/134, 0x86}, {&(0x7f0000001280)=""/76, 0x4c}, {&(0x7f00000000c0)=""/41, 0x29}, {&(0x7f0000001300)=""/21, 0x15}, {&(0x7f0000001340)=""/91, 0x5b}], 0x7, 0x80000001, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x0, 0x3000, 0x2000, &(0x7f0000fed000/0x2000)=nil})
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  468.878737][ T8705] usb 5-1: Using ep0 maxpacket: 32
[  469.159500][ T8705] usb 5-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc
[  469.169177][ T8705] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.177316][ T8705] usb 5-1: Product: syz
[  469.181903][ T8705] usb 5-1: Manufacturer: syz
[  469.186615][ T8705] usb 5-1: SerialNumber: syz
[  469.275603][T15256] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:18 executing program 5:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/mnt\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000002080)='net/ip_vs\x00')
setns(0xffffffffffffffff, 0x80)
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000000)={{}, {@val, @max}})
unshare(0x2020000)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0xb}, 0x25f5, 0x0, 0x7, 0x0, 0x1, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x9}}, './file0\x00'})
r2 = open(&(0x7f0000000080)='.\x00', 0x0, 0x0)
getdents(r2, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc)
setns(r0, 0x0)
r3 = openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x7040, 0x0)
unshare(0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f0000000900)={0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="2011a8000000a811d24fed0ee7b0b0c9d9e2ea5e7ef1f0d210d450ac1c75e14456b2f1d418358d53184d3d2af514750f50618bc707132631d42bbccdffe73d092ab5196b77ff78c84e3de60217b20bdff22e2476e78fbab7ae8fb68dbb1b5f9ecf50bbce600e8d8d2e2a3a30e1c1f0c7de422a17e6b65ec76143f6a72e2444923d0cf2b6b87caa91ee2da40a6e70d5523205ccbed6e8e1e881d31da0924ba371b5172d90bc3baa2d08ea2e5dc6f4554d94b6dd84c155630b261df3dd81fef4bf478b1a1dd0a279a10c8d1d2949380ed511667f146e085aa92450d502542b41897d"], &(0x7f00000008c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000b40)={0x44, &(0x7f0000000940)={0x0, 0x1, 0x1b, "46d3643b886e0e0fdf8b837745ac487438a3af9866d626afdce2e8"}, &(0x7f0000000980)={0x0, 0xa, 0x1, 0x9}, &(0x7f00000009c0)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000a00)={0x20, 0x80, 0x1c, {0x8, 0x101, 0x7, 0xff, 0x1000, 0x8000, 0x9, 0xe7a, 0x800, 0xe0db, 0x6, 0xff}}, &(0x7f0000000a40)={0x20, 0x85, 0x4, 0x8}, &(0x7f0000000a80)={0x20, 0x83, 0x2}, &(0x7f0000000ac0)={0x20, 0x87, 0x2, 0xa7b}, &(0x7f0000000b00)={0x20, 0x89, 0x2}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000440)={'wg1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)=@newlink={0x20, 0x10, 0x300, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x48814, 0x4000}}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x8000000)
clone(0x7022413a, 0x0, 0x0, 0x0, 0x0)

[  469.407680][ T8705] usb 5-1: config 0 descriptor??
06:05:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5452, 0x0)

[  469.588858][  T214] usb 3-1: new high-speed USB device number 91 using dummy_hcd
06:05:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SMI(r3, 0xaeb7)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

06:05:19 executing program 4:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040))
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKMODE={0x5, 0x11, 0x3}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x38}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r3, {0x1}}, './file0\x00'})
tee(r5, r0, 0x5, 0x1)

[  470.249536][  T214] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  470.258996][  T214] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.267142][  T214] usb 3-1: Product: syz
[  470.271741][  T214] usb 3-1: Manufacturer: syz
[  470.276438][  T214] usb 3-1: SerialNumber: syz
[  470.324585][ T8705] usb 5-1: probing VID:PID(0424:012C)   
[  470.332768][ T8705] usb 5-1: Could not find two sets of bulk-in/out endpoint pairs
[  470.496825][ T8705] vub300: probe of 5-1:0.0 failed with error -22
[  470.618530][  T214] usb 3-1: config 0 descriptor??
06:05:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5460, 0x0)

06:05:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00000001c0))
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
fcntl$setpipe(r2, 0x407, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  470.878855][  T214] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  470.899676][  T214] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  470.936617][ T8705] usb 5-1: USB disconnect, device number 41
[  470.942043][  T214] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  470.951228][  T214] usb 3-1: media controller created
[  471.138451][  T214] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5501, 0x0)

06:05:21 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={r1, 0x1, 0x6}, 0x10)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="adfda888000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4, @ANYBLOB="0a000100aaaaaaaaaa00000067651172a3de6637d89ff53427d13700020df57ce4be9d2277a9bf428256d884b1a14b317eaa1a7c7dbcec1e2caac95a2dd91edd6db9b135e4b9a749cbf31baf7e0e8c32d18d39ff4d90597f178d6d728f2141f8cba6ffc754861bf00b4a6d2f3f3db6bb91bc9d75c4bd2ee07443d00a01e02302605d8494dde84fabc34065f6061dc08d2055d0bca060d5fa8a36d75e5ad5caef47417629454434dddf2fa3069d2b44ce075563ddb7020ad2abe93f47024ca5d3a3dd3765e259e997f6226f5f179196da563f"], 0x58}}, 0x0)

[  472.320355][  T214] stb0899_attach: Driver disabled by Kconfig
[  472.326631][  T214] az6027: no front-end attached
[  472.326631][  T214] 
[  472.431159][  T214] az6027: usb out operation failed. (-71)
[  472.437209][  T214] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  472.446861][  T214] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input48
[  472.656732][  T214] dvb-usb: schedule remote query interval to 400 msecs.
[  472.663998][  T214] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  472.706314][  T214] usb 3-1: USB disconnect, device number 91
[  472.834100][  T214] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  472.847373][T15349] device dummy0 entered promiscuous mode
[  472.866379][T15351] device vlan2 entered promiscuous mode
06:05:22 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

06:05:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x5509, 0x0)

[  473.396632][T15387] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x6364, 0x0)

[  473.480107][T15348] device dummy0 left promiscuous mode
[  473.491965][T15349] device dummy0 entered promiscuous mode
[  473.511390][T15351] device vlan2 entered promiscuous mode
[  473.641325][    T5] usb 3-1: new high-speed USB device number 92 using dummy_hcd
[  473.863665][T15348] device dummy0 left promiscuous mode
[  474.209351][    T5] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  474.218936][    T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.227424][    T5] usb 3-1: Product: syz
[  474.232088][    T5] usb 3-1: Manufacturer: syz
[  474.236843][    T5] usb 3-1: SerialNumber: syz
[  474.298477][    T5] usb 3-1: config 0 descriptor??
[  474.579318][    T5] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  474.623469][    T5] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  474.666774][    T5] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  474.674524][    T5] usb 3-1: media controller created
[  474.759663][    T5] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  475.968419][    T5] stb0899_attach: Driver disabled by Kconfig
[  475.974689][    T5] az6027: no front-end attached
[  475.974689][    T5] 
[  476.085611][    T5] az6027: usb out operation failed. (-71)
[  476.092045][    T5] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  476.101133][    T5] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input49
[  476.326184][    T5] dvb-usb: schedule remote query interval to 400 msecs.
[  476.334024][    T5] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  476.476316][    T5] usb 3-1: USB disconnect, device number 92
[  476.610267][    T5] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:31 executing program 5:
unshare(0x28000400)
unshare(0x20000000)
r0 = mq_open(&(0x7f0000000040)='m$\x00\xdc\xb7\xb8\xd0>,\xb0\x13\x8b3z>K\x84\x05\x00\x00\x00\x9c\x81\xed\xc2\x00', 0x6e93ebbbcc0884ee, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x40, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x884, 0x0)
unshare(0x1000)
unshare(0x10000)
unshare(0x10400)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
r1 = dup3(r0, r0, 0x80000)
clock_gettime(0x0, &(0x7f0000000200)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f0000000140)="b1c2e4f8c4f57d5aa9af9b1f94860732b9ecfabb9e443a50d25e6475e11d38eaf403e5adccdf77003ca47b12c5164bf1354ba3be11cf3ee76a052c13158575e2e75690ed1f5d9e6bd4c9069ff18d1ff738fcc10f582019c6e44475b1c86a386dafa5640133c5d80594f942978220364673ea60f78cc10b49367f4f8ebc34ecb8f9b266e3e6d0051c0e2d0ad27680417faf490c4c4cebc7f1c40723", 0x9b, 0x1ff, &(0x7f0000000240)={r2, r3+10000000})
r4 = mq_open(&(0x7f00000000c0)='\x00', 0x80, 0x11, &(0x7f0000000100)={0x7, 0x800, 0x4, 0x7f})
mq_timedsend(r0, 0x0, 0x0, 0x4, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x3, 0x0)
r5 = socket(0x22, 0x1, 0x4ea2)
fcntl$getownex(r5, 0x10, &(0x7f00000002c0))
r6 = syz_open_dev$vcsu(&(0x7f0000000000), 0x32, 0x14000)
signalfd(r4, &(0x7f0000000280)={[0x10000]}, 0x8)
mq_getsetattr(r6, &(0x7f0000000080)={0x5, 0x401, 0x5, 0x9bb9}, 0x0)

06:05:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = fsmount(0xffffffffffffffff, 0x0, 0xa)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

06:05:31 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={r1, 0x1, 0x6}, 0x10)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="adfda888000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4, @ANYBLOB="0a000100aaaaaaaaaa00000067651172a3de6637d89ff53427d13700020df57ce4be9d2277a9bf428256d884b1a14b317eaa1a7c7dbcec1e2caac95a2dd91edd6db9b135e4b9a749cbf31baf7e0e8c32d18d39ff4d90597f178d6d728f2141f8cba6ffc754861bf00b4a6d2f3f3db6bb91bc9d75c4bd2ee07443d00a01e02302605d8494dde84fabc34065f6061dc08d2055d0bca060d5fa8a36d75e5ad5caef47417629454434dddf2fa3069d2b44ce075563ddb7020ad2abe93f47024ca5d3a3dd3765e259e997f6226f5f179196da563f"], 0x58}}, 0x0)

06:05:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8913, 0x0)

06:05:31 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  482.771663][T15455] device dummy0 entered promiscuous mode
[  482.818477][T15455] device vlan2 entered promiscuous mode
[  483.038420][  T214] usb 3-1: new high-speed USB device number 93 using dummy_hcd
06:05:32 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000014c0)={0x1040, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x1014, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}]}, 0x1040}}, 0x0)
r2 = signalfd(r0, &(0x7f0000000000)={[0xfffe00000]}, 0x8)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000002500)=@newchain={0x1148, 0x64, 0x20, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7, 0x6}, {0xffff, 0xf}, {0xfff1, 0x4}}, [@filter_kind_options=@f_rsvp={{0x9}, {0x10c0, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0x3, 0x6}}, @TCA_RSVP_CLASSID={0x8, 0x1, {0xfff2, 0x2}}, @TCA_RSVP_POLICE={0x1074, 0x5, [@TCA_POLICE_RATE={0x404, 0x2, [0x1000, 0x401, 0xcde, 0x7, 0x4, 0xfffff6b6, 0x4, 0x7fff, 0x2, 0xfffffffc, 0x80000000, 0x7, 0x8, 0x80000001, 0x6, 0x10001, 0x1ff, 0x5, 0xbcda, 0xfffff323, 0x7, 0x80, 0x5, 0x9, 0x5, 0xffffffff, 0x4, 0xdb17, 0x6, 0x6, 0x8, 0xba700, 0x401, 0x5, 0xfff, 0x7, 0x8000, 0x3, 0x1, 0x6, 0x3ff, 0x6, 0xbfd2, 0x200, 0x400, 0x200, 0x7fff, 0x5, 0x2, 0x3f, 0x0, 0x100, 0x5a42, 0x0, 0x9, 0x9, 0x1, 0xfff, 0x8, 0x8001, 0x1f, 0x200, 0xfffffffd, 0x59, 0x10001, 0x3, 0x8af7, 0x200, 0x4cfe, 0x9, 0x1, 0x8, 0x400, 0x0, 0x9162, 0x7ff, 0x9, 0x5845, 0x80000000, 0xcf4, 0x8, 0x10000, 0x8, 0x101, 0x10002, 0xffffffff, 0xd46, 0x3, 0xffff0029, 0x2, 0x1063, 0x6, 0x0, 0x10001, 0x7, 0x44c6, 0x5, 0x6, 0x0, 0x6, 0x3, 0x6, 0x5, 0x6, 0x2, 0x5, 0x9, 0x1, 0x4, 0x80, 0x3, 0x4, 0x0, 0x0, 0xffffffff, 0x18000, 0x81, 0x5, 0x20, 0x6, 0x1, 0x3ff, 0x0, 0x1, 0x83, 0xe9, 0x5, 0x10001, 0x259a, 0x88, 0x6, 0x4, 0x3, 0x6b30, 0x0, 0x0, 0xf5, 0x0, 0x200, 0x4062, 0x8, 0xfdc7, 0xdb1f, 0xf03, 0x6, 0x8, 0x6, 0x1, 0x4, 0x3, 0x1, 0x4b5, 0x6, 0x764, 0x7fffffff, 0x0, 0x4, 0x0, 0x4, 0xfffeffff, 0x6, 0x74, 0x7, 0xff, 0x1, 0x6, 0xffffff81, 0x3, 0x8, 0x40000, 0x7fffffff, 0x6, 0x1ff, 0x337b, 0xfffffff8, 0x0, 0x9, 0x80000001, 0x8, 0x7fff, 0x10000, 0x3, 0x800, 0xfffffffa, 0x10001, 0x401, 0x9, 0x1, 0x1, 0x1000, 0x1ff, 0x0, 0x7, 0x100, 0x7ff, 0xb0f, 0x3, 0x3, 0x1a00fd8c, 0xfffffff7, 0x0, 0x100, 0x80, 0x5, 0x0, 0xfdca, 0x3, 0x9, 0x80000000, 0xfffff6c3, 0x1, 0x3ff, 0x3, 0x2, 0x56, 0x7, 0x40, 0x5, 0x9, 0x5, 0x401, 0x3ff, 0x5, 0x1, 0x400, 0x8, 0x3f, 0x0, 0x4aea, 0x10001, 0x43, 0x4, 0x2, 0x3, 0xfffffff8, 0x0, 0xb56, 0x8, 0x0, 0x7, 0x100, 0x1ff, 0x7ff, 0x7, 0x9, 0x800, 0xf33, 0x3, 0x7, 0x52e7, 0xbec7, 0x101, 0x1000, 0x20, 0x1, 0x5]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3f}, @TCA_POLICE_RATE64={0xc, 0x8, 0xfffffffffffffff7}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1, 0x3, 0x8, 0x620, 0x800, 0xc2, 0x80000000, 0x400, 0x8, 0x966, 0x7f, 0x100, 0x5, 0x3, 0x3, 0x3, 0x20, 0xb2, 0x88e, 0x0, 0x3f, 0x6, 0x49, 0x2, 0x4, 0x80000000, 0xffff, 0xffff, 0x80000000, 0x0, 0x2, 0xf3, 0x9, 0x559, 0x2, 0x7ff, 0x8, 0x101, 0x7ff, 0x7fffffff, 0x2, 0x80, 0x7, 0x2, 0x8, 0xfffffff9, 0x5, 0x40, 0x5, 0x101, 0x4, 0x4, 0x1, 0x0, 0x8, 0x401, 0x10001, 0x3d5, 0x8, 0xc92a, 0x200, 0x10001, 0x3f, 0x57, 0x2, 0x8000, 0xa9c3, 0x3, 0x9, 0x51, 0x81, 0x401, 0xffff, 0x6, 0x9, 0x10000, 0x9, 0x5e, 0x7, 0x9, 0xfffffffc, 0x1, 0x4, 0x9, 0x6, 0xa9, 0x40, 0x2, 0x4, 0x10001, 0x401, 0x8, 0x0, 0xffffffff, 0x5, 0xfffffffc, 0x1000, 0x7fff, 0x8, 0x20, 0x10001, 0x8, 0x9, 0x2, 0x6d, 0x1, 0x10000, 0x0, 0x15, 0x5, 0x7f, 0x1, 0x8000, 0x3, 0x130, 0x6, 0x6, 0x8, 0xfffffffd, 0x81, 0x4, 0x6e9, 0x1, 0x7ff, 0x101, 0x4, 0xfffff000, 0x3, 0x3, 0x2, 0x80000000, 0x1, 0x4, 0x7d95, 0x2, 0x8000, 0x8, 0xfffffffa, 0x401, 0xed9, 0xc8bc, 0xff, 0x7, 0x5, 0x3f, 0x20, 0x1, 0x4, 0x0, 0x6, 0x37, 0x0, 0x9, 0x7, 0x0, 0x9, 0x7, 0x3, 0x7c03, 0x0, 0x7, 0x8, 0x5, 0xad12, 0x1, 0x1, 0x2, 0x2e30, 0x7f, 0x6, 0x7c, 0x6, 0x9, 0x4, 0x1, 0x2, 0xffff0001, 0x5, 0x1, 0x7, 0x20, 0x5, 0x8, 0x7ff, 0x4, 0xfffffffa, 0x4, 0x0, 0x7fffffff, 0x8, 0x5, 0xfffffff9, 0x8000, 0x0, 0x9, 0x74616edc, 0x80000000, 0x8d8, 0x1, 0x1ff, 0x94, 0xfffffff9, 0xb1a, 0x24, 0x6, 0x200, 0x7, 0x5, 0x0, 0x8, 0x5, 0x7, 0x8, 0x401, 0x1, 0x20, 0x4, 0x1ff, 0x34, 0x2f5, 0x2, 0x8000, 0x9, 0x2, 0xeb07, 0x0, 0x0, 0x7, 0x6, 0x7, 0x2, 0xffff, 0x7, 0x5, 0x9, 0x8000, 0x800, 0x4, 0x2, 0x8, 0x80000000, 0xbea, 0xc, 0x1, 0x9, 0x6, 0x2, 0x0, 0x1, 0x1, 0x4, 0x5, 0x3a1e, 0xff, 0x80000001, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7, 0x7ff, 0x7, 0x3f, 0xabe2, 0x3fe0000, 0xffffffc1, 0x800, 0x100, 0x9, 0x9, 0x510, 0x7, 0x91d, 0x33cf, 0x5, 0xec, 0x4, 0x401, 0x3cce, 0x1, 0x1, 0x1000, 0x9, 0x3, 0x81, 0x1, 0x400, 0x3, 0xffff, 0x1000, 0x401, 0x200, 0x7, 0x7, 0x3ff, 0x401, 0xfffffff8, 0x2, 0x9, 0xffff, 0xfffffff8, 0x1, 0x0, 0xfffffffa, 0xe4a, 0x0, 0x80000001, 0x1f, 0x5, 0x0, 0x200, 0x9, 0x4, 0xf457572b, 0x5838, 0x8, 0x200, 0x1f, 0x9, 0xdf6, 0x7fffffff, 0x7fffffff, 0x0, 0x0, 0x7ff, 0x7, 0x4, 0x9, 0x4, 0x1, 0x1, 0x3, 0xf03, 0xc0000000, 0x100, 0x80, 0x101, 0x3, 0x10001, 0x1, 0x9, 0x3, 0x7fff, 0x5, 0xca9e, 0x720, 0x12000000, 0x20, 0x5, 0x5, 0x2, 0x6, 0x800, 0x4, 0x3ff, 0x4, 0x800, 0xe9, 0x1, 0x20, 0x80000001, 0x75d, 0x1, 0x0, 0x0, 0x9, 0xca59, 0x9, 0x1, 0x100, 0x7, 0x1ff, 0xfffc0000, 0x0, 0x8, 0x9, 0x8000800, 0x7, 0x1, 0x3, 0xd46, 0x9, 0xff, 0x2, 0x3f, 0xfff, 0x7fffffff, 0x1, 0x4, 0x6, 0x57, 0x9, 0x81, 0x9b, 0x1, 0x6, 0x400, 0x8, 0xfffffffc, 0x6, 0x2, 0xe55, 0x400, 0x37d, 0xffffffff, 0x9, 0x3, 0x7892, 0x0, 0x40, 0x1, 0xffffffff, 0x4, 0xfb, 0x6, 0x8ed6, 0x3, 0x80, 0x6, 0x2, 0x81, 0x5a924e7d, 0x800, 0x7ff, 0x4, 0x1ff, 0x9, 0x3, 0x401, 0x2, 0xe, 0x78316530, 0x9, 0x401, 0x1, 0x6, 0x8197, 0x23d1, 0x5, 0x9, 0x68e4, 0x9, 0x2, 0x7f, 0xfffffffb, 0x9, 0x3, 0x5, 0xfff, 0x1, 0x74, 0x9, 0x4058, 0xe4, 0x93, 0x1f9c, 0x800, 0x401, 0x6, 0x0, 0x200, 0x8, 0x1, 0x10001, 0x6, 0x80000000, 0x2, 0xffff, 0x9, 0x7, 0xffffffff, 0x5, 0x9, 0x40000000, 0x785e, 0x81, 0x5, 0x4, 0x2, 0x5, 0xc68, 0x10001, 0x1, 0x6, 0x2, 0x7, 0x1, 0x8000, 0x6, 0x6, 0x4, 0x401, 0x5, 0xb7, 0x4, 0x7, 0x2de, 0x45, 0xffff, 0x53c, 0x400, 0xfff, 0x4, 0x1, 0x200, 0x6, 0x1, 0x8001, 0xfffff800, 0x5, 0x3, 0x8001, 0x8, 0xffff, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3ff, 0x7, 0x5, 0x7, 0x784e654d, {0x40, 0x0, 0xa48, 0x2, 0x8, 0x20}, {0x2, 0x1, 0x2, 0x4, 0x3, 0x1}, 0x5, 0x81, 0xb49}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7fff, 0x8, 0x7, 0x2000000, 0x6, 0x9, 0x0, 0x6, 0x3, 0x7, 0x92c0, 0xff, 0x3, 0x8001, 0x3, 0x0, 0xf9, 0x5, 0x6, 0x1, 0x9, 0x8, 0xfffffff8, 0x8, 0x7fffffff, 0x8000, 0x8, 0x1f, 0x20, 0x6, 0xffffff80, 0x0, 0x8, 0xff, 0x5, 0x5, 0xffff, 0x8, 0x9, 0x5, 0xfffffff8, 0x8, 0x40000000, 0x400, 0x5, 0x7, 0xff, 0xe2c, 0xee, 0x9, 0x0, 0x0, 0x7, 0x5, 0xc686d419, 0x4, 0x1f, 0xfffffe2f, 0x80000001, 0x9, 0x0, 0x712, 0x8, 0xe9, 0x80, 0x7fffffff, 0x8, 0x7, 0xffffffff, 0x3, 0x2, 0x8, 0x9, 0xd58, 0x5, 0x0, 0xfffffffd, 0xfffffffd, 0xe3d, 0xfffffff9, 0xfffffffc, 0x7fff, 0xb6b, 0x2, 0xfffff000, 0x2, 0x8, 0x5, 0x200, 0x1, 0x5c, 0x200000, 0x7f, 0x80000000, 0x100, 0xa89a, 0x1, 0x8, 0x3, 0x7fff, 0x8001, 0x6160, 0xfffffff7, 0x3, 0xc000, 0x3, 0xe332, 0x9, 0x9c3, 0x1, 0xffff0000, 0x80000000, 0x4e, 0xc4d, 0x70, 0x1633, 0x0, 0x28ea, 0x7, 0x9, 0x9, 0x0, 0x0, 0x200, 0x1, 0xfff, 0x2, 0x7fffffff, 0x0, 0xfffffffe, 0x8fbb, 0xffffffff, 0x7fff, 0x5, 0x8bca, 0x4, 0x1000, 0x1, 0x1, 0x8001, 0x101, 0x1, 0x4, 0x86c, 0x5, 0x2, 0x1, 0x1, 0x2, 0x1f, 0x7f7047a8, 0x5, 0x3, 0x3, 0x8001, 0x6, 0x594, 0x800, 0x80000000, 0x4, 0x1, 0x4, 0x1, 0xffffffff, 0x5, 0x80000001, 0x0, 0x7, 0x6, 0x759b, 0x10000, 0x3, 0x0, 0x8, 0x54f4, 0x6, 0x0, 0x1, 0x7, 0x800, 0x7, 0x5, 0x8, 0x5, 0x6, 0x7f, 0xffff8001, 0x5, 0x7fff, 0x9, 0x7, 0xfffffeff, 0x78, 0x4, 0xe49f, 0x80, 0x0, 0x7fff, 0x1ff, 0x1, 0x5, 0x8000, 0x80000001, 0x1, 0x101, 0x1, 0x7, 0xc0000000, 0x0, 0x3, 0x1, 0x1, 0x6, 0xea8, 0x0, 0x1000, 0x7f, 0xffffff00, 0x3f, 0x72, 0x2, 0x6, 0x6, 0x8001, 0x200, 0x1ff, 0x100, 0x9, 0x7a, 0x9ff, 0x24b, 0x7f, 0x10000, 0x3ff, 0x5, 0xffffff01, 0x400, 0x5, 0xfffffff9, 0x1, 0x9e, 0x9, 0xfffffff7, 0x1, 0x8, 0xfffffffd, 0x7, 0x1, 0x6b, 0x3f, 0x1c8, 0x200, 0x7fffffff, 0x6, 0x1f, 0xfffffff7]}]}, @TCA_RSVP_PINFO={0x20, 0x4, {{0x0, 0x6, 0x1}, {0x5e, 0x20, 0x5}, 0x62, 0x0, 0x3}}, @TCA_RSVP_CLASSID={0x8, 0x1, {0xe, 0xfff1}}, @TCA_RSVP_DST={0x8, 0x2, @broadcast}, @TCA_RSVP_SRC={0x8, 0x3, @broadcast}]}}, @TCA_RATE={0x6, 0x5, {0x3, 0x7}}, @TCA_CHAIN={0x8, 0xb, 0xac6}, @filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_VLAN_ETH_TYPE={0x6, 0x19, 0x8100}, @TCA_FLOWER_KEY_PORT_DST_MAX={0x6, 0x5a, 0x4e23}, @TCA_FLOWER_KEY_IP_TOS={0x5, 0x49, 0x83}, @TCA_FLOWER_KEY_ARP_OP={0x5, 0x3d, 0x9}, @TCA_FLOWER_KEY_ENC_IP_TTL={0x5, 0x52, 0x4}, @TCA_FLOWER_KEY_MPLS_TC={0x5, 0x45, 0xef}]}}]}, 0x1148}, 0x1, 0x0, 0x0, 0x10}, 0x14)

[  483.164684][T15469] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  483.236721][T15451] device dummy0 left promiscuous mode
06:05:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8914, 0x0)

06:05:32 executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x58, 0x58, 0xe7, 0x20, 0x403, 0xc631, 0xfa6f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x48, 0xa4, 0x34}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, &(0x7f0000000040)={0x0, 0x4, 0xaf, {0xaf, 0x22, "a45f17799a0664023a4044b12365468a23866b42cb989c34dd397bc5e6fb947a893fdf126e55e57de6a2c37f354fddc75db9f0ca289a34eb9ccd0d876e3b879e39cd11da2d52d57bbc2a501505193f05e0d1cc92937d16a2a10eff38b4c3db0e0a223def9b8066c53acd01bc1a8f4941ffd57cebf549ab61b11e181a84799f0ab4e5196fd38fec8c9cedc35f00bd074a89c3eda164f86d6aa8334d8a6a2cb9131568b3f301993073ebfef02993"}}, &(0x7f0000000140)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x820}}, &(0x7f0000000180)={0x0, 0x22, 0x6, {[@main=@item_012={0x0, 0x0, 0xb}, @global=@item_4={0x3, 0x1, 0x7, "680acd17"}]}}, &(0x7f00000001c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xfff8, 0x1, 0x1, {0x22, 0xcca}}}}, &(0x7f0000000540)={0x2c, &(0x7f0000000240)={0x20, 0x16, 0x9f, "3c4a38ff3817219ad912ae7b2c78a73eb3a4ef2758b4780dda8eb8e20a2f5a933e2e560021f6998e5eb28b8b2cba6cbea6d35c4a7fb5efcbc32735d865ee069b219a739f98b21f4dcffd5ff052c0d8524027defb265c5cf7cbbadedb86ed299996fef13de1cd9df3f36c5117a4d606f363ca7e18b0978be4f752e552b8ca64bf457304186786fe8066350cc6feecf4a896bea3d83bcffb86d336ae83c45b2e"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x81}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000000400)={0x20, 0x1, 0xe2, "042ed26afc8cea2b193069f30d993159bf3d6ec96fb1a1ba81e530318a8e52ecd747f44a8b42acb3f2a407855b30d25acffd9f5916a186c1d6097fddd75b66b9d0d810d30b704f0c0df520f4ebc302419fad59123f887effc0b9fa1ac954bb3980f1971f02ee7f5898c41e57e2580ca74b4550cf34f5600adbeb9191c2b4b61899db417afbd4e0d3d1f3410c742222dddc1dbe65f225d5f4fe28a9cc0d16be5506eb040ae62f49518cb1bc360223a10901f3ffdbe289abc90062c413833b9e67c3a0fa012c7d257fc0593af7749d1018d18c00ff5b522b5c72df8ccc6e9298dcd214"}, &(0x7f0000000500)={0x20, 0x3, 0x1, 0x80}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000380)={0x44, &(0x7f0000000100)={0x0, 0x0, 0x4, "6c67b57a"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  483.569036][  T214] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  483.578516][  T214] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  483.586649][  T214] usb 3-1: Product: syz
[  483.591240][  T214] usb 3-1: Manufacturer: syz
[  483.595944][  T214] usb 3-1: SerialNumber: syz
06:05:32 executing program 5:
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009705bd20570502204f580102030109022400010000000009040000027a9cce0009050f000000000000090505000000003898"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000090018105e04da0500000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io(r1, &(0x7f00000003c0)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x0, 0x0, 0x0, '\b\x00', "006cf200"}}, 0x0}, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000d80)={0x2c, &(0x7f0000000bc0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000400000068"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000140)={0x2c, &(0x7f0000000280)={0x0, 0x0, 0x4, '\t\x00\x00\x00'}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000180)={0x24, &(0x7f0000000080)={0x20, 0x23, 0x62, {0x62, 0x22, "906332b558786660ed1f54727bb556f394b304b887c9a90e281a7dd197eb2fe418171bedb23bce1bf73cc60a9b44fd81125bedbfffb7ff2404cdacc06231600ddbe5f23e004b4197ecbaf1f8d53b7e1bb9fa6aa634cb418d74a952ebc7003ec4"}}, &(0x7f0000000400)={0x0, 0x3, 0x67, @string={0x67, 0x3, "4b6aefa9757510a7548e13734bf281c81068aa10debe701d4c11aae34d7e5a31793a4b996ebf284d200896c1e65ffee13d5c65dc11d53135ef34438a38aafa84c14d0cd879508a95dd96e66848c3a84ddc73c521d35cd59d38bdd433f4ffb25e79da69ee81"}}, &(0x7f0000000100)={0x0, 0x22, 0x15, {[@global=@item_4={0x3, 0x1, 0x9, "011e9b3e"}, @local=@item_4={0x3, 0x2, 0x9, '13#c'}, @local=@item_012={0x0, 0x2, 0xa}, @local=@item_4={0x3, 0x2, 0x4, "4f420518"}, @local=@item_4={0x3, 0x2, 0x8, "449b89b6"}]}}, &(0x7f0000000140)={0x0, 0x21, 0x9, {0x9, 0x21, 0x1, 0x0, 0x1, {0x22, 0x6f}}}}, &(0x7f00000003c0)={0x2c, &(0x7f00000001c0)={0x0, 0x3, 0x13, "d9a99f8458baa052bbed075fe69dab8cfb82bb"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x81}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x1, 0xe6, "82b30abad92c2cc9b617c3e94721f5b5b06b1784a2ca20d3a783a545b8e850e9c2453d9df8cafacea96600f5abded3035d13a00629000470c0052794c4180923f1669da5a1ea1641f29e403a1a0cd5a5dac471c324560913d11f368831a67bba8f8e73982c71013ea739f819ed49990f0b86faa616ade073a9f5cc7039f09b78e919946740dc420df298305bc6c67b53254282d0158858379b52e49770dceef36d8a5f3a0217f1c1cd6c8d709a031627eb11963edd2669c64928f11a2d23ebffc1f62298eddbd3824b10afdb5e58ffa7b88f94737e7a7ee7a21f00d22248fab11f9a11b62dc1"}, &(0x7f0000000380)={0x20, 0x3, 0x1, 0x7}})

[  483.716946][  T214] usb 3-1: config 0 descriptor??
[  483.981982][  T214] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  483.997023][  T214] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
06:05:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8933, 0x0)

[  484.029147][   T66] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  484.086373][  T214] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  484.094194][  T214] usb 3-1: media controller created
[  484.121232][   T18] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  484.152845][  T214] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  484.288609][   T66] usb 5-1: Using ep0 maxpacket: 32
[  484.396188][   T18] usb 6-1: Using ep0 maxpacket: 32
[  484.528741][   T18] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  484.538752][   T18] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
06:05:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae01, 0x0)

[  484.611608][   T66] usb 5-1: New USB device found, idVendor=0403, idProduct=c631, bcdDevice=fa.6f
[  484.620994][   T66] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.629538][   T66] usb 5-1: Product: syz
[  484.633816][   T66] usb 5-1: Manufacturer: syz
[  484.638807][   T66] usb 5-1: SerialNumber: syz
[  484.683815][   T66] usb 5-1: config 0 descriptor??
[  484.741717][   T18] usb 6-1: New USB device found, idVendor=0557, idProduct=2002, bcdDevice=58.4f
[  484.751293][   T18] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.759704][   T18] usb 6-1: Product: syz
[  484.763979][   T18] usb 6-1: Manufacturer: syz
[  484.769672][   T18] usb 6-1: SerialNumber: syz
[  484.788132][   T66] i2c-tiny-usb 5-1:0.0: version fa.6f found at bus 005 address 042
[  484.837546][   T18] usb 6-1: config 0 descriptor??
[  485.110223][   T18] kaweth 6-1:0.0: Firmware present in device.
06:05:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000001140)={0x7, 0x0, [{0xbe6, 0x0, 0x5}, {0xa6f, 0x0, 0x7}, {0x924, 0x0, 0x4}, {0x3c3, 0x0, 0x5}, {0x203}, {0x8aa, 0x0, 0xfffffffffffffff8}, {0x8ad, 0x0, 0x1}]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0xc0, 0x10, 0x4}, 0x18)
pipe(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)=ANY=[], 0x37cb1133)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r4, 0xc0709411, &(0x7f0000000000)={{0x0, 0x100, 0x6, 0x32e, 0x4, 0x401, 0x0, 0x2, 0x1, 0x4, 0x7, 0x0, 0x81, 0x0, 0x80000000}})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f00000001c0)={<r6=>0x0})
pipe(&(0x7f0000000140)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
write$binfmt_misc(r8, &(0x7f0000000140)=ANY=[], 0x37cb1133)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r7, 0xc0709411, &(0x7f0000000000)={{0x0, 0x100, 0x6, 0x32e, 0x4, 0x401, 0x0, 0x2, 0x1, 0x4, 0x7, 0x0, 0x81, 0x0, 0x80000000}})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r8, 0x81f8943c, &(0x7f00000001c0))
ioctl$BTRFS_IOC_INO_LOOKUP(r3, 0xd0009412, &(0x7f0000000140)={r6, 0x2})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  485.179436][   T66]  (null): failure reading functionality
[  485.222863][   T66] i2c i2c-2: failure reading functionality
[  485.288015][   T66] i2c i2c-2: connected i2c-tiny-usb device
[  485.298443][  T214] stb0899_attach: Driver disabled by Kconfig
[  485.304712][  T214] az6027: no front-end attached
[  485.304712][  T214] 
[  485.314450][T15497] udc-core: couldn't find an available UDC or it's busy
[  485.321769][T15497] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
06:05:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae41, 0x0)

[  485.347354][  T214] az6027: usb out operation failed. (-71)
[  485.354682][  T214] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  485.363440][  T214] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input50
[  485.392158][  T214] dvb-usb: schedule remote query interval to 400 msecs.
[  485.399716][  T214] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  485.414568][   T18] kaweth 6-1:0.0: Error reading configuration (-71), no net device created
[  485.423537][   T18] kaweth: probe of 6-1:0.0 failed with error -5
[  485.454337][   T18] usb 6-1: USB disconnect, device number 46
[  485.474285][  T214] usb 3-1: USB disconnect, device number 93
[  485.597657][  T214] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:35 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae60, 0x0)

[  486.169509][  T214] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  486.422858][  T214] usb 6-1: Using ep0 maxpacket: 32
06:05:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[0x2, 0x4, 0xff, 0x100000001, 0x800, 0x0, 0x6, 0x7, 0x7, 0xfffffffffffffffb, 0x80, 0xffff, 0xdd1a, 0x9, 0xfffffffffffffffd, 0xfffffffffffffffa], 0x3000, 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f00000000c0)={0x7f, 0x28, '\x00', 0x1, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  486.478560][   T18] usb 3-1: new high-speed USB device number 94 using dummy_hcd
[  486.548766][  T214] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  486.558781][  T214] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
06:05:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xaece, 0x0)

[  486.808332][  T214] usb 6-1: New USB device found, idVendor=0557, idProduct=2002, bcdDevice=58.4f
[  486.818402][  T214] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.826542][  T214] usb 6-1: Product: syz
[  486.831415][  T214] usb 6-1: Manufacturer: syz
[  486.836126][  T214] usb 6-1: SerialNumber: syz
[  486.851935][   T66] usb 5-1: USB disconnect, device number 42
06:05:36 executing program 4:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000000)=""/64, 0x40)
syz_usb_connect(0x1, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000bee40b207a1416e086e90102030109022d000100000000090468"], 0x0)

[  486.994755][  T214] usb 6-1: config 0 descriptor??
[  487.046797][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  487.056618][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.064894][   T18] usb 3-1: Product: syz
[  487.069275][   T18] usb 3-1: Manufacturer: syz
[  487.073971][   T18] usb 3-1: SerialNumber: syz
06:05:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000001, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000440)="1a00000002000000", 0x8)
sendmmsg$inet6(r1, &(0x7f0000000140)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x200, @mcast1, 0x1}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000200)="20904a98b3c90cc4b573ac7e304b368b31366bd13d90352b81b16a3192b03df622c2b8d206d3e21db30d070a511e7a7bff92b8cb1a2e9319950dc45d254ee64db7a72e15e7e915d2d063c40755eb0a9f5c7d0fda6ae1cf5797ab61fdb7b478596a55854d4a37ec37782be9fb914716c4cf8f801639613f4fea8486f48683ca9909c30f904baa1799e3d66f934cad0d0d8e0997276d0db69a79821a1e9b8938431c88be998ab89a0d15703092886cc0f763537452c7efed936c09a59747a3c16a86c5", 0xc2}, {0x0}], 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB="1400000000000000290000000b00000000ffffffff000000000000000000e500290000004300000000800000000000001800000000000000290000003700090000000014000000000000002900000043000000508b0000000000001400000000000000290000003e000000b2010000000000002400000000000000290000003200000000000000000000000000ffff64010100", @ANYRES32=0x0, @ANYBLOB="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"], 0x1b8}}], 0x1, 0x4085)
close(r0)
socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f0000000440)="1a00000002000000", 0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x16, &(0x7f0000000040), &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value, &(0x7f0000001a80)=0x8)
sendmmsg(r2, &(0x7f0000001bc0)=[{{&(0x7f00000004c0)=@ll={0x11, 0x10, 0x0, 0x1, 0xf8, 0x6, @remote}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000540)="f38815ff255090605cded07a8c9b000cadf2bf60f6fbac7c965f5de861c93f6ab497f238be52661c407afdb585a2364e10302f467f4ee4f5de98b1139e7f6881fd5302cf98a4d93dd2fd587d42a82a1296bb6a640f35aaafe4c92cfe73d598119ba2c5379eab5891b67cbf5678a1bc09ddc012bbd3e3b2bc601bc753406cfc154280e151ebe22c023420d420fca3831a8bc00a938a595114e50ae9d042b0a83c", 0xa0}, {&(0x7f0000000600)="6b4bb46b3b588d4bff208c04c2fd9739d4d22846b1e880758b028326794dbfda634aa08ecac87372eb2781f9b5380e26c1ed5482564c38aeef14e3e5b9131b460d58fc48010c8d07b7f0c43c0553dfaead2fbfa8083de79185989e7f39dc4e7e83911f47f181088610deac579a7d4bf0201c4518c7b63d865dfe63440b35e537c79e6f5161f63b6364227aa87b5988a7b46acb93e93610d121579d9a04ac4d19757ed4776d243a1507b88d9980752b14c2f4b83eaecd2d532600ef92f17d0e5bef35be7648f61340cacc5b201427940eeec1b4153fa922e870fe610ab1ac922a9f6c3067c014bed1eedfd87eab83ef875976ec", 0xf3}], 0x2, &(0x7f0000000740)=[{0xb0, 0x0, 0x9, "5b5841e4f936625baca8223f212547633f08ad81f9622c6bff12b74794e452b430fb088a6572ca8a52c9fd59d85469c910f83e75efd21c2e694a30187f9f31b417b50806c96d18bc82465db4f0b12f1509f28467d644ad8a41db6beb4c3d34c4856b5faa4f0de3e5ec35e2290cffa5efdd521d77096f713015f326bd2741469a86f623098717152f16c865872f8fad1dc18c3febeba2a1ae919b81"}, {0x1010, 0x0, 0x7f2e2015, "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"}, {0x50, 0x10a, 0x100000, "e580b1bd3dac963f8c4a0433d7c767cccd8a1fd5b1a0e8d6f87feacd1eec4ba2723b444a4837a9b328502513c637a58534cc337d37aef80f2d"}, {0xe8, 0x1, 0x7, "11b0876ff030da25fdd33aba3a383aef3d464a8af332c7ac60835f1ff7b2a4f0291801555b88a3f400dd0bae2e6e44e5ead787b980dbf2ffa8e2473e52b3de941be407dbdfc9bd20a1b3b27c3df60b3849aba58ab370e703888a21b82fa093b64baff0ced532a3e28587b065466e333e5f069cc80ad94dc76ffcb8c5d9f2e1fec19f6b986b53e410d898c4ab6176daea4e17db9f2f006478ba8096ae0e5b68ff8f9f7a1d667fdbc10fe002b52461c293543e756ce54e6f5457ff2d34235f36e3276c77f0fce6548f547512578c4f8ee7d0882fd3b1538394"}, {0x80, 0x113, 0x0, "318e8120f83dc73b5defc84a9eb81dbcf5924c935b1ccea81fee2d972846b82d2783aed3d0eb4ca98605e07608db3aed656853866c1a099bba430c5e593834c247c29aee8c3acab1462f5a176d6f0a885d57282e15d3de9e2c23545e5a973182fce6d27eb6d353830d463d610530e13f"}, {0x70, 0x111, 0x20, "749cfbb2d7eb4244d5762f099bcbd2e165c64cd632bc94995df11cc9e0090a5d6af954ddb5a0fd729477d00923dd690f4112c2c4094e949be1074e4eccce88efeeba2931e3161e5f6e08a7f93c46c7783c6f7500d9a7ceecde5a51"}, {0x50, 0x108, 0x1, "36b4a2fe930650aae256c9a6f4447bd4ee008afb59dd8820361ff1618351d8d3f5e16b38210903c6c9e3cb3f708aef63138c42bf64d6328f4200a0e3"}], 0x1338}}], 0x1, 0x4001)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
bind(r0, &(0x7f0000000180)=@nl=@unspec, 0x80)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000140)=@assoc_value={<r5=>0x0}, &(0x7f0000000500)=0x8)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r5, 0x0, 0xda}, 0xc)
sendfile(r0, r3, 0x0, 0x800100000001)

[  487.101887][  T214] usb 6-1: can't set config #0, error -71
[  487.144105][  T214] usb 6-1: USB disconnect, device number 47
[  487.305490][   T18] usb 3-1: config 0 descriptor??
06:05:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[0xfffffffffffffe00, 0x6, 0xcbb9, 0x8, 0x2, 0x0, 0xfffffffffffffffd, 0x6, 0x10000, 0x8, 0x7, 0x2, 0x4, 0x8, 0x8000, 0xfff], 0x1000, 0x8001})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xf50f, 0x0)

[  487.478232][    T5] usb 5-1: new low-speed USB device number 43 using dummy_hcd
[  487.571278][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  487.594411][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  487.657644][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  487.665276][   T18] usb 3-1: media controller created
[  487.719202][    T5] usb 5-1: Invalid ep0 maxpacket: 32
[  487.723624][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  487.868193][    T5] usb 5-1: new low-speed USB device number 44 using dummy_hcd
[  487.898855][T15636] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:37 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x80, 0x6b}}}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffffa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004010}, 0x1)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x400448c9, 0x0)

[  488.108970][    T5] usb 5-1: Invalid ep0 maxpacket: 32
[  488.122069][    T5] usb usb5-port1: attempt power cycle
06:05:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000140)={0xa0000, 0x0, [0x1ff, 0x1, 0xff, 0x2, 0x2, 0x400, 0x7, 0x1]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  488.578527][    T5] usb 5-1: new low-speed USB device number 45 using dummy_hcd
[  488.669201][    T5] usb 5-1: Invalid ep0 maxpacket: 32
[  488.828765][    T5] usb 5-1: new low-speed USB device number 46 using dummy_hcd
[  488.918970][    T5] usb 5-1: Invalid ep0 maxpacket: 32
[  488.925261][    T5] usb usb5-port1: unable to enumerate USB device
[  489.017993][   T18] stb0899_attach: Driver disabled by Kconfig
[  489.024262][   T18] az6027: no front-end attached
[  489.024262][   T18] 
06:05:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  489.081620][   T18] az6027: usb out operation failed. (-71)
[  489.087557][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  489.096448][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input51
[  489.236366][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  489.243556][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  489.305302][   T18] usb 3-1: USB disconnect, device number 94
[  489.481659][T15685] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  489.540408][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:38 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x400448dd, 0x0)

06:05:39 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x80, 0x6b}}}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffffa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004010}, 0x1)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffdfffffffffd)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = dup2(0xffffffffffffffff, r2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000000c0)={&(0x7f0000000000)=[0x80000001, 0x10001, 0x6b0], 0x3, 0x80000, 0x0, <r5=>0xffffffffffffffff})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000140)="c4e1a5e1cab8000000000f23c00f21f83502000b000f23f866b885008ec064640f01c4c4c24104964f9d04c426672e0f01c40fc7f666ba6100ec0fb1740e040f32", 0x41}], 0x1, 0x40, &(0x7f0000000200), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  490.128528][    T5] usb 3-1: new high-speed USB device number 95 using dummy_hcd
06:05:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:05:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x400454ca, 0x0)

06:05:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0, 0x39}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  490.649091][    T5] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  490.658648][    T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.666903][    T5] usb 3-1: Product: syz
[  490.671552][    T5] usb 3-1: Manufacturer: syz
[  490.676399][    T5] usb 3-1: SerialNumber: syz
[  490.995248][    T5] usb 3-1: config 0 descriptor??
[  491.059318][T15758] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  491.068854][T15756] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:40 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x80, 0x6b}}}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffffa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004010}, 0x1)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4004550a, 0x0)

[  491.248292][    T5] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  491.269468][    T5] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  491.330922][    T5] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  491.338595][    T5] usb 3-1: media controller created
06:05:40 executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x14, {0x14, 0xa, "6c82d488d257d625a1a72e823403bf954754"}}, &(0x7f0000000040)={0x0, 0x3, 0x35, @string={0x35, 0x3, "1cd9ac99fe8f609b6f46a11a4ec2c4d1c2a9b042bf4f8d2c8fe8e0d472e4afb1c64eddff98c51a9a0d4d9e7f3db5134cbe66da"}}, &(0x7f0000000080)={0x0, 0xf, 0x10, {0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0xca, 0x40, 0x5, 0x3, 0xfe}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x60, 0x7, 0x7, "4cdd2fda", "e34b028e"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x80, 0x9, 0x1, 0x3, 0x4, 0x61e}}}, &(0x7f0000000640)={0x84, &(0x7f0000000180)={0x20, 0xc, 0x43, "47e192bce434af695f617d2410ced03c89659fb9596e75487004541582cd49616dc1b3185098dd6b51fdda980805c27476f944130ef42a905792953789d202325181c6"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x4, {0x200, 0x20}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000380)={0x40, 0x9, 0x1, 0xf5}, &(0x7f00000003c0)={0x40, 0xb, 0x2, 'OJ'}, &(0x7f0000000400)={0x40, 0xf, 0x2, 0x8001}, &(0x7f0000000440)={0x40, 0x13, 0x6, @local}, &(0x7f00000004c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000500)={0x40, 0x19, 0x2, "0606"}, &(0x7f0000000540)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000580)={0x40, 0x1c, 0x1, 0xff}, &(0x7f00000005c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000600)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  491.402225][    T5] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x2000, 0x14000})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  491.908444][ T8705] usb 5-1: new high-speed USB device number 47 using dummy_hcd
06:05:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x40049409, 0x0)

[  492.429512][ T8705] usb 5-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  492.439689][ T8705] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.448573][ T8705] usb 5-1: Product: syz
[  492.452855][ T8705] usb 5-1: Manufacturer: syz
[  492.457568][ T8705] usb 5-1: SerialNumber: syz
[  492.541487][ T8705] usb 5-1: config 0 descriptor??
[  492.570224][    T5] stb0899_attach: Driver disabled by Kconfig
[  492.576441][    T5] az6027: no front-end attached
[  492.576441][    T5] 
[  492.648246][    T5] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  492.658146][    T5] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input52
[  492.738140][    T5] dvb-usb: schedule remote query interval to 400 msecs.
[  492.745432][    T5] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  492.809958][ T8705] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  492.831466][    T5] usb 3-1: USB disconnect, device number 95
[  492.854178][ T8705] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  492.908272][ T8705] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  492.915640][ T8705] usb 5-1: media controller created
[  492.959516][    T5] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  492.989419][ T8705] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:42 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r3, &(0x7f0000000100)=[{}], 0x1, 0x0)
fallocate(r3, 0x0, 0xb76f, 0x7)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="0f01cfb8050000000f01c10f08f4660fdeff0f308fe9c89a2a0f001e66b825008ed8660f38cfbf0020b20000"}], 0x1, 0xa, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7)
ioctl$KVM_NMI(r4, 0xae9a)
syz_open_dev$audion(&(0x7f0000000140), 0xffffffffffffffc0, 0x200)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
openat$cgroup_ro(r5, &(0x7f0000000180)='cpuacct.usage_user\x00', 0x0, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r6, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

06:05:42 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x80, 0x6b}}}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffffa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004010}, 0x1)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0)

[  493.968952][   T18] usb 3-1: new high-speed USB device number 96 using dummy_hcd
[  494.137263][ T8705] stb0899_attach: Driver disabled by Kconfig
[  494.144746][ T8705] az6027: no front-end attached
[  494.144746][ T8705] 
[  494.176186][ T8705] az6027: usb out operation failed. (-71)
[  494.182650][ T8705] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  494.192622][ T8705] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input53
[  494.336402][ T8705] dvb-usb: schedule remote query interval to 400 msecs.
[  494.343793][ T8705] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
06:05:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4004ae99, 0x0)

[  494.433186][ T8705] usb 5-1: USB disconnect, device number 47
[  494.548708][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  494.558159][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.566290][   T18] usb 3-1: Product: syz
[  494.570761][   T18] usb 3-1: Manufacturer: syz
[  494.575489][   T18] usb 3-1: SerialNumber: syz
06:05:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000140)="c4c2b99a7d008f49a8960ca7440f01f8c74424001c000000c7442402ad000000ff1c248fc93092343500000000263ed2d48fa880a2741cdff0b9c8010000b86b260000ba000000000f306766490f7e630f66ba210066ed", 0x57}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  494.752658][   T18] usb 3-1: config 0 descriptor??
[  494.823750][ T8705] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:44 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000010000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x6d, 0x43}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x40}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x1)

06:05:44 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

[  495.020817][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  495.052853][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
06:05:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x40085503, 0x0)

[  495.091596][T15904] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  495.118323][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  495.125730][   T18] usb 3-1: media controller created
[  495.212274][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  495.462519][T15882] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x40086602, 0x0)

06:05:45 executing program 4:
syz_usb_control_io$printer(0xffffffffffffffff, &(0x7f0000000100)={0x14, &(0x7f0000000000)={0x40, 0x31, 0x7, {0x7, 0x21, "c7b293f00b"}}, &(0x7f0000000040)={0x0, 0x3, 0x8c, @string={0x8c, 0x3, "026250de05ed1c8bfd05639da72927ba8af2e4088d22113b87566a788b03e55ade4c4bd8ec373ac6903a9805e9c0353ed57240a0b40045f4573374b676e76c14b75bb074b7d782cb3eecfbaa0b13e1f7a4593ab1c8d0e6d056767eeaa6077ec01d80d5d70f8649df310cf6a90a21d935c647e7c5f065dcbb76a5ff58fdddea7646bd46d1b9cd325c95f9"}}}, &(0x7f0000000380)={0x34, &(0x7f0000000140)={0x20, 0x30, 0x2e, "80c4072921bd52c8171378f50cce1b4354324dfddf86ae9f8a68a2445a534bee0ebb3d0714a5505d6e012bb7125e"}, &(0x7f0000000180)={0x0, 0xa, 0x1, 0xc6}, &(0x7f00000001c0)={0x0, 0x8, 0x1, 0x6}, &(0x7f0000000200)={0x20, 0x0, 0xf4, {0xf2, "eb0b33ae50450fb95d4fa41e971a751b3356cdfe6946d4834eb14170e3a65171d77dcfc15a46bd9e7cae9fdccee1dd96a4a55373f4db3bb97b98966788a771e77a68e24248c441039221297b82e3861d6d06b53cafd7d45e4830aac29f523710096c47a8eafca71981e095f154ce95dcfa16f05e0235beff7c870ad3f6163570d5e45b00e505549bce519d4d7d90608a4c9e17233c668c06a535fb9cdad084d04ee78ab17ab1a47501e3716ee596f4cc1cd83cf3fcbcfcd2875788e4df6f2179a391e650f1523bb18c4635949602c5169733c4e74923ddee36a8afd618b1f1d12ce37a313ff9f587476b6f421bc2c1a83382"}}, &(0x7f0000000300)={0x20, 0x1, 0x1, 0x7f}, &(0x7f0000000340)={0x20, 0x0, 0x1, 0x76}})
r0 = syz_usb_connect$cdc_ncm(0x5, 0x95, &(0x7f00000003c0)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x83, 0x2, 0x1, 0x6, 0x50, 0x1f, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "b39b9b8a"}, {0x5, 0x24, 0x0, 0x3ff}, {0xd, 0x24, 0xf, 0x1, 0x9, 0xee6, 0x81, 0x85}, {0x6, 0x24, 0x1a, 0x6, 0x32}, [@country_functional={0x8, 0x24, 0x7, 0x1, 0x2, [0x3]}, @country_functional={0x12, 0x24, 0x7, 0xc8, 0x5, [0x9, 0x7f, 0x35, 0x9, 0x0, 0x3]}, @obex={0x5, 0x24, 0x15, 0x5}, @acm={0x4, 0x24, 0x2, 0x2}]}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x1f, 0x5, 0x1d}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0x20, 0xe2}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x2, 0x2, 0x3}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x200, 0x1, 0x83, 0x5, 0xff, 0x4}, 0x21, &(0x7f00000004c0)={0x5, 0xf, 0x21, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0xe0, 0x9, 0x5, 0x3}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0x2, 0x1, 0x7ff, 0x1}, @ptm_cap={0x3}]}, 0x8, [{0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x437}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x408}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x43e}}, {0x4, &(0x7f00000005c0)=@lang_id={0x4, 0x3, 0x7b6116015bf356ce}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x81d}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x407}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x40c}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x1004}}]})
syz_usb_control_io(r0, &(0x7f0000000900)={0x2c, &(0x7f0000000780)={0x0, 0x7, 0x3e, {0x3e, 0x39, "d68058468cd427db2fd5744deb00db37952018c78a38723b59d927dc3e67eeb6ea2ea5c3182b4f29897e03c2c956f8aa2d303caa2dde28b57473f1e3"}}, &(0x7f0000000800)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2409}}, &(0x7f0000000840)={0x0, 0xf, 0x2d, {0x5, 0xf, 0x2d, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "f7c92c8a7cc2359ea3c4241b3b91b64f"}, @ss_container_id={0x14, 0x10, 0x4, 0x25, "7d6b3f63a5d23ef93819fc427d4424cc"}]}}, &(0x7f0000000880)={0x20, 0x29, 0xf, {0xf, 0x29, 0x9, 0x18, 0xb7, 0x1, "0610c99a", "c6f52843"}}, &(0x7f00000008c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7, 0x60, 0x0, 0x0, 0xd5, 0x0, 0xec3f}}}, &(0x7f0000000e00)={0x84, &(0x7f0000000940)={0x50, 0x31, 0xf9, "7033173afe8c85256e567a08000b96f8ec5ff7a29522cd688908cb7a31927d9272dbb88ecbbc9369a6d886c8f1b04b30e517836400e44db2dbd7e03aa35b414e49adf2495abf24232c4845c8b14410a8bf24ea94e3b5e7fdf4698a816df0b80d786eea4584e3e67c53167cee94f69616011ff74f662badeea910573d77a6f8b1ecbe6617dbe780dc263c99d705c526e177e4c137392de9850afcaec0fa212e9739cecfb92ac26539cafe60feebda852d64fcef04164cac9f7a4b1aaba17b0ed6d4ef06a0500167bcedf8f781b40764b45d11ddafaa0bde57bfeaf983159660f51163fe2fe2f6ebea5c118360ecea550e1141916f667ec2ef3a"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0x36}, &(0x7f0000000ac0)={0x20, 0x0, 0x4, {0x0, 0x2}}, &(0x7f0000000b00)={0x20, 0x0, 0x4, {0x160, 0x20}}, &(0x7f0000000b40)={0x40, 0x7, 0x2, 0xfc00}, &(0x7f0000000b80)={0x40, 0x9, 0x1, 0x6}, &(0x7f0000000bc0)={0x40, 0xb, 0x2, "c364"}, &(0x7f0000000c00)={0x40, 0xf, 0x2, 0x1}, &(0x7f0000000c40)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x27}}, &(0x7f0000000c80)={0x40, 0x17, 0x6, @local}, &(0x7f0000000cc0)={0x40, 0x19, 0x2, "e7f4"}, &(0x7f0000000d00)={0x40, 0x1a, 0x2, 0x800}, &(0x7f0000000d40)={0x40, 0x1c, 0x1}, &(0x7f0000000d80)={0x40, 0x1e, 0x1}, &(0x7f0000000dc0)={0x40, 0x21, 0x1, 0xb2}})
syz_usb_control_io(r0, &(0x7f0000001240)={0x2c, &(0x7f0000000ec0)={0x20, 0xe, 0x4, {0x4, 0xa, "cac3"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x140c}}, &(0x7f0000000f40)={0x0, 0xf, 0x23e, {0x5, 0xf, 0x23e, 0x5, [@generic={0xa2, 0x10, 0x4, "1b93db65c6e85b13bb5db19e90fd981dd0bde9137894d73bf52b5483124d7ec0c34dd37bf3195de3f82f9da819b9ade3d970e1e7dca55a0c77eb292c4f0c5610cf89afe547ca94476abb2c1f57cc89d099a294fe48c1885ad3bc4e64b804b03c8fcf3e9387c82ae3942a7fa36a2e79da832fd1eb2b5cf7470320461bc43c93fef478335588be9f2a158d51d730641b42efe375de9ffb3a445a2559110b6d39"}, @ext_cap={0x7, 0x10, 0x2, 0x1e, 0x2, 0x0, 0x34}, @generic={0x6d, 0x10, 0x3, "1e3ccaa98e8557e0f3cdd76eceb6e49a46e9357db22837100a1e1404a50b384cf5a9ca69d9ac963b92217c979011e42d8ad06c5c8a0d776309d7e246ca1baf9a34bbd1daba340bc452c5cc7f64ee9b8ae915a459840ef6ae39bdbd0765a09ffa758941c67698453b20c6"}, @generic={0x4e, 0x10, 0x4, "7460e6c3933e2fbacdda29d60c95ca4e6a63b562d02401f81577e764976524f1d1e041c1f24639436d92d0dcc1e7cdcb850993b66f924f3e7e0c48f900f9c093294492155a28979276ca88"}, @generic={0xd5, 0x10, 0xa, "c1c12a9a11820495c935bd44ac98219641583ce4c22c209e8d81bcf6ba243ddd3aef71007f9dc9fa386b5eb97dc718484998ef25dcf3f6760c7849ffa8ed5803b39ef94525a2dd749826f9876b2f27c574237dfb9f3388338312391e255e73825306a693b0ae80eb13e77db52db081e05d9e42c361f03ffb06489c8c2e3ee0fcb91e3a236ab697fd7fc4c2d098324ec2afc96869aa5984d7790f1669ecbfcc85fe1f296347c0331de42ebfbc13e9bcc93598f3ddffc733d3a2f2e1f6462e9027fe9d8609f220e8a57658ed90c5cefb143966"}]}}, &(0x7f00000011c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x60, 0x9, 0x4, "e35456bf", "5e16c9bc"}}, &(0x7f0000001200)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x4, 0x10, 0x9, 0xf4, 0x40, 0x2, 0x7}}}, &(0x7f00000016c0)={0x84, &(0x7f0000001280)={0x20, 0x0, 0x75, "c5b55bcfb49cd54245518de18b41f2f4213d0f6c078dc034889c11f198ebb3c669005f23c86237d54146ab0d9f1f78db8c43191b11ca21e498b180bc789ca587993d8e16fe11230e73627f83cc935f74e05e7a04f65ee2083349150d307a7569f4296996398216b574ac1a2fa9bf03dfbaa29ec8f4"}, &(0x7f0000001300)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000001340)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000001380)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f00000013c0)={0x20, 0x0, 0x8, {0x2, 0x80, [0x0]}}, &(0x7f0000001400)={0x40, 0x7, 0x2, 0x1000}, &(0x7f0000001440)={0x40, 0x9, 0x1, 0x20}, &(0x7f0000001480)={0x40, 0xb, 0x2, "5dec"}, &(0x7f00000014c0)={0x40, 0xf, 0x2, 0x1}, &(0x7f0000001500)={0x40, 0x13, 0x6}, &(0x7f0000001540)={0x40, 0x17, 0x6}, &(0x7f0000001580)={0x40, 0x19, 0x2, "100e"}, &(0x7f00000015c0)={0x40, 0x1a, 0x2, 0x3}, &(0x7f0000001600)={0x40, 0x1c, 0x1, 0xe0}, &(0x7f0000001640)={0x40, 0x1e, 0x1, 0x99}, &(0x7f0000001680)={0x40, 0x21, 0x1, 0x4}})
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000001880)={0x24, &(0x7f0000001780)={0x0, 0x11, 0x2e, {0x2e, 0x38, "2cab7684a30eca5a2198fbd44232a0495865088781c7b2e1a406f2144b59dfcae768e6fa02ab84a85ace6049"}}, &(0x7f00000017c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf4ff}}, &(0x7f0000001800)={0x0, 0x22, 0x23, {[@main=@item_012={0x1, 0x0, 0x9, 'I'}, @local=@item_4={0x3, 0x2, 0x4, "a05dbebb"}, @main=@item_4={0x3, 0x0, 0x8, "9c86fa62"}, @global=@item_4={0x3, 0x1, 0x1, "a2b2cc15"}, @global=@item_4={0x3, 0x1, 0x8, "5c7f1361"}, @local=@item_012={0x2, 0x2, 0x4, "5e11"}, @main=@item_012={0x2, 0x0, 0xa, 'y&'}, @local=@item_4={0x3, 0x2, 0x5, "348b0499"}, @main=@item_012={0x1, 0x0, 0x9, 'r'}]}}, &(0x7f0000001840)={0x0, 0x21, 0x9, {0x9, 0x21, 0x9, 0x9, 0x1, {0x22, 0x4c6}}}}, &(0x7f0000001a80)={0x2c, &(0x7f00000018c0)={0x0, 0x3, 0x3, "305cb2"}, &(0x7f0000001900)={0x0, 0xa, 0x1, 0x19}, &(0x7f0000001940)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000001980)={0x20, 0x1, 0xb4, "e94a318ead8f781ca4b65c2c70b9fb8351ed8bfa0c15a595b2df584f3cf6a843a0db3f76159ccaa06e9e51fe376730dc287c5dc20f00cc43adcf7ab83761b8e552336c291c5322de26530bc2df3505eac5c5c576578aa9edd9f9b23536df2ecabecd1cfc29f646d8f2a78421cd97f59f3ea59512c979c3136a56792c9fb1af279d02ea3002fd96453997ebfa490b8fd39ba50be842da870d5c0a6ea53d5b23458d1e7790dd83fff027cfeb3aa4da7e30c8ea80c9"}, &(0x7f0000001a40)={0x20, 0x3, 0x1, 0x8}})
r1 = syz_usb_connect$uac1(0x5, 0xdc, &(0x7f0000001ac0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0xdf, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xca, 0x3, 0x1, 0xfd, 0x88, 0x22, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xfbff, 0x8}, [@processing_unit={0x9, 0x24, 0x7, 0x4, 0x1, 0x4, "a276"}, @processing_unit={0x9, 0x24, 0x7, 0x1, 0x3, 0x1, "6888"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x3f, 0x2, 0x6, 0x27, "e40d3e", "b1a9"}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0xc1, 0x1, 0x2, 0xa3, "2c37fb5ffe9a61ca69"}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x7f, 0x4, 0xb, 0x2, "1a3cf2", "e8b3"}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x3, 0x3, 0x1, 0x5b, "e90b"}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x7, 0x2, 0x2, 0x3, "f8b50292c67f0142"}, @as_header={0x7, 0x24, 0x1, 0xca, 0x7f, 0x1002}]}, {{0x9, 0x5, 0x1, 0x9, 0x40, 0x6, 0x40, 0x2, {0x7, 0x25, 0x1, 0x2, 0x9, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x86, 0x1, 0x0, 0xff, "66ff", "b4a081"}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x1, 0x0, 0x0, {0x7, 0x25, 0x1, 0x0, 0xfd, 0x7}}}}}}}]}}, &(0x7f0000001cc0)={0xa, &(0x7f0000001bc0)={0xa, 0x6, 0x110, 0x1, 0x3, 0x3, 0x40, 0x7}, 0x37, &(0x7f0000001c00)={0x5, 0xf, 0x37, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x3d0e073a877bc9ed, 0x7, 0x2, 0xbe}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x6, 0x4}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x8, 0x4, 0x7}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "80011ca36e8b39e09e0d3f537a7b62f7"}]}, 0x2, [{0x33, &(0x7f0000001c40)=@string={0x33, 0x3, "5bcb36e797324dee8d0f8a9015cc5b8b6617170defe7ab97b41f5e595c4dbd6837a0c193ddf5c9307a14abfa441bfba83d"}}, {0x4, &(0x7f0000001c80)=@lang_id={0x4, 0x3, 0x500a}}]})
syz_usb_control_io$uac1(r1, &(0x7f0000001e40)={0x14, &(0x7f0000001d00)={0x40, 0x6, 0xad, {0xad, 0x4, "90419d34708c4af629764762e37a3bb0445852387f204a6c549a017c7c31c52c316837b64b8fb6b7364f7a6e0a1e795feb40703422e41e58d4e442faa805ff271051ae9e43b5288ce368a663de9ccf012307428c4c6e98a764853a22ea7c032bd373e7f4cd3f2476bd97dc71af9ba6dce5fcf46f1f18d05826cf0d00d647a81bda39bf1b3d54543fd0b9540613d1762a1474bcc5d6370afb0a42763373cb2985ccd10d2ab20e74ff19ff80"}}, &(0x7f0000001dc0)={0x0, 0x3, 0x45, @string={0x45, 0x3, "7d7eea5eef293fcdc12ebcdf1d18f18c8a6b462c750ac1fd9555b5468f4c89e17a6de179c932e8ff3553f44080ed11d4baa7cd69b2228ac50e05ab23ffefaf1986910f"}}}, &(0x7f00000020c0)={0x44, &(0x7f0000001e80)={0x20, 0x14, 0x6b, "675c37f53e0f7c25a43da119b137a00463d27152b5ee61877c0b01e88bf35c3ee55b18f12826e388004168fbc1bba196a745bb48debf58f5d3ce89f2d1fa7506812222d02686396a8d7b5ab457d2bdab54ad63454e66c929907d425c7ea183b1b8c85fb3f9402edafdca84"}, &(0x7f0000001f00)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000001f40)={0x0, 0x8, 0x1, 0xf9}, &(0x7f0000001f80)={0x20, 0x81, 0x2, "25e7"}, &(0x7f0000001fc0)={0x20, 0x82, 0x3, "b4baba"}, &(0x7f0000002000)={0x20, 0x83, 0x1, "de"}, &(0x7f0000002040)={0x20, 0x84, 0x4, "5d1cbecc"}, &(0x7f0000002080)={0x20, 0x85, 0x3, "f140d9"}})
syz_usb_control_io(r1, &(0x7f0000002280)={0x2c, &(0x7f0000002140)={0x20, 0x4, 0x34, {0x34, 0x3, "be074b9efa52671f2a2ca91b2b87996c420f247d381e72210e16c086807597a0ff69c58c42aa1a38a1f1be5bf89229a4096d"}}, &(0x7f0000002180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x455}}, &(0x7f00000021c0)={0x0, 0xf, 0x8, {0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}}, &(0x7f0000002200)={0x20, 0x29, 0xf, {0xf, 0x29, 0x9, 0x60, 0x0, 0xfe, "c67bf36b", "157d68c3"}}, &(0x7f0000002240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x10, 0x8b, 0x82, 0x4, 0x80, 0x3994}}}, &(0x7f00000026c0)={0x84, &(0x7f00000022c0)={0x40, 0x18, 0xf, "fc7f034bcf596516c74cb8149e0784"}, &(0x7f0000002300)={0x0, 0xa, 0x1, 0xb8}, &(0x7f0000002340)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000002380)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000023c0)={0x20, 0x0, 0x8, {0x80, 0x20, [0xf0f0]}}, &(0x7f0000002400)={0x40, 0x7, 0x2}, &(0x7f0000002440)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000002480)={0x40, 0xb, 0x2, "c1ee"}, &(0x7f00000024c0)={0x40, 0xf, 0x2, 0x4}, &(0x7f0000002500)={0x40, 0x13, 0x6, @random="6b36aac9e0d4"}, &(0x7f0000002540)={0x40, 0x17, 0x6, @random="351b4db34fd4"}, &(0x7f0000002580)={0x40, 0x19, 0x2, "b0f7"}, &(0x7f00000025c0)={0x40, 0x1a, 0x2, 0xa4}, &(0x7f0000002600)={0x40, 0x1c, 0x1, 0x3}, &(0x7f0000002640)={0x40, 0x1e, 0x1, 0x81}, &(0x7f0000002680)={0x40, 0x21, 0x1, 0x4}})
r2 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000002780)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0x20, 0x3, [{{0x9, 0x4, 0x0, 0x9, 0x1, 0x7, 0x1, 0x3, 0x2, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0xb1, 0x8, 0x68}}, [{{0x9, 0x5, 0x82, 0x2, 0x200, 0x4, 0x0, 0x4}}]}}}]}}]}}, &(0x7f0000002b80)={0xa, &(0x7f00000027c0)={0xa, 0x6, 0x110, 0x0, 0x4, 0x9, 0xff, 0x4}, 0x5, &(0x7f0000002800)={0x5, 0xf, 0x5}, 0x8, [{0xe7, &(0x7f0000002840)=@string={0xe7, 0x3, "0adc1601387e62b40cdb372fe198215e4497c23221d8fea0c16a1a33f8372323fc2906b8cdacc4ddfb08bcd6a766a8c72c611fe1c540d8446068c822a5c8bf0a087b5ed8434f69647430d1791f531cd0b1b99c73f27151ebdbeb99c9e7d3151302cedd3ff9947b7cd24cb34e74efcfeaa013ceb28cbd4d7b95c340697a2a9f1df239adb02ef37747d38b6e2c454f3dceb32556d1d7c2f50b9f5eec571aca866a68b87b82a4d1f74716af08a6f808fbc99d14fc70db4d3a29b5ac045bfe2a9806021ebc4e91a253e2aef425faa70a5cf40a1f297f5589f15c6dcbf749948aacd46f94f47e64"}}, {0x4, &(0x7f0000002940)=@lang_id={0x4, 0x3, 0x457}}, {0x4, &(0x7f0000002980)=@lang_id={0x4, 0x3, 0x81a}}, {0x4, &(0x7f00000029c0)=@lang_id={0x4, 0x3, 0xc0c}}, {0x4, &(0x7f0000002a00)=@lang_id={0x4, 0x3, 0x100a}}, {0xb8, &(0x7f0000002a40)=@string={0xb8, 0x3, "bf176545fb4fc8f533dfb24a66c8804a940b3887727afcdf708b0a9cf2d818aac062f889558dc2b09676dc89abba643c1740e43bc0faf28be908319e70e81c60c88ba79ec67f906f5ddd5e118d8e38fd57419364030d06c80c44ffa48252f96691493112b2a5eb91f2de16f3d7128ac36e94c27d075e72b180d3524a29e33abd472ce449436287066262f4f490136f9e38b350468f006d9ab2bba9045def37a67f426203e59407a4ce195a0779d712339c9ff7683380"}}, {0x4, &(0x7f0000002b00)=@lang_id={0x4, 0x3, 0x429}}, {0x4, &(0x7f0000002b40)=@lang_id={0x4, 0x3, 0xc07}}]})
syz_usb_control_io(r2, &(0x7f0000002e00)={0x2c, &(0x7f0000002c00)={0x0, 0xb, 0x78, {0x78, 0x30, "7c1db66b82c9e1f7ebb6126a487fe92e9a3ab588ae50df61a5c6319675b41a3ab6ce89f3d0e66cc76eabb28b3b08194a40a5ade1b92b2993e0051fd26ce78a15a90259bb24b1bc31ae83b080e8a5de9da762fb3cfee1f8bb0c8818a376542d735ffb8525d4011e4712e510d1c70ef803883506add23b"}}, &(0x7f0000002c80)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x404}}, &(0x7f0000002cc0)={0x0, 0xf, 0x9b, {0x5, 0xf, 0x9b, 0x6, [@generic={0x5c, 0x10, 0xb, "e73b278fc7b6600b4d6e9c32ee9ee96a889766b573d164310b9b2ce59e23b515da40f98fdf37884c8fcb3ade05d9594700b36a0ba87a968c8c4d11650750c66c6b6f526957be089d278118091fc0b7836d62a1d1e1a8f86b1d"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x7f, 0x7, 0x6ca}, @ext_cap={0x7, 0x10, 0x2, 0x6, 0x4, 0x7, 0x800}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x8, 0xfb, 0x3}, @wireless={0xb, 0x10, 0x1, 0x4, 0x2b, 0x2, 0x3, 0x8, 0x7}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "a995f0f785e9d2508db08aed57dcc093"}]}}, &(0x7f0000002d80)={0x20, 0x29, 0xf, {0xf, 0x29, 0x4, 0x60, 0x7, 0x1f, "c8400182", "b798096d"}}, &(0x7f0000002dc0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x9, 0x1, 0x10, 0x80, 0x7, 0x6, 0x9}}}, &(0x7f0000003280)={0x84, &(0x7f0000002e40)={0x0, 0xe, 0x49, "8850c62c69efe18ae5719b866c71063d2a53cca2d4652d257ef8fe8a66ae009c012a8e1fd12b05b627f0b59a3872f2297ecff388406db9d0d5f33b707c403a71977aa28f32750ecb02"}, &(0x7f0000002ec0)={0x0, 0xa, 0x1, 0x20}, &(0x7f0000002f00)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000002f40)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f0000002f80)={0x20, 0x0, 0x8, {0x1c00, 0x2, [0xf00]}}, &(0x7f0000002fc0)={0x40, 0x7, 0x2, 0xfec}, &(0x7f0000003000)={0x40, 0x9, 0x1, 0x2}, &(0x7f0000003040)={0x40, 0xb, 0x2, "91c7"}, &(0x7f0000003080)={0x40, 0xf, 0x2, 0x8}, &(0x7f00000030c0)={0x40, 0x13, 0x6, @local}, &(0x7f0000003100)={0x40, 0x17, 0x6, @remote}, &(0x7f0000003140)={0x40, 0x19, 0x2, "73ad"}, &(0x7f0000003180)={0x40, 0x1a, 0x2, 0x8}, &(0x7f00000031c0)={0x40, 0x1c, 0x1, 0x9}, &(0x7f0000003200)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000003240)={0x40, 0x21, 0x1, 0xfa}})
r3 = syz_usb_connect$cdc_ncm(0x3, 0x9f, &(0x7f0000003340)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8d, 0x2, 0x1, 0x1f, 0x70, 0x3f, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "8861d01a5c"}, {0x5, 0x24, 0x0, 0x81}, {0xd, 0x24, 0xf, 0x1, 0x9, 0x4, 0x7ff, 0x3}, {0x6}, [@obex={0x5}, @country_functional={0x10, 0x24, 0x7, 0x7, 0x138b, [0x1ff, 0x3f, 0x3f, 0x8, 0xd0ea]}, @call_mgmt={0x5, 0x24, 0x1, 0x3, 0x4}, @mdlm_detail={0xb, 0x24, 0x13, 0x5, "4eba26f02b0231"}, @dmm={0x7, 0x24, 0x14, 0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x87, 0x3f, 0xe2}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3, 0x7, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x81, 0x0, 0x20}}}}}}}]}}, &(0x7f00000036c0)={0xa, &(0x7f0000003400)={0xa, 0x6, 0x110, 0x40, 0x81, 0x0, 0x10, 0x7}, 0x47, &(0x7f0000003440)={0x5, 0xf, 0x47, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0x8, 0x7, 0xf, 0x4}, @ssp_cap={0x1c, 0x10, 0xa, 0x9, 0x4, 0x3, 0xf000, 0x4, [0xc000, 0xf0, 0xf, 0x0]}, @wireless={0xb, 0x10, 0x1, 0xc, 0x7a, 0x1, 0x7f, 0x8000, 0x80}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "676bc9c74758dc56b469278c2d2cc047"}]}, 0x5, [{0x45, &(0x7f00000034c0)=@string={0x45, 0x3, "6b92e44a2184f605037cf5c5b721dba8cd756881d17ab88f6cd0b2b4d74c4e07df171b7ebc1d816b3bf4db9b3b5e0973456cf6528727f3347f04fe16b70cd384f7e2c7"}}, {0x4, &(0x7f0000003540)=@lang_id={0x4, 0x3, 0xf0ff}}, {0x4, &(0x7f0000003580)=@lang_id={0x4, 0x3, 0x44d}}, {0x6a, &(0x7f00000035c0)=@string={0x6a, 0x3, "883545d509ccaf8f0d2734d71b07295bdf82277090e3de5f88cd90ced03168b8e5d7938c5ed96648b39339c4c9c60ccba9f87bc22c17a3c0418817860441c054ecf49167fac0cac8707114747f395de8131e075c2baeb55752e5618d58a50ac8b81fe5f156a2714a"}}, {0x7e, &(0x7f0000003640)=@string={0x7e, 0x3, "19782423a3978532d80c7f1c0b5fb10c4430dbe602ca7abb9caeb5fdfe60d385195de41790e0259fcfd8fec3989840b8f31a903ce377e8da276d541ede28ede0a2977c227597cb893d05b7d9a9fd4fc494fe81ef1e49a1bb9528ea494b32aa2be81d6d0e9cb78ae715383e71e6cbbc8b767d9e13f831ebfe41907e64"}}]})
syz_usb_control_io(r3, &(0x7f00000039c0)={0x2c, &(0x7f0000003740)={0x20, 0xb, 0xde, {0xde, 0x10, "ca31cf1122a592cabe92d8ae86611782e4af139881e99dff8655479530db9c18610691147f841dbed270d02aceef17af94dd94dde09cf86042485fd01fc75c949728e80a053f839c096264e22a7ed1e929a3c4266f74c3b4d00ef58e0b8148d69129bfc34029596834c47ffcf2dd59470edef709509432e1ce4771280b7474930c03de08142b37ec63b04d43cb63adbbbe4ffd242e7203c94ef365b93a109cc4101592a4f70ca90b18183148a4042fe89b2a03c8f7c87bc9f8d8131e6d0c67418c3c42c49adc6e858b02f81aed6676b1ba5dcaf19f7a4e7d373b065c"}}, &(0x7f0000003840)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3001}}, &(0x7f0000003880)={0x0, 0xf, 0x7b, {0x5, 0xf, 0x7b, 0x3, [@generic={0x57, 0x10, 0x3, "82551366e6b07b7ee95ed38812f766ad5945abf3192a7669ba73abb519645ad936a971052d5d151a32a69c98ce3b889e65a83cc0505a17956afca22d6c5708fc6c7c2aa3f8782210d09d0689f9c74c6c652df88a"}, @wireless={0xb, 0x10, 0x1, 0x0, 0x0, 0x47, 0x1, 0x3, 0x1}, @ss_container_id={0x14, 0x10, 0x4, 0x20, "bd9cbd849c32b61ff298521ba2c251ca"}]}}, &(0x7f0000003940)={0x20, 0x29, 0xf, {0xf, 0x29, 0x40, 0x4, 0x81, 0x80, "10a9b20c", "7b530d84"}}, &(0x7f0000003980)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xa2, 0x3, 0xfb, 0x8, 0x40, 0xf2, 0x7}}}, &(0x7f0000003ec0)={0x84, &(0x7f0000003a00)={0x0, 0x14, 0xc0, "66e73e74f4b7640e7836f9c527beff8da5d8a145c938d4eabb5a6cd33fea59356012cdbe49568960a9711bed541fdaca0cbbcdd6bb623a64bbcb386e99d3bcc2f38c300a763e576911b2dfa7c1cac15b960950ef3e53646372e7b1dbe7ec387784a306b32c158190466d5348e62f6ef5c023c9cef1883b57cad1006acd4cf594bb64ed61ab8b766140266eed65125c8a12baf98acaf4f5691f225d9e4143cfc39d764da440ee0532ee5f384b172684acd29fc081233aca4271ce9b6f0305ab1d"}, &(0x7f0000003b00)={0x0, 0xa, 0x1, 0xa0}, &(0x7f0000003b40)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000003b80)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000003bc0)={0x20, 0x0, 0x8, {0x140, 0x4, [0xf0f0]}}, &(0x7f0000003c00)={0x40, 0x7, 0x2, 0x88}, &(0x7f0000003c40)={0x40, 0x9, 0x1, 0x46}, &(0x7f0000003c80)={0x40, 0xb, 0x2, "fb53"}, &(0x7f0000003cc0)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000003d00)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000003d40)={0x40, 0x17, 0x6, @remote}, &(0x7f0000003d80)={0x40, 0x19, 0x2, "bb24"}, &(0x7f0000003dc0)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000003e00)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000003e40)={0x40, 0x1e, 0x1, 0x2}, &(0x7f0000003e80)={0x40, 0x21, 0x1, 0x7}})
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000004040)={0x14, &(0x7f0000003f80)={0x40, 0x24, 0x4e, {0x4e, 0xa, "d0fab59678367157782891621f94b3fb1158ce277959c0d1e553161abf6832b562c7bd6db4bf2f129b80b92f96aaecde1ff651e0e8eee8b0107df383f7c35f4e2e0fa27b0fe54f98ea98741a"}}, &(0x7f0000004000)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000004300)={0x44, &(0x7f0000004080)={0x40, 0x9, 0x88, "1dee9b5b642e9a187a1097f6019f6b8adc439048947d6fa54a7aea8637a79ec6266404da92812fdb1468b04e1500f81c1ac0bf505b43d5f497c56af53fa299e9eaf8d0f412d624806d9571373e39fc6691754e8d1eb076f5dc78616c96487fd51de7b4e1e83aae86713824614c9ef48021b99f0cfd61d438194453f7122b2e56187584870d34df1c"}, &(0x7f0000004140)={0x0, 0xa, 0x1, 0x1f}, &(0x7f0000004180)={0x0, 0x8, 0x1, 0x40}, &(0x7f00000041c0)={0x20, 0x80, 0x1c, {0x4, 0xfffe, 0x7, 0x63, 0x7f, 0x6, 0x80, 0x6, 0x6, 0xc14, 0x2, 0x8}}, &(0x7f0000004200)={0x20, 0x85, 0x4, 0x7fffffff}, &(0x7f0000004240)={0x20, 0x83, 0x2}, &(0x7f0000004280)={0x20, 0x87, 0x2, 0x7}, &(0x7f00000042c0)={0x20, 0x89, 0x2, 0x1}})
r4 = syz_usb_connect(0x3, 0x734, &(0x7f0000004380)={{0x12, 0x1, 0x200, 0x9b, 0xbf, 0x35, 0x10, 0x1199, 0x9019, 0xc8f4, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x722, 0x3, 0xbd, 0xfd, 0x30, 0x3f, [{{0x9, 0x4, 0x0, 0x2, 0x3, 0x1d, 0xc4, 0xf7, 0x0, [@uac_control={{0xa, 0x24, 0x1, 0x7}}], [{{0x9, 0x5, 0x5, 0x8, 0x8, 0x2, 0x2, 0x7f}}, {{0x9, 0x5, 0x9, 0x10, 0x3ff, 0x80, 0x8, 0x20}}, {{0x9, 0x5, 0xd, 0x0, 0x3af, 0x4, 0x20, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x81, 0x8}, @generic={0x15, 0xd, "0e86c61c9371a1628a8d05c1c60b8669526708"}]}}]}}, {{0x9, 0x4, 0x4a, 0x7, 0x4, 0x82, 0x7c, 0x30, 0x9, [], [{{0x9, 0x5, 0x7, 0xc, 0x8, 0x20, 0x6, 0x0, [@generic={0x13, 0xf, "be067158c943cff2bcf94fc13ad9efabe3"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x40, 0x20, 0x8, 0x6}}, {{0x9, 0x5, 0x3, 0x1, 0x3ff, 0x3, 0x4, 0xff}}, {{0x9, 0x5, 0xf, 0x8, 0x400, 0x4e, 0x0, 0x1}}]}}, {{0x9, 0x4, 0x69, 0x3f, 0x8, 0xe6, 0x31, 0xb4, 0x3, [@generic={0xf4, 0x7, "0e886b64cbe50d832b54764e63f6287a42e4b9c9f5cf95ebf291a63a2bf75daa6e4e7f473dd96550e8d3460b22b893cb2626d8b1f43340b227469f0b708b84cc90e1a67a464e19bb496fad388e5a734059d31ae2c9af752866b6c16c96a1ae37a8299d78de08e8cffd0e81f82e24fe40bbf912531a755927b2cbd5a1c986c6ed21ac7a5957260d1bb628fae3cb735499788c629731fb3a9d4c64e106b30eb7616962c483ee696d47111e604c39cd6a53dce09c62cd45eea566fd8df2df0f7c30220b2f21dd63141214c302b2762cf8cc228108274cda6934f67ae62e6b808f0c344499593e950a45be0cfa8d2845ee83f386"}, @cdc_ncm={{0xa, 0x24, 0x6, 0x0, 0x1, "921cc1ca96"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x4, 0x20, 0x7ff, 0x7e}, {0x6, 0x24, 0x1a, 0x5}, [@mdlm_detail={0x59, 0x24, 0x13, 0x3, "535ce9abbd7dcfd5c18e5d27a2da0fe29a721ec4bfe2bfe761a34eeb5ab071542649a52f15cd2100224dfbdd9776f355edc401616c22cf9ff168ad7a5c59052b12f128814c33f790269a08b295f5f44234a4d00dd8"}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x24}, @dmm={0x7, 0x24, 0x14, 0x100, 0x40}, @dmm={0x7, 0x24, 0x14, 0x6, 0xfff}, @country_functional={0x10, 0x24, 0x7, 0x0, 0x7, [0x5, 0x2, 0x0, 0x31, 0x1]}]}], [{{0x9, 0x5, 0x8, 0x10, 0x8, 0x3, 0x3f, 0x8, [@generic={0xb1, 0x8, "a5a3ac04e836df7d2dbb68fbe028a110ddfb32f3562b7b4ec73850098e134bb5685d5523d3d72d5bab5ecefeee0fb17497d550decb105bc34fc85f24716c7a225821a33845ce6e248749adef3b1672735168fdb6165caf5bf81a52ed99b0059f00621baaa8bd6586d05b0f4b94366f2d0b314b0078e88281cf750fabb960a87c837680423a4fc4634a49e1d52277702beef01da39863ad4491a1fe74194ff06e5b452a08ebdb2f90d3267dcbcf6443"}]}}, {{0x9, 0x5, 0x9a6bd4d78faad8cc, 0x8, 0x8, 0x6b, 0x7, 0x2, [@generic={0xbb, 0x1, "14f2f550b5d1f740145420666a8a07a74c11cb76eda8d54d9274fe99b50e40613d9513d0100199d68557cf0288330ee5d55f84458ede59fe50710ad342ef10e5efeaee348f24cac064160a7d240c5154a36548b91a1530a6f1e190a30dc452b0c5b63cd8db81da2d10ed1589aaea14e17d8687bb1cebe02c98b8548b8d171e1f733aeeb3937ef1899554087d962609b1a484f44a7b0dd9ad175f7b311c24e6417e3a19dcf9671db8b33b3e627c2ea29833e8a80233c9565e52"}, @generic={0x42, 0x0, "570c39cb8011356c38943a6059414c074f55e07c1a53305c9cbc2aff51f6b748ccabbeef7734c9ccb62915b5c1fe6693de62517af5bb84750fb817a9e46b5cda"}]}}, {{0x9, 0x5, 0xe, 0x3, 0x3ff, 0xd3, 0x40, 0x1f}}, {{0x9, 0x5, 0xe, 0x0, 0x10, 0x0, 0x7f, 0x4}}, {{0x9, 0x5, 0xe, 0x0, 0x8, 0x2, 0x7f, 0x1, [@generic={0x8b, 0x31, "6034fc1a1236955554892f306eec18995f1f3cd0da1dc537addad6055a926f95dca7f26f7bed88b8a41f3b325df838910054fff068a91b8e5e1a2aa53104af8a7d352cf34c2d9a849cedf8cdc7d9873ff7bd6edae578abf7552d6a27d314b25af9b2f4f7387162573bc2d874e52998536344c530c0152d017082ab078bc856f86363feb0d8966d40c9"}, @generic={0xf2, 0x30, "0632318e4b87805e03265621e70cffdf7c60e420ef05663dd5b8359b1f65ad9629f60064bbb4c41f7af44d10e84341560f54efd98c85ec68299a44658d8da3fa3744106092a0e6b3c068f301fcb4b1b00a80bee9377554accabda768cd38323be9c5f25c4ad685008e7443f2e1ac693fac5e2fe21ce7fa72d494f9491b217ef2ad45c79100df6ba2e7fe2dca24fa58fa9cb44fa1eb1e5e0d3332a507e3c57e7bb10777b40acce1b7f5914505a0e84977ef3fed25f7cee64fc2303423561001df219b75ac6742ca2a8dce8971d49ddaf0bd74abb3c1f98524651a7fb07dfec63b77397bb3545d4384d47b2c007241b772"}]}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0x0, 0x4, 0x2, [@generic={0x6a, 0xf, "404b0e88b2a439113f64b89d15af97136408e754b95bc48f62c029b63ddb05a362c18076f121fdb4b454a652354a90abf0d1092cbce18824539a955b45d670a6f63388955b6d9cddd61db4ff62488f135bfab3a4bbea6464e2668cd4291364d80337c44b47da0922"}]}}, {{0x9, 0x5, 0x6, 0x0, 0x400, 0x88, 0x1, 0x17, [@generic={0x1a, 0x21, "edb44bc3764766241d670569eeb8a13910bcf82f44916300"}, @uac_iso={0x7, 0x25, 0x1, 0x180, 0x6, 0x2}]}}, {{0x9, 0x5, 0x1, 0x10, 0x0, 0xc7, 0x1, 0x1f, [@generic={0xf0, 0xb, "2ee6b5693b0c0163bf06d8253804410b71c8e75effe2f139b4ab09b834ac6c95d6fb342095d84133e6af33f513877e1150b925c3b97f07d2a33912796bf80f628c0b9c7a49abf51e9c0447e9c209a120cbd422d7ad7761a4a8bb3f1dfd4a98ae8f5cc967766d86ee2a807efc03fca5dca2d8857e0f15b970c333f704c1fe42c4eff87ceab90af9bf1c997e86f182c03d5ad868f3790f6755fd6fc054acd1f56866d9ced53b46d4ea408c436be98825b4d6819a438b9298fbf71d11d9a77d388b0083d6ecc018221224cc86343e9c2aa2672b6d06cfb4451fd7434e871ab2c02c14e064c3eb229a63bb22effded18"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x81, 0x8000}]}}]}}]}}]}}, &(0x7f0000004dc0)={0xa, &(0x7f0000004ac0)={0xa, 0x6, 0x310, 0x4, 0x0, 0xea, 0x30, 0x1}, 0x33, &(0x7f0000004b00)={0x5, 0xf, 0x33, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x906b02bae2899c22, 0xd, 0x4, 0x2}, @ssp_cap={0x24, 0x10, 0xa, 0x6, 0x6, 0x6, 0x0, 0xfffa, [0xff5f21, 0xf, 0x30, 0xcf, 0xf, 0xffc180]}]}, 0x8, [{0xae, &(0x7f0000004b40)=@string={0xae, 0x3, "f48b585a5e510102a69ff0b84eaabe67d043acde2673c4ab215d96be2eadc7e241997ed4276aaa05592b8d7993c63d898f307a55e9f2632e8663c8f2b12f3d2af7faa5dc48903fc79c329fca04c780c4539a7355fa8d372cb2f1621607bb0d595a4bb468003b6a67cadef8eb58fab45d8e3fe5aa7690e6a4cad5c5e6df649f9ed862350aa152a0626e5171fafdd9eff0d071ef3dbf6c85ee4186ddb8585c05b6128416740e79f3cb9ccba3ed"}}, {0x4, &(0x7f0000004c00)=@lang_id={0x4, 0x3, 0x861}}, {0x4, &(0x7f0000004c40)=@lang_id={0x4, 0x3, 0x42d}}, {0x4, &(0x7f0000004c80)=@lang_id={0x4, 0x3, 0x860}}, {0x4, &(0x7f0000004cc0)=@lang_id={0x4, 0x3, 0x180c}}, {0x4, &(0x7f0000004d00)=@lang_id={0x4, 0x3, 0x7c6e}}, {0x4, &(0x7f0000004d40)=@lang_id={0x4, 0x3, 0x1c0a}}, {0x4, &(0x7f0000004d80)=@lang_id={0x4, 0x3, 0x41b}}]})
syz_usb_control_io$printer(0xffffffffffffffff, &(0x7f0000004fc0)={0x14, &(0x7f0000004e40)={0x20, 0xe, 0xa4, {0xa4, 0x22, "2f8819455868f2a9c919920f7fb4fc4464e5f085a16a992073124adc1f8e5cda0e926ac7b6ffbcd7909758af1bdc2a84f033d1040398076f8504685d4c1f8187f46f180b2bc235a6a10a22d2217d64b15d4f880bd44162f67d2fe3787232a7f30a396e7f49e75708a1218e08bbba4c0d16b44e39a21fc97c4948a180945ae50a978d8499b87907e417a0558de0299521fa10adbde53e333f4abb0da92fde17090911"}}, &(0x7f0000004f00)={0x0, 0x3, 0x89, @string={0x89, 0x3, "f5dcebfcbf3b9dd04d2f650a9e89116f9fe1e4e0aa9a0724184567064df91df2b13795d00ec53fef2bab296edf31a67315ee50188ac0b16e291fb74ab5ac62cb369224f1febbdf8dd1f0395ed358aeba1217ab7c7252c33c745540ab17c47f654086845b7c79d9b9898a3db9cd9424181a965e3303a5d4def523348805552a8c76e3a7d6176383"}}}, &(0x7f00000052c0)={0x34, &(0x7f0000005000)={0x0, 0x15, 0x8e, "4f12bc356168ecc4edd4fdd7e29124b5285618c98b91240e113aa1954a77b24612df6e655fe8d8f733875b36ed4fd88e347974d946e4c287183eb0b79ab47f4701cc66dcaaa3d4e3fb01856162fa1d700c2a99b4119810204bd74108375f6c8a47f10eb0f8e9edc2ddfb0f352ee426049ee9f77b49a8d3156e9886237e6831e589f7684fc1b0456cc5abe36bbb53"}, &(0x7f00000050c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000005100)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000005140)={0x20, 0x0, 0xdd, {0xdb, "3296e20c60f56a0ac5f19109d27fd07fd54bf9f26b2b231fc09a1ab523a59c323d25d0e45e84a92014afa891bbd90ec13f288cbaf5651e6008174336f9080696f27da7d15de5a817fb3b2acaf2538628d9bbefea5dd6c735a5684cb12137c1b8f63d69e63d05b6bbf16d3b43bd4588a9537f020142f404ba5800c255dcf8cd7694b9b6c00ac5f2bbf914aa6a67792c4b5e630ac1c5c7dcb2c944d95e989e207caaff99b4adc3d54fe7d84e893d18fa8848320d2f63def6ebccdd74d9e79309f4e667637abd2bab20a980b11c4c0e0ce7a942813facc555bf0d4772"}}, &(0x7f0000005240)={0x20, 0x1, 0x1, 0x90}, &(0x7f0000005280)={0x20, 0x0, 0x1, 0xbf}})
r5 = syz_usb_connect$cdc_ncm(0x6, 0x7d, &(0x7f0000005300)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6b, 0x2, 0x1, 0x8, 0x10, 0x40, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x3, 0x3, 0x81}, {0x6, 0x24, 0x1a, 0x7f, 0x4}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0xc0, 0x9}, @dmm={0x7, 0x24, 0x14, 0x0, 0x9}]}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x6, 0x6b, 0x8d}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0xa6, 0x7, 0x1f}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x6, 0x1, 0xfb}}}}}}}]}}, &(0x7f00000054c0)={0xa, &(0x7f0000005380)={0xa, 0x6, 0x300, 0x40, 0x9, 0x51, 0x10, 0x85}, 0x41, &(0x7f00000053c0)={0x5, 0xf, 0x41, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x12, "d5f537b1cd8fc257eea3565f5b89941f"}, @ssp_cap={0x14, 0x10, 0xa, 0x6, 0x2, 0x7fffffc, 0xff00, 0xe49, [0x0, 0xc0]}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "d27402f4122b0ba47ab0e1a0b984429a"}]}, 0x2, [{0x4, &(0x7f0000005440)=@lang_id={0x4, 0x3, 0x300a}}, {0x4, &(0x7f0000005480)=@lang_id={0x4, 0x3, 0x82c}}]})
syz_usb_control_io(r5, &(0x7f00000057c0)={0x2c, &(0x7f0000005500)={0x40, 0x2, 0x80, {0x80, 0x7, "4b16a895e67ff2fe370401eb08244c56cf8d48d52f209486c22d4eb195adaa01a699c4552e7c88cc179ce7101d3fa5ce2e058c6f12d7a6fab7411d1c008dec4b3da63754bb87e9aa2c3fc44eb9f1da7266388f53cea6e121f2508ba4ea7217e1fc7ab67001bfcb85b46b02d1a7f5e42fd04b3a22afee16757c21d4c83814"}}, &(0x7f00000055c0)={0x0, 0x3, 0x24, @string={0x24, 0x3, "bf180c9ae5ba748878ec955145da6b59150e7e5a7b5bffa53bcb2751c391ef4b5c37"}}, &(0x7f0000005600)={0x0, 0xf, 0xfe, {0x5, 0xf, 0xfe, 0x4, [@generic={0x49, 0x10, 0xb, "fbccf3f98244d744a16e004bef409ac0ef3b91ae1dd148478c9755bd517249d6fdf2eccc8d14418e88882c3fbe4c322da033d48c5596fdefada02d841c6f09f9b7ba47cae7ea"}, @ssp_cap={0x20, 0x10, 0xa, 0x3, 0x5, 0x68, 0xf000, 0x5, [0xff00cf, 0xc0, 0x3f30, 0xc00f, 0x30]}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "40438d20f09ad6533258ce63cd850eef"}, @generic={0x7c, 0x10, 0x3, "ddd9c0d8d85a810fecb5bf9f6079fd589221cb96d64b52042a2125a9ee230c731a6dc73d0430da304957980e88ceb4779a817b7384ed409b82beeb0405ef29dab8895818ba6d050cd03ed72618d33683ceca1cbe517884e902cda3f1c660f89b6f38ce5222a159cab23ebf67fd722f5869950d410faeb469ea"}]}}, &(0x7f0000005740)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x0, 0x9, 0x64, "eb9304ff", "8e23246c"}}, &(0x7f0000005780)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x10, 0x0, 0x9, 0x4, 0x1000, 0x7}}}, &(0x7f0000005cc0)={0x84, &(0x7f0000005800)={0x0, 0x14, 0xdb, "c65207b3cfbf40611fe05bb55d6f847c71b7029d07dff01ad41acfd2c4363e594f74ce53bd7e6c88e337870879eb35a9d557eb22066f8dd58b375aba6bf1d264bef2f1e1d8ce7983800a27726d860483b5867a15cedd02c9702e09dcb316f021332fae94bcc5ca072a5b8be33d911d266ef08eecc90fb75ea4da45ca2d75c7b202bb4d3fd2acd14acc0814fd022d85e6094af54728d89fbc373acded65475cb4b94e07c5a0b5766d17910d978b365828b795fa7e7f0a0c1512dd1d862ea5fffa4456af5bb4ed4a3d81f8194903839be19a122241d91353712595be"}, &(0x7f0000005900)={0x0, 0xa, 0x1}, &(0x7f0000005940)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000005980)={0x20, 0x0, 0x4, {0x1}}, &(0x7f00000059c0)={0x20, 0x0, 0x8, {0x20, 0x0, [0x1e0]}}, &(0x7f0000005a00)={0x40, 0x7, 0x2, 0x7}, &(0x7f0000005a40)={0x40, 0x9, 0x1, 0x1f}, &(0x7f0000005a80)={0x40, 0xb, 0x2, 'ew'}, &(0x7f0000005ac0)={0x40, 0xf, 0x2, 0xffa}, &(0x7f0000005b00)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000005b40)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000005b80)={0x40, 0x19, 0x2, "9b83"}, &(0x7f0000005bc0)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000005c00)={0x40, 0x1c, 0x1, 0x5}, &(0x7f0000005c40)={0x40, 0x1e, 0x1, 0x8}, &(0x7f0000005c80)={0x40, 0x21, 0x1}})
syz_usb_control_io$uac1(r1, &(0x7f0000005ec0)={0x14, &(0x7f0000005d80)={0x0, 0x5, 0x1d, {0x1d, 0xa, "f5ddb9eb6b3ca5525d498ff3a0d91b8a067c364691fa93f1c6cb90"}}, &(0x7f0000005dc0)={0x0, 0x3, 0xcc, @string={0xcc, 0x3, "107f87a062e9b7723d12503b642b5b0e64fb24d069ae238de0ed57843c719bc9ea56c1253131dd03d0a339b84b87d5dff7f5e9ad2890dbdfce11c86566a27f4fa3824c3481a7968d51a1736e4182b82f5ab54bdec802c7da10d4b609906c2071393b151096213c415310e12b460e57930a2b456a7c41455f4361e91e8f2ad7f26b9e6294b9cb03f9aa12d04741acd5efa2f895c2502a901f0edac12ab84a21ac3cfb7437b743f101d67328b38a8ea89ae78b77f3586c8d785383440cc9704c2f2f9cd48657986de6e06b"}}}, &(0x7f00000061c0)={0x44, &(0x7f0000005f00)={0x40, 0xe, 0xdd, "ec37bd4b1a81536cceaadf8fc1e189f8a1ba67d2186c2fef12fefdbda9063f5775242280ce4cf04deadec4fba2cf74311afa40b6c508f0b5551d17ef1475ee21112da903229f231d4cef3cca9d54e9b84b004e735b07f1f715deb833c3efa160e7df84b929d97fb68374b3bbb3b452ec66c30ca3e58bd4930e3b6d9204932582db587e173a21433d056e2d611d28950adcd713013cef99b615b96113b4ccce5b092fb9573ee0005d5e59abe0bcd893d252f7cf98424746c0d270eaa86eaacba92180d9b8cf418502844b57e6df00d122aa68125d5d0b525c43ee160ec7"}, &(0x7f0000006000)={0x0, 0xa, 0x1, 0x1}, &(0x7f0000006040)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000006080)={0x20, 0x81, 0x1, ']'}, &(0x7f00000060c0)={0x20, 0x82, 0x3, "bda5fd"}, &(0x7f0000006100)={0x20, 0x83, 0x2, "fd37"}, &(0x7f0000006140)={0x20, 0x84, 0x4, '\bsB%'}, &(0x7f0000006180)={0x20, 0x85, 0x3, "6673f7"}})
syz_usb_control_io$hid(r4, &(0x7f0000006380)={0x24, &(0x7f0000006240)={0x0, 0x22, 0x4, {0x4, 0x9, "fb86"}}, &(0x7f0000006280)={0x0, 0x3, 0x56, @string={0x56, 0x3, "b00187f37f28aa8bd1a483c680cae4340e937e6992c8b1779ae85413c209a96661639d96903b671b2e1b70bc33b599eec3ae943e31941753edf398a39f0095f3bd306e775a02f50abd00aaf94cad4844b332536b"}}, &(0x7f0000006300)={0x0, 0x22, 0x14, {[@local=@item_012={0x2, 0x2, 0x3, "98c0"}, @global=@item_012={0x0, 0x1, 0x1}, @global=@item_4={0x3, 0x1, 0x6, "973dad8b"}, @global=@item_012={0x0, 0x1, 0x4}, @main=@item_4={0x3, 0x0, 0xa, 'TBX\t'}, @global=@item_4={0x3, 0x1, 0x6, "2a164059"}]}}, &(0x7f0000006340)={0x0, 0x21, 0x9, {0x9, 0x21, 0x80, 0x1, 0x1, {0x22, 0x8e1}}}}, &(0x7f0000006680)={0x2c, &(0x7f00000063c0)={0x0, 0x1, 0xce, "e51d2cc14da91643950eb039c6c3e78b4548a12fab38d7e87cf0df8c822ab703f73cac82d8ba84d15b798a40fc36479177b8628b246d26bc85f62a469f2c6381a0e5add1419359cafc3ed0fc737a8ca4d09d61344693bdf075dabb6d78091d1937ca147af7844a7d8671e9671e1f99403c959d1faeb817e3a835c60eab319ebdae3aa92b81acaa60842951ebb042a9de580a18e0b03dc44a50dfe981fb4dc9c1df623ef3e81973aef94aeebb7cd783e20f5bc669f1cb5a9f84c941ddcb3051b4859822393c8b9f2fa5a14058a03e"}, &(0x7f00000064c0)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000006500)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000006540)={0x20, 0x1, 0xde, "ad07a5c0d377d4d1d1e7c1b250981cb179da2f693d8fff248a9bb45e43eca38346805c0b877f417ef691b7f27345ee4de5188c8916a0f3685b1a829b7b5e973f70c7ed7f1ea94e60ca35f1d482ac19bd863aa8fc0ad4e0c4e226dc3619b4222174e981787919c8e4405467d53f5a51502ba075d1d4700abf2a68bd7a75019e5e7a7c0438bb6463fa506bb0fe601ba7d387bc1c0ad465ced85d5f86063193eef9e08d211c60d1f361bbbae9df81930c5389fabd014e4af625d81fe885ceec090c9fd32f666fd621836c487c17adf6eef6bd5d7ae12425933242ce3fe02d49"}, &(0x7f0000006640)={0x20, 0x3, 0x1, 0x80}})
syz_usb_control_io(r5, &(0x7f0000006980)={0x2c, &(0x7f00000066c0)={0x20, 0x23, 0x87, {0x87, 0x4, "a0ed4c8919c5e8b5a41b6194dfdcaffce9580a5a345695e68f3001b7886581ab66d76cb3debe0a96e920adfa7dd69d9c45719cb558bc513ff6f448aab423d04fed00fbfea5c6d245b40da31eea5f0714dca7dcb1ce34faf6bf311a5b18d4befec5e7a14090d74aa43eaf46e767fa51bb5d86129dd5b6b866e3214385ed5049bfbda3cd09b3"}}, &(0x7f0000006780)={0x0, 0x3, 0x26, @string={0x26, 0x3, "f07c7a22b3f69dc82aac4240ed654df00ed493a6177de9f6791d4db4dda156fc3900e71d"}}, &(0x7f00000067c0)={0x0, 0xf, 0x108, {0x5, 0xf, 0x108, 0x6, [@ssp_cap={0x24, 0x10, 0xa, 0x80, 0x6, 0x8, 0x0, 0x1000, [0xf, 0xffc0cf, 0x3f, 0x3f00, 0xff003f, 0xc0de]}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x2, "7dedaf372a784e39f4bde42ef7220347"}, @ssp_cap={0xc, 0x10, 0xa, 0xc1, 0x0, 0x3, 0xf00f, 0x5}, @generic={0xb9, 0x10, 0x4, "d89f5a6e96aaaa6b2a2a5fcd595a4b7d5e0889cba757fc1394f6327296030b0f256d4ea55f0f5a4e64553f4ac14512d335b0cac0cba00a6b639ec62df7693b3d8e68bd5dc5d1b76c7e0aed27f7074c445b56cc218ef3cac8b9586b4c843f43e2faad74c7b0f64b92250a4c7c5e376e6d5bd7689a130bbcc61c8e387738a2583b7c7ac2ba50a079d66e856571189b05ac9e2da0740aa02392b8a1c35ce207a58304b264781471ae9c3eb085b09a7532d4a51e4d90082e"}, @ptm_cap={0x3}]}}, &(0x7f0000006900)={0x20, 0x29, 0xf, {0xf, 0x29, 0x40, 0x0, 0x0, 0x93, "0098e8ef", "dce60d08"}}, &(0x7f0000006940)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x90, 0x1, 0x42, 0x81, 0x0, 0x2, 0x4}}}, &(0x7f0000006dc0)={0x84, &(0x7f00000069c0)={0x20, 0x11, 0x36, "b3084660c4e77b9ec34da2f53281d8d8b9a752fbb95bc87826a4a62af98474638107eb0c1c994f350af35f6eeb096fc885b3424bfb3a"}, &(0x7f0000006a00)={0x0, 0xa, 0x1}, &(0x7f0000006a40)={0x0, 0x8, 0x1}, &(0x7f0000006a80)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000006ac0)={0x20, 0x0, 0x4, {0x0, 0x10}}, &(0x7f0000006b00)={0x40, 0x7, 0x2, 0x5}, &(0x7f0000006b40)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000006b80)={0x40, 0xb, 0x2, "efe6"}, &(0x7f0000006bc0)={0x40, 0xf, 0x2, 0x1}, &(0x7f0000006c00)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000006c40)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000006c80)={0x40, 0x19, 0x2, 'B '}, &(0x7f0000006cc0)={0x40, 0x1a, 0x2}, &(0x7f0000006d00)={0x40, 0x1c, 0x1, 0x2}, &(0x7f0000006d40)={0x40, 0x1e, 0x1, 0x9}, &(0x7f0000006d80)={0x40, 0x21, 0x1, 0x3}})

06:05:45 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe3000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000140)="66b800010f00d8c4c253f7f9dbf30f212ba9a9017ec4c4e2fd2a2c5ac4e1595535f0ffffffb95f090000b8ef960000ba000000000f302e0f7f03ea4c6b358feb00c4c179e6f9", 0x46}], 0x1, 0x0, &(0x7f0000000200)=[@dstype0={0x6, 0xc}, @dstype3={0x7, 0xa}], 0x2)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  496.378033][   T18] stb0899_attach: Driver disabled by Kconfig
[  496.384436][   T18] az6027: no front-end attached
[  496.384436][   T18] 
[  496.443901][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  496.452845][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input54
[  496.581074][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  496.588607][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  496.693102][T15946] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  496.719180][   T18] usb 3-1: USB disconnect, device number 96
[  496.768110][    T5] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  496.853904][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  497.028383][    T5] usb 5-1: Using ep0 maxpacket: 16
06:05:46 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:46 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4008ae89, 0x0)

06:05:46 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x20040)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000000c0)={0x2000})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SMI(r3, 0xaeb7)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)={0x100000, 0x18000})

[  497.228031][    T5] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 31, changing to 8
[  497.239534][    T5] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  497.418910][    T5] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  497.428783][    T5] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  497.437052][    T5] usb 5-1: Product: о
[  497.441715][    T5] usb 5-1: Manufacturer: Ј
[  497.446394][    T5] usb 5-1: SerialNumber: 囎
[  497.480336][T15986] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  497.488773][T15986] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  497.584662][T15989] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  497.594049][T15994] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  497.767900][   T18] usb 3-1: new high-speed USB device number 97 using dummy_hcd
06:05:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4008ae90, 0x0)

[  498.242295][T15947] raw-gadget gadget: fail, usb_ep_enable returned -22
06:05:47 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x12)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="390000001300034700bb65e1c3e4ffff06000000010000004500000025000000190004000400ad000200000000000006040000000000000000", 0x39}], 0x1)
recvmsg(r0, &(0x7f0000001480)={&(0x7f00000000c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000440)=[{&(0x7f00000001c0)=""/249, 0xf9}, {&(0x7f00000002c0)=""/103, 0x67}, {&(0x7f0000000340)=""/235, 0xeb}], 0x3, &(0x7f0000000480)=""/4096, 0x1000}, 0x45)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000140)="da92b2906766c7442400ef0000006766c744240200b600006766c744240600000000670f011424360f01df66b93709000066b80e00000066ba000000000f3087110f326766c74424008e0000006766c74424020001c0fe6766c744240600000000670f011c240fc77d0abaa100ec64f30fa7e8", 0x73}], 0x1, 0x5c, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000005480)={<r3=>0x0, <r4=>0x0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005280)=[{{&(0x7f00000014c0)=@abs, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000001540)=""/183, 0xb7}, {&(0x7f0000001600)=""/32, 0x20}, {&(0x7f0000001640)=""/212, 0xd4}, {&(0x7f0000001740)=""/40, 0x28}, {&(0x7f0000001780)=""/6, 0x6}, {&(0x7f00000017c0)=""/156, 0x9c}, {&(0x7f0000001880)=""/99, 0x63}, {&(0x7f0000001900)=""/195, 0xc3}], 0x8, &(0x7f0000001a80)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000001b00)=""/21, 0x15}, {&(0x7f0000003340)=""/168, 0xa8}, {&(0x7f0000001c00)=""/22, 0x16}], 0x3, &(0x7f0000001c80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000001d00)=@abs, 0x6e, &(0x7f0000003240)=[{&(0x7f0000001d80)=""/102, 0x66}, {&(0x7f0000001e00)=""/244, 0xf4}, {&(0x7f0000001f00)=""/122, 0x7a}, {&(0x7f0000001f80)=""/96, 0x60}, {&(0x7f0000002000)=""/229, 0xe5}, {&(0x7f0000002100)=""/4096, 0x1000}, {&(0x7f0000003100)=""/171, 0xab}, {&(0x7f00000031c0)=""/124, 0x7c}], 0x8}}, {{&(0x7f00000032c0), 0x6e, &(0x7f0000003600)=[{&(0x7f0000005540)=""/205, 0xcd}, {&(0x7f0000003440)=""/34, 0x22}, {&(0x7f0000003480)=""/124, 0x90}, {&(0x7f0000003500)=""/198, 0xc6}], 0x4}}, {{&(0x7f0000003640), 0x6e, &(0x7f0000004940)=[{&(0x7f00000036c0)=""/38, 0x26}, {&(0x7f0000003700)=""/4096, 0x1000}, {&(0x7f0000004700)=""/85, 0x55}, {&(0x7f0000004780)=""/82, 0x52}, {&(0x7f0000004800)=""/106, 0x6a}, {&(0x7f0000004880)=""/160, 0xa0}], 0x6, &(0x7f00000049c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xa0}}, {{&(0x7f0000004a80)=@abs, 0x6e, &(0x7f0000004cc0)=[{&(0x7f0000004b00)=""/252, 0xfc}, {&(0x7f0000004c00)=""/172, 0xac}], 0x2}}, {{&(0x7f0000004d00), 0x6e, &(0x7f0000004e80)=[{&(0x7f0000004d80)=""/217, 0xd9}], 0x1}}, {{&(0x7f0000004ec0)=@abs, 0x6e, &(0x7f0000005180)=[{&(0x7f0000004f40)=""/55, 0x37}, {&(0x7f0000004f80)=""/138, 0x8a}, {&(0x7f0000005040)=""/215, 0xd7}, {&(0x7f0000005140)=""/7, 0x7}], 0x4, &(0x7f00000051c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}], 0x8, 0x40002102, &(0x7f00000054c0)={r3, r4+60000000})
syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x22, 0x0, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
ioctl$FAT_IOCTL_GET_VOLUME_ID(r6, 0x80047213, &(0x7f0000005500))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  498.298726][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  498.308230][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  498.316352][   T18] usb 3-1: Product: syz
[  498.320854][   T18] usb 3-1: Manufacturer: syz
[  498.325571][   T18] usb 3-1: SerialNumber: syz
[  498.474715][   T18] usb 3-1: config 0 descriptor??
[  498.482692][T15947] udc-core: couldn't find an available UDC or it's busy
[  498.490996][T15947] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  498.565680][T15947] udc-core: couldn't find an available UDC or it's busy
[  498.573294][T15947] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  498.639219][T15947] udc-core: couldn't find an available UDC or it's busy
[  498.646412][T15947] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
06:05:48 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

[  498.738104][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  498.761016][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
06:05:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x40186366, 0x0)

[  498.818144][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  498.825524][   T18] usb 3-1: media controller created
[  498.905842][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x21)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000140)={[0x5, 0x3, 0x3ff, 0x9, 0x6, 0x56a5, 0x800, 0x4, 0x9, 0x2, 0x5, 0x1, 0x4, 0x7, 0x1ff, 0x80000000], 0x2000, 0x80})
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  498.949465][T15947] udc-core: couldn't find an available UDC or it's busy
[  498.956701][T15947] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  499.019035][    T5] cdc_ncm 5-1:1.0: failed GET_NTB_PARAMETERS
[  499.025304][    T5] cdc_ncm 5-1:1.0: bind() failure
[  499.084946][    T5] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  499.092259][    T5] cdc_ncm 5-1:1.1: bind() failure
[  499.247850][    T5] usb 5-1: USB disconnect, device number 48
[  499.403544][T16054] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
06:05:49 executing program 4:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="e3bb75a99bb3cfbcc047", 0xa}, {&(0x7f0000000500)="00ceb8cf0886be0820c04c15599620d46c7ef433a8a1cd3dea88f7615dfb715bd9035e6d133bac1200eeec8f053bd938fea43e9b10d7b63f0042664a83e4f39f95e90e9be6295b658b8f267f898d943cbc9016d03046762329c8749d4280d6c64b0ee61b2b7e972372199cc52d92896fd5858e9a03a98c3d230bb910a7f01f806ba0695a71afed02cb7e102c0b54719181f80a56b4347ac20d180c9577e19465b4f0217c7231e7e8901c8f0a621bfdfaa1fb9341a5b703bc4391d42d5ffd698deced0961362c5c886610f9cd68338b7e99f5f55e3c4ddec601228d66519e1b21ea53c6", 0xe3}, {&(0x7f0000000600)="85fb7fe726a7ae619ae5fc3bdfef0c4c63dd06cf84abd65b3bb4652d223b89373039292767e832481ca41df8e8a619a296c98f1b6763c23a09caca39ee2d23431ab6577fef373d9f0963f30a5e24348f8fd15583bf02175e72758be23baf77ffca23ca607c686175a6c10c235aa89ffd51467622ce0386f353de65aeaa43f31b45381a4c60627816", 0x88}, {&(0x7f00000006c0)="fae945742b2550b3078c1a3fab7a2c8fd658b1e2fd5aacd734c2e6d21362a6d73c9edafe4fc120b56ae8f0e40a3e0bad82d90ec7bf1167e17264956b89335eaf4666887aa32c45c5127c8b5443c0cc84bd3edfab95607832543929bb7371b4806db61ac9e03d3a46d62e45df1216d9fcf4276e9888e74c85296fae6fe8600281e93504e0f46596d0b11c15dbf2ecd290f6c0a13c1824dc2d91646142bcc483780d7afeae4f580395fec49fa5077c11a3d057628082901850cc6c000d241f36fc89af6d8f2e5c64375d443b9030fd0409c709d5e236d1ed", 0xd7}], 0x4, &(0x7f0000004180)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x90, 0x20000000}, 0x8814)
r8 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup2(r8, 0xffffffffffffffff)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:05:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x401c5820, 0x0)

06:05:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000140)={0x0, 0x0, [0x3, 0x7, 0x800, 0xb67, 0x731, 0x6, 0x8, 0x7]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  500.103223][   T18] stb0899_attach: Driver disabled by Kconfig
[  500.109542][   T18] az6027: no front-end attached
[  500.109542][   T18] 
[  500.218894][   T18] az6027: usb out operation failed. (-71)
[  500.224726][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  500.567108][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input55
[  500.618466][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  500.625523][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
06:05:50 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:05:50 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)={0xa000000d})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

[  500.708538][   T18] usb 3-1: USB disconnect, device number 97
06:05:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4020940d, 0x0)

[  500.894055][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_io_uring_complete(0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x800000000000)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  501.377779][   T18] usb 3-1: new high-speed USB device number 98 using dummy_hcd
06:05:51 executing program 4:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa41, 0x420, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x8, 0x0, 0x0, 0x7}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
clone(0x200000000690b480, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
unshare(0x40000000)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000300)=@sack_info={0x0, 0x2, 0x4}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fanotify_init(0x0, 0x80000)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000010000800000000000000000000000000000ffff000073797a300000000008000240000000021400000011000100"/67], 0x50}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000010a0101"], 0x14}}, 0x0)
r3 = dup(r2)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r4, 0x8008f513, &(0x7f0000000040))
ppoll(&(0x7f00000003c0)=[{0xffffffffffffffff, 0x400}, {r3, 0x11a}, {0xffffffffffffffff, 0xa005}, {0xffffffffffffffff, 0x455}, {r1, 0x2431}, {r0, 0x1232}], 0x6, &(0x7f0000000400)={0x77359400}, &(0x7f0000000440)={[0x1]}, 0x8)
r5 = socket(0x2, 0x3, 0xff)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, 0x0, 0x40004)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
openat(0xffffffffffffffff, &(0x7f0000000340)='/proc/self/exe\x00', 0x0, 0x0)

06:05:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4020ae46, 0x0)

[  501.930716][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  501.940065][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.948442][   T18] usb 3-1: Product: syz
[  501.952721][   T18] usb 3-1: Manufacturer: syz
[  501.957549][   T18] usb 3-1: SerialNumber: syz
[  502.123120][   T18] usb 3-1: config 0 descriptor??
06:05:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="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"/270], 0x21)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000140)={{0x3000, 0x6000, 0xa, 0x80, 0x8, 0x4, 0x5, 0x1f, 0x2, 0x1, 0x8, 0xc6}, {0x6000, 0x1000, 0xd, 0x1, 0x2, 0x2, 0x98, 0x33, 0x3, 0x9, 0x2, 0xf5}, {0x2, 0x2000, 0x0, 0xa9, 0xe1, 0x20, 0x20, 0x7, 0x7, 0x8, 0xab, 0x7}, {0xf000, 0x10000, 0xd, 0x3, 0x9, 0x2, 0x4, 0x3f, 0x1, 0xfa, 0x3e}, {0x0, 0x6000, 0x8, 0x4, 0x1, 0x2, 0x6, 0x1f, 0x2, 0x8, 0x0, 0xff}, {0x4000, 0x0, 0xb, 0x4, 0x6, 0xff, 0x4, 0x1, 0x81, 0x7, 0x33, 0x2}, {0x2, 0x3000, 0xb, 0x7, 0x1, 0x80, 0x8, 0x7, 0x7f, 0x3, 0x5, 0x1}, {0xd000, 0x2, 0xe, 0x2, 0x7f, 0x1f, 0xfb, 0x9, 0xde, 0x20, 0x8, 0x7}, {0x100000, 0x5}, {0x2000, 0x7}, 0x80000004, 0x0, 0x5000, 0x200000, 0xf, 0x2000, 0x5000, [0x9, 0x62a, 0x7fff, 0x3f]})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  502.334194][T16125] not chained 10000 origins
[  502.339069][T16125] CPU: 0 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  502.347861][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  502.357928][T16125] Call Trace:
[  502.361216][T16125]  dump_stack_lvl+0x1ff/0x28e
[  502.365911][T16125]  dump_stack+0x25/0x28
[  502.370077][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  502.375815][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  502.381112][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.386319][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  502.392133][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.397335][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  502.403151][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  502.409230][T16125]  ? should_fail+0x75/0x9c0
[  502.413738][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.418959][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  502.425301][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  502.431379][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  502.436667][T16125]  ? _copy_from_user+0x219/0x310
[  502.441629][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.446829][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  502.452646][T16125]  __msan_chain_origin+0xab/0xf0
[  502.457612][T16125]  do_recvmmsg+0xb11/0x2120
[  502.462229][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  502.468590][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.473816][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  502.479022][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  502.485276][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  502.490664][T16125]  ? do_syscall_64+0x54/0xd0
[  502.495260][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.500383][T16125]  do_syscall_64+0x54/0xd0
[  502.504805][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  502.510446][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.516358][T16125] RIP: 0033:0x7f7784b88ae9
[  502.520873][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  502.540484][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  502.548904][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  502.556875][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  502.564845][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  502.572903][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  502.580885][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  502.590069][T16125] Uninit was stored to memory at:
[  502.595195][T16125]  do_recvmmsg+0xb11/0x2120
[  502.599815][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.604867][T16125]  do_syscall_64+0x54/0xd0
[  502.609448][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.615370][T16125] 
[  502.617853][T16125] Uninit was stored to memory at:
[  502.617852][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  502.622905][T16125]  do_recvmmsg+0xb11/0x2120
[  502.622938][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.622972][T16125]  do_syscall_64+0x54/0xd0
[  502.623000][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.623037][T16125] 
[  502.623043][T16125] Uninit was stored to memory at:
[  502.623081][T16125]  do_recvmmsg+0xb11/0x2120
[  502.623110][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.666829][T16125]  do_syscall_64+0x54/0xd0
[  502.671517][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.677580][T16125] 
[  502.679909][T16125] Uninit was stored to memory at:
[  502.684967][T16125]  do_recvmmsg+0xb11/0x2120
[  502.689655][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.694714][T16125]  do_syscall_64+0x54/0xd0
[  502.699297][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.700235][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  502.705220][T16125] 
[  502.705227][T16125] Uninit was stored to memory at:
[  502.705270][T16125]  do_recvmmsg+0xb11/0x2120
[  502.705301][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.705338][T16125]  do_syscall_64+0x54/0xd0
[  502.736018][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.742112][T16125] 
[  502.744440][T16125] Uninit was stored to memory at:
[  502.749643][T16125]  do_recvmmsg+0xb11/0x2120
[  502.754165][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.759352][T16125]  do_syscall_64+0x54/0xd0
[  502.763786][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.766284][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  502.769842][T16125] 
[  502.769848][T16125] Uninit was stored to memory at:
[  502.769892][T16125]  do_recvmmsg+0xb11/0x2120
[  502.769923][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  502.769956][T16125]  do_syscall_64+0x54/0xd0
[  502.769984][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  502.770019][T16125] 
[  502.770024][T16125] Local variable msg_sys created at:
[  502.770033][T16125]  do_recvmmsg+0xc1/0x2120
[  502.777185][   T18] usb 3-1: media controller created
[  502.779522][T16125]  __x64_sys_recvmmsg+0x2af/0x500
06:05:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0)

[  503.130727][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4090ae82, 0x0)

06:05:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000140)="c483fd7c6700c6f30f1acf66ba420066b8070066ef0f20e035000040000ee048b8e38a0000000000000f23d80f21f835400000900f23f83666400f38802d0030000066430f381598226c6d9464360ff7f966baf80cb8ea03278fd566ba9c2cec66ba4200b006", 0x66}], 0x1, 0x0, 0x0, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0xa000000d})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000200)={&(0x7f00000001c0)=[0xa3, 0x1, 0x2, 0x7, 0x200000, 0x3, 0x52c], 0x7, 0xc0000, 0x0, <r4=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, r4, {0xffffff7f}}, './file0/file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SMI(r5, 0xaeb7)
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffc000/0x2000)=nil)

[  504.117697][   T18] stb0899_attach: Driver disabled by Kconfig
[  504.123900][   T18] az6027: no front-end attached
[  504.123900][   T18] 
[  504.172851][   T18] az6027: usb out operation failed. (-71)
[  504.179035][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  504.188024][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input56
[  504.273421][T16225] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  504.288325][T16230] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  504.296340][T16230] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  504.351147][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  504.358455][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
06:05:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x41015500, 0x0)

[  504.483107][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  504.489881][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  504.538146][   T18] usb 3-1: USB disconnect, device number 98
06:05:54 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  504.766204][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
06:05:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x101401, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x1, 0x1, 0x5000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  505.287757][T16293] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  505.438480][   T18] usb 3-1: new high-speed USB device number 99 using dummy_hcd
[  505.523617][T16125] not chained 20000 origins
[  505.528509][T16125] CPU: 0 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  505.537402][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  505.547481][T16125] Call Trace:
[  505.550772][T16125]  dump_stack_lvl+0x1ff/0x28e
[  505.555474][T16125]  dump_stack+0x25/0x28
[  505.559657][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  505.565414][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  505.570640][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.575858][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  505.581682][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.586904][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  505.592735][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  505.598833][T16125]  ? should_fail+0x75/0x9c0
[  505.603363][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.608582][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  505.614945][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  505.621066][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  505.626374][T16125]  ? _copy_from_user+0x219/0x310
[  505.631350][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.636566][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  505.642409][T16125]  __msan_chain_origin+0xab/0xf0
[  505.647477][T16125]  do_recvmmsg+0xb11/0x2120
[  505.652023][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  505.658306][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.663533][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  505.670091][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  505.676367][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  505.681774][T16125]  ? do_syscall_64+0x54/0xd0
[  505.686391][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.691452][T16125]  do_syscall_64+0x54/0xd0
[  505.695901][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  505.701565][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.707502][T16125] RIP: 0033:0x7f7784b88ae9
[  505.711940][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  505.731576][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  505.740018][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  505.748011][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  505.755995][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  505.763991][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  505.771983][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  505.781013][T16125] Uninit was stored to memory at:
[  505.786091][T16125]  do_recvmmsg+0xb11/0x2120
[  505.793692][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.798888][T16125]  do_syscall_64+0x54/0xd0
[  505.803329][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.809395][T16125] 
[  505.811728][T16125] Uninit was stored to memory at:
[  505.816784][T16125]  do_recvmmsg+0xb11/0x2120
[  505.821462][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.826514][T16125]  do_syscall_64+0x54/0xd0
[  505.831109][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.837037][T16125] 
[  505.839556][T16125] Uninit was stored to memory at:
[  505.844622][T16125]  do_recvmmsg+0xb11/0x2120
[  505.849320][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.854375][T16125]  do_syscall_64+0x54/0xd0
[  505.858965][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.864909][T16125] 
[  505.867232][T16125] Uninit was stored to memory at:
[  505.872461][T16125]  do_recvmmsg+0xb11/0x2120
[  505.876985][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.882204][T16125]  do_syscall_64+0x54/0xd0
[  505.886645][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.892734][T16125] 
[  505.895061][T16125] Uninit was stored to memory at:
[  505.900287][T16125]  do_recvmmsg+0xb11/0x2120
[  505.904822][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.910037][T16125]  do_syscall_64+0x54/0xd0
[  505.914483][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.920559][T16125] 
[  505.922891][T16125] Uninit was stored to memory at:
[  505.928101][T16125]  do_recvmmsg+0xb11/0x2120
[  505.932619][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.937829][T16125]  do_syscall_64+0x54/0xd0
[  505.942310][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.948389][T16125] 
[  505.950713][T16125] Uninit was stored to memory at:
[  505.955769][T16125]  do_recvmmsg+0xb11/0x2120
[  505.960461][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  505.965523][T16125]  do_syscall_64+0x54/0xd0
[  505.970133][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  505.976077][T16125] 
[  505.978555][T16125] Local variable msg_sys created at:
[  505.983838][T16125]  do_recvmmsg+0xc1/0x2120
[  505.988435][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.258344][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  506.267729][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.276690][   T18] usb 3-1: Product: syz
[  506.278887][T16125] not chained 30000 origins
[  506.281356][   T18] usb 3-1: Manufacturer: syz
[  506.285485][T16125] CPU: 0 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  506.285517][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  506.290194][   T18] usb 3-1: SerialNumber: syz
[  506.298831][T16125] Call Trace:
[  506.298847][T16125]  dump_stack_lvl+0x1ff/0x28e
[  506.298883][T16125]  dump_stack+0x25/0x28
[  506.298907][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  506.298949][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  506.336525][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.341751][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  506.347581][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.352804][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  506.358811][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  506.364905][T16125]  ? should_fail+0x75/0x9c0
[  506.369436][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.374662][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  506.380938][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  506.387038][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  506.392348][T16125]  ? _copy_from_user+0x219/0x310
[  506.397321][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.402545][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  506.404522][   T18] usb 3-1: config 0 descriptor??
[  506.408382][T16125]  __msan_chain_origin+0xab/0xf0
[  506.408421][T16125]  do_recvmmsg+0xb11/0x2120
[  506.408459][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  506.408500][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.434340][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  506.439569][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  506.445851][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  506.451261][T16125]  ? do_syscall_64+0x54/0xd0
[  506.455886][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.460944][T16125]  do_syscall_64+0x54/0xd0
[  506.465393][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  506.471074][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.477003][T16125] RIP: 0033:0x7f7784b88ae9
[  506.481439][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  506.501075][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  506.509515][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  506.517602][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  506.525596][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  506.534051][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  506.542046][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  506.551118][T16125] Uninit was stored to memory at:
[  506.556193][T16125]  do_recvmmsg+0xb11/0x2120
[  506.561420][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.566485][T16125]  do_syscall_64+0x54/0xd0
[  506.571107][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.577039][T16125] 
[  506.579498][T16125] Uninit was stored to memory at:
[  506.584555][T16125]  do_recvmmsg+0xb11/0x2120
[  506.589218][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.594279][T16125]  do_syscall_64+0x54/0xd0
[  506.598875][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.604806][T16125] 
[  506.608516][T16125] Uninit was stored to memory at:
[  506.613583][T16125]  do_recvmmsg+0xb11/0x2120
[  506.618259][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.623410][T16125]  do_syscall_64+0x54/0xd0
[  506.628004][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.633931][T16125] 
[  506.636259][T16125] Uninit was stored to memory at:
[  506.641482][T16125]  do_recvmmsg+0xb11/0x2120
[  506.646101][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.651393][T16125]  do_syscall_64+0x54/0xd0
[  506.655836][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.661919][T16125] 
[  506.664255][T16125] Uninit was stored to memory at:
[  506.669478][T16125]  do_recvmmsg+0xb11/0x2120
[  506.674011][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.679240][T16125]  do_syscall_64+0x54/0xd0
[  506.683685][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.689764][T16125] 
[  506.692094][T16125] Uninit was stored to memory at:
[  506.697157][T16125]  do_recvmmsg+0xb11/0x2120
[  506.701885][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.706946][T16125]  do_syscall_64+0x54/0xd0
[  506.711535][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.717613][T16125] 
[  506.719958][T16125] Uninit was stored to memory at:
[  506.725051][T16125]  do_recvmmsg+0xb11/0x2120
[  506.729758][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.734817][T16125]  do_syscall_64+0x54/0xd0
[  506.739410][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  506.745345][T16125] 
[  506.747821][T16125] Local variable msg_sys created at:
[  506.753103][T16125]  do_recvmmsg+0xc1/0x2120
[  506.757791][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  506.791806][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  506.815308][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  506.878405][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  506.887079][   T18] usb 3-1: media controller created
[  507.007632][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  507.119498][T16125] not chained 40000 origins
[  507.124040][T16125] CPU: 0 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  507.132829][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  507.142906][T16125] Call Trace:
[  507.146619][T16125]  dump_stack_lvl+0x1ff/0x28e
[  507.151338][T16125]  dump_stack+0x25/0x28
[  507.155529][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  507.161294][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  507.166538][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.171771][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  507.177613][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.182842][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  507.188684][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  507.194797][T16125]  ? should_fail+0x75/0x9c0
[  507.199365][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.204601][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  507.210886][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  507.216998][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  507.222322][T16125]  ? _copy_from_user+0x219/0x310
[  507.227333][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.232566][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  507.238411][T16125]  __msan_chain_origin+0xab/0xf0
[  507.243426][T16125]  do_recvmmsg+0xb11/0x2120
[  507.247976][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  507.254268][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.259587][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  507.264817][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  507.271293][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  507.276705][T16125]  ? do_syscall_64+0x54/0xd0
[  507.281333][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.286405][T16125]  do_syscall_64+0x54/0xd0
[  507.290865][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  507.296542][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.302483][T16125] RIP: 0033:0x7f7784b88ae9
[  507.306920][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  507.326558][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  507.335004][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  507.342999][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  507.351022][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  507.359021][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  507.367025][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  507.378961][T16125] Uninit was stored to memory at:
[  507.384035][T16125]  do_recvmmsg+0xb11/0x2120
[  507.389386][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.394446][T16125]  do_syscall_64+0x54/0xd0
[  507.398977][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.404907][T16125] 
[  507.407449][T16125] Uninit was stored to memory at:
[  507.412602][T16125]  do_recvmmsg+0xb11/0x2120
[  507.417125][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.422338][T16125]  do_syscall_64+0x54/0xd0
[  507.426780][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.432868][T16125] 
[  507.435197][T16125] Uninit was stored to memory at:
[  507.440420][T16125]  do_recvmmsg+0xb11/0x2120
[  507.445461][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.450671][T16125]  do_syscall_64+0x54/0xd0
[  507.455117][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.461208][T16125] 
[  507.463544][T16125] Uninit was stored to memory at:
[  507.468764][T16125]  do_recvmmsg+0xb11/0x2120
[  507.473290][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.478477][T16125]  do_syscall_64+0x54/0xd0
[  507.482915][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.489427][T16125] 
[  507.491757][T16125] Uninit was stored to memory at:
[  507.496817][T16125]  do_recvmmsg+0xb11/0x2120
[  507.501487][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.506546][T16125]  do_syscall_64+0x54/0xd0
[  507.511230][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.517154][T16125] 
[  507.519625][T16125] Uninit was stored to memory at:
[  507.524697][T16125]  do_recvmmsg+0xb11/0x2120
[  507.529372][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.534429][T16125]  do_syscall_64+0x54/0xd0
[  507.539020][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.544945][T16125] 
[  507.547404][T16125] Uninit was stored to memory at:
[  507.552464][T16125]  do_recvmmsg+0xb11/0x2120
[  507.556992][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  507.562184][T16125]  do_syscall_64+0x54/0xd0
[  507.566621][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  507.572696][T16125] 
[  507.575023][T16125] Local variable msg_sys created at:
[  507.580450][T16125]  do_recvmmsg+0xc1/0x2120
[  507.584887][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  508.377594][   T18] stb0899_attach: Driver disabled by Kconfig
[  508.383683][   T18] az6027: no front-end attached
[  508.383683][   T18] 
[  508.414284][   T18] az6027: usb out operation failed. (-71)
[  508.420329][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  508.430279][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input57
[  508.506828][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  508.514104][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  508.582761][   T18] usb 3-1: USB disconnect, device number 99
[  508.712327][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  509.024405][T16125] not chained 50000 origins
[  509.029396][T16125] CPU: 0 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  509.038191][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  509.048354][T16125] Call Trace:
[  509.051660][T16125]  dump_stack_lvl+0x1ff/0x28e
[  509.056387][T16125]  dump_stack+0x25/0x28
[  509.060577][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  509.066335][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  509.071564][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.076796][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.082634][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.087856][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.093693][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  509.099817][T16125]  ? should_fail+0x75/0x9c0
[  509.104356][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.109588][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.115865][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  509.122588][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  509.127907][T16125]  ? _copy_from_user+0x219/0x310
[  509.132875][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.138106][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.143941][T16125]  __msan_chain_origin+0xab/0xf0
[  509.148919][T16125]  do_recvmmsg+0xb11/0x2120
[  509.153457][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.159743][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.164975][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.170187][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.176445][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  509.181835][T16125]  ? do_syscall_64+0x54/0xd0
[  509.186434][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.191476][T16125]  do_syscall_64+0x54/0xd0
[  509.195902][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  509.201547][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.207457][T16125] RIP: 0033:0x7f7784b88ae9
[  509.211874][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  509.231485][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  509.239994][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  509.247970][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  509.255950][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  509.263923][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  509.271899][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  509.281082][T16125] Uninit was stored to memory at:
[  509.286152][T16125]  do_recvmmsg+0xb11/0x2120
[  509.291022][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.296077][T16125]  do_syscall_64+0x54/0xd0
[  509.300671][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.306602][T16125] 
[  509.309073][T16125] Uninit was stored to memory at:
[  509.314139][T16125]  do_recvmmsg+0xb11/0x2120
[  509.318835][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.323885][T16125]  do_syscall_64+0x54/0xd0
[  509.328479][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.334401][T16125] 
[  509.336733][T16125] Uninit was stored to memory at:
[  509.341966][T16125]  do_recvmmsg+0xb11/0x2120
[  509.346522][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.351721][T16125]  do_syscall_64+0x54/0xd0
[  509.356167][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.362238][T16125] 
[  509.364659][T16125] Uninit was stored to memory at:
[  509.369877][T16125]  do_recvmmsg+0xb11/0x2120
[  509.374396][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.379595][T16125]  do_syscall_64+0x54/0xd0
[  509.384045][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.390226][T16125] 
[  509.392556][T16125] Uninit was stored to memory at:
[  509.397775][T16125]  do_recvmmsg+0xb11/0x2120
[  509.402390][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.407601][T16125]  do_syscall_64+0x54/0xd0
[  509.412046][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.418130][T16125] 
[  509.420462][T16125] Uninit was stored to memory at:
[  509.425521][T16125]  do_recvmmsg+0xb11/0x2120
[  509.430201][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.435253][T16125]  do_syscall_64+0x54/0xd0
[  509.439845][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.445781][T16125] 
[  509.448255][T16125] Uninit was stored to memory at:
[  509.453311][T16125]  do_recvmmsg+0xb11/0x2120
[  509.457973][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.463029][T16125]  do_syscall_64+0x54/0xd0
[  509.467616][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  509.474850][T16125] 
[  509.477179][T16125] Local variable msg_sys created at:
[  509.482605][T16125]  do_recvmmsg+0xc1/0x2120
[  509.487044][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.824578][T16125] not chained 60000 origins
[  509.829255][T16125] CPU: 1 PID: 16125 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  509.838040][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  509.848114][T16125] Call Trace:
[  509.851408][T16125]  dump_stack_lvl+0x1ff/0x28e
[  509.856113][T16125]  dump_stack+0x25/0x28
[  509.860296][T16125]  kmsan_internal_chain_origin+0x8b/0x130
[  509.866054][T16125]  ? unix_dgram_recvmsg+0x20d/0x250
[  509.871279][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.876587][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.882423][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.887648][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.893479][T16125]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  509.899577][T16125]  ? should_fail+0x75/0x9c0
[  509.904107][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.909334][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.915610][T16125]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  509.921713][T16125]  ? kmsan_unpoison_memory+0xa8/0xf0
[  509.927020][T16125]  ? _copy_from_user+0x219/0x310
[  509.931985][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.937232][T16125]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  509.943063][T16125]  __msan_chain_origin+0xab/0xf0
[  509.948047][T16125]  do_recvmmsg+0xb11/0x2120
[  509.952752][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.959025][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.964244][T16125]  ? kmsan_get_metadata+0x11b/0x180
[  509.969467][T16125]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  509.975776][T16125]  ? __msan_poison_alloca+0x13c/0x180
[  509.981180][T16125]  ? do_syscall_64+0x54/0xd0
[  509.985817][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  509.990872][T16125]  do_syscall_64+0x54/0xd0
[  509.995310][T16125]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  510.000975][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.007160][T16125] RIP: 0033:0x7f7784b88ae9
[  510.011592][T16125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  510.031220][T16125] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  510.039668][T16125] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  510.047663][T16125] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  510.055653][T16125] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  510.063643][T16125] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  510.071634][T16125] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  510.082449][T16125] Uninit was stored to memory at:
[  510.088087][T16125]  do_recvmmsg+0xb11/0x2120
[  510.092622][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.097792][T16125]  do_syscall_64+0x54/0xd0
[  510.102244][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.108311][T16125] 
[  510.110644][T16125] Uninit was stored to memory at:
[  510.115708][T16125]  do_recvmmsg+0xb11/0x2120
[  510.120369][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.125430][T16125]  do_syscall_64+0x54/0xd0
[  510.129984][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.135909][T16125] 
[  510.138363][T16125] Uninit was stored to memory at:
[  510.143427][T16125]  do_recvmmsg+0xb11/0x2120
[  510.148081][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.153131][T16125]  do_syscall_64+0x54/0xd0
[  510.157673][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.163623][T16125] 
[  510.165953][T16125] Uninit was stored to memory at:
[  510.171144][T16125]  do_recvmmsg+0xb11/0x2120
[  510.175673][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.180856][T16125]  do_syscall_64+0x54/0xd0
[  510.185299][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.191374][T16125] 
[  510.193704][T16125] Uninit was stored to memory at:
[  510.198904][T16125]  do_recvmmsg+0xb11/0x2120
[  510.203433][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.208628][T16125]  do_syscall_64+0x54/0xd0
[  510.213074][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.219132][T16125] 
[  510.221477][T16125] Uninit was stored to memory at:
[  510.226539][T16125]  do_recvmmsg+0xb11/0x2120
[  510.231195][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.236269][T16125]  do_syscall_64+0x54/0xd0
[  510.240852][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.246785][T16125] 
[  510.249241][T16125] Uninit was stored to memory at:
[  510.254319][T16125]  do_recvmmsg+0xb11/0x2120
[  510.258984][T16125]  __x64_sys_recvmmsg+0x2af/0x500
[  510.264042][T16125]  do_syscall_64+0x54/0xd0
[  510.268612][T16125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  510.274629][T16125] 
[  510.276953][T16125] Local variable msg_sys created at:
[  510.282380][T16125]  do_recvmmsg+0xc1/0x2120
[  510.286824][T16125]  __x64_sys_recvmmsg+0x2af/0x500
06:06:03 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
epoll_create1(0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x4138ae84, 0x0)

06:06:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x20040, 0x0)
splice(r2, &(0x7f0000000240)=0x1, r0, &(0x7f0000000280)=0x1, 0x3, 0x4)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000140)={[0xbb, 0xcf0, 0x6, 0xf3f4, 0x80000001, 0x7, 0xfffffffffffffff8, 0x40, 0x1ff, 0x2, 0x9, 0x7, 0x6, 0x1, 0x7, 0x3], 0x2000, 0x44})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

06:06:03 executing program 4:
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x28, 0x10, 0x200, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffffc3, 0x7}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x5, 0x8, 0x76, 0x0, 0x8, 0x12000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x2, @perf_config_ext={0x860, 0x1}, 0x10000, 0x0, 0x7fffffff, 0x0, 0x0, 0x555f, 0x1, 0x0, 0x7, 0x0, 0x7ff}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000006bc0)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0)
sendmsg$nl_route(r0, 0x0, 0x20000810)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000000000)={'ip_vti0\x00'})
gettid()

06:06:03 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

[  514.214092][T16350] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  514.327470][    T7] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[  514.443676][T16350] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  514.451983][T16350] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
06:06:03 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @local}, 0x14)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000010000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'})
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r5 = socket(0x10, 0x8000000803, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r4, @ANYBLOB="c8b36c5a56d58abbd7192276180dac8dd9dca77a30d9e55693f5642d963713bfdf303fdb97759c0c64c0ec2f556c8ce4f69f3ca0b9f5c3871ace064304a41d1dda4a77bc46c39429d9a97356679ba9db9b85c6d51079258e904d3be8d9d37f2914261da6d8fe9b731dba"], 0x3c}}, 0x0)

[  514.531526][T16359] not chained 70000 origins
[  514.536213][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  514.545003][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  514.555081][T16359] Call Trace:
[  514.558378][T16359]  dump_stack_lvl+0x1ff/0x28e
[  514.563092][T16359]  dump_stack+0x25/0x28
[  514.567270][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  514.573123][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.578352][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  514.584186][T16359]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  514.590289][T16359]  ? __perf_event_task_sched_in+0x424/0xa50
[  514.596294][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  514.602578][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.607791][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  514.613628][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  514.619745][T16359]  ? should_fail+0x75/0x9c0
[  514.624282][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  514.630367][T16359]  ? finish_task_switch+0x81b/0x920
[  514.635639][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.640847][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  514.647105][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  514.653186][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  514.658474][T16359]  ? _copy_from_user+0x219/0x310
[  514.663424][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.668629][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  514.674448][T16359]  __msan_chain_origin+0xab/0xf0
[  514.679404][T16359]  do_recvmmsg+0xb11/0x2120
[  514.684015][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  514.690277][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.695481][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  514.700688][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  514.706945][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  514.712332][T16359]  ? do_syscall_64+0x54/0xd0
[  514.716948][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.721984][T16359]  do_syscall_64+0x54/0xd0
[  514.726407][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  514.732053][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.737962][T16359] RIP: 0033:0x7f7784b88ae9
[  514.742406][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  514.762021][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  514.770532][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  514.778507][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  514.786482][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  514.794454][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  514.802424][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  514.814437][T16359] Uninit was stored to memory at:
[  514.822260][T16359]  do_recvmmsg+0xb11/0x2120
[  514.826806][T16359]  __x64_sys_recvmmsg+0x2af/0x500
06:06:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0)

[  514.832012][T16359]  do_syscall_64+0x54/0xd0
[  514.836484][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.842518][T16359] 
[  514.844850][T16359] Uninit was stored to memory at:
[  514.850017][T16359]  do_recvmmsg+0xb11/0x2120
[  514.854546][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.859710][T16359]  do_syscall_64+0x54/0xd0
[  514.864158][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.870186][T16359] 
[  514.872519][T16359] Uninit was stored to memory at:
[  514.877728][T16359]  do_recvmmsg+0xb11/0x2120
[  514.882259][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.887448][T16359]  do_syscall_64+0x54/0xd0
[  514.891886][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.897928][T16359] 
[  514.900251][T16359] Uninit was stored to memory at:
[  514.905309][T16359]  do_recvmmsg+0xb11/0x2120
[  514.909982][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.915045][T16359]  do_syscall_64+0x54/0xd0
[  514.919646][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.925579][T16359] 
[  514.928085][T16359] Uninit was stored to memory at:
[  514.933151][T16359]  do_recvmmsg+0xb11/0x2120
[  514.937904][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.942964][T16359]  do_syscall_64+0x54/0xd0
[  514.947546][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.953582][T16359] 
[  514.955913][T16359] Uninit was stored to memory at:
[  514.961119][T16359]  do_recvmmsg+0xb11/0x2120
[  514.965647][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.970845][T16359]  do_syscall_64+0x54/0xd0
[  514.975287][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  514.981383][T16359] 
[  514.983708][T16359] Uninit was stored to memory at:
[  514.988901][T16359]  do_recvmmsg+0xb11/0x2120
[  514.993422][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  514.998616][T16359]  do_syscall_64+0x54/0xd0
[  515.003053][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  515.009115][T16359] 
[  515.011440][T16359] Local variable msg_sys created at:
[  515.016720][T16359]  do_recvmmsg+0xc1/0x2120
[  515.021303][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  515.176889][T16369] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  515.197853][T16371] 8021q: adding VLAN 0 to HW filter on device batadv1
[  515.209741][T16371] bond0: (slave batadv1): Enslaving as an active interface with an up link
[  515.315041][T16371] 8021q: adding VLAN 0 to HW filter on device batadv2
[  515.326812][T16371] bond0: (slave batadv2): Enslaving as an active interface with an up link
[  515.367458][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  515.376827][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.385762][    T7] usb 3-1: Product: syz
[  515.390431][    T7] usb 3-1: Manufacturer: syz
[  515.395228][    T7] usb 3-1: SerialNumber: syz
[  515.461537][    T7] usb 3-1: config 0 descriptor??
06:06:04 executing program 4:
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000147000/0x2000)=nil, &(0x7f000015a000/0xb000)=nil, &(0x7f0000000040)=<r0=>0x0, &(0x7f0000000100))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x0, 0x0, 0x0, 0x4)
r1 = socket$inet(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = gettid()
process_vm_readv(r2, &(0x7f0000000200)=[{&(0x7f0000000000)=""/23, 0x20000017}], 0x27a, &(0x7f0000000640)=[{&(0x7f0000000780)=""/102400, 0x3ff880}], 0x330, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r1, {0x4}}, './file0\x00'})
sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000019780)=ANY=[@ANYBLOB="cc000000", @ANYRES16=0x0, @ANYBLOB="10002abd7000ffdbdf251b000000b80022801c00008008000300ffffff7f080007000900000008000100060000001c00008008000300ffff000008000200ffffffff08000400070000003cc9fd37cf000300000000000800010007000000080002000002000008000600ffff00000082eb0000080001000800000014000080080003000000000008000300018000002c00008008000500ff240f000008000500ff0000000800040000000000080002007f00000008000100000000008a2c6d9fe38f0b4ba6eb2d64cc3fad135ea9029311decaf7ea8097ae3187b0dc653fc960506eaf3c0392229506d977a8ee61ac8ba066330e48a1486ec2b2bf05dda35cc0d425187115c646595d1742de5153d622f0fcefe4e1ed751391f8e966c22f33b8bcc3321550536d217f2f811b9a3928cd04d2f78abe1d00"/321], 0xcc}}, 0x24000000)
acct(&(0x7f0000000140)='./file0\x00')
syz_open_dev$audion(&(0x7f00000002c0), 0x0, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000380)={0x10000, 0x2, 0x100003, 0x1000, &(0x7f0000fff000/0x1000)=nil})

06:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d9b8010000000f01d9b8930000000f23d80f21f835400000000f23f8c7442400a5950000c744240200700000c7442406000000000f011c24f30f01780066baa10066ed66ba610066b8df3366efb929030000b8f75fa3efba000000000f30b9240b00000f320f20c035000000200f22c0", 0x77}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
ioctl$KVM_GET_FPU(r1, 0x81a0ae8c, &(0x7f0000000280))
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)={0x4, 0x0, [{0x80000019, 0x3, 0x2, 0x609f, 0x800, 0x1000, 0x7}, {0xa, 0x9, 0x2, 0xfffffffd, 0x8000, 0x200, 0x80000001}, {0x40000000, 0x4fd, 0x2, 0x7, 0x1ff, 0x8f1, 0x3}, {0x2, 0x2, 0x1, 0x40, 0x4, 0x2, 0x2}]})

[  515.717559][    T7] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  515.746321][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  515.841890][    T7] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  515.849754][    T7] usb 3-1: media controller created
[  515.960936][T16394] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  516.026077][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:06:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8004ae98, 0x0)

06:06:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="b8bd000f00d0b84e008ec00f44fa895000d9f364f30f12b31c008371bca10f01c3650f3801f50f01c5", 0x29}], 0x1, 0x8, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x80000020)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = accept$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000140)=0x1c)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000180)={0x0, 0x5, 0x1ff})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  517.000724][T16416] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  517.042483][    T7] stb0899_attach: Driver disabled by Kconfig
[  517.049600][    T7] az6027: no front-end attached
[  517.049600][    T7] 
06:06:06 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
open(&(0x7f00000001c0)='./file1\x00', 0x101080, 0x2e)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000180)='./bus\x00', 0x24242, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x80000000)
r2 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x8000, 0x100)
getdents(r2, &(0x7f0000000100)=""/3, 0x3)
mkdirat(r1, &(0x7f0000000080)='./bus\x00', 0x42)
fallocate(0xffffffffffffffff, 0x20, 0x40000, 0xfeff77ff000)
r3 = socket$alg(0x26, 0x5, 0x0)
dup2(r3, 0xffffffffffffffff)

[  517.092926][    T7] az6027: usb out operation failed. (-71)
[  517.099156][    T7] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  517.112398][    T7] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input58
[  517.196672][    T7] dvb-usb: schedule remote query interval to 400 msecs.
[  517.204170][    T7] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  517.289985][    T7] usb 3-1: USB disconnect, device number 100
[  517.367708][   T23] kauditd_printk_skb: 114 callbacks suppressed
[  517.367758][   T23] audit: type=1800 audit(1635919566.666:127): pid=16432 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=13913 res=0 errno=0
[  517.419004][    T7] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  517.618116][   T23] audit: type=1800 audit(1635919566.916:128): pid=16432 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=13915 res=0 errno=0
[  517.879186][T16359] not chained 80000 origins
[  517.883757][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  517.892569][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  517.902642][T16359] Call Trace:
[  517.905934][T16359]  dump_stack_lvl+0x1ff/0x28e
[  517.910639][T16359]  dump_stack+0x25/0x28
[  517.914814][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  517.920569][T16359]  ? exc_page_fault+0x76/0x120
[  517.925370][T16359]  ? asm_exc_page_fault+0x1e/0x30
[  517.930429][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  517.935651][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  517.941921][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  517.948022][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  517.953331][T16359]  ? _copy_from_user+0x219/0x310
[  517.958399][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  517.963645][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  517.969475][T16359]  __msan_chain_origin+0xab/0xf0
[  517.974447][T16359]  do_recvmmsg+0xb11/0x2120
[  517.978987][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  517.985260][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  517.990512][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  517.995740][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  518.002114][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  518.007519][T16359]  ? do_syscall_64+0x54/0xd0
[  518.012130][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.017194][T16359]  do_syscall_64+0x54/0xd0
[  518.021640][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  518.027305][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.033230][T16359] RIP: 0033:0x7f7784b88ae9
[  518.037662][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  518.057290][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  518.065738][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  518.073737][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  518.081727][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  518.089716][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  518.097707][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  518.106776][T16359] Uninit was stored to memory at:
[  518.112097][T16359]  do_recvmmsg+0xb11/0x2120
[  518.116623][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.121916][T16359]  do_syscall_64+0x54/0xd0
[  518.126363][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.132404][T16359] 
[  518.134727][T16359] Uninit was stored to memory at:
[  518.139929][T16359]  do_recvmmsg+0xb11/0x2120
[  518.144452][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.149705][T16359]  do_syscall_64+0x54/0xd0
[  518.154145][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.160182][T16359] 
[  518.162508][T16359] Uninit was stored to memory at:
[  518.167667][T16359]  do_recvmmsg+0xb11/0x2120
[  518.172191][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.177340][T16359]  do_syscall_64+0x54/0xd0
[  518.181785][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.187802][T16359] 
[  518.190128][T16359] Uninit was stored to memory at:
[  518.195329][T16359]  do_recvmmsg+0xb11/0x2120
[  518.199963][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.205017][T16359]  do_syscall_64+0x54/0xd0
[  518.209550][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.215470][T16359] 
[  518.217920][T16359] Uninit was stored to memory at:
[  518.223076][T16359]  do_recvmmsg+0xb11/0x2120
[  518.227703][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.232749][T16359]  do_syscall_64+0x54/0xd0
[  518.237290][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.243227][T16359] 
[  518.245554][T16359] Uninit was stored to memory at:
[  518.250756][T16359]  do_recvmmsg+0xb11/0x2120
[  518.255284][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.260483][T16359]  do_syscall_64+0x54/0xd0
[  518.264924][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.270981][T16359] 
[  518.273316][T16359] Uninit was stored to memory at:
[  518.278488][T16359]  do_recvmmsg+0xb11/0x2120
[  518.283015][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.288239][T16359]  do_syscall_64+0x54/0xd0
[  518.292684][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.298891][T16359] 
[  518.301227][T16359] Local variable msg_sys created at:
[  518.306518][T16359]  do_recvmmsg+0xc1/0x2120
[  518.311257][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.524011][T16359] not chained 90000 origins
[  518.528792][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  518.537581][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  518.547656][T16359] Call Trace:
[  518.550963][T16359]  dump_stack_lvl+0x1ff/0x28e
[  518.555679][T16359]  dump_stack+0x25/0x28
[  518.559861][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  518.565616][T16359]  ? unix_dgram_recvmsg+0x20d/0x250
[  518.570846][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.576068][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  518.581902][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.587133][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  518.592970][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  518.599076][T16359]  ? should_fail+0x75/0x9c0
[  518.603615][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.608848][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  518.615125][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  518.621231][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  518.626546][T16359]  ? _copy_from_user+0x219/0x310
[  518.631525][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.636751][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  518.642588][T16359]  __msan_chain_origin+0xab/0xf0
[  518.647651][T16359]  do_recvmmsg+0xb11/0x2120
[  518.652196][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  518.658475][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.663705][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  518.668932][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  518.675215][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  518.680626][T16359]  ? do_syscall_64+0x54/0xd0
[  518.685249][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.690348][T16359]  do_syscall_64+0x54/0xd0
[  518.694792][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  518.700460][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.706410][T16359] RIP: 0033:0x7f7784b88ae9
[  518.710853][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  518.730570][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  518.739013][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  518.747012][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  518.755018][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  518.763009][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  518.771005][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  518.779986][T16359] Uninit was stored to memory at:
[  518.785066][T16359]  do_recvmmsg+0xb11/0x2120
[  518.789869][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.794941][T16359]  do_syscall_64+0x54/0xd0
[  518.799561][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.805487][T16359] 
[  518.807919][T16359] Uninit was stored to memory at:
[  518.812998][T16359]  do_recvmmsg+0xb11/0x2120
[  518.817624][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.822674][T16359]  do_syscall_64+0x54/0xd0
[  518.827213][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.833137][T16359] 
[  518.835463][T16359] Uninit was stored to memory at:
[  518.840635][T16359]  do_recvmmsg+0xb11/0x2120
[  518.845162][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.850324][T16359]  do_syscall_64+0x54/0xd0
[  518.854759][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.860785][T16359] 
[  518.863121][T16359] Uninit was stored to memory at:
[  518.868391][T16359]  do_recvmmsg+0xb11/0x2120
[  518.872918][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.878066][T16359]  do_syscall_64+0x54/0xd0
[  518.882507][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.888647][T16359] 
[  518.890979][T16359] Uninit was stored to memory at:
[  518.896039][T16359]  do_recvmmsg+0xb11/0x2120
[  518.900706][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.905935][T16359]  do_syscall_64+0x54/0xd0
[  518.910530][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.916505][T16359] 
[  518.918981][T16359] Uninit was stored to memory at:
[  518.924046][T16359]  do_recvmmsg+0xb11/0x2120
[  518.928731][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.933787][T16359]  do_syscall_64+0x54/0xd0
[  518.938391][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.944316][T16359] 
[  518.946651][T16359] Uninit was stored to memory at:
[  518.951869][T16359]  do_recvmmsg+0xb11/0x2120
[  518.956399][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  518.961621][T16359]  do_syscall_64+0x54/0xd0
[  518.966239][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  518.972339][T16359] 
[  518.974670][T16359] Local variable msg_sys created at:
[  518.980123][T16359]  do_recvmmsg+0xc1/0x2120
[  518.984565][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.160563][T16359] not chained 100000 origins
[  519.165198][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  519.174072][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  519.184149][T16359] Call Trace:
[  519.187443][T16359]  dump_stack_lvl+0x1ff/0x28e
[  519.192158][T16359]  dump_stack+0x25/0x28
[  519.196359][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  519.202126][T16359]  ? unix_dgram_recvmsg+0x20d/0x250
[  519.207359][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.212582][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  519.218425][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.223654][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  519.229495][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  519.235604][T16359]  ? should_fail+0x75/0x9c0
[  519.240160][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.245417][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  519.251689][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  519.257787][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  519.263107][T16359]  ? _copy_from_user+0x219/0x310
[  519.268078][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.273437][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  519.279272][T16359]  __msan_chain_origin+0xab/0xf0
[  519.284258][T16359]  do_recvmmsg+0xb11/0x2120
[  519.288811][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  519.295096][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.300330][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  519.305593][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  519.311969][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  519.317380][T16359]  ? do_syscall_64+0x54/0xd0
[  519.322009][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.327212][T16359]  do_syscall_64+0x54/0xd0
[  519.331658][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  519.337335][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.343268][T16359] RIP: 0033:0x7f7784b88ae9
[  519.347709][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  519.367564][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  519.376050][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  519.384063][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  519.392059][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  519.400060][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  519.408275][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  519.417593][T16359] Uninit was stored to memory at:
[  519.422685][T16359]  do_recvmmsg+0xb11/0x2120
[  519.427700][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.432756][T16359]  do_syscall_64+0x54/0xd0
[  519.437395][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.443332][T16359] 
[  519.445662][T16359] Uninit was stored to memory at:
[  519.450845][T16359]  do_recvmmsg+0xb11/0x2120
[  519.455375][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.460550][T16359]  do_syscall_64+0x54/0xd0
[  519.465083][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.471127][T16359] 
[  519.473474][T16359] Uninit was stored to memory at:
[  519.478664][T16359]  do_recvmmsg+0xb11/0x2120
[  519.483457][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.488828][T16359]  do_syscall_64+0x54/0xd0
[  519.493281][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.499356][T16359] 
[  519.501689][T16359] Uninit was stored to memory at:
[  519.506764][T16359]  do_recvmmsg+0xb11/0x2120
[  519.511457][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.516521][T16359]  do_syscall_64+0x54/0xd0
[  519.521130][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.527215][T16359] 
[  519.529557][T16359] Uninit was stored to memory at:
[  519.535834][T16359]  do_recvmmsg+0xb11/0x2120
[  519.540544][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.545786][T16359]  do_syscall_64+0x54/0xd0
[  519.550400][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.556329][T16359] 
[  519.559002][T16359] Uninit was stored to memory at:
[  519.564076][T16359]  do_recvmmsg+0xb11/0x2120
[  519.568770][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.573825][T16359]  do_syscall_64+0x54/0xd0
[  519.578434][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.584373][T16359] 
[  519.586706][T16359] Uninit was stored to memory at:
[  519.591958][T16359]  do_recvmmsg+0xb11/0x2120
[  519.596495][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  519.601737][T16359]  do_syscall_64+0x54/0xd0
[  519.606192][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  519.612294][T16359] 
[  519.614645][T16359] Local variable msg_sys created at:
[  519.620099][T16359]  do_recvmmsg+0xc1/0x2120
[  519.624555][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  520.734669][T16359] not chained 110000 origins
[  520.739564][T16359] CPU: 1 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  520.748354][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  520.758447][T16359] Call Trace:
[  520.761746][T16359]  dump_stack_lvl+0x1ff/0x28e
[  520.766476][T16359]  dump_stack+0x25/0x28
[  520.770683][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  520.776452][T16359]  ? unix_dgram_recvmsg+0x20d/0x250
[  520.781689][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.786922][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  520.792768][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.798005][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  520.804799][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  520.810910][T16359]  ? should_fail+0x75/0x9c0
[  520.815452][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.820682][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  520.826968][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  520.833077][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  520.838399][T16359]  ? _copy_from_user+0x219/0x310
[  520.843378][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.848603][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  520.854432][T16359]  __msan_chain_origin+0xab/0xf0
[  520.859411][T16359]  do_recvmmsg+0xb11/0x2120
[  520.863954][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  520.870232][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.875461][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  520.880688][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  520.886971][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  520.892386][T16359]  ? do_syscall_64+0x54/0xd0
[  520.897014][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  520.903305][T16359]  do_syscall_64+0x54/0xd0
[  520.908390][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  520.914078][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  520.920018][T16359] RIP: 0033:0x7f7784b88ae9
[  520.924458][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  520.944485][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  520.955283][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  520.963284][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  520.971371][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  520.979370][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  520.987369][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  520.996722][T16359] Uninit was stored to memory at:
[  521.002133][T16359]  do_recvmmsg+0xb11/0x2120
[  521.008247][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.013313][T16359]  do_syscall_64+0x54/0xd0
[  521.017976][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.023912][T16359] 
[  521.026243][T16359] Uninit was stored to memory at:
[  521.031392][T16359]  do_recvmmsg+0xb11/0x2120
[  521.035922][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.041083][T16359]  do_syscall_64+0x54/0xd0
[  521.045530][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.051548][T16359] 
[  521.053888][T16359] Uninit was stored to memory at:
[  521.059047][T16359]  do_recvmmsg+0xb11/0x2120
[  521.063575][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.068791][T16359]  do_syscall_64+0x54/0xd0
[  521.073235][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.079243][T16359] 
[  521.081589][T16359] Uninit was stored to memory at:
[  521.086664][T16359]  do_recvmmsg+0xb11/0x2120
[  521.091270][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.096328][T16359]  do_syscall_64+0x54/0xd0
[  521.100850][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.106775][T16359] 
[  521.109179][T16359] Uninit was stored to memory at:
[  521.114329][T16359]  do_recvmmsg+0xb11/0x2120
[  521.118981][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.124046][T16359]  do_syscall_64+0x54/0xd0
[  521.128628][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.134641][T16359] 
[  521.137091][T16359] Uninit was stored to memory at:
[  521.142149][T16359]  do_recvmmsg+0xb11/0x2120
[  521.146741][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.151944][T16359]  do_syscall_64+0x54/0xd0
[  521.156387][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.162452][T16359] 
[  521.164784][T16359] Uninit was stored to memory at:
[  521.169975][T16359]  do_recvmmsg+0xb11/0x2120
[  521.174499][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.179673][T16359]  do_syscall_64+0x54/0xd0
[  521.184116][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.190176][T16359] 
[  521.192512][T16359] Local variable msg_sys created at:
[  521.197973][T16359]  do_recvmmsg+0xc1/0x2120
[  521.202419][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.698815][T16359] not chained 120000 origins
[  521.703542][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  521.712440][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  521.722607][T16359] Call Trace:
[  521.725911][T16359]  dump_stack_lvl+0x1ff/0x28e
[  521.730632][T16359]  dump_stack+0x25/0x28
[  521.735025][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  521.740789][T16359]  ? unix_dgram_recvmsg+0x20d/0x250
[  521.746058][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.751285][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  521.757129][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.762366][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  521.768201][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  521.774393][T16359]  ? should_fail+0x75/0x9c0
[  521.778947][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.784181][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  521.790468][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  521.796581][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  521.801909][T16359]  ? _copy_from_user+0x219/0x310
[  521.806882][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.812106][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  521.817943][T16359]  __msan_chain_origin+0xab/0xf0
[  521.822917][T16359]  do_recvmmsg+0xb11/0x2120
[  521.827566][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  521.833852][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.839095][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  521.844326][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  521.850605][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  521.856012][T16359]  ? do_syscall_64+0x54/0xd0
[  521.860634][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.865692][T16359]  do_syscall_64+0x54/0xd0
[  521.870140][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  521.875808][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.881742][T16359] RIP: 0033:0x7f7784b88ae9
[  521.886183][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  521.905823][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  521.914268][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  521.922278][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  521.930283][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  521.938284][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  521.946287][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  521.958167][T16359] Uninit was stored to memory at:
[  521.963340][T16359]  do_recvmmsg+0xb11/0x2120
[  521.968632][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  521.973699][T16359]  do_syscall_64+0x54/0xd0
[  521.978260][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  521.984201][T16359] 
[  521.986528][T16359] Uninit was stored to memory at:
[  521.991686][T16359]  do_recvmmsg+0xb11/0x2120
[  521.996216][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.001395][T16359]  do_syscall_64+0x54/0xd0
[  522.005837][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.011869][T16359] 
[  522.014202][T16359] Uninit was stored to memory at:
[  522.019380][T16359]  do_recvmmsg+0xb11/0x2120
[  522.023908][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.029056][T16359]  do_syscall_64+0x54/0xd0
[  522.033498][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.039540][T16359] 
[  522.041884][T16359] Uninit was stored to memory at:
[  522.047085][T16359]  do_recvmmsg+0xb11/0x2120
[  522.051611][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.056660][T16359]  do_syscall_64+0x54/0xd0
[  522.061199][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.067209][T16359] 
[  522.069536][T16359] Uninit was stored to memory at:
[  522.074597][T16359]  do_recvmmsg+0xb11/0x2120
[  522.079231][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.084286][T16359]  do_syscall_64+0x54/0xd0
[  522.088830][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.094898][T16359] 
[  522.097337][T16359] Uninit was stored to memory at:
[  522.102403][T16359]  do_recvmmsg+0xb11/0x2120
[  522.107019][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.112068][T16359]  do_syscall_64+0x54/0xd0
[  522.116684][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.122726][T16359] 
[  522.125194][T16359] Uninit was stored to memory at:
[  522.130371][T16359]  do_recvmmsg+0xb11/0x2120
[  522.134896][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.140056][T16359]  do_syscall_64+0x54/0xd0
[  522.144508][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.150548][T16359] 
[  522.152897][T16359] Local variable msg_sys created at:
[  522.158308][T16359]  do_recvmmsg+0xc1/0x2120
[  522.162755][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.334563][T16359] not chained 130000 origins
[  522.339484][T16359] CPU: 0 PID: 16359 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  522.348274][T16359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  522.358349][T16359] Call Trace:
[  522.361643][T16359]  dump_stack_lvl+0x1ff/0x28e
[  522.366361][T16359]  dump_stack+0x25/0x28
[  522.370551][T16359]  kmsan_internal_chain_origin+0x8b/0x130
[  522.376312][T16359]  ? unix_dgram_recvmsg+0x20d/0x250
[  522.381544][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.386775][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  522.392611][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.397840][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  522.403674][T16359]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  522.409773][T16359]  ? should_fail+0x75/0x9c0
[  522.414303][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.419616][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  522.425899][T16359]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  522.432006][T16359]  ? kmsan_unpoison_memory+0xa8/0xf0
[  522.437324][T16359]  ? _copy_from_user+0x219/0x310
[  522.442302][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.447527][T16359]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  522.453361][T16359]  __msan_chain_origin+0xab/0xf0
[  522.458336][T16359]  do_recvmmsg+0xb11/0x2120
[  522.462875][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  522.469152][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.474381][T16359]  ? kmsan_get_metadata+0x11b/0x180
[  522.479609][T16359]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  522.485892][T16359]  ? __msan_poison_alloca+0x13c/0x180
[  522.491309][T16359]  ? do_syscall_64+0x54/0xd0
[  522.495936][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.501005][T16359]  do_syscall_64+0x54/0xd0
[  522.505451][T16359]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  522.511117][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.517047][T16359] RIP: 0033:0x7f7784b88ae9
[  522.521484][T16359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  522.541123][T16359] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  522.549565][T16359] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  522.557564][T16359] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  522.565648][T16359] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  522.573642][T16359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  522.581637][T16359] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  522.590554][T16359] Uninit was stored to memory at:
[  522.595634][T16359]  do_recvmmsg+0xb11/0x2120
[  522.600457][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.605511][T16359]  do_syscall_64+0x54/0xd0
[  522.610067][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.616169][T16359] 
[  522.618591][T16359] Uninit was stored to memory at:
[  522.623654][T16359]  do_recvmmsg+0xb11/0x2120
[  522.628341][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.633482][T16359]  do_syscall_64+0x54/0xd0
[  522.638034][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.643964][T16359] 
[  522.646289][T16359] Uninit was stored to memory at:
[  522.651470][T16359]  do_recvmmsg+0xb11/0x2120
[  522.656018][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.661175][T16359]  do_syscall_64+0x54/0xd0
[  522.665629][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.671662][T16359] 
[  522.674009][T16359] Uninit was stored to memory at:
[  522.679173][T16359]  do_recvmmsg+0xb11/0x2120
[  522.683697][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.688856][T16359]  do_syscall_64+0x54/0xd0
[  522.693300][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.699345][T16359] 
[  522.701676][T16359] Uninit was stored to memory at:
[  522.706738][T16359]  do_recvmmsg+0xb11/0x2120
[  522.711430][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.716568][T16359]  do_syscall_64+0x54/0xd0
[  522.721115][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.727145][T16359] 
[  522.729474][T16359] Uninit was stored to memory at:
[  522.734551][T16359]  do_recvmmsg+0xb11/0x2120
[  522.739287][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.744351][T16359]  do_syscall_64+0x54/0xd0
[  522.748889][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.754899][T16359] 
[  522.757335][T16359] Uninit was stored to memory at:
[  522.762401][T16359]  do_recvmmsg+0xb11/0x2120
[  522.767027][T16359]  __x64_sys_recvmmsg+0x2af/0x500
[  522.772179][T16359]  do_syscall_64+0x54/0xd0
[  522.776618][T16359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  522.782739][T16359] 
[  522.785065][T16359] Local variable msg_sys created at:
[  522.790453][T16359]  do_recvmmsg+0xc1/0x2120
[  522.794895][T16359]  __x64_sys_recvmmsg+0x2af/0x500
06:06:12 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2000000000000004)
r3 = signalfd4(r1, &(0x7f0000000000)={[0x2]}, 0x8, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f00000001c0)="baf80c66b8f2200f8566efbafc0cb80000efffffc71b0fc7bfa600baf80c66b83c38ff843e0f01c5bafc0c66edbad00466b80000000066ef0fc71866b9800000c00f326635000100000f30a04ec5dff1bad104b000ee", 0x56}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x80085502, 0x0)

06:06:12 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

06:06:12 executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001840)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000055c0)=[{{&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/196, 0xc4}, {&(0x7f0000000200)=""/34, 0x22}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/249, 0xf9}, {&(0x7f0000000400)=""/175, 0xaf}, {&(0x7f00000004c0)=""/55, 0x37}], 0x6, &(0x7f0000000580)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r0=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x190}}, {{&(0x7f0000000740), 0x6e, &(0x7f0000000a00)=[{&(0x7f00000007c0)=""/200, 0xc8}, {&(0x7f00000022c0)=""/4096, 0x1000}, {&(0x7f00000008c0)=""/205, 0xcd}, {&(0x7f00000009c0)=""/4, 0x4}], 0x4, &(0x7f0000000a40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000000ac0), 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000b40)=""/74, 0x4a}], 0x1, &(0x7f0000000c00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x110}}, {{&(0x7f0000000d40), 0x6e, &(0x7f00000012c0)=[{&(0x7f00000032c0)=""/4096, 0x1000}, {&(0x7f0000000dc0)}, {&(0x7f0000000e00)=""/181, 0xb5}, {&(0x7f0000000ec0)=""/199, 0xc7}, {&(0x7f00000042c0)=""/4096, 0x1000}, {&(0x7f0000000fc0)=""/237, 0xed}, {&(0x7f00000010c0)=""/233, 0xe9}, {&(0x7f00000011c0)=""/9, 0x9}, {&(0x7f0000001200)=""/133, 0x85}], 0x9, &(0x7f0000001380)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000013c0), 0x6e, &(0x7f00000052c0)=[{&(0x7f0000001440)=""/206, 0xce}, {&(0x7f0000001540)=""/169, 0xa9}, {&(0x7f0000001600)=""/72, 0x48}, {&(0x7f0000001680)=""/4, 0x4}, {&(0x7f00000016c0)=""/129, 0x81}], 0x5, &(0x7f0000005840)=ANY=[@ANYBLOB="2c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="83fc01c1890000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xb0}}, {{&(0x7f0000005400)=@abs, 0x6e, &(0x7f0000005580)=[{&(0x7f0000005480)=""/83, 0x53}, {&(0x7f0000005500)=""/105, 0x69}, {&(0x7f0000001780)=""/20, 0x14}], 0x3}}], 0x6, 0x40020000, 0x0)
sendmsg$nl_route(r0, &(0x7f0000005800)={&(0x7f0000005740)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000057c0)={&(0x7f0000005900)=ANY=[@ANYBLOB="1c0000002200000225bd700600000508800000000000000000000000634ff65855de9a66e97d485087b8ac7df84e362fa0522527a836dfff9f255010e3ae59af8b95bd1dcf39b23f1a6a39bf3229c53ee7b69bd004ed311014db484849a11820744ad54d84197796e7396c86175e330d0306d291ce8015fc3bb5874e3075b763761c7623f7775a5ac23fe79222bd3b7a8f201f3a714d8c1d2f3112301c2017ccdd4d1dd2c43a84f00c46f1126e7ab2cb4cd48976985cbcdc97c324de47368de197cf4e6900defec281"], 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x4004)

06:06:12 executing program 4:
setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x121005)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="5300000044a6aeabc81e152000000000e4ffff0f3605f64017db9820000000000000d403ffff635427e59aa146175dd106736d173f0fc7ec580000000000684700000081baf9459c5c953948c6801f2c0945c08ba8000063a324016f7b7fa4981ffc99a7422007653872ecb4f63adb415ccdfe808101000100000000004f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274edfd9971f7ee096d74c92fad7e34bd5092d45cc36c2440eac2d224609aba9e600000000128ef922502a34290365194a47871a079242514ddb61c548aa5f6486b1aa16690cfe6cdda6f9bb47f852571169876a0fe8c3964fcfbfc15f2f6c99effef33d978b92ba486d865533eb6f6f8e6e5bb5ebb4653e851670a2f665452e82d0c992fa6ccff6ea6496695c98ba28efbbc31677fd36fc0ecf1ce083c57397d968fbe6c455af92c9bc3ee3e0bc0ef7e2dd94e3f162c32ee4397bca872991f0e514e443222d891494bf1aaf15d8a716f80ff7d2e76e6f7b3b471bbf470ba0a2bf9eee263aac917b3e2281e4e40aaadbee94486c628953c1d2b123216b96fdcc080ce38282d9c2971856997f54ef65c5ae174ab0076066c97bf3265cdab3f7b85f28fe1a356808e630b834bf59810b05b1419e037f55f68ccc19dcbca0a173ffeb3a0ca1ad70f3f9ac0485cd130c1589e9128074ddd0addb41168491"], 0xab)
r1 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r2 = dup2(r0, r0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r2, 0x8983, &(0x7f0000000140)={0x8, 'veth0_to_team\x00', {'rose0\x00'}, 0x7fff})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f00008d8000/0x4000)=nil, 0x4000, 0x800000, 0x7, &(0x7f0000130000/0x800000)=nil)
ioctl$SNDCTL_SEQ_SYNC(r2, 0x5101)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f0000000080)={0x2, 0x10, '\x00', 0x0, &(0x7f0000000040)=[0x0, 0x0]})
ioctl$FBIOBLANK(r2, 0x4611, 0x2)
r3 = gettid()
process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
madvise(&(0x7f000030b000/0x4000)=nil, 0x4000, 0x1)
mremap(&(0x7f000046f000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000831000/0x3000)=nil)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8)

[  523.377306][   T18] usb 3-1: new high-speed USB device number 101 using dummy_hcd
06:06:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x80086301, 0x0)

[  523.745373][    C1] sd 0:0:1:0: tag#6317 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  523.755513][    C1] sd 0:0:1:0: tag#6317 CDB: Test Unit Ready
[  523.761873][    C1] sd 0:0:1:0: tag#6317 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.771244][    C1] sd 0:0:1:0: tag#6317 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.780587][    C1] sd 0:0:1:0: tag#6317 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.789970][    C1] sd 0:0:1:0: tag#6317 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.799315][    C1] sd 0:0:1:0: tag#6317 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.808644][    C1] sd 0:0:1:0: tag#6317 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.817965][    C1] sd 0:0:1:0: tag#6317 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.827458][    C1] sd 0:0:1:0: tag#6317 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.836720][    C1] sd 0:0:1:0: tag#6317 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.846047][    C1] sd 0:0:1:0: tag#6317 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.855353][    C1] sd 0:0:1:0: tag#6317 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.864680][    C1] sd 0:0:1:0: tag#6317 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  523.874092][    C1] sd 0:0:1:0: tag#6317 CDB[c0]: 00 00 00 00 00 00 00 00
06:06:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  524.270085][T16477] not chained 140000 origins
[  524.274722][T16477] CPU: 1 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  524.283516][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  524.293592][T16477] Call Trace:
[  524.296891][T16477]  dump_stack_lvl+0x1ff/0x28e
[  524.301727][T16477]  dump_stack+0x25/0x28
[  524.305916][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  524.311728][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  524.316976][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.322208][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  524.328044][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.333301][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  524.339136][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  524.345249][T16477]  ? should_fail+0x75/0x9c0
[  524.349788][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.355027][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  524.361317][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  524.367420][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  524.372735][T16477]  ? _copy_from_user+0x219/0x310
[  524.377711][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.382945][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  524.388783][T16477]  __msan_chain_origin+0xab/0xf0
[  524.393807][T16477]  do_recvmmsg+0xb11/0x2120
[  524.398351][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  524.404631][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.409859][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  524.415121][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  524.421405][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  524.426907][T16477]  ? do_syscall_64+0x54/0xd0
[  524.431535][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.436603][T16477]  do_syscall_64+0x54/0xd0
[  524.441061][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  524.446734][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.452757][T16477] RIP: 0033:0x7f7784b88ae9
[  524.457195][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  524.476826][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  524.485276][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  524.493362][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  524.501358][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  524.509616][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  524.517617][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  524.525781][T16477] Uninit was stored to memory at:
[  524.530942][T16477]  do_recvmmsg+0xb11/0x2120
[  524.535482][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.540625][T16477]  do_syscall_64+0x54/0xd0
[  524.545083][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.551156][T16477] 
[  524.553493][T16477] Uninit was stored to memory at:
[  524.558677][T16477]  do_recvmmsg+0xb11/0x2120
[  524.563208][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.568379][T16477]  do_syscall_64+0x54/0xd0
[  524.572827][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.578886][T16477] 
[  524.581219][T16477] Uninit was stored to memory at:
[  524.586366][T16477]  do_recvmmsg+0xb11/0x2120
[  524.591022][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.596168][T16477]  do_syscall_64+0x54/0xd0
[  524.600733][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.606671][T16477] 
[  524.609171][T16477] Uninit was stored to memory at:
[  524.614323][T16477]  do_recvmmsg+0xb11/0x2120
[  524.618965][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.624024][T16477]  do_syscall_64+0x54/0xd0
[  524.628584][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.634512][T16477] 
[  524.636959][T16477] Uninit was stored to memory at:
[  524.642028][T16477]  do_recvmmsg+0xb11/0x2120
[  524.646550][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.651745][T16477]  do_syscall_64+0x54/0xd0
[  524.656188][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.662236][T16477] 
[  524.664567][T16477] Uninit was stored to memory at:
[  524.669761][T16477]  do_recvmmsg+0xb11/0x2120
[  524.674300][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.679476][T16477]  do_syscall_64+0x54/0xd0
[  524.683924][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.689972][T16477] 
[  524.692301][T16477] Uninit was stored to memory at:
[  524.697481][T16477]  do_recvmmsg+0xb11/0x2120
[  524.702080][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.707252][T16477]  do_syscall_64+0x54/0xd0
[  524.711705][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  524.717802][T16477] 
[  524.720306][T16477] Local variable msg_sys created at:
[  524.725613][T16477]  do_recvmmsg+0xc1/0x2120
[  524.730200][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  524.991559][    C1] sd 0:0:1:0: tag#6318 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  525.001846][    C1] sd 0:0:1:0: tag#6318 CDB: Test Unit Ready
[  525.008069][    C1] sd 0:0:1:0: tag#6318 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.017393][    C1] sd 0:0:1:0: tag#6318 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.026824][    C1] sd 0:0:1:0: tag#6318 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.036080][    C1] sd 0:0:1:0: tag#6318 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.045507][    C1] sd 0:0:1:0: tag#6318 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.054825][    C1] sd 0:0:1:0: tag#6318 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.064187][    C1] sd 0:0:1:0: tag#6318 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.073531][    C1] sd 0:0:1:0: tag#6318 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.082897][    C1] sd 0:0:1:0: tag#6318 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
06:06:14 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000540)="580000001400192340834b80040d8c560a067f0200ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100050c08000300000000000000", 0x58}], 0x1)
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0xfffffffeffffffff, 0x21240)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x4, 0x100010, r1, 0x4d2f1000)
fcntl$getownex(r1, 0x10, &(0x7f0000000040))

[  525.092227][    C1] sd 0:0:1:0: tag#6318 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.101535][    C1] sd 0:0:1:0: tag#6318 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.110882][    C1] sd 0:0:1:0: tag#6318 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  525.120219][    C1] sd 0:0:1:0: tag#6318 CDB[c0]: 00 00 00 00 00 00 00 00
[  525.608253][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  525.617601][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.626562][   T18] usb 3-1: Product: syz
[  525.631465][   T18] usb 3-1: Manufacturer: syz
[  525.636185][   T18] usb 3-1: SerialNumber: syz
[  525.767269][   T18] usb 3-1: config 0 descriptor??
06:06:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x80086601, 0x0)

06:06:15 executing program 4:
r0 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
readv(r0, &(0x7f00000012c0)=[{0x0}, {&(0x7f00000001c0)=""/195, 0xc3}], 0x2)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
r3 = syz_open_dev$dmmidi(&(0x7f0000000040), 0xdf, 0x44000)
r4 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
tee(r3, r4, 0x800, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
sendfile(0xffffffffffffffff, r2, &(0x7f0000000000)=0x200, 0x1f)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r6, &(0x7f0000000100)=[{}], 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000300)={<r7=>0x0, <r8=>0x0})
ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000340)={0xcdd2, 0x0, 0x4, 0x0, 0xffc, {r7, r8/1000+60000}, {0x0, 0x8, 0x8, 0x2, 0x0, 0x8, "58e49c13"}, 0x800, 0x3, @fd, 0xff, 0x0, <r9=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r9, &(0x7f00000003c0)={0x40000000})
r10 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x222200, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r10, &(0x7f00000002c0)={0x50000010})

06:06:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="38000068f8cbcb101d452c37670656e200060000000000000000000000000000000000000000000000000000000f00000000001c002e2d0e5215a00f69058b7d602e25318acab0d352ee609f8d2e7ed6a95e115f837f33ac90b5d1bab69db86613a9f781cb7fbb19f74a798a576c7402333d5e58"], 0x21)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x2b)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fdf000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000140)="0f017801c4c26dae9a0c000000b8e67bb2ae0f23c80f21f8350000f0000f23f83e0f01c566baf80cb845c7ec8cef66bafc0cecb8010000000f01c166ba4000ec0f01c5f30fa7c80f005c0e7b", 0x4c}], 0x1, 0x8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  526.028016][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  526.068954][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  526.148871][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  526.156419][   T18] usb 3-1: media controller created
[  526.281439][T16539] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  526.330162][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  527.266521][T16477] not chained 150000 origins
[  527.271469][T16477] CPU: 1 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  527.280260][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  527.290521][T16477] Call Trace:
[  527.293830][T16477]  dump_stack_lvl+0x1ff/0x28e
[  527.298576][T16477]  dump_stack+0x25/0x28
[  527.302760][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  527.308514][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  527.313727][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.318938][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  527.324757][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.329969][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  527.335790][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  527.341893][T16477]  ? should_fail+0x75/0x9c0
[  527.346411][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.351617][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  527.357973][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  527.364145][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  527.369444][T16477]  ? _copy_from_user+0x219/0x310
[  527.374489][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.379697][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  527.385515][T16477]  __msan_chain_origin+0xab/0xf0
[  527.390471][T16477]  do_recvmmsg+0xb11/0x2120
[  527.395009][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  527.401275][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.406488][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  527.411869][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  527.418134][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  527.423527][T16477]  ? do_syscall_64+0x54/0xd0
[  527.428225][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.433271][T16477]  do_syscall_64+0x54/0xd0
[  527.437704][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  527.443356][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.449273][T16477] RIP: 0033:0x7f7784b88ae9
[  527.453695][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  527.473314][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  527.481911][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  527.489894][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  527.497877][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  527.505852][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  527.513829][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  527.523533][T16477] Uninit was stored to memory at:
[  527.528883][T16477]  do_recvmmsg+0xb11/0x2120
[  527.533501][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.538678][T16477]  do_syscall_64+0x54/0xd0
[  527.543208][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.549274][T16477] 
[  527.551607][T16477] Uninit was stored to memory at:
[  527.556669][T16477]  do_recvmmsg+0xb11/0x2120
[  527.561321][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.566389][T16477]  do_syscall_64+0x54/0xd0
[  527.571470][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.577524][T16477] 
[  527.579857][T16477] Uninit was stored to memory at:
[  527.584928][T16477]  do_recvmmsg+0xb11/0x2120
[  527.589577][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.594639][T16477]  do_syscall_64+0x54/0xd0
[  527.599240][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.605169][T16477] 
[  527.607634][T16477] Uninit was stored to memory at:
[  527.612704][T16477]  do_recvmmsg+0xb11/0x2120
[  527.617373][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.622453][T16477]  do_syscall_64+0x54/0xd0
[  527.627006][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.633140][T16477] 
[  527.635479][T16477] Uninit was stored to memory at:
[  527.640669][T16477]  do_recvmmsg+0xb11/0x2120
[  527.645213][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.650391][T16477]  do_syscall_64+0x54/0xd0
[  527.654841][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.660900][T16477] 
[  527.663236][T16477] Uninit was stored to memory at:
[  527.668427][T16477]  do_recvmmsg+0xb11/0x2120
[  527.672961][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.678150][T16477]  do_syscall_64+0x54/0xd0
[  527.682598][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.688654][T16477] 
[  527.690987][T16477] Uninit was stored to memory at:
[  527.696115][T16477]  do_recvmmsg+0xb11/0x2120
[  527.700772][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.705837][T16477]  do_syscall_64+0x54/0xd0
[  527.710461][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  527.716390][T16477] 
[  527.718856][T16477] Local variable msg_sys created at:
[  527.724232][T16477]  do_recvmmsg+0xc1/0x2120
[  527.728898][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  527.737602][   T18] stb0899_attach: Driver disabled by Kconfig
[  527.743685][   T18] az6027: no front-end attached
[  527.743685][   T18] 
[  527.767050][   T18] az6027: usb out operation failed. (-71)
[  527.772874][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  527.782853][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input59
[  527.800021][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  527.807354][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  527.818341][   T18] usb 3-1: USB disconnect, device number 101
[  527.921166][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  528.091989][T16477] not chained 160000 origins
[  528.096682][T16477] CPU: 1 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  528.105472][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  528.115905][T16477] Call Trace:
[  528.119201][T16477]  dump_stack_lvl+0x1ff/0x28e
[  528.123975][T16477]  dump_stack+0x25/0x28
[  528.128159][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  528.133973][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  528.139201][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.144425][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  528.150294][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.155522][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  528.161357][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  528.167477][T16477]  ? should_fail+0x75/0x9c0
[  528.172049][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.177273][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  528.183545][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  528.189642][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  528.194962][T16477]  ? _copy_from_user+0x219/0x310
[  528.199958][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.205187][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  528.211028][T16477]  __msan_chain_origin+0xab/0xf0
[  528.216001][T16477]  do_recvmmsg+0xb11/0x2120
[  528.220529][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  528.226812][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.232022][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  528.237347][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  528.243622][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  528.249013][T16477]  ? do_syscall_64+0x54/0xd0
[  528.253618][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.258663][T16477]  do_syscall_64+0x54/0xd0
[  528.263095][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  528.268771][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.274682][T16477] RIP: 0033:0x7f7784b88ae9
[  528.279103][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  528.298864][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  528.307294][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  528.315383][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  528.323479][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  528.331475][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  528.339473][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  528.349058][T16477] Uninit was stored to memory at:
[  528.354143][T16477]  do_recvmmsg+0xb11/0x2120
[  528.358975][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.364039][T16477]  do_syscall_64+0x54/0xd0
[  528.368574][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.374506][T16477] 
[  528.376922][T16477] Uninit was stored to memory at:
[  528.382000][T16477]  do_recvmmsg+0xb11/0x2120
[  528.386536][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.393009][T16477]  do_syscall_64+0x54/0xd0
[  528.397714][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.403776][T16477] 
[  528.406280][T16477] Uninit was stored to memory at:
[  528.411440][T16477]  do_recvmmsg+0xb11/0x2120
[  528.415974][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.421195][T16477]  do_syscall_64+0x54/0xd0
[  528.425643][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.431738][T16477] 
[  528.434076][T16477] Uninit was stored to memory at:
[  528.439316][T16477]  do_recvmmsg+0xb11/0x2120
[  528.443848][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.449041][T16477]  do_syscall_64+0x54/0xd0
[  528.453487][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.459563][T16477] 
[  528.461904][T16477] Uninit was stored to memory at:
[  528.467077][T16477]  do_recvmmsg+0xb11/0x2120
[  528.471604][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.476658][T16477]  do_syscall_64+0x54/0xd0
[  528.481244][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.487294][T16477] 
[  528.489625][T16477] Uninit was stored to memory at:
[  528.494691][T16477]  do_recvmmsg+0xb11/0x2120
[  528.499368][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.504525][T16477]  do_syscall_64+0x54/0xd0
[  528.509185][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.515114][T16477] 
[  528.517584][T16477] Uninit was stored to memory at:
[  528.522760][T16477]  do_recvmmsg+0xb11/0x2120
[  528.527397][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  528.532454][T16477]  do_syscall_64+0x54/0xd0
[  528.537005][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  528.542933][T16477] 
[  528.545272][T16477] Local variable msg_sys created at:
[  528.550834][T16477]  do_recvmmsg+0xc1/0x2120
[  528.555283][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  529.767883][T16477] not chained 170000 origins
[  529.772515][T16477] CPU: 1 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  529.781308][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  529.791394][T16477] Call Trace:
[  529.794961][T16477]  dump_stack_lvl+0x1ff/0x28e
[  529.799773][T16477]  dump_stack+0x25/0x28
[  529.803963][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  529.809816][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  529.815061][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.820304][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  529.826144][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.831374][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  529.837214][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  529.843330][T16477]  ? should_fail+0x75/0x9c0
[  529.847864][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.853089][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  529.859369][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  529.865481][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  529.870790][T16477]  ? _copy_from_user+0x219/0x310
[  529.875768][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.881003][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  529.886837][T16477]  __msan_chain_origin+0xab/0xf0
[  529.891808][T16477]  do_recvmmsg+0xb11/0x2120
[  529.896438][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  529.902746][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.907984][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  529.913212][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  529.919492][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  529.924909][T16477]  ? do_syscall_64+0x54/0xd0
[  529.929542][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  529.934607][T16477]  do_syscall_64+0x54/0xd0
[  529.939060][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  529.944736][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  529.950679][T16477] RIP: 0033:0x7f7784b88ae9
[  529.955119][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  529.974767][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  529.983212][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  529.991209][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  529.999468][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  530.007461][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  530.015458][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  530.024781][T16477] Uninit was stored to memory at:
[  530.030924][T16477]  do_recvmmsg+0xb11/0x2120
[  530.035454][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.040796][T16477]  do_syscall_64+0x54/0xd0
[  530.045241][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.051307][T16477] 
[  530.053638][T16477] Uninit was stored to memory at:
[  530.058831][T16477]  do_recvmmsg+0xb11/0x2120
[  530.063365][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.068541][T16477]  do_syscall_64+0x54/0xd0
[  530.072978][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.079112][T16477] 
[  530.081447][T16477] Uninit was stored to memory at:
[  530.086510][T16477]  do_recvmmsg+0xb11/0x2120
[  530.091212][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.096270][T16477]  do_syscall_64+0x54/0xd0
[  530.100838][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.106761][T16477] 
[  530.109230][T16477] Uninit was stored to memory at:
[  530.114286][T16477]  do_recvmmsg+0xb11/0x2120
[  530.118943][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.124003][T16477]  do_syscall_64+0x54/0xd0
[  530.128588][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.134539][T16477] 
[  530.136986][T16477] Uninit was stored to memory at:
[  530.142054][T16477]  do_recvmmsg+0xb11/0x2120
[  530.146578][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.151776][T16477]  do_syscall_64+0x54/0xd0
[  530.156221][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.162271][T16477] 
[  530.164599][T16477] Uninit was stored to memory at:
[  530.169797][T16477]  do_recvmmsg+0xb11/0x2120
[  530.174313][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.179507][T16477]  do_syscall_64+0x54/0xd0
[  530.183948][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.190014][T16477] 
[  530.192345][T16477] Uninit was stored to memory at:
[  530.197529][T16477]  do_recvmmsg+0xb11/0x2120
[  530.202061][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.207224][T16477]  do_syscall_64+0x54/0xd0
[  530.211664][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.217715][T16477] 
[  530.220039][T16477] Local variable msg_sys created at:
[  530.225316][T16477]  do_recvmmsg+0xc1/0x2120
[  530.229889][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.594157][T16477] not chained 180000 origins
[  530.599082][T16477] CPU: 1 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  530.607878][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  530.617960][T16477] Call Trace:
[  530.621271][T16477]  dump_stack_lvl+0x1ff/0x28e
[  530.625998][T16477]  dump_stack+0x25/0x28
[  530.630192][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  530.635965][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  530.641205][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.646434][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  530.652275][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.657504][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  530.663433][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  530.669536][T16477]  ? should_fail+0x75/0x9c0
[  530.674266][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.679603][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  530.685883][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  530.692000][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  530.697321][T16477]  ? _copy_from_user+0x219/0x310
[  530.703701][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.708937][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  530.714778][T16477]  __msan_chain_origin+0xab/0xf0
[  530.719757][T16477]  do_recvmmsg+0xb11/0x2120
[  530.724304][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  530.730593][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.735829][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  530.741058][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  530.747335][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  530.752749][T16477]  ? do_syscall_64+0x54/0xd0
[  530.757466][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.762535][T16477]  do_syscall_64+0x54/0xd0
[  530.766997][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  530.772669][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.778594][T16477] RIP: 0033:0x7f7784b88ae9
[  530.783025][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  530.802659][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  530.811361][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  530.819361][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  530.827359][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  530.835359][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  530.843356][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  530.852863][T16477] Uninit was stored to memory at:
[  530.858217][T16477]  do_recvmmsg+0xb11/0x2120
[  530.862753][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.867923][T16477]  do_syscall_64+0x54/0xd0
[  530.872373][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.878384][T16477] 
[  530.880709][T16477] Uninit was stored to memory at:
[  530.885764][T16477]  do_recvmmsg+0xb11/0x2120
[  530.890448][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.895494][T16477]  do_syscall_64+0x54/0xd0
[  530.900069][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.905999][T16477] 
[  530.908489][T16477] Uninit was stored to memory at:
[  530.913552][T16477]  do_recvmmsg+0xb11/0x2120
[  530.918215][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.923264][T16477]  do_syscall_64+0x54/0xd0
[  530.927912][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.933919][T16477] 
[  530.936240][T16477] Uninit was stored to memory at:
[  530.941477][T16477]  do_recvmmsg+0xb11/0x2120
[  530.946004][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.951198][T16477]  do_syscall_64+0x54/0xd0
[  530.955636][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.961689][T16477] 
[  530.964018][T16477] Uninit was stored to memory at:
[  530.969204][T16477]  do_recvmmsg+0xb11/0x2120
[  530.973718][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  530.978924][T16477]  do_syscall_64+0x54/0xd0
[  530.983448][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  530.989505][T16477] 
[  530.991838][T16477] Uninit was stored to memory at:
[  530.997000][T16477]  do_recvmmsg+0xb11/0x2120
[  531.001522][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  531.006574][T16477]  do_syscall_64+0x54/0xd0
[  531.011151][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  531.017196][T16477] 
[  531.019524][T16477] Uninit was stored to memory at:
[  531.024663][T16477]  do_recvmmsg+0xb11/0x2120
[  531.029321][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  531.034390][T16477]  do_syscall_64+0x54/0xd0
[  531.038969][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  531.044899][T16477] 
[  531.047347][T16477] Local variable msg_sys created at:
[  531.052637][T16477]  do_recvmmsg+0xc1/0x2120
[  531.057187][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  531.926267][T16477] not chained 190000 origins
[  531.931216][T16477] CPU: 0 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  531.940001][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  531.950075][T16477] Call Trace:
[  531.953377][T16477]  dump_stack_lvl+0x1ff/0x28e
[  531.958092][T16477]  dump_stack+0x25/0x28
[  531.962292][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  531.968049][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  531.973305][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  531.978536][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  531.984378][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  531.989640][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  531.995478][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  532.001589][T16477]  ? should_fail+0x75/0x9c0
[  532.006123][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.011345][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.017620][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  532.023729][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  532.029092][T16477]  ? _copy_from_user+0x219/0x310
[  532.034067][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.039294][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  532.045136][T16477]  __msan_chain_origin+0xab/0xf0
[  532.050111][T16477]  do_recvmmsg+0xb11/0x2120
[  532.054659][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.060966][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.066200][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.071431][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.077706][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  532.083199][T16477]  ? do_syscall_64+0x54/0xd0
[  532.087826][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.092980][T16477]  do_syscall_64+0x54/0xd0
[  532.097424][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  532.103177][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.109114][T16477] RIP: 0033:0x7f7784b88ae9
[  532.113552][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  532.133275][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  532.142149][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  532.150141][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  532.158133][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  532.166132][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  532.174133][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  532.183232][T16477] Uninit was stored to memory at:
[  532.188591][T16477]  do_recvmmsg+0xb11/0x2120
[  532.193302][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.198531][T16477]  do_syscall_64+0x54/0xd0
[  532.202964][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.209060][T16477] 
[  532.211387][T16477] Uninit was stored to memory at:
[  532.216450][T16477]  do_recvmmsg+0xb11/0x2120
[  532.221088][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.226150][T16477]  do_syscall_64+0x54/0xd0
[  532.230707][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.236642][T16477] 
[  532.239084][T16477] Uninit was stored to memory at:
[  532.244149][T16477]  do_recvmmsg+0xb11/0x2120
[  532.248788][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.253853][T16477]  do_syscall_64+0x54/0xd0
[  532.258440][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.264366][T16477] 
[  532.266696][T16477] Uninit was stored to memory at:
[  532.271873][T16477]  do_recvmmsg+0xb11/0x2120
[  532.276397][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.281548][T16477]  do_syscall_64+0x54/0xd0
[  532.285988][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.293332][T16477] 
[  532.295665][T16477] Uninit was stored to memory at:
[  532.300823][T16477]  do_recvmmsg+0xb11/0x2120
[  532.305354][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.310519][T16477]  do_syscall_64+0x54/0xd0
[  532.314962][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.321025][T16477] 
[  532.323355][T16477] Uninit was stored to memory at:
[  532.328540][T16477]  do_recvmmsg+0xb11/0x2120
[  532.333117][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.338280][T16477]  do_syscall_64+0x54/0xd0
[  532.342726][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.348770][T16477] 
[  532.351117][T16477] Uninit was stored to memory at:
[  532.356177][T16477]  do_recvmmsg+0xb11/0x2120
[  532.360826][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.365893][T16477]  do_syscall_64+0x54/0xd0
[  532.370504][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.376429][T16477] 
[  532.378909][T16477] Local variable msg_sys created at:
[  532.384194][T16477]  do_recvmmsg+0xc1/0x2120
[  532.388801][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.635342][T16477] not chained 200000 origins
[  532.640194][T16477] CPU: 0 PID: 16477 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  532.648984][T16477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.659146][T16477] Call Trace:
[  532.662438][T16477]  dump_stack_lvl+0x1ff/0x28e
[  532.667149][T16477]  dump_stack+0x25/0x28
[  532.671328][T16477]  kmsan_internal_chain_origin+0x8b/0x130
[  532.677089][T16477]  ? unix_dgram_recvmsg+0x20d/0x250
[  532.682312][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.687543][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  532.693379][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.698619][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  532.704452][T16477]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  532.710558][T16477]  ? should_fail+0x75/0x9c0
[  532.715085][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.720313][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.726599][T16477]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  532.732707][T16477]  ? kmsan_unpoison_memory+0xa8/0xf0
[  532.738030][T16477]  ? _copy_from_user+0x219/0x310
[  532.743001][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.748225][T16477]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  532.754077][T16477]  __msan_chain_origin+0xab/0xf0
[  532.759050][T16477]  do_recvmmsg+0xb11/0x2120
[  532.763587][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.769862][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.775111][T16477]  ? kmsan_get_metadata+0x11b/0x180
[  532.780333][T16477]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  532.786619][T16477]  ? __msan_poison_alloca+0x13c/0x180
[  532.792029][T16477]  ? do_syscall_64+0x54/0xd0
[  532.796735][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.801801][T16477]  do_syscall_64+0x54/0xd0
[  532.806331][T16477]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  532.812086][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.818045][T16477] RIP: 0033:0x7f7784b88ae9
[  532.822485][T16477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  532.842119][T16477] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  532.850561][T16477] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  532.858554][T16477] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  532.866546][T16477] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  532.874536][T16477] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  532.882528][T16477] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  532.891823][T16477] Uninit was stored to memory at:
[  532.897315][T16477]  do_recvmmsg+0xb11/0x2120
[  532.901936][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.907562][T16477]  do_syscall_64+0x54/0xd0
[  532.912010][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.918045][T16477] 
[  532.920376][T16477] Uninit was stored to memory at:
[  532.925443][T16477]  do_recvmmsg+0xb11/0x2120
[  532.930086][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.935178][T16477]  do_syscall_64+0x54/0xd0
[  532.939730][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.945832][T16477] 
[  532.948260][T16477] Uninit was stored to memory at:
[  532.953314][T16477]  do_recvmmsg+0xb11/0x2120
[  532.957947][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.962999][T16477]  do_syscall_64+0x54/0xd0
[  532.967592][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  532.973523][T16477] 
[  532.975847][T16477] Uninit was stored to memory at:
[  532.981028][T16477]  do_recvmmsg+0xb11/0x2120
[  532.985728][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  532.990894][T16477]  do_syscall_64+0x54/0xd0
[  532.995333][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  533.001406][T16477] 
[  533.003735][T16477] Uninit was stored to memory at:
[  533.008945][T16477]  do_recvmmsg+0xb11/0x2120
[  533.013471][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  533.018675][T16477]  do_syscall_64+0x54/0xd0
[  533.023207][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  533.029271][T16477] 
[  533.031601][T16477] Uninit was stored to memory at:
[  533.036672][T16477]  do_recvmmsg+0xb11/0x2120
[  533.041375][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  533.046429][T16477]  do_syscall_64+0x54/0xd0
[  533.051027][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  533.057220][T16477] 
[  533.059553][T16477] Uninit was stored to memory at:
[  533.064614][T16477]  do_recvmmsg+0xb11/0x2120
[  533.069310][T16477]  __x64_sys_recvmmsg+0x2af/0x500
[  533.074375][T16477]  do_syscall_64+0x54/0xd0
[  533.078969][T16477]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  533.084899][T16477] 
[  533.087635][T16477] Local variable msg_sys created at:
[  533.092923][T16477]  do_recvmmsg+0xc1/0x2120
[  533.097519][T16477]  __x64_sys_recvmmsg+0x2af/0x500
06:06:22 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x801c581f, 0x0)

06:06:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:22 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
pipe(&(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r6, &(0x7f0000000100)=[{}], 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYRESOCT=r6, @ANYRES64=r7, @ANYRESDEC=r6], 0x44}}, 0x40401)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010005fff000005000000000000000000", @ANYRES32, @ANYBLOB="01f8ffff00000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r1, 0x0, r8, 0x0, 0x4ffe2, 0x0)

06:06:22 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

[  533.353083][T16581] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  533.541386][T16591] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  533.641195][    T7] usb 3-1: new high-speed USB device number 102 using dummy_hcd
06:06:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8090ae81, 0x0)

[  534.027565][T16608] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  534.168601][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  534.178271][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  534.186470][    T7] usb 3-1: Product: syz
[  534.191107][    T7] usb 3-1: Manufacturer: syz
[  534.195951][    T7] usb 3-1: SerialNumber: syz
06:06:23 executing program 4:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

[  534.384881][    T7] usb 3-1: config 0 descriptor??
06:06:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r2, &(0x7f00000001c0)=ANY=[], 0x21)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f00000000c0)=0xe004)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fdd000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000140)="0f80a5f43e0f3066b88d0000000f23c00f21f86635030001000f23f8baf80c66b8d4eade8366efbafc0c66edba4000ec66b9800000c00f326635002000000f3066b96105000066b81600000066ba000000000f30b87e098ed866b80080000066ba000000000f30470f20525230", 0x6d}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SMI(r3, 0xaeb7)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r5, &(0x7f0000000100)=[{}], 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r5, 0x2, r1)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f00000002c0)={0x10000000})
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  534.642027][    T7] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
06:06:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x8138ae83, 0x0)

[  534.690698][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  534.746526][    T7] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  534.754315][    T7] usb 3-1: media controller created
[  534.890164][T16595] not chained 210000 origins
[  534.894903][T16595] CPU: 0 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  534.903690][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  534.913769][T16595] Call Trace:
[  534.917063][T16595]  dump_stack_lvl+0x1ff/0x28e
[  534.921794][T16595]  dump_stack+0x25/0x28
[  534.925968][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  534.932253][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  534.937493][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  534.942722][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  534.948562][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  534.953785][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  534.959625][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  534.965729][T16595]  ? should_fail+0x75/0x9c0
[  534.970348][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  534.975666][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  534.981947][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  534.988057][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  534.993367][T16595]  ? _copy_from_user+0x219/0x310
[  534.998424][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  535.003648][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  535.009483][T16595]  __msan_chain_origin+0xab/0xf0
[  535.014459][T16595]  do_recvmmsg+0xb11/0x2120
[  535.019001][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  535.025281][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  535.030517][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  535.035743][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  535.042023][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  535.047431][T16595]  ? do_syscall_64+0x54/0xd0
[  535.052054][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.057152][T16595]  do_syscall_64+0x54/0xd0
[  535.061681][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  535.067435][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.073364][T16595] RIP: 0033:0x7f7784b88ae9
[  535.077800][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  535.097431][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  535.105873][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  535.113869][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  535.121863][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  535.129856][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  535.137843][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  535.146790][T16595] Uninit was stored to memory at:
[  535.152459][T16595]  do_recvmmsg+0xb11/0x2120
[  535.157311][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.162364][T16595]  do_syscall_64+0x54/0xd0
[  535.166803][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.172873][T16595] 
[  535.175199][T16595] Uninit was stored to memory at:
[  535.180414][T16595]  do_recvmmsg+0xb11/0x2120
[  535.184941][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.190151][T16595]  do_syscall_64+0x54/0xd0
[  535.194859][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.201052][T16595] 
[  535.203447][T16595] Uninit was stored to memory at:
[  535.208649][T16595]  do_recvmmsg+0xb11/0x2120
[  535.213177][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.218413][T16595]  do_syscall_64+0x54/0xd0
[  535.222854][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.228914][T16595] 
[  535.231245][T16595] Uninit was stored to memory at:
[  535.236317][T16595]  do_recvmmsg+0xb11/0x2120
[  535.240992][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.246044][T16595]  do_syscall_64+0x54/0xd0
[  535.250628][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.256568][T16595] 
[  535.259031][T16595] Uninit was stored to memory at:
[  535.264093][T16595]  do_recvmmsg+0xb11/0x2120
[  535.268762][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.273820][T16595]  do_syscall_64+0x54/0xd0
[  535.278409][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.284338][T16595] 
[  535.286664][T16595] Uninit was stored to memory at:
[  535.291883][T16595]  do_recvmmsg+0xb11/0x2120
[  535.296425][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.296465][T16595]  do_syscall_64+0x54/0xd0
[  535.296494][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.296530][T16595] 
[  535.296535][T16595] Uninit was stored to memory at:
[  535.296574][T16595]  do_recvmmsg+0xb11/0x2120
[  535.296602][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.296632][T16595]  do_syscall_64+0x54/0xd0
[  535.296658][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  535.296692][T16595] 
[  535.296697][T16595] Local variable msg_sys created at:
[  535.296706][T16595]  do_recvmmsg+0xc1/0x2120
[  535.296736][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  535.336325][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
06:06:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0)

06:06:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r5 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x101240, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

[  536.475492][T16632] not chained 220000 origins
[  536.481320][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  536.490117][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  536.500196][T16632] Call Trace:
[  536.503487][T16632]  dump_stack_lvl+0x1ff/0x28e
[  536.508182][T16632]  dump_stack+0x25/0x28
[  536.512346][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  536.518088][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  536.523295][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.528498][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  536.534309][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.539533][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  536.545348][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  536.551443][T16632]  ? should_fail+0x75/0x9c0
[  536.556039][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.561245][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  536.567511][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  536.573592][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  536.578884][T16632]  ? _copy_from_user+0x219/0x310
[  536.583837][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.589041][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  536.594851][T16632]  __msan_chain_origin+0xab/0xf0
[  536.599801][T16632]  do_recvmmsg+0xb11/0x2120
[  536.604321][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  536.610577][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.615782][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  536.621003][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  536.628587][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  536.633996][T16632]  ? do_syscall_64+0x54/0xd0
[  536.638627][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.643673][T16632]  do_syscall_64+0x54/0xd0
[  536.648111][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  536.653757][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.659662][T16632] RIP: 0033:0x7f74e9df9ae9
[  536.664080][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  536.683714][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  536.692145][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  536.700120][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  536.708199][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  536.716171][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  536.724150][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  536.732549][T16632] Uninit was stored to memory at:
[  536.737679][T16632]  do_recvmmsg+0xb11/0x2120
[  536.742210][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.747386][T16632]  do_syscall_64+0x54/0xd0
[  536.751826][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.757869][T16632] 
[  536.760194][T16632] Uninit was stored to memory at:
[  536.765249][T16632]  do_recvmmsg+0xb11/0x2120
[  536.769992][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.775052][T16632]  do_syscall_64+0x54/0xd0
[  536.779614][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.785622][T16632] 
[  536.788076][T16632] Uninit was stored to memory at:
[  536.793142][T16632]  do_recvmmsg+0xb11/0x2120
[  536.797774][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.798631][    T7] az6027: usb out operation failed. (-71)
[  536.802856][T16632]  do_syscall_64+0x54/0xd0
[  536.802890][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.802928][T16632] 
[  536.802933][T16632] Uninit was stored to memory at:
[  536.802975][T16632]  do_recvmmsg+0xb11/0x2120
[  536.803007][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.808946][    T7] stb0899_attach: Driver disabled by Kconfig
[  536.813204][T16632]  do_syscall_64+0x54/0xd0
[  536.813235][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.819293][    T7] az6027: no front-end attached
[  536.819293][    T7] 
[  536.821491][T16632] 
[  536.821496][T16632] Uninit was stored to memory at:
[  536.821539][T16632]  do_recvmmsg+0xb11/0x2120
[  536.871509][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.876569][T16632]  do_syscall_64+0x54/0xd0
[  536.881136][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.887185][T16632] 
[  536.889517][T16632] Uninit was stored to memory at:
[  536.894576][T16632]  do_recvmmsg+0xb11/0x2120
[  536.899221][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.904280][T16632]  do_syscall_64+0x54/0xd0
[  536.908865][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.914797][T16632] 
[  536.917286][T16632] Uninit was stored to memory at:
[  536.922352][T16632]  do_recvmmsg+0xb11/0x2120
[  536.926883][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.932074][T16632]  do_syscall_64+0x54/0xd0
[  536.936516][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  536.941437][    T7] az6027: usb out operation failed. (-71)
[  536.942554][T16632] 
[  536.942561][T16632] Local variable msg_sys created at:
[  536.942570][T16632]  do_recvmmsg+0xc1/0x2120
[  536.942605][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  536.966159][    T7] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  536.975047][    T7] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input60
[  537.264842][    T7] dvb-usb: schedule remote query interval to 400 msecs.
[  537.272456][    T7] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  537.355520][    T7] usb 3-1: USB disconnect, device number 102
06:06:26 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_usb_connect$printer(0x4, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7, 0x0, 0x7, [{{0x9, 0x4, 0x0, 0x40, 0x1, 0x7, 0x1, 0x3, 0x1, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0xfb, 0x3, 0x5}}, [{{0x9, 0x5, 0x82, 0x2, 0x8, 0x81, 0x5a}}]}}}]}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x250, 0x9, 0x54, 0x7, 0x8, 0x92}, 0x4f, &(0x7f0000000080)={0x5, 0xf, 0x4f, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0xa, 0x6, 0xf, 0x2800}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x5, 0xf9, 0xc9, 0x8001}, @ss_container_id={0x14, 0x10, 0x4, 0x9c, "b0f822c5861d8da478229554fc3f8d6f"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xd, 0x0, 0x81, 0x8000}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x7, 0x7, 0x8001}, @ssp_cap={0x14, 0x10, 0xa, 0x62, 0x2, 0x400, 0xee00, 0x5, [0xf, 0x101c030]}]}, 0x9, [{0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x3801}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x140a}}, {0xb0, &(0x7f0000000180)=@string={0xb0, 0x3, "d4ede016f715367bcf9d259b34b9b756de1a8896ebc1637362c385e4f6f974010d9e2c2835958ffe1fa70ac64b940f913039646c1e4fd400261b06650c1c0f2ab41e0335d5f9085178c4cf6a23b2449791f354a3a680ad95677edfc85885c207295c0cb28f1d1936e6f8b87f0c6ced874932f84590536a77c7fc2015ebc81cc1e4131ff669e2f122e04e8e27b2b47a8c87ce3f5a2f514f6fde837c30d02dd6a08dbc9da9c6245005b0ffda2deb56"}}, {0x9, &(0x7f0000000240)=@string={0x9, 0x3, "f152c8143c7ae3"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x403}}, {0xc5, &(0x7f0000000380)=@string={0xc5, 0x3, "d2c0188863a05e54032c56d1ed76fabd9f6d6b9a8b63980d4575c351628c473e270c2d6fff12be29fe193f7880a3d01ccb49d7a57bd78e1c627304de15a90b4a6bc78cddc34527649cbe57a8467ed6f54e58f3b8a75b8ff7624ec0447bc16c2740ca6f4e31b9d6af53e53b2df1678dff95e2bb63b086e582e7d31a67d8fd8ad2e81c8a144aa5d4c414d4dc534e7b14ba69c3f63fee79d7b753ff0d94baadc8b73d1c4da06230108d52a62f578139bbb1880cc0594b85049176b4be7631c47cf834496b"}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x414}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x439}}, {0x90, &(0x7f00000004c0)=@string={0x90, 0x3, "4fd12018af2a5188c023da1a1d3e83eeb94f9f7491fd07ab76f130721b9de65b27f33ac79c36985433ba8b777056b8b59d78d7d8bcca382c8e8715c2c8ee600de0e2446d015052a81952f3a7d92295586a967056760b6e97a9213c0bf684418314b7b98fdbe5cb532dc77d3e75b9f60fcd398aab068bbf3b0038079a02398be275546b72ba1009658f190ab2d0b1"}}]})
syz_usb_control_io(r1, &(0x7f00000009c0)={0x2c, &(0x7f0000000640)={0x0, 0x30, 0x87, {0x87, 0x21, "44fb38395212af140e617451f7bdd60d0d39f0eb2ce7007e55173cda1317ec8df7d432594469a8c93464732af0e59293658aae916eaade281c50988a1bb07e11264727090154b3ce83aa6f5041872b676411d099a007e4f8db9de3cccd346f863d76f659dd619e996431089256b9276fccbaf4d35d46bc44dd63ca5bc8b2a602cd81a72537"}}, &(0x7f0000000700)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x432}}, &(0x7f0000000740)={0x0, 0xf, 0x131, {0x5, 0xf, 0x131, 0x6, [@wireless={0xb, 0x10, 0x1, 0xc, 0xe0, 0x20, 0x6, 0x3ff, 0x9}, @generic={0x76, 0x10, 0xa, "e8615bfb35415d42a310fd7f2063191f1a4652b234d992aab5c77388acb0feba29d95b1bc1ef82d3a96f9e10e1f6dc8ad7aa203c4b659b163a47d0a9640450b8fda2023c09443b02243753928a30b8df7d409bce6352e49c55525e30c615276162a7a1a0f5b0d21e38ce179b12ef480b59c182"}, @ssp_cap={0x14, 0x10, 0xa, 0xd2, 0x2, 0x4, 0xff0f, 0x1, [0x0, 0xff3fcf]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x0, 0xfb, 0x6c6}, @generic={0x83, 0x10, 0x2, "5a4cabce641839775c739bb08fc8727f284d1e2f9e11809b896fdeab7ee5d259a65ee81e80bc20442339169944c28f9f837b37ba67740ff89b34c10e1b65c603fe42575c3598093f4695d3541ea4978b9c0b67d15269837192abb53a38137cf1c7bb29a2d1c741abbff0b9fb49cf32b1ccb594b6fc0c6cb0523e410e268dc3f4"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x1, 0x84, 0x7fff}]}}, &(0x7f0000000880)={0x20, 0x29, 0xf, {0xf, 0x29, 0x43, 0x3, 0x1, 0x8, "f1506823", "19657f86"}}, &(0x7f0000000980)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3f, 0xe1, 0x40, 0x81, 0x7, 0x8, 0x4}}}, &(0x7f0000000e40)={0x84, &(0x7f0000000a00)={0x20, 0x30, 0x6b, "28794f5ae7104e803574520dc31b9086b310e035b1da7e406b764e729540b497d45ba5956a5efc280843dd87782813cdcdb4d8748f7d8adf7ef3fc0e1d5852297d053b0f9a4691c19879379cb3525582216a043540be64c65f1fce69837873bbc03c84b60a78ee41f601bf"}, &(0x7f0000000a80)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000ac0)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000b00)={0x20, 0x0, 0x4, {0x1, 0x2}}, &(0x7f0000000b40)={0x20, 0x0, 0x4, {0x800, 0x20}}, &(0x7f0000000b80)={0x40, 0x7, 0x2}, &(0x7f0000000bc0)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000000c00)={0x40, 0xb, 0x2, "d813"}, &(0x7f0000000c40)={0x40, 0xf, 0x2, 0x20}, &(0x7f0000000c80)={0x40, 0x13, 0x6, @link_local}, &(0x7f0000000cc0)={0x40, 0x17, 0x6}, &(0x7f0000000d00)={0x40, 0x19, 0x2, "1b05"}, &(0x7f0000000d40)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000000d80)={0x40, 0x1c, 0x1}, &(0x7f0000000dc0)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000e00)={0x40, 0x21, 0x1, 0x2}})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

[  537.478008][    T7] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  537.895138][T16595] not chained 230000 origins
[  537.900062][T16595] CPU: 1 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  537.908855][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  537.918930][T16595] Call Trace:
[  537.922223][T16595]  dump_stack_lvl+0x1ff/0x28e
[  537.927024][T16595]  dump_stack+0x25/0x28
[  537.931204][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  537.936964][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  537.942191][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  537.947417][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  537.953248][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  537.958489][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  537.964333][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  537.970424][T16595]  ? should_fail+0x75/0x9c0
[  537.974942][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  537.980160][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  537.986417][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  537.992499][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  537.997786][T16595]  ? _copy_from_user+0x219/0x310
[  538.002739][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  538.007945][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  538.013757][T16595]  __msan_chain_origin+0xab/0xf0
[  538.019058][T16595]  do_recvmmsg+0xb11/0x2120
[  538.023670][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  538.029929][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  538.035135][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  538.040341][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  538.046599][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  538.051984][T16595]  ? do_syscall_64+0x54/0xd0
[  538.056582][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.061621][T16595]  do_syscall_64+0x54/0xd0
[  538.066046][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  538.071691][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.077598][T16595] RIP: 0033:0x7f7784b88ae9
[  538.082036][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  538.101740][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  538.110158][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  538.118138][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  538.126108][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  538.134170][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  538.142140][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  538.150658][    T7] usb 3-1: new high-speed USB device number 103 using dummy_hcd
[  538.151406][T16595] Uninit was stored to memory at:
[  538.163748][T16595]  do_recvmmsg+0xb11/0x2120
[  538.168355][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.173412][T16595]  do_syscall_64+0x54/0xd0
[  538.177933][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.183862][T16595] 
[  538.186191][T16595] Uninit was stored to memory at:
[  538.191344][T16595]  do_recvmmsg+0xb11/0x2120
[  538.195868][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.201269][T16595]  do_syscall_64+0x54/0xd0
[  538.205719][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.211734][T16595] 
[  538.214063][T16595] Uninit was stored to memory at:
[  538.219199][T16595]  do_recvmmsg+0xb11/0x2120
[  538.223745][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.228877][T16595]  do_syscall_64+0x54/0xd0
[  538.233317][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.239324][T16595] 
[  538.241659][T16595] Uninit was stored to memory at:
[  538.246728][T16595]  do_recvmmsg+0xb11/0x2120
[  538.251378][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.256437][T16595]  do_syscall_64+0x54/0xd0
[  538.261009][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.266939][T16595] 
[  538.269394][T16595] Uninit was stored to memory at:
[  538.274457][T16595]  do_recvmmsg+0xb11/0x2120
[  538.279103][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.284155][T16595]  do_syscall_64+0x54/0xd0
[  538.288717][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.295002][T16595] 
[  538.297441][T16595] Uninit was stored to memory at:
[  538.302496][T16595]  do_recvmmsg+0xb11/0x2120
[  538.307020][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.312198][T16595]  do_syscall_64+0x54/0xd0
[  538.316633][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.322692][T16595] 
[  538.325023][T16595] Uninit was stored to memory at:
[  538.330231][T16595]  do_recvmmsg+0xb11/0x2120
[  538.334749][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.339921][T16595]  do_syscall_64+0x54/0xd0
[  538.344368][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.350459][T16595] 
[  538.352794][T16595] Local variable msg_sys created at:
[  538.358212][T16595]  do_recvmmsg+0xc1/0x2120
[  538.362788][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  538.688542][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  538.698264][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  538.706524][    T7] usb 3-1: Product: syz
[  538.711371][    T7] usb 3-1: Manufacturer: syz
[  538.716143][    T7] usb 3-1: SerialNumber: syz
[  538.776270][    T7] usb 3-1: config 0 descriptor??
[  538.778562][T16632] not chained 240000 origins
[  538.785960][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  538.794744][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  538.804819][T16632] Call Trace:
[  538.808196][T16632]  dump_stack_lvl+0x1ff/0x28e
[  538.812901][T16632]  dump_stack+0x25/0x28
[  538.817082][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  538.822835][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  538.828059][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.833285][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  538.839135][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.844540][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  538.850378][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  538.856482][T16632]  ? should_fail+0x75/0x9c0
[  538.861014][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.866241][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  538.872520][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  538.879144][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  538.884459][T16632]  ? _copy_from_user+0x219/0x310
[  538.889433][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.894662][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  538.900520][T16632]  __msan_chain_origin+0xab/0xf0
[  538.905491][T16632]  do_recvmmsg+0xb11/0x2120
[  538.910037][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  538.916315][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.921556][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  538.926786][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  538.933064][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  538.938476][T16632]  ? do_syscall_64+0x54/0xd0
[  538.943097][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  538.948152][T16632]  do_syscall_64+0x54/0xd0
[  538.952593][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  538.958259][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  538.964208][T16632] RIP: 0033:0x7f74e9df9ae9
[  538.968643][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  538.988284][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  538.996737][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  539.004730][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  539.012724][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  539.020716][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  539.028721][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  539.038142][T16632] Uninit was stored to memory at:
[  539.044162][T16632]  do_recvmmsg+0xb11/0x2120
[  539.046887][    T7] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  539.048961][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.049001][T16632]  do_syscall_64+0x54/0xd0
[  539.049031][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.071133][T16632] 
[  539.073468][T16632] Uninit was stored to memory at:
[  539.078663][T16632]  do_recvmmsg+0xb11/0x2120
[  539.083198][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.088377][T16632]  do_syscall_64+0x54/0xd0
[  539.092910][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.098969][T16632] 
[  539.101299][T16632] Uninit was stored to memory at:
[  539.106369][T16632]  do_recvmmsg+0xb11/0x2120
[  539.111031][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.116090][T16632]  do_syscall_64+0x54/0xd0
[  539.120672][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.126605][T16632] 
[  539.129068][T16632] Uninit was stored to memory at:
[  539.134132][T16632]  do_recvmmsg+0xb11/0x2120
[  539.138799][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.143883][T16632]  do_syscall_64+0x54/0xd0
[  539.148505][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.154434][T16632] 
[  539.156757][T16632] Uninit was stored to memory at:
[  539.162254][T16632]  do_recvmmsg+0xb11/0x2120
[  539.166781][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.172055][T16632]  do_syscall_64+0x54/0xd0
[  539.176496][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.176565][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  539.182553][T16632] 
[  539.182561][T16632] Uninit was stored to memory at:
[  539.182602][T16632]  do_recvmmsg+0xb11/0x2120
[  539.182633][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.182664][T16632]  do_syscall_64+0x54/0xd0
[  539.182692][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.182727][T16632] 
[  539.182731][T16632] Uninit was stored to memory at:
[  539.182769][T16632]  do_recvmmsg+0xb11/0x2120
[  539.182800][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.182832][T16632]  do_syscall_64+0x54/0xd0
[  539.182860][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  539.247262][T16632] 
[  539.249591][T16632] Local variable msg_sys created at:
[  539.254876][T16632]  do_recvmmsg+0xc1/0x2120
[  539.259455][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  539.352941][    T7] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  539.360829][    T7] usb 3-1: media controller created
[  539.544181][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  540.182558][T16595] not chained 250000 origins
[  540.187499][T16595] CPU: 1 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  540.196291][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  540.206372][T16595] Call Trace:
[  540.209665][T16595]  dump_stack_lvl+0x1ff/0x28e
[  540.214374][T16595]  dump_stack+0x25/0x28
[  540.218554][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  540.224308][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  540.229536][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.234760][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  540.240690][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.245929][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  540.251766][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  540.257873][T16595]  ? should_fail+0x75/0x9c0
[  540.262412][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.267641][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  540.273924][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  540.280030][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  540.285347][T16595]  ? _copy_from_user+0x219/0x310
[  540.290319][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.295542][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  540.301382][T16595]  __msan_chain_origin+0xab/0xf0
[  540.306356][T16595]  do_recvmmsg+0xb11/0x2120
[  540.310909][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  540.317620][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.322845][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  540.328076][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  540.334352][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  540.339759][T16595]  ? do_syscall_64+0x54/0xd0
[  540.344377][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.349434][T16595]  do_syscall_64+0x54/0xd0
[  540.353876][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  540.359553][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.365486][T16595] RIP: 0033:0x7f7784b88ae9
[  540.369921][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  540.389551][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  540.398078][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  540.406070][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  540.414065][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  540.422059][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  540.430065][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  540.445069][T16595] Uninit was stored to memory at:
[  540.453943][T16595]  do_recvmmsg+0xb11/0x2120
[  540.458623][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.463683][T16595]  do_syscall_64+0x54/0xd0
[  540.468258][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.474541][T16595] 
[  540.476878][T16595] Uninit was stored to memory at:
[  540.482067][T16595]  do_recvmmsg+0xb11/0x2120
[  540.486596][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.491800][T16595]  do_syscall_64+0x54/0xd0
[  540.496242][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.502310][T16595] 
[  540.504633][T16595] Uninit was stored to memory at:
[  540.509814][T16595]  do_recvmmsg+0xb11/0x2120
[  540.514337][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.519947][T16595]  do_syscall_64+0x54/0xd0
[  540.524386][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.530614][T16595] 
[  540.532941][T16595] Uninit was stored to memory at:
[  540.538135][T16595]  do_recvmmsg+0xb11/0x2120
[  540.542663][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.547855][T16595]  do_syscall_64+0x54/0xd0
[  540.552295][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.558330][T16595] 
[  540.560657][T16595] Uninit was stored to memory at:
[  540.565715][T16595]  do_recvmmsg+0xb11/0x2120
[  540.570372][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.575447][T16595]  do_syscall_64+0x54/0xd0
[  540.580041][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.585960][T16595] 
[  540.588340][    T7] stb0899_attach: Driver disabled by Kconfig
[  540.588384][    T7] az6027: no front-end attached
[  540.588384][    T7] 
[  540.601448][T16595] Uninit was stored to memory at:
[  540.606513][T16595]  do_recvmmsg+0xb11/0x2120
[  540.607709][    T7] az6027: usb out operation failed. (-71)
[  540.611164][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.611205][T16595]  do_syscall_64+0x54/0xd0
[  540.611233][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.617039][    T7] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  540.622043][T16595] 
[  540.622049][T16595] Uninit was stored to memory at:
[  540.622089][T16595]  do_recvmmsg+0xb11/0x2120
[  540.622120][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.622152][T16595]  do_syscall_64+0x54/0xd0
[  540.622179][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  540.622216][T16595] 
[  540.622221][T16595] Local variable msg_sys created at:
[  540.628191][    T7] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input61
[  540.632572][T16595]  do_recvmmsg+0xc1/0x2120
[  540.632608][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  540.855616][    T7] dvb-usb: schedule remote query interval to 400 msecs.
[  540.863111][    T7] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  540.929054][    T7] usb 3-1: USB disconnect, device number 103
[  540.994173][T16632] not chained 260000 origins
[  540.999004][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  541.007818][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  541.018491][T16632] Call Trace:
[  541.021773][T16632]  dump_stack_lvl+0x1ff/0x28e
[  541.026562][T16632]  dump_stack+0x25/0x28
[  541.030736][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  541.036574][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  541.041798][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.044860][    T7] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  541.047014][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.047052][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.047081][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.047113][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  541.078350][T16632]  ? should_fail+0x75/0x9c0
[  541.082873][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.088086][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.094447][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  541.100537][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  541.105841][T16632]  ? _copy_from_user+0x219/0x310
[  541.110804][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.116024][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.121857][T16632]  __msan_chain_origin+0xab/0xf0
[  541.126826][T16632]  do_recvmmsg+0xb11/0x2120
[  541.131357][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.137626][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.142840][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.148137][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.154404][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  541.159806][T16632]  ? do_syscall_64+0x54/0xd0
[  541.164422][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.169474][T16632]  do_syscall_64+0x54/0xd0
[  541.173907][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  541.179568][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.185488][T16632] RIP: 0033:0x7f74e9df9ae9
[  541.189914][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  541.209535][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  541.217975][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  541.225966][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  541.233956][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  541.241945][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  541.249933][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  541.259218][T16632] Uninit was stored to memory at:
[  541.264295][T16632]  do_recvmmsg+0xb11/0x2120
[  541.269165][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.274216][T16632]  do_syscall_64+0x54/0xd0
[  541.278739][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.284656][T16632] 
[  541.286975][T16632] Uninit was stored to memory at:
[  541.292154][T16632]  do_recvmmsg+0xb11/0x2120
[  541.296675][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.301854][T16632]  do_syscall_64+0x54/0xd0
[  541.306297][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.312341][T16632] 
[  541.314672][T16632] Uninit was stored to memory at:
[  541.319861][T16632]  do_recvmmsg+0xb11/0x2120
[  541.324379][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.329555][T16632]  do_syscall_64+0x54/0xd0
[  541.333989][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.340035][T16632] 
[  541.342359][T16632] Uninit was stored to memory at:
[  541.347538][T16632]  do_recvmmsg+0xb11/0x2120
[  541.352050][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.357102][T16632]  do_syscall_64+0x54/0xd0
[  541.361697][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.367749][T16632] 
[  541.370086][T16632] Uninit was stored to memory at:
[  541.375141][T16632]  do_recvmmsg+0xb11/0x2120
[  541.379794][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.384844][T16632]  do_syscall_64+0x54/0xd0
[  541.389394][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.395316][T16632] 
[  541.397789][T16632] Uninit was stored to memory at:
[  541.402847][T16632]  do_recvmmsg+0xb11/0x2120
[  541.407492][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.412541][T16632]  do_syscall_64+0x54/0xd0
[  541.416980][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.423084][T16632] 
[  541.425424][T16632] Uninit was stored to memory at:
[  541.430835][T16632]  do_recvmmsg+0xb11/0x2120
[  541.435370][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.440610][T16632]  do_syscall_64+0x54/0xd0
[  541.445042][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.451126][T16632] 
[  541.453453][T16632] Local variable msg_sys created at:
[  541.458894][T16632]  do_recvmmsg+0xc1/0x2120
[  541.463333][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.541384][    T7] usb 3-1: new high-speed USB device number 104 using dummy_hcd
[  541.616247][T16632] not chained 270000 origins
[  541.621055][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  541.629839][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  541.639905][T16632] Call Trace:
[  541.643199][T16632]  dump_stack_lvl+0x1ff/0x28e
[  541.648279][T16632]  dump_stack+0x25/0x28
[  541.652457][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  541.658211][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  541.663440][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.668659][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.674489][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.679717][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.685555][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  541.691658][T16632]  ? should_fail+0x75/0x9c0
[  541.696273][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.701504][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.707786][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  541.713892][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  541.719220][T16632]  ? _copy_from_user+0x219/0x310
[  541.724190][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.729440][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  541.735273][T16632]  __msan_chain_origin+0xab/0xf0
[  541.740251][T16632]  do_recvmmsg+0xb11/0x2120
[  541.744924][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.751203][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.756428][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  541.761653][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  541.767931][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  541.773335][T16632]  ? do_syscall_64+0x54/0xd0
[  541.777953][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.783016][T16632]  do_syscall_64+0x54/0xd0
[  541.787459][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  541.793117][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.799046][T16632] RIP: 0033:0x7f74e9df9ae9
[  541.803472][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  541.823561][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  541.832008][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  541.840000][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  541.847990][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  541.856144][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  541.864253][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  541.873797][T16632] Uninit was stored to memory at:
[  541.879157][T16632]  do_recvmmsg+0xb11/0x2120
[  541.883691][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.888871][T16632]  do_syscall_64+0x54/0xd0
[  541.893308][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.899372][T16632] 
[  541.901702][T16632] Uninit was stored to memory at:
[  541.906803][T16632]  do_recvmmsg+0xb11/0x2120
[  541.911464][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.916513][T16632]  do_syscall_64+0x54/0xd0
[  541.921076][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.926993][T16632] 
[  541.929443][T16632] Uninit was stored to memory at:
[  541.934503][T16632]  do_recvmmsg+0xb11/0x2120
[  541.939141][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.944186][T16632]  do_syscall_64+0x54/0xd0
[  541.948700][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.954618][T16632] 
[  541.956937][T16632] Uninit was stored to memory at:
[  541.962130][T16632]  do_recvmmsg+0xb11/0x2120
[  541.966653][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.971823][T16632]  do_syscall_64+0x54/0xd0
[  541.976267][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  541.982332][T16632] 
[  541.984659][T16632] Uninit was stored to memory at:
[  541.989839][T16632]  do_recvmmsg+0xb11/0x2120
[  541.994364][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  541.999632][T16632]  do_syscall_64+0x54/0xd0
[  542.004069][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.010114][T16632] 
[  542.012449][T16632] Uninit was stored to memory at:
[  542.017960][T16632]  do_recvmmsg+0xb11/0x2120
[  542.022496][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.027617][T16632]  do_syscall_64+0x54/0xd0
[  542.032051][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.038097][T16632] 
[  542.040421][T16632] Uninit was stored to memory at:
[  542.045481][T16632]  do_recvmmsg+0xb11/0x2120
[  542.050130][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.055180][T16632]  do_syscall_64+0x54/0xd0
[  542.059742][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.065664][T16632] 
[  542.068125][T16632] Local variable msg_sys created at:
[  542.073446][T16632]  do_recvmmsg+0xc1/0x2120
[  542.078003][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.181423][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  542.190988][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.199583][    T7] usb 3-1: Product: syz
[  542.256974][T16632] not chained 280000 origins
[  542.261892][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  542.270683][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  542.278838][    T7] usb 3-1: config 0 descriptor??
[  542.280834][T16632] Call Trace:
[  542.280846][T16632]  dump_stack_lvl+0x1ff/0x28e
[  542.280883][T16632]  dump_stack+0x25/0x28
[  542.280911][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  542.280955][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  542.308926][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.314147][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.318212][    T7] usb 3-1: can't set config #0, error -71
[  542.320323][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.320363][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.320395][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  542.320435][T16632]  ? should_fail+0x75/0x9c0
[  542.347682][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.352897][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.359171][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  542.365354][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  542.370653][T16632]  ? _copy_from_user+0x219/0x310
[  542.375613][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.378144][    T7] usb 3-1: USB disconnect, device number 104
[  542.380822][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.380857][T16632]  __msan_chain_origin+0xab/0xf0
[  542.380895][T16632]  do_recvmmsg+0xb11/0x2120
[  542.380935][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.408383][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.413606][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  542.418824][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.425098][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  542.430505][T16632]  ? do_syscall_64+0x54/0xd0
[  542.435225][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.440280][T16632]  do_syscall_64+0x54/0xd0
[  542.444723][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  542.450474][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.456408][T16632] RIP: 0033:0x7f74e9df9ae9
[  542.460843][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.480485][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  542.488947][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  542.496942][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  542.505106][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  542.513177][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  542.521161][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  542.530348][T16632] Uninit was stored to memory at:
[  542.535419][T16632]  do_recvmmsg+0xb11/0x2120
[  542.540368][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.545421][T16632]  do_syscall_64+0x54/0xd0
[  542.550058][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.556149][T16632] 
[  542.558662][T16632] Uninit was stored to memory at:
[  542.563724][T16632]  do_recvmmsg+0xb11/0x2120
[  542.568413][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.573460][T16632]  do_syscall_64+0x54/0xd0
[  542.577977][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.583901][T16632] 
[  542.586225][T16632] Uninit was stored to memory at:
[  542.591376][T16632]  do_recvmmsg+0xb11/0x2120
[  542.595901][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.601099][T16632]  do_syscall_64+0x54/0xd0
[  542.605533][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.611591][T16632] 
[  542.613924][T16632] Uninit was stored to memory at:
[  542.619115][T16632]  do_recvmmsg+0xb11/0x2120
[  542.623652][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.628824][T16632]  do_syscall_64+0x54/0xd0
[  542.633257][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.639523][T16632] 
[  542.641847][T16632] Uninit was stored to memory at:
[  542.646908][T16632]  do_recvmmsg+0xb11/0x2120
[  542.651579][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.656632][T16632]  do_syscall_64+0x54/0xd0
[  542.661203][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.667126][T16632] 
[  542.669675][T16632] Uninit was stored to memory at:
[  542.674736][T16632]  do_recvmmsg+0xb11/0x2120
[  542.679393][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.684448][T16632]  do_syscall_64+0x54/0xd0
[  542.689012][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.694933][T16632] 
[  542.697373][T16632] Uninit was stored to memory at:
[  542.702466][T16632]  do_recvmmsg+0xb11/0x2120
[  542.706994][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.712181][T16632]  do_syscall_64+0x54/0xd0
[  542.716620][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.722669][T16632] 
[  542.724997][T16632] Local variable msg_sys created at:
[  542.730407][T16632]  do_recvmmsg+0xc1/0x2120
[  542.734851][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  542.764062][T16595] not chained 290000 origins
[  542.768944][T16595] CPU: 0 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  542.777731][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  542.787815][T16595] Call Trace:
[  542.791112][T16595]  dump_stack_lvl+0x1ff/0x28e
[  542.795811][T16595]  dump_stack+0x25/0x28
[  542.799980][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  542.805730][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  542.810947][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.816159][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.821978][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.827183][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.833005][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  542.839103][T16595]  ? should_fail+0x75/0x9c0
[  542.843616][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.848825][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.855086][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  542.861174][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  542.866557][T16595]  ? _copy_from_user+0x219/0x310
[  542.871509][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.876719][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  542.882538][T16595]  __msan_chain_origin+0xab/0xf0
[  542.887497][T16595]  do_recvmmsg+0xb11/0x2120
[  542.892023][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.898288][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.898910][T16632] not chained 300000 origins
[  542.903509][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  542.913343][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  542.919589][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  542.924969][T16595]  ? do_syscall_64+0x54/0xd0
[  542.929562][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  542.934595][T16595]  do_syscall_64+0x54/0xd0
[  542.939012][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  542.944648][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  542.950548][T16595] RIP: 0033:0x7f7784b88ae9
[  542.954960][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.974833][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  542.983258][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  542.991420][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  542.999483][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  543.007451][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  543.015415][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  543.023389][T16632] CPU: 1 PID: 16632 Comm: syz-executor.4 Not tainted 5.15.0-rc7-syzkaller #0
[  543.026819][T16595] Uninit was stored to memory at:
[  543.032161][T16632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  543.032180][T16632] Call Trace:
[  543.032188][T16632]  dump_stack_lvl+0x1ff/0x28e
[  543.032226][T16632]  dump_stack+0x25/0x28
[  543.032252][T16632]  kmsan_internal_chain_origin+0x8b/0x130
[  543.032299][T16632]  ? unix_dgram_recvmsg+0x20d/0x250
[  543.032333][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.032361][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.032392][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.032421][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.032453][T16632]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  543.032492][T16632]  ? should_fail+0x75/0x9c0
[  543.032522][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.032552][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.032592][T16632]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  543.032631][T16632]  ? kmsan_unpoison_memory+0xa8/0xf0
[  543.032660][T16632]  ? _copy_from_user+0x219/0x310
[  543.032696][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.032725][T16632]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.032757][T16632]  __msan_chain_origin+0xab/0xf0
[  543.032789][T16632]  do_recvmmsg+0xb11/0x2120
[  543.032825][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.032862][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.037991][T16595]  do_recvmmsg+0xb11/0x2120
[  543.048004][T16632]  ? kmsan_get_metadata+0x11b/0x180
[  543.048036][T16632]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.048074][T16632]  ? __msan_poison_alloca+0x13c/0x180
[  543.051350][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.056001][T16632]  ? do_syscall_64+0x54/0xd0
[  543.060211][T16595]  do_syscall_64+0x54/0xd0
[  543.065840][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.071108][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.076206][T16632]  do_syscall_64+0x54/0xd0
[  543.082066][T16595] 
[  543.087167][T16632]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  543.093059][T16595] Uninit was stored to memory at:
[  543.099019][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.099062][T16632] RIP: 0033:0x7f74e9df9ae9
[  543.099085][T16632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  543.103616][T16595]  do_recvmmsg+0xb11/0x2120
[  543.108753][T16632] RSP: 002b:00007f74e734e188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  543.108785][T16632] RAX: ffffffffffffffda RBX: 00007f74e9f0d020 RCX: 00007f74e9df9ae9
[  543.108805][T16632] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  543.108824][T16632] RBP: 00007f74e9e53f25 R08: 0000000000000000 R09: 0000000000000000
[  543.108842][T16632] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  543.115073][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.121117][T16632] R13: 00007f74ea440b2f R14: 00007f74e734e300 R15: 0000000000022000
[  543.121218][T16632] Uninit was stored to memory at:
[  543.126460][T16595]  do_syscall_64+0x54/0xd0
[  543.131462][T16632]  do_recvmmsg+0xb11/0x2120
[  543.136629][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.142490][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.147493][T16595] 
[  543.151959][T16632]  do_syscall_64+0x54/0xd0
[  543.158255][T16595] Uninit was stored to memory at:
[  543.163421][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.168035][T16595]  do_recvmmsg+0xb11/0x2120
[  543.173178][T16632] 
[  543.173184][T16632] Uninit was stored to memory at:
[  543.179471][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.184839][T16632]  do_recvmmsg+0xb11/0x2120
[  543.189911][T16595]  do_syscall_64+0x54/0xd0
[  543.194462][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.199000][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.203915][T16632]  do_syscall_64+0x54/0xd0
[  543.209866][T16595] 
[  543.214243][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.216552][T16595] Uninit was stored to memory at:
[  543.216593][T16595]  do_recvmmsg+0xb11/0x2120
[  543.222228][T16632] 
[  543.222234][T16632] Uninit was stored to memory at:
[  543.222272][T16632]  do_recvmmsg+0xb11/0x2120
[  543.227243][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.233209][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.237672][T16595]  do_syscall_64+0x54/0xd0
[  543.257314][T16632]  do_syscall_64+0x54/0xd0
[  543.261813][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.270262][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.278306][T16595] 
[  543.286248][T16632] 
[  543.286255][T16632] Uninit was stored to memory at:
[  543.294277][T16595] Uninit was stored to memory at:
[  543.302312][T16632]  do_recvmmsg+0xb11/0x2120
[  543.307395][T16595]  do_recvmmsg+0xb11/0x2120
[  543.315307][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.320385][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.324775][T16632]  do_syscall_64+0x54/0xd0
[  543.329331][T16595]  do_syscall_64+0x54/0xd0
[  543.335192][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.340269][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.342562][T16632] 
[  543.342568][T16632] Uninit was stored to memory at:
[  543.346953][T16595] 
[  543.346960][T16595] Uninit was stored to memory at:
[  543.352056][T16632]  do_recvmmsg+0xb11/0x2120
[  543.358002][T16595]  do_recvmmsg+0xb11/0x2120
[  543.362437][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.364746][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.369806][T16632]  do_syscall_64+0x54/0xd0
[  543.369836][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.374829][T16595]  do_syscall_64+0x54/0xd0
[  543.379364][T16632] 
[  543.379370][T16632] Uninit was stored to memory at:
[  543.379409][T16632]  do_recvmmsg+0xb11/0x2120
[  543.384051][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.389115][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.395009][T16595] 
[  543.395015][T16595] Uninit was stored to memory at:
[  543.395053][T16595]  do_recvmmsg+0xb11/0x2120
[  543.399465][T16632]  do_syscall_64+0x54/0xd0
[  543.401790][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.407713][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.412729][T16595]  do_syscall_64+0x54/0xd0
[  543.417225][T16632] 
[  543.417232][T16632] Uninit was stored to memory at:
[  543.419631][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.424756][T16632]  do_recvmmsg+0xb11/0x2120
[  543.429278][T16595] 
[  543.434701][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.439782][T16595] Local variable msg_sys created at:
[  543.444166][T16632]  do_syscall_64+0x54/0xd0
[  543.448633][T16595]  do_recvmmsg+0xc1/0x2120
[  543.454489][T16632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.460433][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.462728][T16632] 
[  543.462734][T16632] Local variable msg_sys created at:
[  543.678537][T16632]  do_recvmmsg+0xc1/0x2120
[  543.682982][T16632]  __x64_sys_recvmmsg+0x2af/0x500
[  543.765224][T16595] not chained 310000 origins
[  543.770075][T16595] CPU: 0 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  543.779278][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  543.789375][T16595] Call Trace:
[  543.792664][T16595]  dump_stack_lvl+0x1ff/0x28e
[  543.797362][T16595]  dump_stack+0x25/0x28
[  543.801528][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  543.807273][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  543.812490][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.817706][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.823536][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.828747][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.834570][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  543.840671][T16595]  ? should_fail+0x75/0x9c0
[  543.845190][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.850407][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.856677][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  543.862777][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  543.868075][T16595]  ? _copy_from_user+0x219/0x310
[  543.873048][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.878276][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  543.884105][T16595]  __msan_chain_origin+0xab/0xf0
[  543.889072][T16595]  do_recvmmsg+0xb11/0x2120
[  543.893611][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.899878][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.905102][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  543.910318][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  543.916583][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  543.921989][T16595]  ? do_syscall_64+0x54/0xd0
[  543.926600][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  543.931649][T16595]  do_syscall_64+0x54/0xd0
[  543.936257][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  543.941917][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  543.947869][T16595] RIP: 0033:0x7f7784b88ae9
[  543.952297][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  543.971929][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  543.980371][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  543.988384][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  543.996382][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  544.004363][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  544.012337][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  544.021487][T16595] Uninit was stored to memory at:
[  544.026567][T16595]  do_recvmmsg+0xb11/0x2120
[  544.031452][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.036536][T16595]  do_syscall_64+0x54/0xd0
[  544.041143][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.047069][T16595] 
[  544.049560][T16595] Uninit was stored to memory at:
[  544.054796][T16595]  do_recvmmsg+0xb11/0x2120
[  544.059472][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.064525][T16595]  do_syscall_64+0x54/0xd0
[  544.069163][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.075089][T16595] 
[  544.077585][T16595] Uninit was stored to memory at:
[  544.082645][T16595]  do_recvmmsg+0xb11/0x2120
[  544.087163][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.092444][T16595]  do_syscall_64+0x54/0xd0
[  544.096882][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.103014][T16595] 
[  544.105345][T16595] Uninit was stored to memory at:
[  544.110608][T16595]  do_recvmmsg+0xb11/0x2120
[  544.115146][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.120387][T16595]  do_syscall_64+0x54/0xd0
[  544.124821][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.130947][T16595] 
[  544.133274][T16595] Uninit was stored to memory at:
[  544.138530][T16595]  do_recvmmsg+0xb11/0x2120
[  544.143072][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.148345][T16595]  do_syscall_64+0x54/0xd0
[  544.152773][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.159071][T16595] 
[  544.161395][T16595] Uninit was stored to memory at:
[  544.166456][T16595]  do_recvmmsg+0xb11/0x2120
[  544.171201][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.176261][T16595]  do_syscall_64+0x54/0xd0
[  544.180897][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.186813][T16595] 
[  544.189368][T16595] Uninit was stored to memory at:
[  544.194432][T16595]  do_recvmmsg+0xb11/0x2120
[  544.199202][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.204264][T16595]  do_syscall_64+0x54/0xd0
[  544.208889][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.214809][T16595] 
[  544.217134][T16595] Local variable msg_sys created at:
[  544.222631][T16595]  do_recvmmsg+0xc1/0x2120
[  544.227087][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.322891][T16595] not chained 320000 origins
[  544.327807][T16595] CPU: 1 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  544.336599][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  544.346676][T16595] Call Trace:
[  544.349967][T16595]  dump_stack_lvl+0x1ff/0x28e
[  544.354673][T16595]  dump_stack+0x25/0x28
[  544.358853][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  544.364612][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  544.369841][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.375076][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  544.380913][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.386137][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  544.391972][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  544.398074][T16595]  ? should_fail+0x75/0x9c0
[  544.402618][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.407844][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  544.414121][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  544.420224][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  544.425538][T16595]  ? _copy_from_user+0x219/0x310
[  544.430508][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.435733][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  544.441575][T16595]  __msan_chain_origin+0xab/0xf0
[  544.446544][T16595]  do_recvmmsg+0xb11/0x2120
[  544.451079][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  544.457359][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.462582][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  544.467889][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  544.474169][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  544.479573][T16595]  ? do_syscall_64+0x54/0xd0
[  544.484186][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.489246][T16595]  do_syscall_64+0x54/0xd0
[  544.493685][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  544.499350][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.505273][T16595] RIP: 0033:0x7f7784b88ae9
[  544.509702][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  544.531330][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  544.539772][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  544.547778][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  544.555780][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  544.563775][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  544.571768][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  544.581121][T16595] Uninit was stored to memory at:
[  544.586197][T16595]  do_recvmmsg+0xb11/0x2120
[  544.591025][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.596082][T16595]  do_syscall_64+0x54/0xd0
[  544.600603][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.606527][T16595] 
[  544.608933][T16595] Uninit was stored to memory at:
[  544.613999][T16595]  do_recvmmsg+0xb11/0x2120
[  544.618602][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.623653][T16595]  do_syscall_64+0x54/0xd0
[  544.628188][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.634183][T16595] 
[  544.636503][T16595] Uninit was stored to memory at:
[  544.641684][T16595]  do_recvmmsg+0xb11/0x2120
[  544.646212][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.651383][T16595]  do_syscall_64+0x54/0xd0
[  544.655845][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.661909][T16595] 
[  544.664233][T16595] Uninit was stored to memory at:
[  544.669418][T16595]  do_recvmmsg+0xb11/0x2120
[  544.673959][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.679127][T16595]  do_syscall_64+0x54/0xd0
[  544.683562][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.689602][T16595] 
[  544.691931][T16595] Uninit was stored to memory at:
[  544.696988][T16595]  do_recvmmsg+0xb11/0x2120
[  544.701649][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.706699][T16595]  do_syscall_64+0x54/0xd0
[  544.711265][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.717193][T16595] 
[  544.719643][T16595] Uninit was stored to memory at:
[  544.724710][T16595]  do_recvmmsg+0xb11/0x2120
[  544.729360][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.734416][T16595]  do_syscall_64+0x54/0xd0
[  544.738980][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.744905][T16595] 
[  544.747238][T16595] Uninit was stored to memory at:
[  544.752447][T16595]  do_recvmmsg+0xb11/0x2120
[  544.756980][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.762182][T16595]  do_syscall_64+0x54/0xd0
[  544.766629][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  544.772678][T16595] 
[  544.775019][T16595] Local variable msg_sys created at:
[  544.780615][T16595]  do_recvmmsg+0xc1/0x2120
[  544.785058][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  544.971396][T16595] not chained 330000 origins
[  544.976023][T16595] CPU: 1 PID: 16595 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  544.984807][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  544.994874][T16595] Call Trace:
[  544.998166][T16595]  dump_stack_lvl+0x1ff/0x28e
[  545.002873][T16595]  dump_stack+0x25/0x28
[  545.007050][T16595]  kmsan_internal_chain_origin+0x8b/0x130
[  545.012801][T16595]  ? unix_dgram_recvmsg+0x20d/0x250
[  545.018032][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.023252][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  545.029080][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.034300][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  545.040136][T16595]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  545.046231][T16595]  ? should_fail+0x75/0x9c0
[  545.050788][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.056012][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  545.062291][T16595]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  545.068395][T16595]  ? kmsan_unpoison_memory+0xa8/0xf0
[  545.073720][T16595]  ? _copy_from_user+0x219/0x310
[  545.078688][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.083909][T16595]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  545.089738][T16595]  __msan_chain_origin+0xab/0xf0
[  545.094792][T16595]  do_recvmmsg+0xb11/0x2120
[  545.099414][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  545.105771][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.110990][T16595]  ? kmsan_get_metadata+0x11b/0x180
[  545.116209][T16595]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  545.122570][T16595]  ? __msan_poison_alloca+0x13c/0x180
[  545.127970][T16595]  ? do_syscall_64+0x54/0xd0
[  545.132577][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.137634][T16595]  do_syscall_64+0x54/0xd0
[  545.142153][T16595]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  545.147810][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.153734][T16595] RIP: 0033:0x7f7784b88ae9
[  545.158339][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  545.177962][T16595] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  545.186398][T16595] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  545.194387][T16595] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  545.202467][T16595] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  545.210461][T16595] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  545.218456][T16595] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  545.227984][T16595] Uninit was stored to memory at:
[  545.233056][T16595]  do_recvmmsg+0xb11/0x2120
[  545.237940][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.242998][T16595]  do_syscall_64+0x54/0xd0
[  545.247569][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.253495][T16595] 
[  545.255821][T16595] Uninit was stored to memory at:
[  545.261020][T16595]  do_recvmmsg+0xb11/0x2120
[  545.265549][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.270736][T16595]  do_syscall_64+0x54/0xd0
[  545.275177][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.281239][T16595] 
[  545.283563][T16595] Uninit was stored to memory at:
[  545.288736][T16595]  do_recvmmsg+0xb11/0x2120
[  545.293259][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.298385][T16595]  do_syscall_64+0x54/0xd0
[  545.302815][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.308869][T16595] 
[  545.311196][T16595] Uninit was stored to memory at:
[  545.316251][T16595]  do_recvmmsg+0xb11/0x2120
[  545.320903][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.325952][T16595]  do_syscall_64+0x54/0xd0
[  545.330520][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.336435][T16595] 
[  545.338879][T16595] Uninit was stored to memory at:
[  545.343933][T16595]  do_recvmmsg+0xb11/0x2120
[  545.348585][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.353631][T16595]  do_syscall_64+0x54/0xd0
[  545.358173][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.364093][T16595] 
[  545.366415][T16595] Uninit was stored to memory at:
[  545.372216][T16595]  do_recvmmsg+0xb11/0x2120
[  545.376737][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.381913][T16595]  do_syscall_64+0x54/0xd0
[  545.386348][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.392411][T16595] 
[  545.394737][T16595] Uninit was stored to memory at:
[  545.399914][T16595]  do_recvmmsg+0xb11/0x2120
[  545.404436][T16595]  __x64_sys_recvmmsg+0x2af/0x500
[  545.409608][T16595]  do_syscall_64+0x54/0xd0
[  545.414134][T16595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  545.420187][T16595] 
[  545.422514][T16595] Local variable msg_sys created at:
[  545.427922][T16595]  do_recvmmsg+0xc1/0x2120
[  545.432356][T16595]  __x64_sys_recvmmsg+0x2af/0x500
06:06:34 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f00000000c0)={0xa000000d})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc0045878, 0x0)

06:06:34 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000000)="42d9f48f0978c702420f1b3e460f07362e0f017d96362e0fc77802c4617829fa66baf80cb8bb0f6486ef66bafc0cb0faee470f01c2f3470fc7491e", 0x3b}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SMI(r0, 0xaeb7)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
ioctl$FIOCLEX(r2, 0x5451)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

06:06:34 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000200)={<r1=>0x0, ""/256, <r2=>0x0, <r3=>0x0})
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r4, 0x890b, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @empty}, @vsock={0x28, 0x0, 0xffffd8ef, @local}, @nl=@unspec, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0_macvtap\x00', 0x4, 0x0, 0x114})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000001640)={<r5=>0x0, ""/256, <r6=>0x0, <r7=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r8=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000000)={{<r9=>0x0, 0x100, 0x6, 0x32e, 0x4, 0x401, 0x0, 0x2, 0x1, 0x4, 0x7, 0x0, 0x81, 0x0, 0x80000000}})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000001c0)={<r10=>0x0, ""/256, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005ccc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}], 0x0, "bbaa4e94a84a65"})
pipe(&(0x7f0000000140)={<r12=>0xffffffffffffffff, <r13=>0xffffffffffffffff})
write$binfmt_misc(r13, &(0x7f0000000140)=ANY=[], 0x37cb1133)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r12, 0xc0709411, &(0x7f0000000000)=ANY=[@ANYRES64=<r14=>0x0, @ANYBLOB="000100000000000006000000000000002e0300000000000004000000000000000104000000000000000000000000000002000000010000000400000007000000000000fb00000000810000000000000000000000000000000000008000"/104])
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x81f8943c, &(0x7f00000001c0)={<r15=>0x0, ""/256, 0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005ccc0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r14}], 0x0, "bbaa4e94a84a65"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058900)={0x7, [{r5, r7}, {r1}, {r5}, {0x0, r3}, {r2}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {0x0, r3}, {r5, r7}, {r2}, {r2, r7}, {}, {}, {}, {r6}, {}, {}, {}, {r5}, {r5}, {}, {0x0, r3}, {r6}, {}, {}, {0x0, r3}, {0x0, r3}, {}, {r5, r3}, {0x0, r7}, {r1, r7}, {}, {0x0, r3}, {r5, r3}, {}, {r6}, {0x0, r7}, {r1}, {0x0, r3}, {0x0, r3}, {}, {0x0, r7}, {}, {r1}, {}, {0x0, r7}, {}, {r6, r3}, {}, {r2}, {0x0, r7}, {r5, r3}, {0x0, r3}, {r5, r7}, {0x0, r3}, {0x0, r3}, {r2, r7}, {0x0, r7}, {r6}, {r1}, {r5, r3}, {r5}, {}, {0x0, r7}, {r5, r3}, {r6, r3}, {r6}, {}, {r1}, {}, {}, {r2, r3}, {r5}, {r2, r7}, {}, {0x0, r3}, {}, {r6, r3}, {}, {r6}, {}, {}, {}, {}, {r5}, {0x0, r7}, {r2, r7}, {r5}, {r1, r3}, {r6}, {r1, r7}, {0x0, r3}, {0x0, r3}, {r5}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {r2}, {r1}, {0x0, r3}, {0x0, r3}, {0x0, r7}, {}, {r2}, {r6}, {r2, r7}, {r1}, {0x0, r7}, {}, {r1}, {r2, r3}, {}, {r5}, {0x0, r3}, {}, {r2}, {r1}, {}, {0x0, r3}, {r2, r3}, {r2}, {}, {r1}, {r1}, {r2}, {r5, r7}, {0x0, r3}, {}, {r2, r3}, {}, {}, {r6}, {r1}, {}, {0x0, r7}, {}, {r6, r7}, {r5, r3}, {0x0, r3}, {}, {0x0, r3}, {}, {r2}, {r6}, {r5, r3}, {r6}, {r2}, {}, {}, {}, {0x0, r7}, {r5, r3}, {}, {}, {}, {r1}, {}, {r5, r7}, {r1}, {r5}, {r5, r3}, {}, {r2}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {r5}, {r2, r7}, {r2}, {0x0, r7}, {}, {}, {r2}, {r2}, {}, {0x0, r7}, {}, {r2}, {r6}, {r6, r3}, {r1}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r5}, {0x0, r3}, {}, {r1, r7}, {0x0, r3}, {r1, r3}, {0x0, r7}, {0x0, r3}, {r2, r7}, {}, {r6, r3}, {}, {}, {}, {0x0, r7}, {0x0, r3}, {}, {0x0, r3}, {0x0, r3}, {}, {0x0, r7}, {r6, r7}, {0x0, r7}, {}, {}, {r6, r7}, {r6}, {0x0, r7}, {r2, r7}, {0x0, r3}, {}, {}, {r5}, {r5}, {0x0, r3}, {0x0, r3}, {}, {}, {r1}, {0x0, r3}, {}, {r1}, {r2, r3}, {0x0, r3}, {r1}, {r6, r3}, {r5, r7}, {r5, r3}, {r5}, {r1, r3}, {}, {0x0, r3}, {r2, r3}, {r2}, {r6, r7}, {}, {}, {r2, r7}, {r5, r7}, {0x0, r3}, {r10, r3}, {r1, r7}, {r6, r16}], 0x1, "ae643d3577dfa9"})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r17=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000480)={{r17}, r8, 0x16, @inherit={0x68, &(0x7f00000020c0)={0x1, 0x4, 0x8, 0x3, {0x1, 0x5, 0x65, 0x5, 0x3ff}, [0xf711, 0x1f, 0xe5, 0x7]}}, @name="2ffc4913448b6b73234e92be09d97eabc20816c548e7f8373609ceb5cd014f373d6ad1b56f83befa6a43ae59e48a90c36c3be48d77adee3f2b7719add7b9f7dc31b48fcc4fa4a668a33143ff25725e9773cf6c2e3415fcb7f0475a76b1cf8aaef4733c28010a80590fe7bb5e79ce532b0aaa6b9bdf46469c345fd95e9ac62cb20f7c383fff01fdfa0f552ccde75219fd25a996b6e60936c8d0884fee0bb3b1bc498ecb11b34684be7ea3787c06a694d300bfdda64cbd82de0943fc3c298667e256e06fd807e39b152c302c53383bb8d4d7339f32ddf1e6b9abb75ba40bb2ac602a243b464d2f1c424bf3f5d22696583a4e955aea090db81a68a1fd55dcca94fbaa2d063e46ab770e553d1f9b6bfd7baec2853902a2bada2bf600ad74deb14769e4bb4c955599415452ce09aa0742c1f8c835b89069f9e9bfe33a4bc0d4919ccbd085e6966a2062ff6b231960166fe41ea7457a4380e11ac38bd7bbce3811a78885d4822a76bf850aa23776140b7b69d8ce44e729e370fbd956ad9605412ae929a56f4a54f7a28970c63adaa480366860b300a6f95bee7bdaaefe0b1f6bfa124eee6f22aad5b63c171f2d02871e142b39fdb1ee55792556b0c3df3fcb06695dd474be960c673660e1cb258e092e94d964b34ce56b79aff8f74dcd6a5df3007abc9248d3c9340873ed5740f8adc161eb145756c3165c5e2b4e7088110e10bd183025c885cbcb1e199beb368e5e743b84643308907da85327b67572d74f2633fe1b2a3a09f7f4643a09bb6a51bdd655abffd13ae2fefc5518eca9f1a5862aa53e714effffff7f00000000ddece322244c151d7ffbdc7d55db922ff580940c287c131af059becfeb553d121e95c5a8b6bc6a909c99cb126ff6bb1470ec44155ab3a7439ffa57ada16a661d04077b8fd2ed55658afdc201e5e2b5e7e0e7b25d7813991543ccf59e02561f0bf1fd3092ca91851e5b9d56bfd16d2d5e79a3b357a8c320ad3ad9ef60f97e66987f3eb9995995687fe05a7552aed39540a48328d05b47e8e1eb8be46d77a9084c799b51af0dfe9f66282e0360731d34a22368765de01daaf2e804709bf9dfe61e8ee4d2894dfc22dee873b8e4dc1ddb44a3e09860446853e6a1c60f8bde08d64fca6ce6e9db1de5c0160f5d7083b6d5230c812f2e189764df9ec4cc1c82e08d07a9896de85e8d81c75a32c9adb61ff74324be4288f56330cf4e90ec9287d63f9954f2fc79a9174b3ebf927477ef20a125dc32ef6554c4498a1d1bf486d6537cdcfc2f635096614ea068c5dc0c2b9ebedb4b2067e264e44dd80141fe224197badf8f864cd7b9c5e1f6c7bf354239521759a185141544dc1065d58daf2ec08191649564bd605cd3d4132e8480e382833ad7ca345118dc1e99cf1b49045f38bcfae887e5e7d3e85158065799074bc15cec0e89d3d46f1081f071782e4c188cad1be69179e19bb491e18a31b40adaf9ce53a5b49a4b08e92fc7476df1a14dbe40d027290e5a47593bb62150ffba10059b9a1f2293a1ef5cc97526b9c4d0bf5b970e2ce623dd8e596708ecf0acd48934b206568d74558b01fa78b855b8a704321a53ffd4a16696afabd8a3a79eb62090a30179a24be760b4b2d2b68f7d69ca23eff1dc07db2e447e406d3a2fa3459ac548a21b40d7d6d66abcbf2b8d4ce7005841bc3ed7289dbcbef6144359954d269f54b2ab394e56382cf6d7ff8c8c68ecffa3e3b4f36d97840c00f0815219a30ae267c4315fec115fcbc2f0d91ba91352d1d7e8c4d58c3537fa91057ab6cea67d72d2d13db57d84ea29075d4903882bd2dd467a48acdf93a6dd3de06a152c85f5dbac5a55c080d9db1a1a2960c8eb4d6470624e34002aedfadb7e6f6ccb96c1fd94a622bcb30e7cd1f161872fbda2aec80fa402c31edb670cc0a03f1c55bc2443dc903a31945d81beac0459f1f06148ce691bd0953a5ffea38824d8602b0d9d84210e5ff6e06c02aafe03927a6ab729952867f2cbe68935c37e9a73e8c5ededec80f813fe5e370946dbe21f0cfffcbfc77a52504ca4adbf3563eb831a5e56f99e204f84e0fc19b19320efc563d34627d5fddeee069e35c7ff4f783497920003570da0c8c0e6e2d3eb48558a0e9c46a07a5e5e44c161c33da8c01963599ff7b53ff090b334e53d6f9a1c486a06bcb5f0e7142db261c402553db00bfe240939ca6425f5a01ccdc1f5d783eda2b6f8c55a46766d11efb97de035aeef2e58e448cecfe7ab3918685142c918754e8bb5d0f5fab98f8faaa19be164234968dfc8c4ee7025fcb38b96f24b778eb011b84aa2d5b1f1f877cbaa75f935508d8e8ba5fb3c429cbcc185308668e7d2506c4651cc5b5bc4f23588053ab35ce6b425e37925c72f31c286155f8878918cf3c02cac96ac49848e25fa223cc663aee3ce10b9d386f47a81a8ddc0f939c12fdba3d8d3055b2cb9734e588263af613ef8926d028a66b879fe58905285967cb2222ec415fcca2647ff7dd09b1426512cb690bab1e1e065c2017985983799a7647f44f1a586f80d80acce8a5c83fa2e90308cc39c09dc8f3cc6d8ebaf1a3a8233870b8ab07125c90808a99389654502d8736ef4d09bcf3cae3b9e71dbcbddacf89fc84901f89aa0a7cf700fa59e893d5b1ef004595c4d68cc8acd442826860b6c80926b67f496ccb69f44606b299829b46f1b27e4d097b15e4b4d374c8451144f7aee5676f25faca4eaf0c1af1d80446641bd38dc13c9ef02e7aee997810ca5be6ee4e28528edd6d33385a4f1c7943932cc0f15e9d1da89dabfc0b957a3fb726707d4bf7202a1ef104a16e23dbe9cc2e5083ccee670897d3a186a2ec4840eae65d173fc242b208e1f6cca3f1987481416250bf4b203e94a1f5afedb07a45b02334cc28fb671a85bb8134d1e33586cfc92e799a2489f24185c058dcba30e161a1d56946009c3dfd96e2acd7621771a8afb681f9e8ab4c9336ad1c890765c518d5763810b3b70152e9bf2fdff3418739dc55cf86841b7378b305a04554c1538a686c524acba4a4462957eec91467d6336176aa49ba43259bbc157bc112161011c17572513ec3f160e1e703a07b52db9ff037ed2d39e45c14757de035913f2e798bab5cd7308d10d837e9191508579e62fee264dada7739812d387bf1c973c3e23e943845ab7bf83cb81528b6b2f51d94b00f59279baae443eabd2d04669a5a66f13514e8e9b42cc4e7070a16f6978e1f4638bb4ed22eb5b5251a58129c79219d507d652b78b5f4c6ed944542017ce0709e5025d7c633c6622dd61f00d176d199bd836c06ca8a3ccde8cab5d0f2e53705513afc396eb707c58d7c7bb1ffcb7f3ccac292d349a55db1032e8a163a59cad7d44e81d33ec1cd6d82f14789537cdbfd71d0a4d9eee39c4b838ffe461d84643c9d71389c0b696da81286d6a9bac810096be23f4540ccafc61c36beb45776663d98f864cf5aebc7cc449bde116d392d9b29eccc7d4cb39e56917c7eda9f89d3043b6aaba27cf553ad90e4bd6b9760b8452b08092b4a13d3f4fb217e72a463066f392056b692a4f70e117cf8ad8ef806629c5ee4b096b1a5be8299c947f63e9ea0db1d0892aa16531cf351e5a38f1761d9f62476e3a150fc22e85d74a72f05ccb4ba117ec3b8966e8272e9afeacc412406f11bac1cf7e052c766df3442eccb42fffa41405a7dd322106f6f6da22943c01d52686ace7c20cfe9cc4a106d5a745cc0af2b71edf3784a0fa6a30c3a908009ee1c90777d4a595788feb7c32abeea4ca52beb7ad953e135221bdc5ca886fee60601f6b739384956f49abf6e48c13c60cfbffddc17f09d6fd67328cfb61a2c8f4ba3c11918865c4ea17b747bd162e46309e0e9734088b03c516c31b1d39be3043b708db57747213b7cf58fadd1d37d9419cbd541c36e7faf801a76e29088b474c7d4ab71857a8405d8f5251d73f05a9806aa798c2ea4e2d61b3c72cf6a7724b82a4c27e4392fcaee8af61c76fdfb1d7a60cc5aff515adae22316a79b9052dfe9e5e4164a4337c7ec343d8493e3aadd473244251f2a2a1e9aa8191779766439b75306560db73ced31d5e504146cbce67c01ad4e1446faa3e84f2793fbe50db77100a84e32683db110bb855f0dc8a4a180840a2897f2455390af1decd1ad4f8dbdf437410e2015f0301ee47116716e0440793b8252c125cd4e4e62f4fd4efa0fe504638a35a457da43c9d1a2c2fddf5e3ee1d4ea95b36234250bbfd16a87cf58002f91aca929c0d0a4c94e03dc396899e3770ffbfb1a92901e35cbc6c92b4a06fef21db0397adc7132505a74d3367aad2de5b1f366f6c8d243497787bb4d5ee44a28e384f7ca613e83688f7fb3781e6eb362a568d57649652edfdd4ad9d6f3911152212bafa909df36bef483a0391f5ae64c72430b0ad9f96d9ac6c74ddbd9e96be81d513db1c43071a7ab7b0d1d057bab91493accf1589de964ce4278cb8bc2b320cbceccd80f91027ab20143e6b15eeb87f1c3ea4f602e03d822649340a57ff4807e4b78f2602885a11e8d4a73d6834ddb56afabccac36b029db3e8183cbd2510118570430b49e174df505f137ef8a19d31103f1b2fea121dcb88965edacb99ae41dc0556f17437947178c2e031ebe4e16219853e2521a37a9640d6214fa950aa326fdd8131b2ffff4a8f4868f4576963aa5eed941f138bfe3cbcee0a4a96f0037d6ab66b77f891e94a5a9498ee941f87599714a6f01827a005e1f1d854b8bf2dd3e7aba98e4b914befa443d6a6fb815d936dcad25139de50fa419a1243979e2ece6ebdf29afbcdf88c73996b852fe918624353576d18f2f0cadb7e1fb1822f60c5da42a1e4c337002c02291b6d67ebabe79be35e717a06429225da196c69b34df9e3c0722175c62415cb6483e2dfcb238a58d65a3010ac09ec887f3bebd8dd654216456e8b9de1c952dff9b4e6a37e3fe4f3cae0ee4aced4ee1f0fb0eff508ac221537c3f641f6ca72bc6521a9f3d3d951cb5b29ac2a7e29723f9397d90ccb285572fc869d292292c1a7a8ec0194b1e363579befde0697e62f99633808f3a7b09c4db83312c44f291868ebcbff2d850e5127c6ec8fba484ce66103108e6e9619a22429b0b4fb65bb8043a48762f3ef302d939954d3902eee085b37f87715eaa23996057799655ee3f7477502bd1676fa4d05dd2980bf30647108276f59cad27851b1c0f96a554f7be7c612ff059cb85ab75232a73837b135d5d9a099547f7d0ebea19673fc65e6f58acc286c0f1acd7a7129946d12b74e72908aa92121789d4cf89e33f39d382b27c09c5a5092a592f2f8efe55bf86a332dad7a6bb27112d58afcd0c14ad9fe7179f5025d7ac6ddae87c860ba2ec6d77f78f1bbf17078a83bdabd085a822c3585901147e6d0000eea8193502fc64a082bbf45aabfe4aa27a4c369d49ba739bf7a77378eace130aa90d9c0dc68e81e25e11bb1afc7c69698dcc7eb567db760c64fbac4a94134fc734ff93227624fd15775fbfc5764f431b39e22a00a14ca07d38f797d51c32b4fe1799500272b248a25649b9fe652bf99ae19f4650470552111a87bbf05a0160379522c0f6658b11291f5545cd89f67b7c5c98c4162fcc1f3ca82a0d919b04694d5dd107c8873e8acdab5e03725df6c03ae499be92e1b2e69e0b0dbe52af62e510a9100904cf5a00c00"})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000100)={{}, r8, 0x0, @unused=[0x2, 0x6, 0x5], @subvolid=0x7ff})
r18 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r18, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r18, 0x0)

06:06:34 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0xd3caa190f527525, 0x0, 0x0, 0x0, 0x20, 0x5ac, 0x25a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x0, 0x20, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x3, 0x1, 0x2, 0x6, {0x9, 0x21, 0x8, 0xbf, 0x1, {0x22, 0x8fa}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x8, 0x1, 0x40}}}}}]}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x310, 0xf8, 0x1f, 0x20, 0x20, 0x14}, 0x47, &(0x7f0000000080)={0x5, 0xf, 0x47, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x7, 0x40, 0x88, 0x6}, @ptm_cap={0x3}, @generic={0x19, 0x10, 0x3, "75e69183b18ec5b4e982cbabe36350325564ff6b98a4"}, @ssp_cap={0x1c, 0x10, 0xa, 0x81, 0x4, 0x164, 0xff0f, 0x9, [0xff0000, 0xc0, 0xffc0cf, 0xc0]}]}, 0x2, [{0x44, &(0x7f0000000100)=@string={0x44, 0x3, "0eb25e2cd08f219db90ea6428af5f1ba0aa31b29cf1db2d4bc82df138ac0a58acb98024025e300c5d41f75fa51f8ac9063759f5f2c17e79ed4ff207479808f358d8b"}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x2801}}]})

06:06:34 executing program 4:
socket$inet(0x2, 0x80001, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
preadv2(r0, &(0x7f00000014c0)=[{&(0x7f0000000000)=""/196, 0xc4}, {&(0x7f0000000180)=""/219, 0xdb}, {&(0x7f0000000280)=""/70, 0x46}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/226, 0xe2}, {&(0x7f0000000100)=""/61, 0x3d}, {&(0x7f0000001400)=""/173, 0xad}], 0x7, 0x2, 0x9, 0x8)
syz_open_procfs(0x0, &(0x7f0000000140)='net/mcfilter\x00')
set_mempolicy(0x1, 0x0, 0x7)
clone(0x4c0003f6, 0x0, 0x0, 0x0, 0x0)

06:06:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x2, 0x2, 0x5000, 0x2000, &(0x7f0000ff9000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:35 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket(0x10, 0x3, 0x0)
close(r0)
close(r1)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f00000000c0)=ANY=[], 0xfdef)
splice(r2, 0x0, r1, 0x0, 0xfffffffffffff0d8, 0xf)
write$FUSE_NOTIFY_INVAL_ENTRY(r3, &(0x7f0000000200)={0x1d, 0x3, 0x0, {0x6, 0x0, 0x0, 'OW\xe2\x11\xa9\x00\x8a\x9br\x18M\x84\x96\xdb\xc5\x87\xeeX\xc8\x9e;0\xb4\xd1\xe5\\c\a\x8b\xc9\xa7\x9d\xd5B-\xafz\xdcq;[\xac\x1e4\xd6\x1d\xa8\x97\a\xb7_0\x1b\x96\xdc\xbaT\xdd`(\xae\xfb\xf8\n\xa8^\xd2}vH\xcc\x18\xcc\x1b+Lg\xd0\\\x8d\xd6\xb2\x1f\xae\x0e\xd0\xefe\xee\x85\xd5\x9e\x92Ww\xf9\x00'/109}}, 0x21)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r3, {0x997000000000}}, './file0\x00'})
splice(r4, &(0x7f0000000080)=0x7, r3, &(0x7f00000000c0)=0x3eb, 0x5, 0x4)

[  545.988257][    T7] usb 3-1: new high-speed USB device number 105 using dummy_hcd
06:06:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc0045878, 0x0)

[  546.345239][T16782] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  546.508243][    T7] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  546.518417][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.526634][    T7] usb 3-1: Product: syz
[  546.531393][    T7] usb 3-1: Manufacturer: syz
[  546.536170][    T7] usb 3-1: SerialNumber: syz
[  546.594611][    T7] usb 3-1: config 0 descriptor??
06:06:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1}, './file0\x00'})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc0085504, 0x0)

[  546.868231][    T7] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  546.906095][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  546.942453][    T7] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  546.950620][    T7] usb 3-1: media controller created
06:06:36 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req={0x439, 0x7fff, 0x200, 0x4}, 0x10)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2})
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x89b, 0xfffffff7, 0xc5b2, 0x4, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}, 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r3})
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x89b, 0xfffffff7, 0xc5b2, 0x4, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}, 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r6})
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000011c0)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000080)=@raw=[@ldst={0x0, 0x2, 0x3, 0x8, 0x8, 0xffffffffffffffc0, 0x4}, @map_val={0x18, 0x6, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1ff}], &(0x7f0000000100)='GPL\x00', 0xfffffffd, 0x1000, &(0x7f0000000140)=""/4096, 0x41000, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001140)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000001180)={0x0, 0xa, 0xfffffff8, 0x9}, 0x10, 0xffffffffffffffff}, 0x78)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r9, &(0x7f0000000100)=[{}], 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000075c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000007580)={&(0x7f0000001240)=@newchain={0x6318, 0x64, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x8, 0x3}, {0xfff1, 0xc}, {0x0, 0xffff}}, [@filter_kind_options=@f_rsvp6={{0xa}, {0x4568, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0xfff3, 0xffe0}}, @TCA_RSVP_PINFO={0x20, 0x4, {{0x2, 0x9b80, 0x2}, {0x5, 0x80, 0x80}, 0x11, 0x80, 0x1}}, @TCA_RSVP_ACT={0x44ec, 0x6, [@m_skbedit={0xb8, 0x8, 0x0, 0x0, {{0xc}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x2}]}, {0x82, 0x6, "53575664e135a15417abdadf23bec964b271cee36d364d7828d986c5bcd04cbd29d8f726ab6f4e64bca1a4a06bcaaa39bfa1e5b985f5c20f16e656612d436c5ee842603c6a2e81c5a6b6a2fa731aaf5ec5869cce1f7ac71a221e3319d64e68894ed09f90865a8449601c9619eaa18e25eeeab5074e62122787788d417380"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_xt={0x254, 0x1c, 0x0, 0x0, {{0x7}, {0x22c, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_TARG={0xa9, 0x6, {0x20, 'nat\x00', 0x2, 0x6, "00acb28f2321a206b3a8ffff978282e620210dbe153edc98fa17937f23412f07ca50e07852c9fb5685bcf0b52a201ed8b535329e3cc231c10b7da3507b942c8cc8a3d060a08fa4b8c8f7999b9dfa6b327eed63070425294ac7edb962524e6cbac6294205490ec02c18f45e8ab21dabd632ba098a026258af8f0aef2d3a2cac"}}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_TARG={0x89, 0x6, {0xdb93, 'filter\x00', 0x8d, 0x8000, "df45a13e87eacc57aa96a3e38d5f12761fe7a55367c42b8817393faa4975fa5a0b67dcbca91f2f2ec5627f2877c3760b1db0e3c7d5742eba5555c1c7296a7ae841c81ed4f1bd8710b339ce69d55d0ae083ba975466e767fe0313a0b103d686"}}, @TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_TARG={0x2d, 0x6, {0x8001, 'raw\x00', 0x0, 0x7, "d76105"}}, @TCA_IPT_INDEX={0x8, 0x3, 0xfff}, @TCA_IPT_INDEX={0x8, 0x3, 0x7}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_TARG={0x3c, 0x6, {0x7, 'nat\x00', 0x7, 0x7f, "399d721b4b222e79f16a2446d90d41b4b164"}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_sample={0x104, 0x20, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x8000}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x6}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x7}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x1f}]}, {0xb8, 0x6, "085e2411901d783f81b20a11a97dff64f20682fc0dd727b3cace68649a1ca40b5d10293b920160ce0a9155b94a3ac195b651b935455fcd15dbc1e36964460c5aa4889174fd09bf64c3f82d6cdbf9580caf1ee334cbe05b5d064444d817baf3c099d845d2b468f28fcc3811efea6ba67ba4aaf665249f831cd8d61ab3ebfdcffecc6e0ae79dffe7d40a834a22e04840d0c29b913a4924aa6e43d180a5132445718fc39ad28600cfe7f9b1dbce0c7a83abf6f174ce"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_bpf={0x90, 0xa, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x9a03, 0x80000000, 0x7, 0x9, 0x100}}]}, {0x4d, 0x6, "e0b5d44d3ee8740e5244ce0697719e8a4ee708789ec5bf57f3a969941235dc4731e18e409b7247020c927b2110f4d1647943b1cbac6447726943850ef27c804c05eefd8ccf08719c21"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_mpls={0x160, 0x1, 0x0, 0x0, {{0x9}, {0x48, 0x2, 0x0, 0x1, [@TCA_MPLS_BOS={0x5}, @TCA_MPLS_TTL={0x5, 0x7, 0x6}, @TCA_MPLS_TTL={0x5, 0x7, 0x56}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8b17}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x3, 0x5, 0x8, 0xbdbd, 0xac8}, 0x3}}, @TCA_MPLS_BOS={0x5}]}, {0xed, 0x6, "e1e01f5f2c2ef2e18001b06b175be801858e8a56a6ccd60043110fd3173f783c2f334c4a1ea606345c2ee07acd0f8f3012ad56455cdb3f9ecf2ff143afc29f44c692603554a62bf731e6c0a82a6e2be12347f2fe333e8062b655704d281c6de0a9eed18d85c5d6abffa4728b53d684da25298bd75aa7ff013188aa2a008daa4747f24f2b7ec1da9b054ddfb724ef31689b5b0c8e40528f37786dc5b1ffd6c21bc43ca1b97740d4c0335ac59eaf4c6113bd35dc54a823c9be4ab6f84144429aba570ab81e9cbabc6238d2bab028b03eebb311da6be449d646cac0f618688ad03c10072d202b9abae605"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_pedit={0x3c0c, 0x16, 0x0, 0x0, {{0xa}, {0x3b58, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe38, 0x4, {{{0x8001, 0x0, 0x3, 0x400, 0x7}, 0x7f, 0x4, [{0x3ff, 0x6, 0xd72e, 0x4, 0x1, 0x3ff}]}, [{0x0, 0xfff, 0x1ff, 0x7, 0x2, 0x783}, {0x2, 0x2, 0x1f, 0x800, 0x6, 0xfff}, {0x80000000, 0x9, 0x3, 0x40, 0x40, 0x2}, {0x0, 0x9, 0x1, 0x2, 0x4, 0x7f}, {0x7f, 0x7ff, 0x5c83, 0x800, 0x10001, 0x5}, {0x9, 0x4477, 0x1000, 0xffffff00, 0x5}, {0x8, 0x9, 0x5, 0x1000, 0x80, 0x1d0}, {0x6, 0x1, 0x48c623ae, 0x3, 0xffffffff, 0x800}, {0x6, 0x0, 0x8, 0x1, 0xb293, 0x8ac0}, {0xfffffffa, 0x2, 0x40, 0x5f6b, 0x8, 0xb7e3}, {0x0, 0x7ff, 0x2, 0x0, 0x5, 0x200}, {0x39f08b37, 0xff8, 0x7, 0x80000000, 0x40}, {0x80000001, 0x7, 0x4, 0x0, 0x22ef, 0x9}, {0x1, 0x4, 0x5, 0x64, 0x1cc4, 0xd482}, {0x7, 0xdda, 0x6, 0x2, 0x4, 0x2}, {0x6, 0xa72, 0x7fffffff, 0x0, 0x6}, {0x9, 0x80000000, 0x8000, 0x41, 0x0, 0x8}, {0xde7c, 0x7, 0x3, 0xffffffff, 0x1, 0xffffb8f5}, {0x7fff, 0x4, 0x8, 0x0, 0x2575, 0xfffffffb}, {0x4, 0x800, 0xe363, 0x3ff, 0x100, 0x3}, {0x7, 0x7, 0x80, 0x80000001, 0x6, 0x2}, {0x1000, 0x20, 0xb2c, 0x1f, 0x1, 0x8}, {0x1, 0x5, 0xffff05a3, 0x0, 0x1, 0xffff8001}, {0x8000, 0x20, 0x2, 0xa515, 0x9, 0x6}, {0x7ff, 0x5, 0x6ee, 0x3e2, 0x85b, 0x5}, {0x7fff, 0x84, 0x3, 0x6, 0x10001, 0x401}, {0x401, 0x1f, 0xffff, 0x401, 0x100, 0x3146}, {0x81, 0x1, 0xffffffff, 0x9, 0xfffff04d, 0x802e842}, {0x0, 0xfffff800, 0x0, 0x7f, 0x3, 0x4}, {0x7, 0x401, 0x6, 0x6, 0x9, 0x3}, {0x6, 0x4, 0x8001, 0x800, 0x3f, 0xe00000}, {0x0, 0x6, 0x100, 0x4, 0xfffff8c4, 0xffffffff}, {0x6, 0xf9, 0x5, 0x0, 0xb2db, 0x6}, {0x8, 0x3, 0x5, 0x9, 0x6, 0xb70d}, {0x9, 0x3, 0xdac, 0x0, 0x2, 0x595}, {0x3, 0x3, 0x0, 0x6, 0x8, 0x5}, {0x9, 0xbe37, 0x3, 0xfffffffe, 0x0, 0x77}, {0x0, 0x2, 0x0, 0x64, 0x80, 0x802000}, {0x401, 0x3ff, 0x2, 0x9bc, 0x1, 0x3f}, {0x7, 0x3, 0x9, 0x4, 0xfffffff7, 0x8000}, {0x7, 0x2, 0x0, 0x4, 0x0, 0x9}, {0x10001, 0x20, 0x9, 0x1000, 0x20, 0x8}, {0x4, 0x8, 0x7, 0x3f, 0x4, 0xfffffffa}, {0x80000000, 0x40, 0x0, 0xfffffffd, 0x80000000, 0xfffffe01}, {0x5, 0x3, 0x80000001, 0x3ff, 0x4, 0x2}, {0x7fff, 0x0, 0x7, 0x3, 0x0, 0xe4bf}, {0x8001, 0xe2, 0x40, 0x1, 0x1ff, 0x8}, {0xf9, 0x8000, 0x279, 0xdbd, 0x1ff, 0x4a}, {0x4, 0x8, 0x6, 0x1ff, 0x3, 0x5}, {0xec, 0x0, 0x1000, 0xcca, 0xa862, 0x6}, {0x8, 0xce15, 0x4, 0x400, 0xb8f8, 0x40}, {0xfffffffa, 0x80000001, 0x20, 0x33, 0x1, 0x81}, {0x9, 0x1000, 0xfffffffc, 0x800, 0x200, 0x3}, {0x7fff, 0x4, 0x3f, 0xfff, 0xa7, 0x7fffffff}, {0x0, 0x2, 0x6, 0x8, 0x2, 0x5}, {0x76, 0x0, 0x9, 0x2, 0x1, 0xbe5}, {0x49, 0x0, 0x7f0, 0x5, 0x3800, 0xc54c62cd}, {0xfff, 0xe792, 0x0, 0x6, 0x80, 0x7fff}, {0x40, 0x8001, 0xffff, 0x5, 0x6, 0x8}, {0x9, 0x2, 0xe17, 0x3, 0x8, 0x8001}, {0x3, 0x4, 0x7fff, 0x1, 0x1f, 0x1}, {0x0, 0x8, 0x6, 0x76, 0x1000, 0x40}, {0x6, 0xff, 0x8, 0x1, 0x8, 0x9}, {0x638a, 0x80000000, 0x8, 0x8, 0x20, 0x2}, {0x7f, 0xffff, 0x8, 0x1, 0x2, 0x8}, {0x525, 0x7fffffff, 0xfffff3d6, 0x0, 0x100, 0xffffff80}, {0x1, 0x7, 0x20, 0x3, 0x3}, {0x40, 0x7ff, 0x101, 0x1e2, 0x80000001, 0x7ff}, {0x7, 0x879, 0x5, 0xd5, 0x101, 0xdeb}, {0x8, 0x9, 0x1fe, 0x53, 0x0, 0x80}, {0x9, 0x4, 0x80000001, 0x40000, 0x7, 0x8}, {0x6, 0x7fff, 0x8, 0x4, 0x4, 0x80000001}, {0xd01d, 0x5, 0x3, 0x6cb, 0x0, 0x1f}, {0x100, 0x1, 0x5, 0x3, 0x8710, 0x9}, {0x8, 0x40, 0x8000, 0x2, 0x2, 0x33b098b1}, {0x3f, 0x92a, 0x1ff, 0x4, 0x5, 0xffff}, {0x40, 0x2, 0x6, 0x7, 0x4, 0x80}, {0x6, 0x6, 0x1, 0xd576, 0x90000, 0x9}, {0x851, 0x8, 0x6, 0x4, 0x0, 0x80000001}, {0x1, 0x9, 0x0, 0x2, 0x0, 0x2}, {0x2, 0x1, 0xdf4000, 0x6, 0x9}, {0x4, 0x9, 0xdc56, 0x9a, 0x6, 0x8}, {0x0, 0x8001, 0xff, 0x81, 0xe56f, 0x5}, {0x40, 0x800, 0x4, 0x6, 0x3, 0x1400000}, {0xff, 0x4, 0x5, 0x0, 0x300000, 0x1000}, {0x9, 0x7f, 0xfffffe00, 0x619, 0xe5, 0x2}, {0x1, 0x7fffffff, 0xf2, 0xff, 0x101, 0x81}, {0x0, 0x4, 0x7da, 0x1, 0x401, 0x5}, {0xa2, 0xff, 0x4, 0x7478, 0x400, 0x2}, {0x4, 0x0, 0x3e, 0x101, 0x3ff, 0x2}, {0x7ff, 0xff, 0xffffffff, 0x1ff, 0x4, 0x80000000}, {0x4000000, 0x1, 0x1, 0x6329, 0x0, 0x7}, {0x800, 0x87, 0x4, 0x0, 0x9, 0x7fffffff}, {0x1ff, 0xeed, 0xfffffffb, 0x9, 0x10000, 0x3}, {0x0, 0x400, 0x1, 0x9, 0x1, 0x1}, {0x40, 0x95, 0x8, 0x7fffffff, 0x6, 0x8}, {0x7, 0x7ff, 0xfffffe01, 0x7fffffff, 0x7, 0xf7}, {0x5, 0x9, 0x0, 0xfff, 0x3ff, 0x2cb}, {0x2, 0x1, 0xde, 0x2, 0x400, 0x80}, {0x6, 0x0, 0x6, 0x1, 0x80, 0x400}, {0x19de, 0x8, 0x8, 0x100, 0x8, 0x1}, {0x3, 0x5, 0x80, 0x400, 0x4, 0x3}, {0x9, 0x5, 0x3df, 0x0, 0x9, 0xffff}, {0x1, 0xfe1, 0xfffffffd, 0x3, 0x423, 0x4}, {0x4aa7, 0xffff, 0x100, 0x40, 0x20, 0xff}, {0x21, 0x13b, 0x6, 0xfffffa45, 0x8000, 0x7}, {0x0, 0x6, 0x9, 0x1, 0x7ff, 0x6}, {0x0, 0x0, 0x6, 0x8, 0x4, 0x7ff}, {0x0, 0x6, 0x4, 0x7, 0x3, 0x4}, {0x9, 0x3, 0x3f, 0x6, 0x1, 0x81}, {0xffff, 0x1ff, 0x4, 0x6, 0x10001, 0xffffffff}, {0x6, 0x4, 0x1000, 0x9, 0x2, 0x5}, {0x5, 0x8001, 0x6, 0x76, 0x4, 0xa8ed}, {0x3ff, 0xc00, 0xfffffffd, 0x1f, 0x1000, 0x7ff}, {0x4, 0x0, 0x6, 0x1, 0xffffffff, 0x9}, {0x40, 0x4df, 0x6, 0x3, 0x100, 0xc70}, {0x0, 0xffffff39, 0x0, 0x7fffffff, 0xfffffffb, 0x9}, {0x101, 0x1, 0x9, 0x2, 0x3}, {0x2, 0x9, 0x8, 0x80, 0x1f, 0x1000}, {0x1, 0x2, 0xf, 0x2, 0x4, 0x6}, {0xbe, 0x101, 0xfff, 0x800, 0x621, 0x8}, {0x7, 0x0, 0x0, 0x5, 0x8001, 0x3}, {0xffffdca1, 0x8, 0x1, 0x6, 0x4}, {0x0, 0x101, 0xffff0883, 0x8, 0x68, 0x3}, {0x5, 0xd7, 0x6, 0x9, 0xffffffff, 0xa6e5}, {0x727, 0x1, 0x1, 0x3, 0x3, 0x7}, {0x101, 0x0, 0x1, 0x7, 0x3f, 0x3f}, {0xff, 0x3, 0xfff, 0x7, 0xff, 0x10000}], [{0x0, 0x1}, {0x0, 0x1}, {0x5}, {0x4, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2}, {0x0, 0x1}, {0x4}, {0x4, 0x1}, {0x0, 0x1}, {0x5}, {0x4}, {0x1}, {0x3}, {0x2}, {0x4}, {0x5, 0x1}, {0x2}, {0x1}, {0x4}, {0x3}, {0x3, 0x1}, {0x6}, {0x3, 0x1}, {0x3}, {0x2, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x3}, {0xd627423c6e6afc51, 0x1}, {0x2}, {0x2, 0x1}, {0x4}, {0x4}, {}, {0x4, 0x1}, {}, {}, {0x3}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x1}, {0x5}, {0x1, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x1}, {0x3, 0x1}, {0x2}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x1}, {0x3}, {}, {0x1, 0x1}, {0x3}, {0x5, 0x1}, {}, {0x4}, {0x2, 0x1}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x5}, {0x4}, {0x1}, {0x4}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x1}, {0x2}, {0x2}, {0x0, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0x1}, {0x5}, {}, {}, {0x2}, {0x0, 0x1}, {0x3}, {0x3, 0x1}, {}, {0x5}, {0x2}, {0x3, 0x1}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x2}, {}, {0x5, 0x1}, {0x4, 0x1}, {0x4}, {0x0, 0x1}, {0x2}, {0x5, 0x1}], 0x1}}, @TCA_PEDIT_PARMS={0xe38, 0x2, {{{0x3, 0x9, 0x1, 0x200, 0x1}, 0x5, 0x2, [{0x2, 0xfff, 0x1ff, 0x3161, 0x3, 0x8}]}, [{0xfff, 0x1c2e, 0x4, 0x8, 0x898, 0x9}, {0x7fff, 0x68, 0x7fffffff, 0x33, 0x3, 0xdc}, {0x0, 0xffffffff, 0x2, 0x7fffffff, 0x751b, 0x6}, {0x20, 0x1000, 0x7fffffff, 0x81, 0x8, 0x5}, {0x80000001, 0xe, 0xff, 0x2, 0x101, 0x80000001}, {0x7, 0x2, 0x0, 0x8, 0x2, 0x7}, {0x9, 0x8, 0x2, 0x6, 0x6, 0x9}, {0x58f5, 0x2, 0x10001, 0x2, 0x7fff, 0x6}, {0x8, 0x5, 0x7fffffff, 0x7, 0x9, 0x400}, {0x1000, 0x4, 0x100, 0x39, 0xd6, 0x9}, {0x8000, 0x7, 0x7ff, 0x9, 0x5, 0x80000000}, {0x5, 0x2, 0xce1f, 0x7, 0x9d, 0x5}, {0x10000, 0x400, 0x7, 0xfff, 0x2, 0x1}, {0x82100, 0x7ff, 0x6, 0x8001, 0x2, 0x7}, {0x1000, 0xffffffe1, 0x7, 0x9, 0x5, 0x2}, {0xe19, 0xfffffd64, 0x7, 0xa7, 0x80000001, 0x1f}, {0x95000000, 0x9, 0x40, 0x7, 0x8, 0x5}, {0x19, 0x9, 0x7, 0x6a8, 0x40e, 0x5}, {0x1, 0xb2, 0x8000, 0x6c, 0x80000001, 0x4}, {0x9, 0x6, 0x7fff, 0xffff8de5, 0x0, 0x8}, {0x10000, 0x1, 0xfff, 0x1f, 0x7ff, 0x8}, {0x7ff, 0xf5e, 0x8, 0x4, 0xffffffff, 0xc8}, {0x20, 0xf0a, 0x899, 0x7, 0x7fffffff, 0x774}, {0xa307, 0x8, 0x7, 0x80, 0x5, 0x9}, {0x2, 0xffffff63, 0x4, 0x9, 0x0, 0x1}, {0x7, 0xfffffffc, 0x401, 0x4, 0x5606211e, 0x436}, {0x4, 0x9, 0x2, 0x3}, {0x81, 0x3, 0x6, 0x3, 0x0, 0xe0e}, {0x200, 0x2, 0x1, 0x9, 0xffff, 0x400}, {0x7, 0x10001, 0x5, 0x4, 0x38911fa4, 0x8000}, {0x5, 0x80, 0x2ec3, 0x8, 0xfe9, 0x7}, {0x2, 0xa33e, 0x1, 0x400, 0x3, 0xe97}, {0xfffffffd, 0xffffff17, 0x7fff, 0x3fa8, 0x9, 0x400}, {0x4, 0xcf92, 0x4, 0x7fff, 0x6, 0x4}, {0x4, 0x1, 0xe571, 0x5, 0x100, 0xe0}, {0x1, 0x7, 0x1ff, 0x2, 0x6, 0x7fffffff}, {0xffff8000, 0xe9, 0xb7b, 0x2, 0x2, 0x962}, {0x7, 0x3, 0x8c3, 0x4, 0x5b, 0x4}, {0x6, 0x200, 0x2, 0x4, 0x7, 0x8be1}, {0x8, 0x1f, 0x4, 0x3, 0x4, 0xc07}, {0x0, 0x7, 0xfffff801, 0x2, 0x2350c2b5, 0x5}, {0x6, 0x2, 0x5, 0x1, 0x9, 0x2}, {0x22, 0x7fffffff, 0xff, 0x4, 0x3, 0x80000001}, {0x3, 0x6, 0x800, 0x0, 0x200}, {0x81, 0xfff, 0x5, 0x2, 0x5b0b7d53, 0xffff}, {0x200, 0xffff, 0x7d92, 0x194a, 0xfff, 0x5}, {0x7, 0x3, 0x7fffffff, 0x9, 0x1f, 0xffffffff}, {0x1, 0x1, 0x2, 0x0, 0x1, 0x8}, {0x6, 0x81, 0x4, 0x800, 0x7f, 0x6f1}, {0xb0000000, 0x0, 0x5, 0x7, 0x7, 0x3ff}, {0x200, 0x6, 0x7, 0x2, 0xfffff78e, 0x6}, {0x1e22, 0xffffffff, 0x2, 0xffffffff, 0x3ff, 0x403}, {0x7fff, 0x9, 0xde139c00, 0x101, 0x80, 0x40}, {0x4, 0x2, 0xffff, 0x6, 0x401, 0x3}, {0xe81a, 0x6, 0x1, 0xffff, 0x8001, 0x4a}, {0x80000000, 0x80000000, 0x3, 0x0, 0x7}, {0x1, 0x10000, 0x99, 0x4, 0x7fff, 0xffffffff}, {0x88e, 0x401, 0x5, 0x1ff, 0x100}, {0x4, 0x4, 0x2, 0x80, 0x80000001, 0x9}, {0x6, 0x14e65ef3, 0xee, 0x6, 0x2, 0x9}, {0x747b, 0x7, 0xfffffff8, 0x6, 0xb2, 0x1}, {0x800, 0x1, 0x1, 0x0, 0xffff, 0x80}, {0x1000, 0x7, 0x2, 0x10000, 0x4, 0x3}, {0x20, 0x101, 0xaf, 0x3, 0x9, 0x10001}, {0x15119268, 0x2, 0x3, 0x4, 0xedf, 0x9}, {0xff, 0x6, 0x9, 0x1, 0x1000, 0x8}, {0x1a, 0x0, 0x1, 0x7fffffff, 0x8, 0xffff}, {0xfff, 0x9, 0x1d, 0xfffff58e, 0xfffffffa, 0x200}, {0x80, 0x67e8, 0x7, 0x1, 0x7, 0x2}, {0x1, 0xff, 0x1f6e, 0x8, 0x80000001, 0x924}, {0x6, 0x80000001, 0x10001, 0x1, 0xe4c, 0x8}, {0xfff, 0x4, 0x2, 0x40b, 0x4, 0x9}, {0x6, 0x0, 0xe20b, 0x1000, 0x1000, 0x3ff}, {0x0, 0x1, 0x6, 0x2, 0x65, 0x6}, {0x9, 0xffff0001, 0x4, 0x80000001, 0x5, 0x200}, {0x20, 0x14, 0x9, 0x4, 0x7, 0x4}, {0x5, 0x5, 0x433180, 0x9, 0x7fffffff}, {0x4, 0x2, 0x6, 0x8, 0x81, 0x4a}, {0x2, 0x80000001, 0x8, 0x4, 0x6, 0x40}, {0x10001, 0x9, 0x5, 0xf976, 0x40, 0x2}, {0x6, 0x7fff, 0x4, 0x6c, 0x5, 0x1}, {0x7, 0x67, 0x401, 0x5, 0xdc3f, 0x200}, {0x80000000, 0x47, 0x80000000, 0xffff, 0xffff, 0xaf9}, {0x200, 0x1f9, 0x20, 0x1, 0xfffffffa, 0x530}, {0x8000, 0x93de, 0xfffffff9, 0x3, 0xce45, 0x800}, {0x3, 0x1b, 0x8, 0x0, 0x4, 0xfffffffd}, {0x95, 0x80000001, 0x2, 0x9, 0x20, 0x1}, {0x6, 0x80, 0xff, 0x1, 0xe74, 0x2}, {0x7, 0xa8, 0x5e, 0x401, 0x6, 0x27fe4b9a}, {0x20, 0x6, 0x8000, 0x6, 0x6}, {0x200, 0x3, 0x8, 0x3036, 0x6219, 0x101}, {0x4, 0x4, 0x0, 0x9, 0xfffffffb, 0x9}, {0x2, 0x2, 0x3, 0x8, 0x80, 0x2}, {0x20, 0x80000001, 0x82, 0x6, 0x8, 0x6}, {0x6, 0x6, 0x8766, 0x2, 0x1, 0x83}, {0x8000, 0x7f, 0x6, 0x6, 0x1, 0xfffffffe}, {0x0, 0x2, 0x1, 0x7, 0xfffffff9, 0x2}, {0x4, 0x7, 0xffff, 0xfffeffff, 0x6, 0x3}, {0x40, 0x3571ce20, 0x3, 0x80000001, 0x6, 0x3f}, {0x5, 0x2, 0x100, 0x80000001, 0x4, 0x80}, {0x7, 0x40, 0x9, 0x80000001, 0x4, 0x7}, {0x9, 0x1, 0x401, 0x85, 0xec, 0x9}, {0x803e, 0x3, 0x80000000, 0x7, 0x7, 0x535}, {0x0, 0x660, 0x101, 0xba, 0x5, 0x2}, {0x41, 0xb4, 0x1f, 0x5, 0x1, 0x1}, {0x57, 0x400, 0x80000000, 0x2, 0x24f3, 0x2}, {0x9, 0x5, 0x1ff, 0x4, 0x98, 0x4}, {0x10001, 0x4, 0x40, 0xd6f, 0x8, 0x10001}, {0x1f, 0x20, 0x80000001, 0x4, 0xfffffffa, 0x4}, {0x3, 0x127, 0x1ff, 0x800000, 0x7, 0x9}, {0x7fffffff, 0x6c, 0x26, 0x2, 0x7, 0x80000001}, {0x0, 0x3, 0x0, 0x2, 0xffffffff, 0x10000}, {0x2, 0xff, 0x2, 0xffffffff, 0x6, 0x7}, {0x1, 0x6974, 0x32fc9d99, 0x7fffffff, 0x25f2, 0x5}, {0x401, 0x6, 0x1, 0x8, 0x3, 0x88}, {0x7, 0x2, 0x1, 0x9, 0x10000, 0xff}, {0x8, 0x8, 0x6, 0x5, 0x7, 0x5}, {0x6, 0x1, 0x80000000, 0x2f, 0x5, 0xfffffffa}, {0x8, 0x9, 0x0, 0x7d7, 0x2, 0x4}, {0x3, 0xa41, 0x7ff, 0x2, 0x8, 0x3}, {0x3ff, 0x0, 0x2, 0x0, 0x0, 0x8}, {0x4, 0xffff, 0x7, 0xfffffffa, 0x200, 0x7fff}, {0x3, 0x20, 0xb5ca, 0x80, 0x2, 0x1ff}, {0x9, 0x6, 0x10000, 0x512b, 0xa798, 0x4}, {0x0, 0x9, 0x2, 0x497c, 0x7, 0xb5f}, {0x3ff, 0x7fff, 0x8, 0x9, 0x85b, 0x40384d9b}, {0xe7a, 0x7ff, 0x6, 0x9, 0x4, 0x1}, {0x3ff, 0xfff, 0x7fffffff, 0x74, 0x8, 0x5}], [{0x4}, {0x3}, {0x1}, {0x1, 0x1}, {0x4}, {0x4}, {0x4}, {0x5}, {}, {0x2}, {0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x1}, {}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {0x1}, {0x5}, {0x3}, {}, {0x2}, {0x1, 0x1}, {}, {}, {0x3}, {0x5}, {0x2}, {0x1, 0x617aab9f8173d81}, {0x1}, {0x98ba5863caf8ed24, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x3}, {0x2, 0x1}, {0x5}, {0x2}, {0x5}, {0x3}, {0x2, 0x1}, {0x3}, {0x5, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x4}, {0x3}, {}, {0x0, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x2}, {}, {0x5}, {0x2, 0x1}, {0x5, 0x1}, {0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5}, {0x1}, {0x1}, {0x3, 0x1}, {0x3}, {0x5, 0x1}, {0x1}, {0x2}, {0x1}, {0x5}, {0x3, 0x1}, {0x79423aa3b2c35e6e, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x3}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {}, {0x4, 0x1}, {0x1}, {0x1}, {0x3, 0x1}, {0x4}, {}, {0x5}, {0x3, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {}, {0x1}, {}, {0x3, 0x1}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1}, {0x2, 0x1}, {}, {0x5}, {0x5, 0x1}, {0x1}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x7}, {0x3}, {0x5}, {0x4, 0x1}, {0x5}, {0x2, 0x1}, {0x2, 0x1}]}}, @TCA_PEDIT_PARMS={0xe68, 0x2, {{{0x4d3d, 0x86b3, 0x2, 0x99, 0x2afd}, 0x0, 0x9, [{0xf0, 0x4, 0x20, 0x1, 0x7, 0x4}, {0x3, 0x7fff, 0x10001, 0x7ff, 0x100, 0x101}, {0x7f, 0x3, 0x6957, 0x6, 0x5, 0x200}]}, [{0xffffffff, 0x1, 0x80000001, 0x7fff, 0x0, 0x6}, {0x7fff, 0x8ab5, 0x47, 0x9, 0x10000, 0x6}, {0x10000, 0x1, 0xca7, 0xe6, 0x3, 0x3}, {0x2, 0x18a9, 0x5c9, 0x8, 0x1, 0x9}, {0x7, 0x80000001, 0x8, 0x7, 0x3, 0x9}, {0x7fffffff, 0x100, 0x20, 0x6d, 0x8, 0x4}, {0xffffffff, 0x9, 0x1ff, 0x4, 0x2, 0x6}, {0xfffffff8, 0x3, 0x3f, 0x101, 0x6f06}, {0x6f, 0x9, 0x2, 0xbc, 0xf08f, 0xffffffff}, {0x4, 0x0, 0x9, 0x2, 0xcbf, 0xfcf}, {0x1, 0x7f, 0x400, 0x5, 0x76, 0x40}, {0x3f, 0x9, 0x6c4ea1f3, 0x1, 0xff, 0x3ff}, {0x4, 0x5, 0x0, 0x7, 0x7}, {0x1, 0x1000, 0xffffffff, 0x8, 0x2, 0xfffffffe}, {0x2, 0x0, 0xffffffff, 0x6, 0xe40c, 0xfffff800}, {0x925, 0x200, 0x5, 0xfffffffe, 0x6, 0x8}, {0x4, 0x7, 0x4, 0x8, 0x7, 0x7}, {0x400, 0x9, 0x7fa, 0x7ff, 0x400, 0x8}, {0x7f, 0x4, 0x401, 0x0, 0x8, 0x37}, {0xffffffff, 0xd89b0000, 0x0, 0x6, 0x80000001, 0x3}, {0x3, 0x1, 0x9, 0x80000001, 0x8, 0x6}, {0x2, 0x0, 0x5, 0x8, 0x400, 0x9}, {0x6, 0x10001, 0x80000001, 0x51, 0x6, 0x1}, {0x10000, 0x7, 0x3, 0x2, 0x1, 0x65d}, {0x2, 0x4, 0x0, 0x3, 0x1ff, 0x80000001}, {0x6, 0x73c, 0x1, 0x7, 0x10000, 0x7}, {0x0, 0x6af, 0x5, 0xfffffeff, 0x6, 0x3}, {0x800, 0xffff, 0x4, 0x6, 0x4f4a7534, 0x8}, {0x2, 0x1f, 0x101, 0x9, 0x10001, 0x8001}, {0x44, 0x7, 0x1f, 0xf0fe, 0x8, 0x7d5}, {0x1ff, 0x8000, 0x699, 0x4, 0x0, 0x9}, {0x2, 0x5, 0x8001, 0x10001, 0x1, 0x7fff}, {0x2fcb, 0xfffffff8, 0x8, 0xffffffff, 0x9, 0x2bf4}, {0xffffffff, 0x1, 0x7, 0x80000000, 0xdc, 0x7}, {0x6, 0x3ff, 0x3, 0x1, 0x96b1, 0x9}, {0x0, 0xd0cc00, 0x4e7, 0x80, 0x0, 0x4}, {0x9, 0x2, 0x1, 0x9, 0x2, 0x4}, {0x1f, 0x1f, 0x0, 0x7ff, 0x6, 0x8f}, {0x1c567367, 0xab, 0xe905, 0x5, 0x4, 0x5}, {0x9, 0x4e, 0x7, 0x3ff, 0x178}, {0x7, 0xfffffffc, 0x3, 0x2f, 0x3, 0x1000}, {0x390a8ad1, 0x40, 0x9, 0x1ff, 0xff7, 0x738f}, {0x7, 0x80, 0x4, 0x0, 0x2, 0x4}, {0x8, 0x5, 0x2, 0x7b8, 0xfc, 0x5}, {0x5, 0x6, 0xff, 0x87, 0x10001, 0x80000000}, {0x3, 0xb03, 0x4, 0x4, 0x1, 0x8}, {0x9, 0x5, 0x7b51, 0x9, 0x0, 0x5}, {0x263d5898, 0xffffffff, 0x0, 0x5, 0x3f, 0x9ff9}, {0x40, 0xfffffe01, 0x800080, 0x8, 0x0, 0x7}, {0x2, 0x8, 0x20, 0x7ff, 0x9, 0x1}, {0xbe, 0x0, 0x4, 0xffffffff, 0x3, 0x1}, {0x42, 0x6, 0x5, 0x3, 0x0, 0x8}, {0x8, 0x3, 0xfffeffff, 0x400, 0x80, 0x100}, {0x4, 0x6, 0x6, 0x3, 0x855f, 0x9}, {0x4, 0x10000, 0x7, 0x8000, 0xb383, 0x4}, {0xf4, 0x6, 0x80, 0x0, 0x17, 0x4}, {0x1, 0x80, 0x3f, 0x14, 0x8020, 0x3f}, {0x78f, 0x7, 0xfffffff9, 0xd84c, 0xc98a, 0x6}, {0xffb4, 0x1, 0x0, 0x0, 0x0, 0x1f}, {0x7, 0x9, 0x1ff, 0x0, 0x9, 0x376f}, {0x4, 0xffff, 0x8, 0x7ff, 0x752, 0xd8}, {0xffff, 0x54d7, 0x4, 0x7, 0x9, 0xffffffff}, {0x1c4aa832, 0x1, 0x7fffffff, 0x8c, 0x1f, 0x8}, {0x1, 0x5, 0xe1, 0x6, 0x420, 0x80}, {0x6, 0x7fffffff, 0x6, 0x9, 0x4, 0x4}, {0x80000000, 0x4, 0x81, 0x7, 0x5dde, 0x6}, {0x6, 0x800, 0x100, 0x3, 0x6, 0x401}, {0x1000, 0x6, 0x2, 0xfffffffb, 0x1, 0x10000}, {0x1, 0x2, 0x1000, 0x2, 0x7f, 0x8000}, {0x284, 0x438b, 0xdb1, 0x3, 0x8000, 0x800}, {0x60, 0x1, 0x2, 0x8, 0x7, 0x4}, {0x7ff, 0x8d, 0x2, 0x8, 0xea, 0x1}, {0x40, 0x6ffe, 0x1, 0x721, 0x2, 0x7}, {0x6, 0x0, 0x401, 0x200000, 0x2c, 0x8}, {0xae2, 0x3, 0x1, 0x9, 0x8009, 0x3}, {0x4, 0x1f, 0xffffffff, 0x9e9f, 0x7ff, 0x80}, {0x9, 0xfffffffb, 0x40, 0x5, 0x69974e29, 0x108}, {0x4, 0x9, 0x4, 0x80000001, 0x629, 0x8}, {0x80, 0x3, 0x4, 0x4d, 0xffffffff, 0x9d}, {0x6, 0xc484, 0x5, 0x1, 0xffffffa6, 0x763}, {0x91e8, 0x2, 0x7ff, 0x1, 0x20f65452, 0x101}, {0x686c, 0x8cb0, 0x1, 0x33b, 0x8, 0x400}, {0xbc, 0x4, 0xf805, 0x5, 0xb38a59f, 0x4}, {0x21b, 0x8, 0xe285, 0xd78, 0xfffffffe, 0x2}, {0x1, 0x4, 0x81, 0x4, 0x7, 0x81}, {0x9, 0x4, 0x80, 0x1, 0x7e02d82d, 0xfffffff9}, {0x3, 0x40000000, 0x0, 0x8, 0x32c1, 0x4}, {0xffff, 0x5, 0x0, 0x2, 0x2, 0xa327}, {0xfffffffd, 0x7ff, 0x1, 0xfffffe01, 0x8, 0x2}, {0x81, 0x80000001, 0xffff, 0x2, 0x1, 0x3f}, {0x9, 0xb50d, 0x9, 0x6, 0xfffffffc, 0x11}, {0x9, 0x1, 0xffffffff, 0x4, 0x6, 0x4}, {0x83, 0x3, 0x0, 0x3, 0x1d7, 0x10000}, {0xffffffff, 0x717, 0x7, 0x1, 0x9, 0x40}, {0x3, 0x6, 0x3c, 0x2, 0x20, 0x9}, {0x6, 0x3, 0x8000, 0x4, 0x9, 0x5}, {0x903, 0x1, 0xffff, 0x6, 0xc}, {0x6, 0x5, 0x6, 0xcb, 0x8001, 0x8}, {0xffffff0c, 0x2, 0x7fff, 0x2, 0x3, 0x3}, {0x0, 0x0, 0x0, 0x3, 0x10001, 0x8}, {0x6, 0x8c, 0x7b, 0xae9, 0xffffffff, 0x3}, {0x8, 0x0, 0xd12a, 0x2b77, 0x7, 0x40}, {0x8, 0x8, 0x4, 0x80000001, 0x1f5, 0x7ff}, {0x4, 0x40, 0x7, 0x9, 0x7fff, 0x7}, {0xe619, 0x7604ccc3, 0x400, 0xffff35f8, 0x8, 0x800}, {0x1, 0x7f, 0x37, 0x213c784, 0xfff, 0x9}, {0x8, 0x8000, 0x1, 0x2, 0x400, 0x2}, {0x7d86, 0x20, 0x7d7d, 0x9, 0x8, 0x5}, {0x9, 0x4, 0x34fe, 0x8, 0x4, 0x3}, {0x8, 0x5, 0x7f, 0x8, 0x8, 0x3}, {0x0, 0xfffffffe, 0x76b, 0x0, 0x3, 0x3}, {0x3, 0x3d5, 0x6, 0x0, 0x5, 0x3965cd61}, {0xf2, 0x6, 0x2, 0x1, 0x400, 0x2}, {0x1f, 0xfffffffb, 0x9, 0x7, 0x4}, {0x6, 0xfff, 0x7, 0x80000000, 0x7fff, 0xfffffff7}, {0x7, 0x10000, 0x9, 0x4, 0x3, 0x2}, {0x9, 0x9, 0x1, 0x9, 0x400, 0x3f}, {0x0, 0x6, 0xffffffff, 0x13b7, 0x1, 0x80000000}, {0x9, 0x4, 0x7, 0x80000000, 0x7, 0x4}, {0x4, 0x3, 0x8000, 0x6, 0x7fffffff, 0xffffffff}, {0x20, 0x80000000, 0x0, 0x5, 0xfffffe16, 0x2}, {0xa2, 0x9, 0x800, 0x0, 0x5, 0x8}, {0x2, 0x7fff, 0x2, 0xd931, 0x5, 0x3}, {0x5, 0x9d, 0x65, 0x100, 0x7, 0x1}, {0x4, 0x3, 0xa16d, 0x8000, 0x20, 0xe9}, {0x939, 0x3, 0x3, 0x9, 0x0, 0x4}, {0x4, 0x4, 0x8, 0x1fe7, 0x7, 0x4}, {0x1, 0xa99, 0x800, 0x5, 0x100, 0x3}], [{0x0, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x5}, {0x2}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2}, {0x0, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x3}, {0x1}, {0x4}, {0x3}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x3, 0x3}, {}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0xb14a194668000d3b}, {0x0, 0x2}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x3}, {}, {0x3, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {}, {0x5, 0x1}, {0x1}, {0x7, 0x1}, {0x2}, {0x5, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x2}, {0x4}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {0x2}, {0x1}, {0x4}, {0x2}, {0x5, 0x1}, {}, {0x5}, {}, {0x4}, {}, {0x0, 0x1}, {0x1}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x1}, {0x3}, {0x1}, {0x4, 0x1}, {0x1}, {0x2, 0x1}, {}, {0x3, 0x1}, {0x5, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x5, 0x1}, {0x2}, {0x4, 0x1}, {0x5}, {0x4, 0x1}, {0x3, 0x1}, {0x7}, {0x2, 0x1}, {0x5}, {0x7, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x5}, {0x2}, {}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5672a1806219df80, 0x1}, {0x5, 0x1}, {}, {}, {}, {}, {0x1, 0x1}]}}, @TCA_PEDIT_KEYS_EX={0x6c, 0x5, 0x0, 0x1, [{0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}]}, @TCA_PEDIT_PARMS={0xef8, 0x2, {{{0x80000000, 0x80000000, 0x6, 0x9, 0x4}, 0x2, 0x6, [{0x0, 0x0, 0x8, 0x8, 0x3ff, 0xcfe}, {0x3, 0x4, 0x9, 0x5, 0x1, 0x3}, {0x3, 0x8000, 0x41, 0x0, 0xffffffc0, 0x6}, {0x2, 0xffff454d, 0x0, 0x5, 0x1, 0x8000}, {0xa2be, 0x3045, 0xffffff7f, 0x4, 0x7ff, 0x80}, {0x2, 0x20, 0x2, 0x6, 0x2, 0x3}, {0x3f, 0x9, 0x0, 0x9, 0xac}, {0x3f, 0x110, 0xabc4, 0x7, 0x7, 0x9}, {0x8, 0x0, 0x56, 0x3, 0x2d, 0x100}]}, [{0x1000, 0x1, 0x5, 0x8, 0x6, 0x7}, {0x10000, 0x4, 0x5, 0x1, 0x400, 0x8}, {0x2, 0x4, 0x7ff, 0x1, 0x1bdb, 0x5}, {0xaf, 0x9, 0x1, 0x871, 0x6, 0x9}, {0x6, 0x101, 0x1, 0x4dfb, 0x6, 0xa6d}, {0x100, 0x4, 0x7, 0x0, 0xffffffff, 0xffff}, {0x5, 0x2000, 0x855, 0xc5e, 0x7680, 0x4}, {0x80, 0x80000001, 0x0, 0x8, 0x2}, {0x401, 0x8, 0x3ff, 0x7a7e, 0xffffffff}, {0x2, 0x0, 0x2, 0xf, 0xfffffbff, 0x5}, {0x9, 0x2, 0x1, 0x0, 0x4, 0x2}, {0xfffffff7, 0x5, 0x8, 0x8, 0xaae1, 0x4}, {0x2, 0x0, 0xffffff90, 0x1, 0xfff, 0x9}, {0x1, 0x937, 0x7, 0x7, 0x7, 0x3}, {0x9, 0x80, 0x2, 0x7f, 0x8, 0xe}, {0x461, 0x6, 0x5, 0x100, 0x7f, 0x7c}, {0x7, 0x1, 0x2f, 0x1, 0xee, 0x1}, {0x8000, 0x0, 0x30000000, 0x1000}, {0xfffffff9, 0x8, 0x8000, 0x8, 0xaa1, 0x2fbd}, {0xb4c, 0x9, 0x81, 0x81, 0xd5f6, 0x9}, {0x7, 0x5, 0x2, 0x3, 0x101, 0x400}, {0x7, 0x79, 0x4, 0x7, 0x1, 0x4}, {0x3, 0x429e, 0x660c, 0x7fffffff, 0x6, 0x7f}, {0x8, 0x4, 0xfffffc01, 0x0, 0x2, 0xfffffffb}, {0x400, 0x8001, 0x8, 0x4, 0x101, 0x50a}, {0x1, 0x7ff, 0x6, 0x1, 0x7, 0x4}, {0x6, 0x5, 0x8, 0x9, 0x10001}, {0x9, 0x8001, 0x17, 0xfffffffe, 0x1, 0xfffffffc}, {0x1, 0x84b, 0xfff, 0x2eb0, 0x6831114e, 0x1}, {0x80, 0xa842, 0x8, 0x101, 0x3}, {0xffff, 0x4, 0xc0000, 0x66e, 0x7, 0x5}, {0x7, 0x3, 0x80, 0xb2, 0x7ff, 0x6820}, {0xffff, 0x2, 0x10001, 0x10001, 0x80000000, 0x7}, {0x93d9, 0x1, 0x6, 0x93, 0x1, 0x1}, {0xaa1, 0x710a, 0x8, 0x6, 0x2, 0xde89}, {0x10000, 0x70e8, 0x1f, 0x1f, 0x7, 0x4}, {0xf7, 0x2, 0xb203, 0x7fff, 0x200, 0x3}, {0x2, 0xa6, 0xffff2e10, 0x3f, 0x5a84, 0x5}, {0x4, 0xffffffff, 0xffff, 0x7, 0x4, 0xffffffff}, {0xffffffff, 0x0, 0x7e970821, 0x9, 0x3, 0x8}, {0x1000, 0x401, 0x38, 0x1, 0x7ff, 0xbe5}, {0x800, 0x401, 0x101, 0x7, 0x5, 0x401}, {0x706, 0x5f14a1ee, 0x6, 0x401, 0xffff, 0x1}, {0x2, 0x1ff, 0x4, 0x2, 0x4fb, 0x6}, {0x6, 0x1000, 0x781, 0x4, 0x6, 0x4f82}, {0x0, 0x81, 0x8dc, 0x8000, 0x4, 0x6}, {0x500, 0x7fffffff, 0x4, 0x9, 0x0, 0x1f}, {0x4, 0x8001, 0x2, 0x0, 0x1000, 0xfff}, {0x4, 0xe9, 0x8001, 0xffff, 0x9266, 0xfff}, {0x4, 0x8, 0x2, 0x3}, {0x1000, 0x2, 0x2c77ccdd, 0x7fff, 0x2, 0xfffffffd}, {0x0, 0x9, 0xfff, 0x6, 0x7ff, 0x6}, {0x8, 0x7ff, 0x7fff, 0x1, 0x8, 0x8}, {0x2, 0x1, 0x9, 0x7ff, 0x7f, 0x7}, {0x2, 0x1, 0x8a, 0x6, 0x7fffffff, 0xffff}, {0x0, 0x1, 0x3, 0x6, 0x4, 0x2}, {0x7, 0x20, 0x80000000, 0xd7cb, 0x20, 0x46}, {0x7, 0x8, 0x3, 0x50000, 0x4, 0x6}, {0x0, 0x2, 0x8, 0x8, 0x5, 0x80000000}, {0x9, 0x4, 0x3, 0x2, 0x81, 0x80000000}, {0x7, 0x423, 0x1, 0x7, 0x4, 0x9}, {0x3, 0x9, 0x8, 0x8001, 0x2, 0x3}, {0xffffffff, 0x2, 0x7, 0x7, 0xece, 0x9}, {0xcc2, 0xdf5, 0x4, 0x7, 0x7fffffff, 0x9}, {0xfffffffd, 0x8, 0x1f, 0x1, 0x1, 0x9}, {0xfffffffa, 0x8, 0x5, 0x9, 0x2, 0x1}, {0x3, 0x8, 0x6, 0x5, 0x6, 0x5}, {0x2, 0x7, 0x0, 0xfdb36aa, 0x5, 0x6f0}, {0x9, 0xda2, 0x4, 0xffffd3db, 0x2, 0x400}, {0x3f, 0x4, 0x471, 0x5, 0x6, 0x401}, {0x4, 0x83b, 0x6, 0x10000, 0x4}, {0xffffffe1, 0x7, 0x8, 0x80, 0x8dc, 0x7}, {0x8001, 0x9, 0x7, 0x8, 0x6, 0x5}, {0x6, 0x1, 0x74b0, 0x0, 0x3, 0x3}, {0xffff7919, 0x834b, 0xe7, 0x5, 0x1, 0x7fffffff}, {0x6, 0x0, 0x2, 0x6, 0x0, 0x80000000}, {0x6, 0x9, 0xb4df, 0x0, 0x92b, 0x5}, {0x800, 0x8, 0x0, 0x5, 0x2, 0xfffffffb}, {0x5, 0x101, 0x7ff, 0xffff8001, 0x7, 0x3}, {0x1ff, 0xaf56, 0x6, 0x2, 0x6, 0x5}, {0x5, 0x5, 0x5, 0x36, 0x90c, 0x101}, {0x7ff, 0x1, 0x1, 0x3f, 0x5, 0xffffffff}, {0x7, 0x200, 0x8, 0x4, 0x1000, 0x1ff}, {0x0, 0x3, 0x7fff, 0x8, 0x50ba, 0x6}, {0xc0000, 0x0, 0x80000000, 0x6, 0x20, 0xff}, {0x8, 0x7, 0xffffffff, 0xdac6, 0x6, 0x6cc}, {0x5, 0x8, 0x7ff, 0x45, 0x8001, 0x400}, {0x3, 0x40000000, 0x1f, 0x9, 0x5, 0x8}, {0x2e61, 0x0, 0x3f, 0x8, 0xe2, 0x5}, {0x80, 0xe91f, 0x5, 0xf8e, 0xffffffff, 0x2}, {0xfffffff7, 0x7, 0x51, 0x8, 0x3f, 0x1}, {0x100, 0x3, 0x1a, 0x7, 0x4, 0x1}, {0x8a0, 0x1, 0x1, 0x8, 0x4, 0x4d}, {0x8000, 0x5, 0x48e8, 0x101, 0x400, 0x1}, {0x8001, 0x8, 0x6, 0xf30, 0x101, 0x4}, {0x6, 0x1000, 0x3, 0x2, 0x4, 0x7}, {0x9abd, 0xd6, 0x7ff, 0x1, 0x4, 0x2}, {0x4, 0x0, 0x8, 0x60, 0x6, 0x4}, {0x8, 0x4, 0xb6, 0xff, 0x20, 0x8}, {0x5, 0x1a, 0x5, 0xe7, 0x9, 0x1}, {0xffff8620, 0x0, 0x7ff, 0x4, 0x0, 0xfffffff8}, {0x6, 0x6, 0x6, 0x400, 0x4, 0x10000}, {0x6, 0x62, 0x7, 0x400, 0x2, 0x5}, {0x8a, 0x4a6, 0x0, 0xff6b, 0x830, 0x8}, {0x10000, 0x2, 0x1ff, 0x200, 0x1, 0x80000001}, {0x1, 0x10000, 0x7, 0x3, 0x0, 0x100}, {0x7, 0x6, 0x81, 0x20722fe4, 0x81, 0x1}, {0x3, 0x6, 0x0, 0x3394, 0xfff, 0x9}, {0x81, 0x8, 0xfffffcfc, 0x6, 0x3, 0x6}, {0x5, 0xfff, 0x4, 0x7, 0x9, 0x2}, {0x4, 0x15d, 0x3, 0x9, 0x1, 0x4}, {0x6, 0x5, 0x2, 0x81, 0x8, 0x3}, {0x2, 0xfff, 0x20, 0xb5d, 0x0, 0x8}, {0x9, 0x2, 0x6, 0x34d5, 0x10001}, {0x3, 0xd1, 0x5, 0x7, 0x7, 0x89}, {0x0, 0x3, 0x5b, 0x7f, 0x3, 0xffffffa4}, {0x9, 0x4, 0x7, 0x1, 0x748fdcfe, 0x2}, {0x5, 0x1, 0x6, 0x401, 0x8, 0x20}, {0x1ff, 0x6, 0x0, 0x9, 0x9, 0x1}, {0x9, 0x40, 0x1, 0xffffff01, 0x4, 0x5}, {0x9, 0x50, 0x3, 0x9, 0x1, 0x58c}, {0x8000, 0x4, 0x0, 0x5, 0x1a, 0x4}, {0x8dcf, 0x4, 0xfaee888, 0x9, 0x7, 0x6}, {0x6, 0xaec0, 0x3, 0x0, 0x2, 0x4}, {0x1, 0xfa00780c, 0x81, 0x7, 0x3, 0x7ff}, {0x9f1, 0x8, 0x0, 0x2, 0x1, 0xa127}, {0x1ff, 0x0, 0x6, 0xdb7, 0x2, 0x10001}, {0x6, 0x5, 0x2, 0x1ff, 0xd622, 0x3}], [{0x5, 0x1}, {0x2}, {0x4, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3}, {0x1}, {0x4}, {0x2, 0x1}, {0x1}, {0x5}, {0x4, 0x1}, {0x5}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {}, {0x0, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x1}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x4, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x2}, {0x3, 0x1}, {0x5, 0x1}, {0x2}, {0x2}, {0x2}, {0x2, 0x1}, {0x3}, {0x1}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {0x3}, {0x5, 0x1}, {0x0, 0x1}, {0x2}, {0x2, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {}, {0x3, 0x1}, {}, {0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x1}, {0x3}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x1, 0x1}, {0x1}, {0x5, 0x1}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0xcd99db6763082c6d, 0xb7fda03f0ded78c3}, {0x2, 0x1}, {0x1}, {0x5}, {0x5}, {0x2}, {0x5, 0x1}, {0x4}, {}, {0x3}, {}, {0x3}, {0x2, 0x1}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x4}, {0x3, 0x1}, {0x4}, {0x1, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {}, {0x4}, {0x1}, {0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x1}, {0x1, 0x1}, {}, {0x4}, {0x2, 0x1}, {0x4}, {}, {0x0, 0x1}, {0x3}, {0x5}, {0x4, 0x1}, {0x5}, {0xd, 0x1}, {0x5, 0x1}, {0x1}, {0x1}, {0x3, 0x1}, {0x4}, {0x1, 0x1}]}}, @TCA_PEDIT_KEYS_EX={0x84, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}, {0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0x4}]}, @TCA_PEDIT_KEYS_EX={0x94, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x34, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}]}]}, {0x89, 0x6, "3e801a84d6beeecee20a4ee4a80ab544c4eaae1f074fce5964a4d35457980e1c8587f9f0960ed9d658397466539a742abe03960f3976e19214201a9634cd2768e0e57259935b0f355853c2ba923754446706e99a35bab8c5380daea73894819b80c8b43f75a31e16c87cc1940b529ad9a959749fb893d5b15c614503d45cfbcfdd0d23b0c4"}, {0xc, 0x7, {0xc5e92ac3acf58b27, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_police={0x158, 0x13, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x39, 0x1, 0xfffff000, 0x9, 0x20, {0x40, 0x2, 0x101, 0x49b1, 0x7ff, 0x80000000}, {0x3f, 0x1, 0x8d63, 0x4, 0xf4f9, 0x3}, 0xfff, 0x0, 0x4cf8}}]]}, {0xf0, 0x6, "35d2de1c8cca50dda40d4a39ddbe41f36603292a90df826bc6c715caaed363f44d741319c894c11694f26a042cba9573f7190ce7ed5bae1d0363b45c143b0760d6bf182ca349e13f03fd6a23b298fcf430df6d4946298e21464799cabc8a6f749296c02962c5ece70165ae8eeaeb18234225541a4a9654d0581d2ad0d59c19f0ab047fa692e5627021440df95fbf3519bcd7a5f279a6050e3656b4df7893e1e55ed98a214560d1ac801d461fd11d573f447a2b969d95c1639610e8ad9e7da6d0a365933c76f68bf66241bfd52d40b4624bcca1fdb15c5c2d7ca22dae5585b233dfa30a1ed6289f361df3a78b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_bpf={0xa8, 0x0, 0x0, 0x0, {{0x8}, {0x48, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x44, 0x4, [{0x8001, 0x1, 0x0, 0x3}, {0x3ff, 0xff, 0x1, 0x1000}, {0x9f1, 0x81, 0x90, 0x40}, {0x3, 0x4, 0x6, 0x400}, {0x90, 0x1, 0x2, 0x81}, {0x8, 0x7, 0xfc, 0x8}, {0x9, 0x81, 0x2d}, {0x3, 0x5, 0x2}]}]}, {0x39, 0x6, "5f7e9fbcabedba3931a3900eb915a60748f2f88bc412e7290351a9df32483820e28351e2654ee1bbe8448ecf898ccbe47d506ee236"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mirred={0xdc, 0x20, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x5, 0x6, 0x7, 0xfffffffa}, 0xa83671e54cc61523}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2, 0xffffffffffffffff, 0x1ad, 0x2}, 0x2}}]}, {0x6f, 0x6, "127cd282eac3ffc50c2bac9e8be1b00142e45a239ef011936c4cfb19d2463163672ebe149d064b37b7c7ed6be9bdb2edd4355d2659ccf68dd5afc4ba526a0263debc383f9bcc4f05ccb34ef7d9d5bd8fd54b933b1338bb38edab6219d0d10b47e8396a66b6d83ab2c6e891"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x5, 0x3}}}}]}, @TCA_RSVP_CLASSID={0x8, 0x1, {0xfff1, 0xc}}, @TCA_RSVP_SRC={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x16}}, @TCA_RSVP_SRC={0x14, 0x3, @mcast1}, @TCA_RSVP_PINFO={0x20, 0x4, {{0xffffff00, 0x0, 0x8}, {0x7, 0x4, 0x7}, 0x32, 0x5a, 0x4}}]}}, @filter_kind_options=@f_bpf={{0x8}, {0x1d70, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0x0, 0xfff1}}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_ACT={0x190c, 0x1, [@m_mirred={0x190, 0x1d, 0x0, 0x0, {{0xb}, {0x124, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x0, 0xffffffffffffffff, 0x9, 0x5d55b591}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x2, 0xffffffffffffffff, 0x8001, 0x401}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0xfffffff8, 0x10000000, 0x191, 0xf9}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x500, 0x1, 0x4, 0x1, 0xffffffff}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x9, 0x20000000, 0xb3, 0x1}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x800, 0xffffb659, 0x8, 0x7fff, 0x95c}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3f, 0x5, 0x10000000, 0x3, 0x7}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x5, 0x0, 0x7ff, 0x4}, 0x3, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x9e, 0x20000000, 0x8, 0x1ff}, 0x4, r6}}]}, {0x44, 0x6, "97dbca9a46dcae62d300752cd6a722f5cd8a4234ddece256b1408619b3e992a4fdedade0c6a42b89c5f4379448514e30c29d550e0d18a65f885ca48e2959328d"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_xt={0x10c, 0x1b, 0x0, 0x0, {{0x7}, {0xc, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x4}]}, {0xda, 0x6, "c45403942279bda97ae2caa2e7096e7c0677fa7fb68b99a3d6427d628f90c412b43f8c6a3649b73f86655b04c5804f66da4c92aece42a2467b36c406a9d64f77b0ebdbb3919b2457dafa63a4f95a9078c666a024ed73cfb594f2f26c320a3324cad9125f6c2ddcc2abf95b2381b5bf1576d94419ef7c50ec369cb2e6691acc52a25865374523be779d31742f1f305fc33b4a6f325f78be56174ede90b6cfc78c84dd18deccbf1d0bdabe5e5baa1b8d382074cf627d5f970300cbfac3ce0e5d96fbad8f973123cfdde71fbe75da726fbd168041d3c2ea"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_mpls={0x60, 0x2, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x6}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x7, 0x2, 0x4, 0x0, 0x40}, 0x3}}]}, {0x10, 0x6, "91c53685b654ef68fa2458ae"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x150, 0xa, 0x0, 0x0, {{0x8}, {0x48, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x101, 0x9, 0x4, 0x200, 0x40}, 0x1}}, @TCA_IFE_METALST={0x28, 0x6, [@IFE_META_TCINDEX={0x6, 0x5, @val=0x9}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x8}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x6}]}]}, {0xe1, 0x6, "0ed131b1e795eb4c8194648aa0c276b1aecc1a9f8355b90bd49075043526b0ff94896aa6c4bc5ee98ac125ff7cae6cd44824dca63721a4d80b689c3a5e856dc3c47f5b00a7bd612ecab2f23c2d692b6a08d82164ec89621b1ccc18bb65c6f8526ed82f40fb8d5c54c5d2f567b6dbeb6c8c3c355d07a9bd1ead2b1a61c5c4dec3969a00bb8b925a4dd3a532f257063405b3273763f861aefe3457d328d6b193b0b3e2e750d1950132d3d3118a59781bea1c3e9f089516d759c4851e18ab2e689cf0cf417070ef2d8ad4ba0df15d3a27c03f87c5ee47f104aa26f0bfd252"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_mpls={0x70, 0x4, 0x0, 0x0, {{0x9}, {0x40, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0xf0b, 0x0, 0x0, 0x2, 0x3}, 0x2}}, @TCA_MPLS_TTL={0x5, 0x7, 0x7}, @TCA_MPLS_TC={0x5, 0x6, 0x4}, @TCA_MPLS_TTL={0x5, 0x7, 0x9}]}, {0x5, 0x6, ','}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_xt={0x1114, 0x10, 0x0, 0x0, {{0x7}, {0xec, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0xe5, 0x6, {0x3, 'filter\x00', 0x1, 0x53, "acf0f8c7782fb0f67a73f50fcab753f548116e05222c7b5afdad725ef01d4dbbc539c0906d2161287ce27524bfe9054053e9ddcc796c42503155128b6e39b3fcf8720e7f02e930a67dbfb584b53cb7df77d7ccf1af7667f1c814706ad20033b21117209193bd84bf26096e0f47b7307f6362f5140c007f2c4ca222d7799741afbabece518db729ed388f6abc6d76ac2d1417f6f9733e0a8891df719b2827ad3b42a76ad4a8fc9d64c15722fb0870f62d960f25f84cd9f6b483c47d"}}]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_bpf={0x170, 0x18, 0x0, 0x0, {{0x8}, {0x90, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r7}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_FD={0x8, 0x5, r9}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x100, 0x101, 0x0, 0x7, 0x5}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x10000, 0x7b6, 0x5, 0x3, 0xfffeffff}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x6, 0x400, 0x10000000, 0x2, 0x400}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x8000, 0x5, 0x8, 0x8, 0x5}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x8}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}]}, {0xbc, 0x6, "d21159f0ddce0128f8be10ea157f541b8cd435d3c81b864be5631b54e8b5358b4d123881e251355e252e2b7271b71c2b92d8ee594b08991850ec6e8f396865f264f0df1593fd1096d48dff6b07e3dae2306c53cd0cb011fff567ec0586fc8275118ac1109a6c81bc35a284221c7a0a8bac474b87f0d8217d1fb8ae3bd6ba1a37efb36164cfcbb255925ca933b9aea8c14891613d3a2c776a2fd3e01b02b55a75dee9513973ac6619aa92e216020d08d394603abba404114c"}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}, @m_connmark={0x1c8, 0x1d, 0x0, 0x0, {{0xd}, {0x100, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x200, 0x3db, 0xffffffffffffffff, 0x7fff, 0x6e}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xffffffff, 0x2ff5, 0x20000000, 0x7f, 0xe4}, 0x8c1}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x5, 0x7, 0x81, 0x1f}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0xa9, 0x20000000, 0x3eb8, 0x2}, 0x7fff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff7, 0xfffffffb, 0x4, 0x1000, 0x62}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xffff, 0x5, 0x5, 0x5, 0x1}, 0x3ff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x401, 0x4, 0x1, 0x6, 0xfffffedc}, 0x3f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xd5, 0x1, 0x0, 0x4, 0x47d}, 0x43}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0x0, 0x5, 0x7fff, 0x7fff}, 0xfc00}}]}, {0x99, 0x6, "3f4314a6d9e3ea9ed4e8a337468a5c01a1c30b8b6eed02fcc5db10037dc23a88b5fbb427e47d79af6dd5f7c86078ec31cd9917b101cc2a0cee35a1da90e979cfd184d9c0959e6a00d8199df568d4b2ba2fc4f7454030b6b2d1d3ca8826e1b4d0901aef2926afd1bf08f92d36ef7d7557489525b6ec783866377fe68f54a7dec4e343887bf1fb5350a7beaf19038a02a05af9eda576"}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}]}, @TCA_BPF_POLICE={0x420, 0x2, [@TCA_POLICE_RATE={0x404, 0x2, [0xa155, 0x20, 0x8, 0x2, 0x1, 0x1ff, 0xa1, 0x7fff, 0x7fffffff, 0x7ee686dd, 0x1, 0xfffffff9, 0x699c, 0x5, 0x0, 0xfe9, 0x22c6, 0xfffffffa, 0x24, 0x2, 0x100, 0x7, 0x38, 0x10000, 0xffffca81, 0x100, 0x3db8, 0x8, 0xfff, 0x1d, 0xffff, 0x10000, 0x9, 0x5, 0x3, 0xb3, 0x5, 0x0, 0x8, 0x81, 0x380000, 0x3ff, 0xffffffff, 0xfffffbff, 0x1, 0x5, 0x7f, 0x40, 0x9, 0xfff, 0x8, 0x1, 0xffffffff, 0x8, 0x800, 0x90, 0x2, 0x3, 0x100, 0x3d38, 0x80000001, 0x7, 0x3, 0x0, 0x4, 0x4, 0x8000, 0x4000000, 0x0, 0x1, 0x5f, 0xa8, 0x9, 0x2, 0x8, 0x6, 0x800, 0x4, 0xc6, 0x1000, 0x4, 0x8, 0x9, 0x9, 0x9, 0x1, 0x200, 0x0, 0x5, 0x1ff, 0x7, 0x0, 0x101, 0x7, 0x40, 0x1, 0x3ff, 0x8, 0x4, 0x3ff, 0xffffffff, 0x8000, 0xb855, 0xae7, 0x9a, 0x81, 0x8, 0xff, 0x7, 0x5, 0xb1, 0x1b30d064, 0x80, 0x6, 0x800, 0x2, 0x7, 0x6, 0xc72, 0xfb, 0x0, 0x1, 0x8, 0xffff, 0xffffffff, 0xfffffffd, 0xfffffff8, 0x7ff, 0xfffffff7, 0x62f, 0x3, 0x3ff, 0x400, 0xc, 0x9, 0x76f, 0x8, 0xffff, 0xffff254f, 0x40000000, 0x4, 0x2, 0x1, 0x101, 0x1, 0xa6, 0xaf, 0x9, 0x80, 0x4, 0x8, 0x6, 0x1f, 0x9, 0x9, 0x9, 0x5f9c, 0x1ff, 0x0, 0xfffffffe, 0x7ff, 0xb20, 0xffffff80, 0x5, 0xadf, 0x3, 0x53, 0xfa83, 0x0, 0x100, 0x7fffffff, 0x9, 0x1, 0x6, 0x7, 0x7fffffff, 0x4, 0x800, 0x5c, 0x6, 0x800, 0xb74, 0xffff, 0x90000000, 0x4, 0x4, 0x7d3c, 0x9, 0x7, 0x5, 0x6, 0x8, 0x1, 0xbbb, 0xa7, 0x7, 0x800, 0x3, 0x0, 0x0, 0x400, 0x101, 0x3f, 0x0, 0x6, 0x4, 0x1ff, 0x7, 0x3, 0x9, 0x400, 0x40000000, 0x80000000, 0x1ff, 0x2, 0x2, 0xcb4a, 0x3, 0xfffffffc, 0x0, 0x400, 0xffff, 0x7bb2, 0xfffffff7, 0x54b, 0x10001, 0x800, 0x0, 0x5, 0x3, 0x6, 0x4, 0xc3f, 0x3, 0x6, 0x5, 0x8c38, 0x6, 0x3ff, 0x1f, 0xfffff438, 0x74, 0x7, 0x46, 0x0, 0x4, 0x0, 0x4, 0x0, 0x3, 0x7, 0x7, 0x6, 0x10001, 0x0, 0x5b09]}, @TCA_POLICE_RATE64={0xc, 0x8, 0xfffffffffffffffb}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}]}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x7}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x4}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x5}]}}, @TCA_CHAIN={0x8}]}, 0x6318}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

[  547.023650][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  547.287089][T16817] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  547.304579][T16779] not chained 340000 origins
[  547.309426][T16779] CPU: 1 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  547.318416][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  547.328527][T16779] Call Trace:
[  547.331820][T16779]  dump_stack_lvl+0x1ff/0x28e
[  547.336523][T16779]  dump_stack+0x25/0x28
[  547.340703][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  547.346627][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  547.351849][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.357078][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  547.362906][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.368136][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  547.373966][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  547.380063][T16779]  ? should_fail+0x75/0x9c0
[  547.384590][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.389808][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  547.396273][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  547.402375][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  547.407687][T16779]  ? _copy_from_user+0x219/0x310
[  547.412658][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.417880][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  547.423715][T16779]  __msan_chain_origin+0xab/0xf0
[  547.428690][T16779]  do_recvmmsg+0xb11/0x2120
[  547.433229][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  547.439516][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.444748][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  547.449976][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  547.456251][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  547.461662][T16779]  ? do_syscall_64+0x54/0xd0
[  547.466280][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.471344][T16779]  do_syscall_64+0x54/0xd0
[  547.475785][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  547.481717][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.487650][T16779] RIP: 0033:0x7f7784b88ae9
[  547.492098][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  547.511728][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  547.520167][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  547.528166][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  547.536159][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  547.544151][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  547.552143][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  547.561576][T16779] Uninit was stored to memory at:
[  547.566663][T16779]  do_recvmmsg+0xb11/0x2120
[  547.571503][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.576568][T16779]  do_syscall_64+0x54/0xd0
[  547.581097][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.587025][T16779] 
[  547.589423][T16779] Uninit was stored to memory at:
[  547.594480][T16779]  do_recvmmsg+0xb11/0x2120
[  547.599080][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.604129][T16779]  do_syscall_64+0x54/0xd0
[  547.608688][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.615045][T16779] 
[  547.617371][T16779] Uninit was stored to memory at:
[  547.622513][T16779]  do_recvmmsg+0xb11/0x2120
[  547.627056][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.632233][T16779]  do_syscall_64+0x54/0xd0
[  547.636676][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.642685][T16779] 
[  547.645359][T16779] Uninit was stored to memory at:
[  547.650535][T16779]  do_recvmmsg+0xb11/0x2120
[  547.655181][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.660318][T16779]  do_syscall_64+0x54/0xd0
[  547.664767][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.670772][T16779] 
[  547.673102][T16779] Uninit was stored to memory at:
[  547.678229][T16779]  do_recvmmsg+0xb11/0x2120
[  547.682761][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.687884][T16779]  do_syscall_64+0x54/0xd0
[  547.692323][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.698443][T16779] 
[  547.700775][T16779] Uninit was stored to memory at:
[  547.705850][T16779]  do_recvmmsg+0xb11/0x2120
[  547.710458][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.715511][T16779]  do_syscall_64+0x54/0xd0
[  547.720029][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.725952][T16779] 
[  547.728358][T16779] Uninit was stored to memory at:
[  547.733429][T16779]  do_recvmmsg+0xb11/0x2120
[  547.738031][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  547.743085][T16779]  do_syscall_64+0x54/0xd0
[  547.747588][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  547.753606][T16779] 
[  547.755929][T16779] Local variable msg_sys created at:
[  547.761297][T16779]  do_recvmmsg+0xc1/0x2120
[  547.765856][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.098927][    T7] stb0899_attach: Driver disabled by Kconfig
[  548.105140][    T7] az6027: no front-end attached
[  548.105140][    T7] 
[  548.150941][    T7] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  548.160692][    T7] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input62
[  548.196233][T16779] not chained 350000 origins
[  548.201075][T16779] CPU: 1 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  548.203714][    T7] dvb-usb: schedule remote query interval to 400 msecs.
[  548.209856][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  548.209875][T16779] Call Trace:
[  548.209884][T16779]  dump_stack_lvl+0x1ff/0x28e
[  548.209921][T16779]  dump_stack+0x25/0x28
[  548.209950][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  548.209993][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  548.210023][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.210050][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  548.210079][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.210104][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  548.210134][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  548.210173][T16779]  ? should_fail+0x75/0x9c0
[  548.210200][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.210227][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  548.210267][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  548.210306][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  548.210335][T16779]  ? _copy_from_user+0x219/0x310
[  548.217284][    T7] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  548.227310][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.227340][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  548.227367][T16779]  __msan_chain_origin+0xab/0xf0
[  548.227405][T16779]  do_recvmmsg+0xb11/0x2120
[  548.227442][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  548.227482][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.227513][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.227541][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  548.227579][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  548.227616][T16779]  ? do_syscall_64+0x54/0xd0
[  548.227648][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.227687][T16779]  do_syscall_64+0x54/0xd0
[  548.227717][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  548.227754][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.227793][T16779] RIP: 0033:0x7f7784b88ae9
[  548.355216][    T5] usb 3-1: USB disconnect, device number 105
[  548.356150][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.356181][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  548.356212][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  548.356234][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  548.356254][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  548.356273][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  548.356291][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  548.357303][T16779] Uninit was stored to memory at:
[  548.478622][T16779]  do_recvmmsg+0xb11/0x2120
[  548.483148][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.488349][T16779]  do_syscall_64+0x54/0xd0
[  548.492788][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.498828][T16779] 
[  548.501152][T16779] Uninit was stored to memory at:
[  548.506207][T16779]  do_recvmmsg+0xb11/0x2120
[  548.510850][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.515897][T16779]  do_syscall_64+0x54/0xd0
[  548.520467][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.526386][T16779] 
[  548.528834][T16779] Uninit was stored to memory at:
[  548.533892][T16779]  do_recvmmsg+0xb11/0x2120
[  548.538526][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.543574][T16779]  do_syscall_64+0x54/0xd0
[  548.548127][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.554050][T16779] 
[  548.556367][T16779] Uninit was stored to memory at:
[  548.561553][T16779]  do_recvmmsg+0xb11/0x2120
[  548.566075][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.571253][T16779]  do_syscall_64+0x54/0xd0
[  548.575695][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.581732][T16779] 
[  548.584054][T16779] Uninit was stored to memory at:
[  548.589222][T16779]  do_recvmmsg+0xb11/0x2120
[  548.593744][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.598905][T16779]  do_syscall_64+0x54/0xd0
[  548.603337][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.609378][T16779] 
[  548.611786][T16779] Uninit was stored to memory at:
[  548.616842][T16779]  do_recvmmsg+0xb11/0x2120
[  548.621509][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.626559][T16779]  do_syscall_64+0x54/0xd0
[  548.631122][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.637052][T16779] 
[  548.639535][T16779] Uninit was stored to memory at:
[  548.644591][T16779]  do_recvmmsg+0xb11/0x2120
[  548.649333][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.654500][T16779]  do_syscall_64+0x54/0xd0
[  548.659094][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.665019][T16779] 
[  548.667341][T16779] Local variable msg_sys created at:
[  548.672783][T16779]  do_recvmmsg+0xc1/0x2120
[  548.677225][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  548.747326][    T5] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  548.925724][T16779] not chained 360000 origins
[  548.930688][T16779] CPU: 1 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  548.939475][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  548.949560][T16779] Call Trace:
[  548.952850][T16779]  dump_stack_lvl+0x1ff/0x28e
[  548.957554][T16779]  dump_stack+0x25/0x28
[  548.961730][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  548.967479][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  548.972695][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.977912][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  548.983740][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  548.988959][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  548.994787][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  549.000884][T16779]  ? should_fail+0x75/0x9c0
[  549.005409][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  549.010624][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  549.016893][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  549.023161][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  549.028465][T16779]  ? _copy_from_user+0x219/0x310
[  549.033430][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  549.038650][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  549.044482][T16779]  __msan_chain_origin+0xab/0xf0
[  549.049448][T16779]  do_recvmmsg+0xb11/0x2120
[  549.053982][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  549.060255][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  549.065476][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  549.070689][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  549.076959][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  549.082361][T16779]  ? do_syscall_64+0x54/0xd0
[  549.086972][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.092025][T16779]  do_syscall_64+0x54/0xd0
[  549.096462][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  549.102121][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.108044][T16779] RIP: 0033:0x7f7784b88ae9
[  549.112471][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  549.132142][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  549.140584][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  549.148577][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  549.156564][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  549.164555][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  549.172544][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  549.181775][T16779] Uninit was stored to memory at:
[  549.186855][T16779]  do_recvmmsg+0xb11/0x2120
[  549.191746][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.196796][T16779]  do_syscall_64+0x54/0xd0
[  549.201353][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.207321][T16779] 
[  549.209771][T16779] Uninit was stored to memory at:
[  549.214833][T16779]  do_recvmmsg+0xb11/0x2120
[  549.219488][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.224541][T16779]  do_syscall_64+0x54/0xd0
[  549.229101][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.235042][T16779] 
[  549.237367][T16779] Uninit was stored to memory at:
[  549.238450][    T5] usb 3-1: new high-speed USB device number 106 using dummy_hcd
[  549.242533][T16779]  do_recvmmsg+0xb11/0x2120
[  549.242568][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.259909][T16779]  do_syscall_64+0x54/0xd0
[  549.264347][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.270396][T16779] 
[  549.272726][T16779] Uninit was stored to memory at:
[  549.277837][T16779]  do_recvmmsg+0xb11/0x2120
[  549.282373][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.287423][T16779]  do_syscall_64+0x54/0xd0
[  549.291980][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.298017][T16779] 
[  549.300339][T16779] Uninit was stored to memory at:
[  549.305507][T16779]  do_recvmmsg+0xb11/0x2120
[  549.310165][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.315206][T16779]  do_syscall_64+0x54/0xd0
[  549.319771][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.325715][T16779] 
[  549.328155][T16779] Uninit was stored to memory at:
[  549.333212][T16779]  do_recvmmsg+0xb11/0x2120
[  549.337859][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.342907][T16779]  do_syscall_64+0x54/0xd0
[  549.347341][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.353393][T16779] 
[  549.355717][T16779] Uninit was stored to memory at:
[  549.360895][T16779]  do_recvmmsg+0xb11/0x2120
[  549.365418][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.370586][T16779]  do_syscall_64+0x54/0xd0
[  549.375038][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  549.381065][T16779] 
[  549.383392][T16779] Local variable msg_sys created at:
[  549.388788][T16779]  do_recvmmsg+0xc1/0x2120
[  549.393229][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  549.798498][    T5] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  549.808241][    T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  549.816454][    T5] usb 3-1: Product: syz
[  549.821106][    T5] usb 3-1: Manufacturer: syz
[  549.825865][    T5] usb 3-1: SerialNumber: syz
[  549.971512][    T5] usb 3-1: config 0 descriptor??
[  550.028014][    T5] usb 3-1: can't set config #0, error -71
[  550.088325][T16779] not chained 370000 origins
[  550.092976][T16779] CPU: 0 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  550.101755][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  550.111825][T16779] Call Trace:
[  550.115133][T16779]  dump_stack_lvl+0x1ff/0x28e
[  550.119825][T16779]  dump_stack+0x25/0x28
[  550.123990][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  550.129726][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  550.134932][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.140132][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.145949][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.151150][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.156965][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  550.163134][T16779]  ? should_fail+0x75/0x9c0
[  550.167640][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.172844][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.179116][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  550.185207][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  550.190496][T16779]  ? _copy_from_user+0x219/0x310
[  550.195620][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.200822][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.206640][T16779]  __msan_chain_origin+0xab/0xf0
[  550.211591][T16779]  do_recvmmsg+0xb11/0x2120
[  550.216129][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.222473][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.227683][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.232882][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.239135][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  550.244520][T16779]  ? do_syscall_64+0x54/0xd0
[  550.249126][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.254170][T16779]  do_syscall_64+0x54/0xd0
[  550.258681][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  550.264325][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.270231][T16779] RIP: 0033:0x7f7784b88ae9
[  550.274646][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  550.294256][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  550.302759][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  550.310733][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  550.318716][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  550.326686][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  550.334744][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  550.343908][T16779] Uninit was stored to memory at:
[  550.349250][T16779]  do_recvmmsg+0xb11/0x2120
[  550.353774][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.358980][T16779]  do_syscall_64+0x54/0xd0
[  550.363415][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.369584][T16779] 
[  550.371916][T16779] Uninit was stored to memory at:
[  550.376983][T16779]  do_recvmmsg+0xb11/0x2120
[  550.381636][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.386675][T16779]  do_syscall_64+0x54/0xd0
[  550.391255][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.397177][T16779] 
[  550.399652][T16779] Uninit was stored to memory at:
[  550.404711][T16779]  do_recvmmsg+0xb11/0x2120
[  550.409370][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.414424][T16779]  do_syscall_64+0x54/0xd0
[  550.418999][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.424920][T16779] 
[  550.427337][T16779] Uninit was stored to memory at:
[  550.432552][T16779]  do_recvmmsg+0xb11/0x2120
[  550.437077][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.442271][T16779]  do_syscall_64+0x54/0xd0
[  550.446703][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.452705][T16779] 
[  550.455138][T16779] Uninit was stored to memory at:
[  550.460296][T16779]  do_recvmmsg+0xb11/0x2120
[  550.464811][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.470007][T16779]  do_syscall_64+0x54/0xd0
[  550.474446][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.480466][T16779] 
[  550.482792][T16779] Uninit was stored to memory at:
[  550.488015][T16779]  do_recvmmsg+0xb11/0x2120
[  550.492589][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.497747][T16779]  do_syscall_64+0x54/0xd0
[  550.502181][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.508263][T16779] 
[  550.510586][T16779] Uninit was stored to memory at:
[  550.515619][T16779]  do_recvmmsg+0xb11/0x2120
[  550.520236][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.525334][T16779]  do_syscall_64+0x54/0xd0
[  550.529911][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  550.535873][T16779] 
[  550.538280][T16779] Local variable msg_sys created at:
[  550.543552][T16779]  do_recvmmsg+0xc1/0x2120
[  550.548107][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  550.598723][    T5] usb 3-1: USB disconnect, device number 106
[  550.837439][T16779] not chained 380000 origins
[  550.842253][T16779] CPU: 1 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  550.851036][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  550.861106][T16779] Call Trace:
[  550.864392][T16779]  dump_stack_lvl+0x1ff/0x28e
[  550.869093][T16779]  dump_stack+0x25/0x28
[  550.873282][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  550.879031][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  550.884254][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.889567][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.895389][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.900605][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.906432][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  550.912525][T16779]  ? should_fail+0x75/0x9c0
[  550.917054][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.922357][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.928627][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  550.934724][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  550.940034][T16779]  ? _copy_from_user+0x219/0x310
[  550.944998][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.950215][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  550.956042][T16779]  __msan_chain_origin+0xab/0xf0
[  550.961005][T16779]  do_recvmmsg+0xb11/0x2120
[  550.965540][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.971809][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.977036][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  550.982255][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  550.988523][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  550.993927][T16779]  ? do_syscall_64+0x54/0xd0
[  550.998535][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.003588][T16779]  do_syscall_64+0x54/0xd0
[  551.008027][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  551.013688][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.019608][T16779] RIP: 0033:0x7f7784b88ae9
[  551.024035][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  551.043661][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  551.052099][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  551.060092][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  551.068087][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  551.076074][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  551.084088][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  551.093627][T16779] Uninit was stored to memory at:
[  551.098992][T16779]  do_recvmmsg+0xb11/0x2120
[  551.103516][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.108642][T16779]  do_syscall_64+0x54/0xd0
[  551.113075][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.119066][T16779] 
[  551.121395][T16779] Uninit was stored to memory at:
[  551.126485][T16779]  do_recvmmsg+0xb11/0x2120
[  551.131114][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.136162][T16779]  do_syscall_64+0x54/0xd0
[  551.140751][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.146665][T16779] 
[  551.149118][T16779] Uninit was stored to memory at:
[  551.154174][T16779]  do_recvmmsg+0xb11/0x2120
[  551.159086][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.164131][T16779]  do_syscall_64+0x54/0xd0
[  551.168683][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.174603][T16779] 
[  551.176925][T16779] Uninit was stored to memory at:
[  551.182117][T16779]  do_recvmmsg+0xb11/0x2120
[  551.186636][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.191820][T16779]  do_syscall_64+0x54/0xd0
[  551.196341][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.202429][T16779] 
[  551.204755][T16779] Uninit was stored to memory at:
[  551.209988][T16779]  do_recvmmsg+0xb11/0x2120
[  551.214516][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.219693][T16779]  do_syscall_64+0x54/0xd0
[  551.224133][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.230195][T16779] 
[  551.232537][T16779] Uninit was stored to memory at:
[  551.237709][T16779]  do_recvmmsg+0xb11/0x2120
[  551.242231][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.247279][T16779]  do_syscall_64+0x54/0xd0
[  551.251852][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.257918][T16779] 
[  551.260246][T16779] Uninit was stored to memory at:
[  551.265302][T16779]  do_recvmmsg+0xb11/0x2120
[  551.269949][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.275004][T16779]  do_syscall_64+0x54/0xd0
[  551.279570][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.285487][T16779] 
[  551.287930][T16779] Local variable msg_sys created at:
[  551.293210][T16779]  do_recvmmsg+0xc1/0x2120
[  551.297756][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.474537][T16779] not chained 390000 origins
[  551.479495][T16779] CPU: 1 PID: 16779 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  551.488283][T16779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  551.498352][T16779] Call Trace:
[  551.501642][T16779]  dump_stack_lvl+0x1ff/0x28e
[  551.506312][T16779]  dump_stack+0x25/0x28
[  551.510548][T16779]  kmsan_internal_chain_origin+0x8b/0x130
[  551.516312][T16779]  ? unix_dgram_recvmsg+0x20d/0x250
[  551.521499][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.526680][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  551.532589][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.537794][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  551.543625][T16779]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  551.549682][T16779]  ? should_fail+0x75/0x9c0
[  551.554273][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.559461][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  551.565721][T16779]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  551.571816][T16779]  ? kmsan_unpoison_memory+0xa8/0xf0
[  551.577089][T16779]  ? _copy_from_user+0x219/0x310
[  551.582015][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.587211][T16779]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  551.593011][T16779]  __msan_chain_origin+0xab/0xf0
[  551.597971][T16779]  do_recvmmsg+0xb11/0x2120
[  551.602512][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  551.608756][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.613999][T16779]  ? kmsan_get_metadata+0x11b/0x180
[  551.619194][T16779]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  551.625461][T16779]  ? __msan_poison_alloca+0x13c/0x180
[  551.630824][T16779]  ? do_syscall_64+0x54/0xd0
[  551.635413][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.640433][T16779]  do_syscall_64+0x54/0xd0
[  551.644836][T16779]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  551.650471][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.656394][T16779] RIP: 0033:0x7f7784b88ae9
[  551.660793][T16779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  551.680407][T16779] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  551.688820][T16779] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  551.696802][T16779] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  551.704767][T16779] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  551.712858][T16779] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  551.720874][T16779] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  551.730212][T16779] Uninit was stored to memory at:
[  551.735283][T16779]  do_recvmmsg+0xb11/0x2120
[  551.740943][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.746002][T16779]  do_syscall_64+0x54/0xd0
[  551.750801][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.756719][T16779] 
[  551.759168][T16779] Uninit was stored to memory at:
[  551.764231][T16779]  do_recvmmsg+0xb11/0x2120
[  551.768890][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.773938][T16779]  do_syscall_64+0x54/0xd0
[  551.778498][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.784507][T16779] 
[  551.786837][T16779] Uninit was stored to memory at:
[  551.792084][T16779]  do_recvmmsg+0xb11/0x2120
[  551.796603][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.801808][T16779]  do_syscall_64+0x54/0xd0
[  551.806238][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.812301][T16779] 
[  551.814629][T16779] Uninit was stored to memory at:
[  551.819848][T16779]  do_recvmmsg+0xb11/0x2120
[  551.824374][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.829514][T16779]  do_syscall_64+0x54/0xd0
[  551.833946][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.839995][T16779] 
[  551.842324][T16779] Uninit was stored to memory at:
[  551.847445][T16779]  do_recvmmsg+0xb11/0x2120
[  551.852059][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.857099][T16779]  do_syscall_64+0x54/0xd0
[  551.861632][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.867691][T16779] 
[  551.870021][T16779] Uninit was stored to memory at:
[  551.875095][T16779]  do_recvmmsg+0xb11/0x2120
[  551.879761][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.884806][T16779]  do_syscall_64+0x54/0xd0
[  551.889363][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.895269][T16779] 
[  551.897720][T16779] Uninit was stored to memory at:
[  551.902785][T16779]  do_recvmmsg+0xb11/0x2120
[  551.907304][T16779]  __x64_sys_recvmmsg+0x2af/0x500
[  551.912482][T16779]  do_syscall_64+0x54/0xd0
[  551.916914][T16779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  551.922963][T16779] 
[  551.925287][T16779] Local variable msg_sys created at:
[  551.930714][T16779]  do_recvmmsg+0xc1/0x2120
[  551.935153][T16779]  __x64_sys_recvmmsg+0x2af/0x500
06:06:41 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:41 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x89b, 0xfffffff7, 0xc5b2, 0x4, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}, 0x78}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x0, r3})
connect$packet(r0, &(0x7f0000000000)={0x11, 0xf7, r3, 0x1, 0x3, 0x6, @multicast}, 0x14)

06:06:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc008ae05, 0x0)

06:06:41 executing program 0:
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xb4, 0x0, 0x303, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @mon_options, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "e46f4745b5684dc1da9350f985f5ef5f5ae3af1c4e0b71da"}], @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}]}, 0xb4}, 0x1, 0x0, 0x0, 0x800}, 0x4000004)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:41 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

06:06:41 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x20, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  552.330673][T16889] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  552.402049][   T18] usb 3-1: new high-speed USB device number 107 using dummy_hcd
06:06:41 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e00000037000509d24380648c63940d0135fc60060012400c00020003003f0037153e370a0001805a0a6400d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x1e771}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="0c6dc1b0bd3bb464d891afa4139e63663419ef5938452b45d5dcbdd4dfd02950ba18ebb6206a0d0f277603286356d3a69180dae20ed28a063eb24c1c5ace4c580b", 0x41}, {&(0x7f00000001c0)="905d30fd83d5cf1d336605061981c8f407622bc08c1ee0ea8185066fd4f09090e430bc266ace6e5a273a86f77468af5b7c5e5f62e54882b77fdcfa004fef6030588b58267cea3ac398511c099130c26c72ba8db3cad7bae2cf1a26d67d4c86dd994192f3d7eaae8c41d155c18fbd81d6048b3e595b9be122a41ea879c6f51fb32c27a0d81d7ab51ebb2497456a2183214c238fb99f60ce312d2bf11e39785b5a8c2104424122bd662100a84db25995e241c844f8be2930e404b16db71752897858ece7a14485bf44f987b40c4bd99190", 0xd0}], 0x2, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x2d8}, 0x40)

06:06:41 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x5, 0x1, 0xfff, 0x9, 0xffffffac, 0x9e, 0x20}, 0x1c)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x2001, 0x140)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000140)={{r4}, 0x0, 0x1e, @unused=[0x6, 0x1, 0x4, 0x7fffffff], @name="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"})
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000080)=@req3={0x3, 0x0, 0x8, 0x8000, 0x0, 0x2ab680, 0x7ff}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000000)=0xb5b7, 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:06:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc0189436, 0x0)

[  552.835931][T16902] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  552.915700][T16902] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
06:06:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd/4\x00')
r3 = openat2(r2, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0x4100, 0x8, 0xc}, 0x18)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000180)="bad10466b80e00000066efbaf80c66b810bf9f8066efbafc0c66edbaa100ed640f01c80fa5b109000f784e00b80d008ee066b9790a000066b8d42e000066ba000000000f30a8a3650f01c3", 0x4b}], 0x1, 0x64, &(0x7f0000000240)=[@cr0={0x0, 0x1}], 0x1)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0, 0xe}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="38000000060000000000000000000000000000000000000000000000000000000f000000000000002e2d0e5215a10f69058b7d602e25318acab0d352ee609f8d2e7ed6a95e115f837733ac90b5d1bab69db86613a9f781cb7fbb19f74a798a576c7402333d5e586358669a7074630515b4a6e900"], 0x21)
ioctl$NBD_DISCONNECT(r5, 0xab08)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  552.969417][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  552.979003][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.987141][   T18] usb 3-1: Product: syz
[  552.991695][   T18] usb 3-1: Manufacturer: syz
[  552.996412][   T18] usb 3-1: SerialNumber: syz
[  553.064416][T16891] not chained 400000 origins
[  553.070034][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  553.078915][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  553.088985][T16891] Call Trace:
[  553.092277][T16891]  dump_stack_lvl+0x1ff/0x28e
[  553.096975][T16891]  dump_stack+0x25/0x28
[  553.101144][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  553.106887][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  553.112100][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.117304][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  553.123118][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.128320][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  553.134135][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  553.140220][T16891]  ? should_fail+0x75/0x9c0
[  553.144729][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.149931][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  553.156188][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  553.162270][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  553.167563][T16891]  ? _copy_from_user+0x219/0x310
[  553.172517][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.177722][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  553.183537][T16891]  __msan_chain_origin+0xab/0xf0
[  553.188492][T16891]  do_recvmmsg+0xb11/0x2120
[  553.193022][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  553.199280][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.204487][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  553.209692][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  553.215951][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  553.221336][T16891]  ? do_syscall_64+0x54/0xd0
[  553.225934][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.230973][T16891]  do_syscall_64+0x54/0xd0
[  553.235395][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  553.241055][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.246963][T16891] RIP: 0033:0x7f7784b88ae9
[  553.251398][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  553.271016][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  553.279439][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  553.287417][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  553.295407][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  553.303397][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  553.311378][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  553.319721][T16891] Uninit was stored to memory at:
[  553.324780][T16891]  do_recvmmsg+0xb11/0x2120
[  553.329376][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.334415][T16891]  do_syscall_64+0x54/0xd0
[  553.338971][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.344886][T16891] 
[  553.347204][T16891] Uninit was stored to memory at:
[  553.352392][T16891]  do_recvmmsg+0xb11/0x2120
[  553.356937][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.362127][T16891]  do_syscall_64+0x54/0xd0
[  553.366561][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.372608][T16891] 
[  553.374931][T16891] Uninit was stored to memory at:
[  553.380088][T16891]  do_recvmmsg+0xb11/0x2120
[  553.384609][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.389782][T16891]  do_syscall_64+0x54/0xd0
[  553.394226][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.400271][T16891] 
[  553.402606][T16891] Uninit was stored to memory at:
[  553.407791][T16891]  do_recvmmsg+0xb11/0x2120
[  553.412313][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.417363][T16891]  do_syscall_64+0x54/0xd0
[  553.421913][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.427942][T16891] 
[  553.430262][T16891] Uninit was stored to memory at:
[  553.435312][T16891]  do_recvmmsg+0xb11/0x2120
[  553.439946][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.445006][T16891]  do_syscall_64+0x54/0xd0
[  553.449563][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.455745][T16891] 
[  553.458271][T16891] Uninit was stored to memory at:
[  553.463333][T16891]  do_recvmmsg+0xb11/0x2120
[  553.467974][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.473025][T16891]  do_syscall_64+0x54/0xd0
[  553.477491][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.483639][T16891] 
[  553.485970][T16891] Uninit was stored to memory at:
[  553.491185][T16891]  do_recvmmsg+0xb11/0x2120
[  553.495699][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  553.500874][T16891]  do_syscall_64+0x54/0xd0
[  553.505314][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  553.511361][T16891] 
[  553.513689][T16891] Local variable msg_sys created at:
[  553.519093][T16891]  do_recvmmsg+0xc1/0x2120
[  553.523532][T16891]  __x64_sys_recvmmsg+0x2af/0x500
06:06:42 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="4215bd50b90d79202dbd7000fcdbdf2500000000020000000c000880080004008f000000"], 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x4040000)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
splice(r0, &(0x7f0000000180)=0x4, r0, &(0x7f00000001c0)=0x9, 0x48000000000, 0x2)

06:06:42 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e00000037000509d24380648c63940d0135fc60060012400c00020003003f0037153e370a0001805a0a6400d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x1e771}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="0c6dc1b0bd3bb464d891afa4139e63663419ef5938452b45d5dcbdd4dfd02950ba18ebb6206a0d0f277603286356d3a69180dae20ed28a063eb24c1c5ace4c580b", 0x41}, {&(0x7f00000001c0)="905d30fd83d5cf1d336605061981c8f407622bc08c1ee0ea8185066fd4f09090e430bc266ace6e5a273a86f77468af5b7c5e5f62e54882b77fdcfa004fef6030588b58267cea3ac398511c099130c26c72ba8db3cad7bae2cf1a26d67d4c86dd994192f3d7eaae8c41d155c18fbd81d6048b3e595b9be122a41ea879c6f51fb32c27a0d81d7ab51ebb2497456a2183214c238fb99f60ce312d2bf11e39785b5a8c2104424122bd662100a84db25995e241c844f8be2930e404b16db71752897858ece7a14485bf44f987b40c4bd99190", 0xd0}], 0x2, &(0x7f00000002c0)=ANY=[@ANYBLOB="70000000000000001901000065e3000026876769995896ed87b70a9afa134b9edb5e271a52e3d3ee36a7af577aaa454418ba49ffa4b91b339bf42a5b381747f4bb2b90216bc00f38d2d17a51a1d4fec04a1237ca107704727bde960b3a06d4faca7c9a33ba26516bd000000000000000180000000000000011000000ffff000029a541000000000090000000000000001001000005000000b0ee1a256b776a37796d9fbc8b140f8fcfe1795196530b75d3f5b122a3863048495308054564fb263221b86b7cce0e349d2cd91129efcd588e258174a196b9fd52f8cb892c18eb36bf86b6408c6baac70d53d0f18ecec2a42d73da46397212f2f3a72fa89204b458aff34d6b488651878a103f19a32f804df3b7000000000000b8000000000000000801000006000000dabf4f8c714c9243bb8af7d19dd78a693fa02e19e27598bd0ffb73d7ff0c0b844f62201ccace68156b10b4c117193a7ee7b05d5c2e06b8b4cfacf1568e360c403f0c29dd00981ce9d482a91f0322d1a6d3ae9c390694400d0c43ec8fe81387e557d79ccc98aef6f0273e07daa31037e389a73e76cc62e13a37c7ea2476ea142084748e735a05fea4159926dcfe85be3759d27d7050fa358dc3ed3fd01ceec264d31c5a7a49c38600400000000000000015010000090000007febf39a9ad014e7da2e701ae5af909105e9cda77d85b2cc2defe07a3c338ec8ef4823b347f95e93e500000000000000c8000000000000001001000005000000df7b0506c9de56bce9645a75e76d74236fd4c4abe325f162bec2d8f914e9d61cf00f7cfda18f06bd63ff5794f692d0b390df19b071fe6261abd337c3a5bc966b924c525bd1f24a30ffb51822ca71a6500a6ece24634b573455ad7f41491e83981e1474818f310cbc94939a13f5503ac6c03528da2aadf32317eb14e99e90c38fcbb6c2e1d12d6733cb54f9816c1dd2de8fa76692c2428f029d2ef4f5f40bd1c04feece460c277e6b8234231aa42f532068b9cf921c4599d1c4b7fd6945cd"], 0x2d8}, 0x40)

[  553.603897][   T18] usb 3-1: config 0 descriptor??
[  553.868365][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  553.881979][T16931] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  553.905986][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  553.963601][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  553.971185][   T18] usb 3-1: media controller created
[  554.149842][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  554.373135][T16891] not chained 410000 origins
[  554.378013][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  554.386799][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  554.396875][T16891] Call Trace:
[  554.400166][T16891]  dump_stack_lvl+0x1ff/0x28e
[  554.404871][T16891]  dump_stack+0x25/0x28
[  554.409051][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  554.414893][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  554.420121][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.425340][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  554.431195][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.436427][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  554.442257][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  554.448358][T16891]  ? should_fail+0x75/0x9c0
[  554.452881][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.458379][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  554.464661][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  554.470764][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  554.476079][T16891]  ? _copy_from_user+0x219/0x310
[  554.481049][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.486401][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  554.492241][T16891]  __msan_chain_origin+0xab/0xf0
[  554.497216][T16891]  do_recvmmsg+0xb11/0x2120
[  554.501763][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  554.508299][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.513529][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  554.519010][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  554.525292][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  554.530700][T16891]  ? do_syscall_64+0x54/0xd0
[  554.535310][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.540370][T16891]  do_syscall_64+0x54/0xd0
[  554.544809][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  554.550468][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.556391][T16891] RIP: 0033:0x7f7784b88ae9
[  554.560818][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  554.580447][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  554.588887][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  554.596880][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  554.604898][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  554.612883][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  554.620872][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  554.630267][T16891] Uninit was stored to memory at:
[  554.635351][T16891]  do_recvmmsg+0xb11/0x2120
[  554.640287][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.645345][T16891]  do_syscall_64+0x54/0xd0
[  554.649908][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.655832][T16891] 
[  554.658275][T16891] Uninit was stored to memory at:
[  554.663339][T16891]  do_recvmmsg+0xb11/0x2120
[  554.667967][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.673019][T16891]  do_syscall_64+0x54/0xd0
[  554.677456][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.683513][T16891] 
[  554.685840][T16891] Uninit was stored to memory at:
[  554.691027][T16891]  do_recvmmsg+0xb11/0x2120
[  554.695551][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.700730][T16891]  do_syscall_64+0x54/0xd0
[  554.705170][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.711229][T16891] 
[  554.713555][T16891] Uninit was stored to memory at:
[  554.718724][T16891]  do_recvmmsg+0xb11/0x2120
[  554.723245][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.728407][T16891]  do_syscall_64+0x54/0xd0
[  554.732850][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.739165][T16891] 
[  554.741494][T16891] Uninit was stored to memory at:
[  554.746550][T16891]  do_recvmmsg+0xb11/0x2120
[  554.751193][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.756244][T16891]  do_syscall_64+0x54/0xd0
[  554.760786][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.766709][T16891] 
[  554.769155][T16891] Uninit was stored to memory at:
[  554.774214][T16891]  do_recvmmsg+0xb11/0x2120
[  554.778858][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.783902][T16891]  do_syscall_64+0x54/0xd0
[  554.788454][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.794377][T16891] 
[  554.796699][T16891] Uninit was stored to memory at:
[  554.801876][T16891]  do_recvmmsg+0xb11/0x2120
[  554.806395][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  554.811569][T16891]  do_syscall_64+0x54/0xd0
[  554.816012][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  554.822064][T16891] 
[  554.824388][T16891] Local variable msg_sys created at:
[  554.829782][T16891]  do_recvmmsg+0xc1/0x2120
[  554.834228][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.074115][T16891] not chained 420000 origins
[  555.079024][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  555.087812][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  555.097880][T16891] Call Trace:
[  555.101171][T16891]  dump_stack_lvl+0x1ff/0x28e
[  555.105876][T16891]  dump_stack+0x25/0x28
[  555.110052][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  555.115806][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  555.121033][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.126256][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  555.132088][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.137310][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  555.143141][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  555.149253][T16891]  ? should_fail+0x75/0x9c0
[  555.153776][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.158996][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  555.165277][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  555.171384][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  555.176694][T16891]  ? _copy_from_user+0x219/0x310
[  555.181661][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.186891][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  555.192723][T16891]  __msan_chain_origin+0xab/0xf0
[  555.197689][T16891]  do_recvmmsg+0xb11/0x2120
[  555.202232][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  555.208522][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.213746][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  555.218965][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  555.225250][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  555.230648][T16891]  ? do_syscall_64+0x54/0xd0
[  555.235256][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.240316][T16891]  do_syscall_64+0x54/0xd0
[  555.244759][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  555.250421][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.256348][T16891] RIP: 0033:0x7f7784b88ae9
[  555.260779][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  555.280415][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  555.288859][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  555.296851][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  555.304842][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  555.312831][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  555.320818][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  555.330203][T16891] Uninit was stored to memory at:
[  555.335275][T16891]  do_recvmmsg+0xb11/0x2120
[  555.340163][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.345221][T16891]  do_syscall_64+0x54/0xd0
[  555.349787][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.355714][T16891] 
[  555.358157][T16891] Uninit was stored to memory at:
[  555.363217][T16891]  do_recvmmsg+0xb11/0x2120
[  555.367894][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.372949][T16891]  do_syscall_64+0x54/0xd0
[  555.377392][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.383471][T16891] 
[  555.385798][T16891] Uninit was stored to memory at:
[  555.390976][T16891]  do_recvmmsg+0xb11/0x2120
[  555.395503][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.400678][T16891]  do_syscall_64+0x54/0xd0
[  555.405115][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.411170][T16891] 
[  555.413499][T16891] Uninit was stored to memory at:
[  555.418684][T16891]  do_recvmmsg+0xb11/0x2120
[  555.423210][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.428385][T16891]  do_syscall_64+0x54/0xd0
[  555.432827][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.438890][T16891] 
[  555.441217][T16891] Uninit was stored to memory at:
[  555.446291][T16891]  do_recvmmsg+0xb11/0x2120
[  555.450962][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.456021][T16891]  do_syscall_64+0x54/0xd0
[  555.460590][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.466519][T16891] 
[  555.468970][T16891] Uninit was stored to memory at:
[  555.474030][T16891]  do_recvmmsg+0xb11/0x2120
[  555.478669][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.483719][T16891]  do_syscall_64+0x54/0xd0
[  555.488274][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.494203][T16891] 
[  555.496529][T16891] Uninit was stored to memory at:
[  555.501719][T16891]  do_recvmmsg+0xb11/0x2120
[  555.506284][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  555.511471][T16891]  do_syscall_64+0x54/0xd0
[  555.515916][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  555.521981][T16891] 
[  555.524305][T16891] Local variable msg_sys created at:
[  555.529704][T16891]  do_recvmmsg+0xc1/0x2120
[  555.534142][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.017964][   T18] stb0899_attach: Driver disabled by Kconfig
[  556.024132][   T18] az6027: no front-end attached
[  556.024132][   T18] 
[  556.071736][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  556.073449][T16891] not chained 430000 origins
[  556.080423][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input63
[  556.083972][T16891] CPU: 0 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  556.084006][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.084022][T16891] Call Trace:
[  556.111567][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  556.113883][T16891]  dump_stack_lvl+0x1ff/0x28e
[  556.113924][T16891]  dump_stack+0x25/0x28
[  556.117204][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  556.124101][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  556.124141][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  556.124174][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.124201][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.124232][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.124258][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.124288][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  556.180022][T16891]  ? should_fail+0x75/0x9c0
[  556.184815][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.190040][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.196321][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  556.202420][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  556.207814][T16891]  ? _copy_from_user+0x219/0x310
[  556.212776][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.217989][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.223823][T16891]  __msan_chain_origin+0xab/0xf0
[  556.228786][T16891]  do_recvmmsg+0xb11/0x2120
[  556.233323][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.239596][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.244815][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.250035][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.256313][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  556.261713][T16891]  ? do_syscall_64+0x54/0xd0
[  556.266333][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.271396][T16891]  do_syscall_64+0x54/0xd0
[  556.275829][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  556.281483][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.287425][T16891] RIP: 0033:0x7f7784b88ae9
[  556.291857][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  556.311653][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  556.320092][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  556.328091][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  556.336105][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  556.344474][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  556.352504][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  556.361482][T16891] Uninit was stored to memory at:
[  556.366557][T16891]  do_recvmmsg+0xb11/0x2120
[  556.371434][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.376491][T16891]  do_syscall_64+0x54/0xd0
[  556.381035][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.386959][T16891] 
[  556.389451][T16891] Uninit was stored to memory at:
[  556.390186][   T18] usb 3-1: USB disconnect, device number 107
[  556.394508][T16891]  do_recvmmsg+0xb11/0x2120
[  556.394541][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.394574][T16891]  do_syscall_64+0x54/0xd0
[  556.414669][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.420749][T16891] 
[  556.423084][T16891] Uninit was stored to memory at:
[  556.428283][T16891]  do_recvmmsg+0xb11/0x2120
[  556.432808][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.438171][T16891]  do_syscall_64+0x54/0xd0
[  556.442608][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.448663][T16891] 
[  556.450988][T16891] Uninit was stored to memory at:
[  556.456048][T16891]  do_recvmmsg+0xb11/0x2120
[  556.460727][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.465883][T16891]  do_syscall_64+0x54/0xd0
[  556.470503][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.476427][T16891] 
[  556.478929][T16891] Uninit was stored to memory at:
[  556.483983][T16891]  do_recvmmsg+0xb11/0x2120
[  556.488685][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.493739][T16891]  do_syscall_64+0x54/0xd0
[  556.498363][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.504289][T16891] 
[  556.506618][T16891] Uninit was stored to memory at:
[  556.511862][T16891]  do_recvmmsg+0xb11/0x2120
[  556.516388][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.521629][T16891]  do_syscall_64+0x54/0xd0
[  556.526066][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.532189][T16891] 
[  556.534512][T16891] Uninit was stored to memory at:
[  556.539752][T16891]  do_recvmmsg+0xb11/0x2120
[  556.544267][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.549513][T16891]  do_syscall_64+0x54/0xd0
[  556.553947][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.560049][T16891] 
[  556.562375][T16891] Local variable msg_sys created at:
[  556.567644][T16891]  do_recvmmsg+0xc1/0x2120
[  556.572239][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.654258][   T18] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  556.789664][T16891] not chained 440000 origins
[  556.794278][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  556.803203][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.813348][T16891] Call Trace:
[  556.816632][T16891]  dump_stack_lvl+0x1ff/0x28e
[  556.821350][T16891]  dump_stack+0x25/0x28
[  556.825519][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  556.831241][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  556.836631][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.841817][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.847745][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.852967][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.858789][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  556.864862][T16891]  ? should_fail+0x75/0x9c0
[  556.869357][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.874568][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.880812][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  556.886904][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  556.892183][T16891]  ? _copy_from_user+0x219/0x310
[  556.897120][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.902407][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  556.908233][T16891]  __msan_chain_origin+0xab/0xf0
[  556.913194][T16891]  do_recvmmsg+0xb11/0x2120
[  556.917719][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.923978][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.929173][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  556.934381][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  556.940620][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  556.945998][T16891]  ? do_syscall_64+0x54/0xd0
[  556.950584][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  556.955629][T16891]  do_syscall_64+0x54/0xd0
[  556.960041][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  556.965695][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  556.971586][T16891] RIP: 0033:0x7f7784b88ae9
[  556.975997][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  556.995595][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  557.004021][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  557.011992][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  557.019961][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  557.027969][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  557.036039][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  557.045499][T16891] Uninit was stored to memory at:
[  557.051626][T16891]  do_recvmmsg+0xb11/0x2120
[  557.056163][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.061379][T16891]  do_syscall_64+0x54/0xd0
[  557.065925][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.071969][T16891] 
[  557.074293][T16891] Uninit was stored to memory at:
[  557.079452][T16891]  do_recvmmsg+0xb11/0x2120
[  557.084060][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.089216][T16891]  do_syscall_64+0x54/0xd0
[  557.093651][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.099694][T16891] 
[  557.102019][T16891] Uninit was stored to memory at:
[  557.107252][T16891]  do_recvmmsg+0xb11/0x2120
[  557.111903][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.116954][T16891]  do_syscall_64+0x54/0xd0
[  557.121543][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.127460][T16891] 
[  557.129890][T16891] Uninit was stored to memory at:
[  557.134941][T16891]  do_recvmmsg+0xb11/0x2120
[  557.139581][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.144648][T16891]  do_syscall_64+0x54/0xd0
[  557.149211][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.155134][T16891] 
[  557.157462][T16891] Uninit was stored to memory at:
[  557.162645][T16891]  do_recvmmsg+0xb11/0x2120
[  557.167171][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.172339][T16891]  do_syscall_64+0x54/0xd0
[  557.176778][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.182827][T16891] 
[  557.185150][T16891] Uninit was stored to memory at:
[  557.190325][T16891]  do_recvmmsg+0xb11/0x2120
[  557.196177][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.201352][T16891]  do_syscall_64+0x54/0xd0
[  557.205791][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.211827][T16891] 
[  557.214150][T16891] Uninit was stored to memory at:
[  557.219323][T16891]  do_recvmmsg+0xb11/0x2120
[  557.223850][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.229025][T16891]  do_syscall_64+0x54/0xd0
[  557.233459][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.239502][T16891] 
[  557.241827][T16891] Local variable msg_sys created at:
[  557.247363][T16891]  do_recvmmsg+0xc1/0x2120
[  557.251915][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.432892][T16891] not chained 450000 origins
[  557.437540][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  557.446327][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  557.456407][T16891] Call Trace:
[  557.459698][T16891]  dump_stack_lvl+0x1ff/0x28e
[  557.464417][T16891]  dump_stack+0x25/0x28
[  557.468589][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  557.474380][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  557.479598][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.484991][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  557.490817][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.496037][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  557.501863][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  557.507958][T16891]  ? should_fail+0x75/0x9c0
[  557.512832][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.518049][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  557.524321][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  557.530428][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  557.535740][T16891]  ? _copy_from_user+0x219/0x310
[  557.540794][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.546016][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  557.551845][T16891]  __msan_chain_origin+0xab/0xf0
[  557.556813][T16891]  do_recvmmsg+0xb11/0x2120
[  557.561347][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  557.567882][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.573100][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  557.578311][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  557.584677][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  557.590071][T16891]  ? do_syscall_64+0x54/0xd0
[  557.594684][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.599825][T16891]  do_syscall_64+0x54/0xd0
[  557.604376][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  557.610001][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.615884][T16891] RIP: 0033:0x7f7784b88ae9
[  557.620460][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  557.640212][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  557.648650][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  557.656611][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  557.664586][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  557.672547][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  557.680524][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  557.689830][T16891] Uninit was stored to memory at:
[  557.694895][T16891]  do_recvmmsg+0xb11/0x2120
[  557.699776][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.704832][T16891]  do_syscall_64+0x54/0xd0
[  557.709406][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.715340][T16891] 
[  557.717665][T16891] Uninit was stored to memory at:
[  557.722865][T16891]  do_recvmmsg+0xb11/0x2120
[  557.727384][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.732578][T16891]  do_syscall_64+0x54/0xd0
[  557.737011][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.743067][T16891] 
[  557.745427][T16891] Uninit was stored to memory at:
[  557.750907][T16891]  do_recvmmsg+0xb11/0x2120
[  557.755422][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.760619][T16891]  do_syscall_64+0x54/0xd0
[  557.765060][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.771117][T16891] 
[  557.773441][T16891] Uninit was stored to memory at:
[  557.778658][T16891]  do_recvmmsg+0xb11/0x2120
[  557.784039][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.789218][T16891]  do_syscall_64+0x54/0xd0
[  557.793651][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.799738][T16891] 
[  557.802061][T16891] Uninit was stored to memory at:
[  557.807094][T16891]  do_recvmmsg+0xb11/0x2120
[  557.811709][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.816752][T16891]  do_syscall_64+0x54/0xd0
[  557.821281][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.827195][T16891] 
[  557.829670][T16891] Uninit was stored to memory at:
[  557.834720][T16891]  do_recvmmsg+0xb11/0x2120
[  557.839382][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.844426][T16891]  do_syscall_64+0x54/0xd0
[  557.849008][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.854913][T16891] 
[  557.857218][T16891] Uninit was stored to memory at:
[  557.862385][T16891]  do_recvmmsg+0xb11/0x2120
[  557.866906][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.872044][T16891]  do_syscall_64+0x54/0xd0
[  557.876474][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  557.882488][T16891] 
[  557.884813][T16891] Local variable msg_sys created at:
[  557.890207][T16891]  do_recvmmsg+0xc1/0x2120
[  557.894639][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  557.979598][T16891] not chained 460000 origins
[  557.984867][T16891] CPU: 1 PID: 16891 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  557.993665][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  558.003732][T16891] Call Trace:
[  558.007002][T16891]  dump_stack_lvl+0x1ff/0x28e
[  558.011680][T16891]  dump_stack+0x25/0x28
[  558.015866][T16891]  kmsan_internal_chain_origin+0x8b/0x130
[  558.021579][T16891]  ? unix_dgram_recvmsg+0x20d/0x250
[  558.026768][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.031962][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  558.037774][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.042980][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  558.048780][T16891]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  558.054864][T16891]  ? should_fail+0x75/0x9c0
[  558.059356][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.064567][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  558.070810][T16891]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  558.076867][T16891]  ? kmsan_unpoison_memory+0xa8/0xf0
[  558.082138][T16891]  ? _copy_from_user+0x219/0x310
[  558.087070][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.092273][T16891]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  558.098083][T16891]  __msan_chain_origin+0xab/0xf0
[  558.103037][T16891]  do_recvmmsg+0xb11/0x2120
[  558.107534][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  558.113795][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.118993][T16891]  ? kmsan_get_metadata+0x11b/0x180
[  558.124205][T16891]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  558.130466][T16891]  ? __msan_poison_alloca+0x13c/0x180
[  558.135858][T16891]  ? do_syscall_64+0x54/0xd0
[  558.140432][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.145447][T16891]  do_syscall_64+0x54/0xd0
[  558.149849][T16891]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  558.155490][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.161385][T16891] RIP: 0033:0x7f7784b88ae9
[  558.165795][T16891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  558.185397][T16891] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  558.193809][T16891] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  558.201793][T16891] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  558.209757][T16891] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  558.217730][T16891] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  558.225704][T16891] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  558.234835][T16891] Uninit was stored to memory at:
[  558.240213][T16891]  do_recvmmsg+0xb11/0x2120
[  558.244740][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.249900][T16891]  do_syscall_64+0x54/0xd0
[  558.254334][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.260392][T16891] 
[  558.262715][T16891] Uninit was stored to memory at:
[  558.267895][T16891]  do_recvmmsg+0xb11/0x2120
[  558.272416][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.277465][T16891]  do_syscall_64+0x54/0xd0
[  558.282045][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.288100][T16891] 
[  558.290424][T16891] Uninit was stored to memory at:
[  558.295476][T16891]  do_recvmmsg+0xb11/0x2120
[  558.300116][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.305172][T16891]  do_syscall_64+0x54/0xd0
[  558.309749][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.315674][T16891] 
[  558.318125][T16891] Uninit was stored to memory at:
[  558.323186][T16891]  do_recvmmsg+0xb11/0x2120
[  558.327685][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.332875][T16891]  do_syscall_64+0x54/0xd0
[  558.337308][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.343325][T16891] 
[  558.345648][T16891] Uninit was stored to memory at:
[  558.350864][T16891]  do_recvmmsg+0xb11/0x2120
[  558.355382][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.360611][T16891]  do_syscall_64+0x54/0xd0
[  558.365039][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.371104][T16891] 
[  558.373432][T16891] Uninit was stored to memory at:
[  558.378643][T16891]  do_recvmmsg+0xb11/0x2120
[  558.383173][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.388365][T16891]  do_syscall_64+0x54/0xd0
[  558.393070][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.399107][T16891] 
[  558.401427][T16891] Uninit was stored to memory at:
[  558.406460][T16891]  do_recvmmsg+0xb11/0x2120
[  558.411125][T16891]  __x64_sys_recvmmsg+0x2af/0x500
[  558.416255][T16891]  do_syscall_64+0x54/0xd0
[  558.420880][T16891]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  558.426793][T16891] 
[  558.429291][T16891] Local variable msg_sys created at:
[  558.434572][T16891]  do_recvmmsg+0xc1/0x2120
[  558.439153][T16891]  __x64_sys_recvmmsg+0x2af/0x500
06:06:47 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc018ae85, 0x0)

06:06:47 executing program 4:
prctl$PR_SET_PDEATHSIG(0x1, 0x23)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "962055", 0x8, 0x11, 0x0, @remote, @ipv4={'\x00', '\xff\xff', @empty}, {[], {0x0, 0x0, 0x8}}}}}}, 0x0)

06:06:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsa(&(0x7f0000000000), 0xa15e, 0x240000)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r4 = syz_open_dev$audion(&(0x7f0000000140), 0x1, 0x40000)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f00000000c0)={0x10000, 0x3f, 0x2, 0x4, 0x1ccb})

06:06:47 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x1}}, './file0\x00'})
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req={0x3, 0xffff0000, 0x7fff, 0xc1f}, 0x10)

06:06:47 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x5002, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7, 0xc0, 0x70, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x3, 0x1, 0x1, 0x3, {0x9, 0x21, 0x401, 0x34, 0x1, {0x22, 0x3bd}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x2, 0x3, 0x8}}}}}]}}]}}, &(0x7f00000000c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x201, 0x7, 0x0, 0x80, 0x40, 0x3}, 0x12, &(0x7f0000000080)={0x5, 0xf, 0x12, 0x2, [@ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8f, 0x5, 0x7}]}})
syz_usb_control_io$hid(r1, &(0x7f00000002c0)={0x24, &(0x7f0000000100)={0x40, 0xf, 0x14, {0x14, 0xd, "cdb102e50efb5b0e0ae4b02327f30e30d80b"}}, &(0x7f0000000140)={0x0, 0x3, 0xdd, @string={0xdd, 0x3, "34a0a78a5a7a9e34668f0fed866849db24c0a7f5a4399021f8df5d5c4f1084318a96c8dfa1a9270c4f7bb856a644b0f8f36ca6a953ac19dafd50849efb189c959a597096517c00d00dce93f72d2ea36312d2d81b75329b1951dd477917c664f4d11a0d4fde5470709ef043c69c196ac00a34fa9d9258418a735ca0f3d3aea2bf9b9789c778be6ff8d38215b53bba0b1a65f2bb006f0de23885c42c995b2cbe1d9641267fb608a4714ea421cdad5d434507566357388da426ca651979d3782b11b99991db5c01465e8948aab16689c8a01878ff92103f7c871da6b4"}}, &(0x7f0000000240)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x1, "f0eaca18"}]}}, &(0x7f0000000280)={0x0, 0x21, 0x9, {0x9, 0x21, 0x4d1, 0xc1, 0x1, {0x22, 0xb90}}}}, &(0x7f0000000580)={0x2c, &(0x7f0000000380)={0x40, 0xb, 0xd7, "3b632a916195fe95c7048442e4a909475d66e56531c13c3cd147dbdf23316e867e8283435943174986396763562ba564257173fbdc37de7cccae8f6cc7bf4f96db75f831d0acc0179b35b12e3949e5840fe7606102cb8aadf9364ba79647a25d8376dbe568a7c538662be2a06ffc316b7bf2c66912c96ff4b64fd4da219017488f4f9051ed1534af81c2d0e0cf4cbb1685a8c305043631ef2667e84783571e4df5e0dcb9cd6dbd70a7a36f329c351ce1f502f84d8a9a4b121886d38d018aa7b474952e7e677d665fe1e2bbd2d7f7cb0439906d04a92516"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x5}, &(0x7f00000004c0)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000500)={0x20, 0x1, 0x2a, "9afdedb9e284d82f45a796abe44f3582442108f0f8e8a45648f9701b846bff825858574fce275771c680"}, &(0x7f0000000540)={0x20, 0x3, 0x1, 0x8}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

06:06:47 executing program 4:
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100027516b7108c0d0e008fb60102430109021b00010000000009040000010300000009058467"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, &(0x7f0000000000)={0x40, 0x2, 0xb2, {0xb2, 0xe, "338a5910bfc02da10b655c23f35d48ca5c765aa8ba611c8facd1a8bbdfbebf5bed4e03e611cbdc45770e3140a9e439bbd00f89533182ba1ee537eaf4b5c29f53dd31f2a9ae2c5a9fe028da0acb600406bc80f3fb5a75cfa82d5343c4b5482f73dbbb2e1d7ef486fbdcd370c1106a2f5ae33c7cfd6951eb7cf1c842f0c8dace79197b0c65aa8b02ffdb763a9ce88b2212bd9e731b93a07d74f19843acf4eec251c8bb0d74872fdb2d328d5e2a88514e3d"}}, &(0x7f0000000100)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "01191f195ace88a6248dccbb7183fc06a897ef6fc07693f4b702700ac06147668c1515a371826878681c34111c0cd9252768b4c0cc21ee2248884dc8203a59c2e4a34829a5a18a870b29fb3ab10b44fe0562d086a51899390d11f5b1db80f33239b9e581866a63ecd2b3"}}, &(0x7f0000000180)={0x0, 0x22, 0xc, {[@main=@item_012={0x0, 0x0, 0xa}, @main=@item_012={0x0, 0x0, 0xc}, @local=@item_012={0x1, 0x2, 0x7, 'I'}, @local=@item_012={0x1, 0x2, 0x5, 'g'}, @local=@item_012={0x0, 0x2, 0x2}, @main=@item_4={0x3, 0x0, 0x9, "0c8a61c9"}]}}, &(0x7f00000001c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0xff, 0x1, {0x22, 0x4a5}}}}, &(0x7f00000003c0)={0x2c, &(0x7f0000000240)={0x0, 0x17, 0x56, "b226447c996f14e02d05b2785f3ca947c3288c5c2f660e428f9569f740e59c2e1a812662c003f43672a1eae2cd22890bfb42ce3c02ab9d0f924da2f57e91b33219ef401e5fb8ea1e8686106a5b3ce7157bbef877ca3d"}, &(0x7f00000002c0)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000000340)={0x20, 0x1, 0x27, "75c260f3e6a730020ed6d9d318072e28c6dd88284057dd20757436743de764f0d54e41591c6dc7"}, &(0x7f0000000380)={0x20, 0x3, 0x1, 0x7}})

06:06:48 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req={0x6, 0x1, 0x20, 0x2}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000040)={0x7, [0xa5c5, 0x6a8a3c68, 0x8001, 0xff, 0x1, 0x1000, 0x100000001]})

[  558.979074][   T18] usb 3-1: new high-speed USB device number 108 using dummy_hcd
06:06:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xc020660b, 0x0)

[  559.279855][  T214] usb 5-1: new high-speed USB device number 49 using dummy_hcd
06:06:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r4 = syz_open_dev$vcsu(&(0x7f0000000140), 0x8001, 0x4c100)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  559.529010][  T214] usb 5-1: Using ep0 maxpacket: 16
06:06:48 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x7ffc, 0x7, 0x8000, 0x6}, 0x1c)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f00000006c0)=@req3={0x1, 0xffff, 0x4ef, 0x74, 0xd57, 0x1, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
ioctl$IMCTRLREQ(0xffffffffffffffff, 0x80044945, &(0x7f0000000000)={0x4007, 0x3, 0x7, 0x5})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r2, &(0x7f0000000100)=[{}], 0x1, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2, 0x58033, r2, 0x8000000)
syz_io_uring_setup(0x141e, &(0x7f0000000500)={0x0, 0x310c, 0x0, 0x0, 0xef}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000600)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x12345}, 0x5d5)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
write$sequencer(0xffffffffffffffff, &(0x7f0000000680)=[@raw={0x0, 0x3, "fda04b2b84b3"}, @raw={0xc, 0x0, "fd84ed7f0ab5"}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000640)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$BTRFS_IOC_QUOTA_RESCAN(r4, 0x4040942c, &(0x7f0000000040)={0x0, 0x7fff, [0x2a, 0x7, 0x80000001, 0x0, 0x7ff, 0x3]})
ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f0000000100)={0x10, 0x4, {0x4, @struct={0x1}, 0x0, 0x5, 0x9, 0x0, 0x6, 0x4, 0x34, @struct={0xff, 0x3}, 0x0, 0x10001, [0x401, 0x1b4, 0x7, 0xffffffff, 0x4, 0x9a30]}, {0x8, @usage=0x2, 0x0, 0xfffffffffffff361, 0x1, 0x4, 0x8, 0x5, 0x0, @struct={0x0, 0x3}, 0x2, 0x10001, [0x7, 0x20, 0x80000000, 0x1, 0xff, 0x3]}, {0x0, @usage=0x7, 0x0, 0x7fffffff, 0x1c, 0x3a9c2d93, 0x1, 0x4, 0x80, @struct={0x7fff, 0xb1}, 0x2, 0x6, [0x3ff, 0x7, 0x8001, 0x40f, 0x8000000000000000, 0x7]}, {0x8, 0x3, 0x6}})

[  559.560110][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  559.569469][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.577594][   T18] usb 3-1: Product: syz
[  559.582244][   T18] usb 3-1: Manufacturer: syz
[  559.586948][   T18] usb 3-1: SerialNumber: syz
[  559.678734][  T214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  559.689958][  T214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  559.765250][   T18] usb 3-1: config 0 descriptor??
06:06:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xd000941e, 0x0)

[  559.931613][  T214] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f
[  559.940972][  T214] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=67
[  559.944636][T17006] not chained 470000 origins
[  559.949314][  T214] usb 5-1: Product: syz
[  559.949392][  T214] usb 5-1: Manufacturer: syz
[  559.949468][  T214] usb 5-1: SerialNumber: syz
[  559.968075][T17006] CPU: 0 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  559.976860][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  559.986927][T17006] Call Trace:
[  559.990213][T17006]  dump_stack_lvl+0x1ff/0x28e
[  559.994911][T17006]  dump_stack+0x25/0x28
[  559.999169][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  560.004920][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  560.009942][  T214] usb 5-1: config 0 descriptor??
[  560.010137][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.010172][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  560.026058][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.031274][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  560.037204][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  560.043293][T17006]  ? should_fail+0x75/0x9c0
[  560.047807][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.053016][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  560.059285][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  560.065364][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  560.070652][T17006]  ? _copy_from_user+0x219/0x310
[  560.075598][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.080800][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  560.086612][T17006]  __msan_chain_origin+0xab/0xf0
[  560.091561][T17006]  do_recvmmsg+0xb11/0x2120
[  560.096078][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  560.102336][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.107541][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  560.112834][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  560.119096][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  560.124483][T17006]  ? do_syscall_64+0x54/0xd0
[  560.129081][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.134123][T17006]  do_syscall_64+0x54/0xd0
[  560.138544][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  560.144298][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.150206][T17006] RIP: 0033:0x7f7784b88ae9
[  560.154623][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  560.174237][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  560.182654][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  560.190647][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  560.198702][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  560.206761][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  560.214907][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  560.223744][T17006] Uninit was stored to memory at:
[  560.229072][T17006]  do_recvmmsg+0xb11/0x2120
[  560.230133][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  560.233590][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.233627][T17006]  do_syscall_64+0x54/0xd0
[  560.249893][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.252002][  T214] cm109 5-1:0.0: invalid payload size 0, expected 4
[  560.255814][T17006] 
[  560.255822][T17006] Uninit was stored to memory at:
[  560.255867][T17006]  do_recvmmsg+0xb11/0x2120
[  560.264259][  T214] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input64
[  560.264836][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.264875][T17006]  do_syscall_64+0x54/0xd0
[  560.288323][   T18] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  560.289485][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.309148][T17006] 
[  560.311475][T17006] Uninit was stored to memory at:
[  560.316540][T17006]  do_recvmmsg+0xb11/0x2120
[  560.319161][   T18] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  560.321244][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.321286][T17006]  do_syscall_64+0x54/0xd0
[  560.321313][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.328697][   T18] usb 3-1: media controller created
[  560.333523][T17006] 
[  560.333529][T17006] Uninit was stored to memory at:
[  560.333573][T17006]  do_recvmmsg+0xb11/0x2120
[  560.361121][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.366188][T17006]  do_syscall_64+0x54/0xd0
[  560.370781][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.376707][T17006] 
[  560.379179][T17006] Uninit was stored to memory at:
[  560.384240][T17006]  do_recvmmsg+0xb11/0x2120
[  560.388901][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.393954][T17006]  do_syscall_64+0x54/0xd0
[  560.398554][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.404481][T17006] 
[  560.406803][T17006] Uninit was stored to memory at:
[  560.412021][T17006]  do_recvmmsg+0xb11/0x2120
[  560.416562][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.421771][T17006]  do_syscall_64+0x54/0xd0
[  560.426207][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.432276][T17006] 
[  560.434604][T17006] Uninit was stored to memory at:
[  560.439805][T17006]  do_recvmmsg+0xb11/0x2120
[  560.444333][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.449529][T17006]  do_syscall_64+0x54/0xd0
[  560.453966][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  560.457967][    C1] cm109 5-1:0.0: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  560.460031][T17006] 
[  560.460038][T17006] Local variable msg_sys created at:
[  560.476447][T17006]  do_recvmmsg+0xc1/0x2120
[  560.481024][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  560.573533][   T18] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  561.169423][T17006] not chained 480000 origins
[  561.174156][T17006] CPU: 1 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  561.182941][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  561.193016][T17006] Call Trace:
[  561.196314][T17006]  dump_stack_lvl+0x1ff/0x28e
[  561.201014][T17006]  dump_stack+0x25/0x28
[  561.205195][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  561.210948][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  561.216178][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.221397][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.227239][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.232462][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.238291][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  561.244392][T17006]  ? should_fail+0x75/0x9c0
[  561.248922][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.254143][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  561.260415][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  561.266515][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  561.271818][T17006]  ? _copy_from_user+0x219/0x310
[  561.276794][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.282013][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.287840][T17006]  __msan_chain_origin+0xab/0xf0
[  561.292806][T17006]  do_recvmmsg+0xb11/0x2120
[  561.297342][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  561.303617][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.308843][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.314086][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  561.320364][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  561.326027][T17006]  ? do_syscall_64+0x54/0xd0
[  561.330639][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.335692][T17006]  do_syscall_64+0x54/0xd0
[  561.340127][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  561.345785][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.351716][T17006] RIP: 0033:0x7f7784b88ae9
[  561.356155][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  561.375790][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  561.384231][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  561.392226][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  561.400214][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  561.408205][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  561.416284][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  561.425806][T17006] Uninit was stored to memory at:
[  561.431337][T17006]  do_recvmmsg+0xb11/0x2120
[  561.435957][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.441094][T17006]  do_syscall_64+0x54/0xd0
[  561.445532][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.451536][T17006] 
[  561.453869][T17006] Uninit was stored to memory at:
[  561.459010][T17006]  do_recvmmsg+0xb11/0x2120
[  561.463536][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.468656][T17006]  do_syscall_64+0x54/0xd0
[  561.473099][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.479528][T17006] 
[  561.481861][T17006] Uninit was stored to memory at:
[  561.486916][T17006]  do_recvmmsg+0xb11/0x2120
[  561.491552][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.496687][T17006]  do_syscall_64+0x54/0xd0
[  561.501284][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.507212][T17006] 
[  561.509657][T17006] Uninit was stored to memory at:
[  561.514726][T17006]  do_recvmmsg+0xb11/0x2120
[  561.519416][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.524467][T17006]  do_syscall_64+0x54/0xd0
[  561.529013][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.534934][T17006] 
[  561.537259][T17006] Uninit was stored to memory at:
[  561.542440][T17006]  do_recvmmsg+0xb11/0x2120
[  561.546963][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.552134][T17006]  do_syscall_64+0x54/0xd0
[  561.556572][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.564364][T17006] 
[  561.566691][T17006] Uninit was stored to memory at:
[  561.571902][T17006]  do_recvmmsg+0xb11/0x2120
[  561.576428][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.581603][T17006]  do_syscall_64+0x54/0xd0
[  561.586042][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.592100][T17006] 
[  561.594425][T17006] Uninit was stored to memory at:
[  561.599594][T17006]  do_recvmmsg+0xb11/0x2120
[  561.604120][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.609286][T17006]  do_syscall_64+0x54/0xd0
[  561.613727][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  561.619783][T17006] 
[  561.622111][T17006] Local variable msg_sys created at:
[  561.627390][T17006]  do_recvmmsg+0xc1/0x2120
[  561.631968][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  561.878214][T17006] not chained 490000 origins
[  561.883030][T17006] CPU: 1 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  561.891812][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  561.901888][T17006] Call Trace:
[  561.905178][T17006]  dump_stack_lvl+0x1ff/0x28e
[  561.909883][T17006]  dump_stack+0x25/0x28
[  561.914061][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  561.919906][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  561.925139][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.930350][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.936261][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.941480][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.947309][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  561.953405][T17006]  ? should_fail+0x75/0x9c0
[  561.957929][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.963143][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  561.969413][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  561.975510][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  561.980813][T17006]  ? _copy_from_user+0x219/0x310
[  561.985786][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  561.991016][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  561.996854][T17006]  __msan_chain_origin+0xab/0xf0
[  562.001826][T17006]  do_recvmmsg+0xb11/0x2120
[  562.006369][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  562.012650][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.017875][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.023096][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  562.029378][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  562.034786][T17006]  ? do_syscall_64+0x54/0xd0
[  562.039410][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.044471][T17006]  do_syscall_64+0x54/0xd0
[  562.048920][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  562.054577][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.060501][T17006] RIP: 0033:0x7f7784b88ae9
[  562.064923][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  562.084627][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  562.093057][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  562.101034][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  562.109012][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  562.116993][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  562.124971][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  562.134494][T17006] Uninit was stored to memory at:
[  562.140728][T17006]  do_recvmmsg+0xb11/0x2120
[  562.145270][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.150389][T17006]  do_syscall_64+0x54/0xd0
[  562.154817][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.160878][T17006] 
[  562.163200][T17006] Uninit was stored to memory at:
[  562.168330][T17006]  do_recvmmsg+0xb11/0x2120
[  562.172853][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.178048][T17006]  do_syscall_64+0x54/0xd0
[  562.182505][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.188545][T17006] 
[  562.190876][T17006] Uninit was stored to memory at:
[  562.195936][T17006]  do_recvmmsg+0xb11/0x2120
[  562.200584][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.205632][T17006]  do_syscall_64+0x54/0xd0
[  562.210186][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.216110][T17006] 
[  562.218544][T17006] Uninit was stored to memory at:
[  562.223601][T17006]  do_recvmmsg+0xb11/0x2120
[  562.228238][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.233290][T17006]  do_syscall_64+0x54/0xd0
[  562.237725][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.243775][T17006] 
[  562.246101][T17006] Uninit was stored to memory at:
[  562.251287][T17006]  do_recvmmsg+0xb11/0x2120
[  562.255843][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.257689][    T7] usb 5-1: USB disconnect, device number 49
[  562.261010][T17006]  do_syscall_64+0x54/0xd0
[  562.261044][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.261080][T17006] 
[  562.261085][T17006] Uninit was stored to memory at:
[  562.261126][T17006]  do_recvmmsg+0xb11/0x2120
[  562.261155][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.261186][T17006]  do_syscall_64+0x54/0xd0
[  562.261213][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.261249][T17006] 
[  562.261254][T17006] Uninit was stored to memory at:
[  562.261291][T17006]  do_recvmmsg+0xb11/0x2120
[  562.261320][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.261349][T17006]  do_syscall_64+0x54/0xd0
[  562.261375][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.261411][T17006] 
[  562.261416][T17006] Local variable msg_sys created at:
[  562.261425][T17006]  do_recvmmsg+0xc1/0x2120
[  562.261454][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.261546][   T18] stb0899_attach: Driver disabled by Kconfig
[  562.268775][    T7] cm109 5-1:0.0: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  562.271897][   T18] az6027: no front-end attached
[  562.271897][   T18] 
[  562.428902][   T18] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  562.437673][   T18] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input65
[  562.451654][   T18] dvb-usb: schedule remote query interval to 400 msecs.
[  562.459005][   T18] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  562.651230][    T7] usb 3-1: USB disconnect, device number 108
[  562.666152][T17006] not chained 500000 origins
[  562.671309][T17006] CPU: 1 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  562.680114][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.690187][T17006] Call Trace:
[  562.693479][T17006]  dump_stack_lvl+0x1ff/0x28e
[  562.698186][T17006]  dump_stack+0x25/0x28
[  562.702372][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  562.708126][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  562.713350][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.718571][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  562.724398][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.729612][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  562.735444][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  562.741652][T17006]  ? should_fail+0x75/0x9c0
[  562.746177][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.751399][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  562.757675][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  562.763867][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  562.769172][T17006]  ? _copy_from_user+0x219/0x310
[  562.774136][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.779353][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  562.785194][T17006]  __msan_chain_origin+0xab/0xf0
[  562.790160][T17006]  do_recvmmsg+0xb11/0x2120
[  562.794692][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  562.800965][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.806185][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  562.811491][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  562.817770][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  562.823176][T17006]  ? do_syscall_64+0x54/0xd0
[  562.827789][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.832843][T17006]  do_syscall_64+0x54/0xd0
[  562.837277][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  562.842927][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.848858][T17006] RIP: 0033:0x7f7784b88ae9
[  562.853298][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  562.872926][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  562.881373][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  562.889361][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  562.897350][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  562.905341][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  562.913329][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  562.922920][T17006] Uninit was stored to memory at:
[  562.928398][T17006]  do_recvmmsg+0xb11/0x2120
[  562.932932][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.938099][T17006]  do_syscall_64+0x54/0xd0
[  562.942533][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.948576][T17006] 
[  562.950903][T17006] Uninit was stored to memory at:
[  562.955962][T17006]  do_recvmmsg+0xb11/0x2120
[  562.960605][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.965656][T17006]  do_syscall_64+0x54/0xd0
[  562.970225][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  562.976149][T17006] 
[  562.978601][T17006] Uninit was stored to memory at:
[  562.983661][T17006]  do_recvmmsg+0xb11/0x2120
[  562.988302][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  562.993363][T17006]  do_syscall_64+0x54/0xd0
[  562.997803][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.003866][T17006] 
[  563.006191][T17006] Uninit was stored to memory at:
[  563.011376][T17006]  do_recvmmsg+0xb11/0x2120
[  563.015895][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  563.021070][T17006]  do_syscall_64+0x54/0xd0
[  563.025510][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.031557][T17006] 
[  563.033882][T17006] Uninit was stored to memory at:
[  563.039132][T17006]  do_recvmmsg+0xb11/0x2120
[  563.043650][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  563.048806][T17006]  do_syscall_64+0x54/0xd0
[  563.053237][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.059266][T17006] 
[  563.061588][T17006] Uninit was stored to memory at:
[  563.066636][T17006]  do_recvmmsg+0xb11/0x2120
[  563.071280][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  563.076333][T17006]  do_syscall_64+0x54/0xd0
[  563.080903][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.086833][T17006] 
[  563.089280][T17006] Uninit was stored to memory at:
[  563.094337][T17006]  do_recvmmsg+0xb11/0x2120
[  563.098987][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  563.104031][T17006]  do_syscall_64+0x54/0xd0
[  563.108588][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.114515][T17006] 
[  563.116864][T17006] Local variable msg_sys created at:
[  563.122264][T17006]  do_recvmmsg+0xc1/0x2120
[  563.126789][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  563.673287][    T7] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  563.954584][T17006] not chained 510000 origins
[  563.959686][T17006] CPU: 0 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  563.968472][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  563.978546][T17006] Call Trace:
[  563.981844][T17006]  dump_stack_lvl+0x1ff/0x28e
[  563.986552][T17006]  dump_stack+0x25/0x28
[  563.990732][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  563.996485][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  564.001713][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.006936][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.012773][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.018084][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.023914][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  564.030020][T17006]  ? should_fail+0x75/0x9c0
[  564.034982][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.040246][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.046520][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  564.052621][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  564.057927][T17006]  ? _copy_from_user+0x219/0x310
[  564.062885][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.068103][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.073928][T17006]  __msan_chain_origin+0xab/0xf0
[  564.078894][T17006]  do_recvmmsg+0xb11/0x2120
[  564.083427][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.089701][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.094921][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.100139][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.106500][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  564.111902][T17006]  ? do_syscall_64+0x54/0xd0
[  564.116516][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.121568][T17006]  do_syscall_64+0x54/0xd0
[  564.126008][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  564.131673][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.137598][T17006] RIP: 0033:0x7f7784b88ae9
[  564.142030][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.161658][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  564.170095][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  564.178088][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  564.186164][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  564.194184][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  564.202175][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  564.211383][T17006] Uninit was stored to memory at:
[  564.216461][T17006]  do_recvmmsg+0xb11/0x2120
[  564.221337][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.226402][T17006]  do_syscall_64+0x54/0xd0
[  564.230984][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.236905][T17006] 
[  564.239351][T17006] Uninit was stored to memory at:
[  564.244412][T17006]  do_recvmmsg+0xb11/0x2120
[  564.249036][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.254088][T17006]  do_syscall_64+0x54/0xd0
[  564.258686][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.264607][T17006] 
[  564.266927][T17006] Uninit was stored to memory at:
[  564.272152][T17006]  do_recvmmsg+0xb11/0x2120
[  564.276681][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.281892][T17006]  do_syscall_64+0x54/0xd0
[  564.286328][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.292412][T17006] 
[  564.294741][T17006] Uninit was stored to memory at:
[  564.299956][T17006]  do_recvmmsg+0xb11/0x2120
[  564.304486][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.309692][T17006]  do_syscall_64+0x54/0xd0
[  564.314132][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.320216][T17006] 
[  564.322542][T17006] Uninit was stored to memory at:
[  564.327626][T17006]  do_recvmmsg+0xb11/0x2120
[  564.332339][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.337392][T17006]  do_syscall_64+0x54/0xd0
[  564.341984][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.348065][T17006] 
[  564.350386][T17006] Uninit was stored to memory at:
[  564.355441][T17006]  do_recvmmsg+0xb11/0x2120
[  564.360206][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.365253][T17006]  do_syscall_64+0x54/0xd0
[  564.369880][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.375888][T17006] 
[  564.378344][T17006] Uninit was stored to memory at:
[  564.383401][T17006]  do_recvmmsg+0xb11/0x2120
[  564.388064][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.393117][T17006]  do_syscall_64+0x54/0xd0
[  564.397554][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.403582][T17006] 
[  564.405905][T17006] Local variable msg_sys created at:
[  564.411267][T17006]  do_recvmmsg+0xc1/0x2120
[  564.415714][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.564615][T17006] not chained 520000 origins
[  564.569649][T17006] CPU: 1 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  564.578430][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  564.588475][T17006] Call Trace:
[  564.591759][T17006]  dump_stack_lvl+0x1ff/0x28e
[  564.596429][T17006]  dump_stack+0x25/0x28
[  564.600568][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  564.606397][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  564.611933][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.617149][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.622942][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.628127][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.633994][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  564.640057][T17006]  ? should_fail+0x75/0x9c0
[  564.644578][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.649791][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.656053][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  564.662113][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  564.667385][T17006]  ? _copy_from_user+0x219/0x310
[  564.672328][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.677519][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  564.683312][T17006]  __msan_chain_origin+0xab/0xf0
[  564.688344][T17006]  do_recvmmsg+0xb11/0x2120
[  564.692868][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.699101][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.704287][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  564.709474][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  564.715742][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  564.721123][T17006]  ? do_syscall_64+0x54/0xd0
[  564.725701][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.730722][T17006]  do_syscall_64+0x54/0xd0
[  564.735170][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  564.740790][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.746762][T17006] RIP: 0033:0x7f7784b88ae9
[  564.751167][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.771757][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  564.780160][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  564.788204][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  564.796178][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  564.804135][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  564.812091][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  564.823039][T17006] Uninit was stored to memory at:
[  564.828715][T17006]  do_recvmmsg+0xb11/0x2120
[  564.833240][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.838399][T17006]  do_syscall_64+0x54/0xd0
[  564.842835][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.848888][T17006] 
[  564.851216][T17006] Uninit was stored to memory at:
[  564.856270][T17006]  do_recvmmsg+0xb11/0x2120
[  564.860920][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.865975][T17006]  do_syscall_64+0x54/0xd0
[  564.870537][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.876455][T17006] 
[  564.878930][T17006] Uninit was stored to memory at:
[  564.883976][T17006]  do_recvmmsg+0xb11/0x2120
[  564.888697][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.893753][T17006]  do_syscall_64+0x54/0xd0
[  564.898297][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.904210][T17006] 
[  564.906520][T17006] Uninit was stored to memory at:
[  564.911725][T17006]  do_recvmmsg+0xb11/0x2120
[  564.916236][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.921697][T17006]  do_syscall_64+0x54/0xd0
[  564.926129][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.932174][T17006] 
[  564.934500][T17006] Uninit was stored to memory at:
[  564.939721][T17006]  do_recvmmsg+0xb11/0x2120
[  564.944236][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.949394][T17006]  do_syscall_64+0x54/0xd0
[  564.953818][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.959872][T17006] 
[  564.962203][T17006] Uninit was stored to memory at:
[  564.967238][T17006]  do_recvmmsg+0xb11/0x2120
[  564.971897][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  564.976959][T17006]  do_syscall_64+0x54/0xd0
[  564.981539][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.987454][T17006] 
[  564.990076][T17006] Uninit was stored to memory at:
[  564.995125][T17006]  do_recvmmsg+0xb11/0x2120
[  564.999785][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.004828][T17006]  do_syscall_64+0x54/0xd0
[  565.009378][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.015286][T17006] 
[  565.017591][T17006] Local variable msg_sys created at:
[  565.022979][T17006]  do_recvmmsg+0xc1/0x2120
[  565.027412][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.113564][T17006] not chained 530000 origins
[  565.118345][T17006] CPU: 1 PID: 17006 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  565.127120][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  565.137163][T17006] Call Trace:
[  565.140432][T17006]  dump_stack_lvl+0x1ff/0x28e
[  565.145125][T17006]  dump_stack+0x25/0x28
[  565.149263][T17006]  kmsan_internal_chain_origin+0x8b/0x130
[  565.155003][T17006]  ? unix_dgram_recvmsg+0x20d/0x250
[  565.160209][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.165417][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  565.171211][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.176390][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  565.182183][T17006]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  565.188246][T17006]  ? should_fail+0x75/0x9c0
[  565.192761][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.197987][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  565.204248][T17006]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  565.210325][T17006]  ? kmsan_unpoison_memory+0xa8/0xf0
[  565.215592][T17006]  ? _copy_from_user+0x219/0x310
[  565.220523][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.225749][T17006]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  565.231633][T17006]  __msan_chain_origin+0xab/0xf0
[  565.236556][T17006]  do_recvmmsg+0xb11/0x2120
[  565.241055][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  565.247312][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.252495][T17006]  ? kmsan_get_metadata+0x11b/0x180
[  565.257681][T17006]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  565.263916][T17006]  ? __msan_poison_alloca+0x13c/0x180
[  565.269278][T17006]  ? do_syscall_64+0x54/0xd0
[  565.273854][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.278870][T17006]  do_syscall_64+0x54/0xd0
[  565.283293][T17006]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  565.288916][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.294795][T17006] RIP: 0033:0x7f7784b88ae9
[  565.299194][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  565.318813][T17006] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  565.327241][T17006] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  565.335197][T17006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  565.343155][T17006] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  565.351118][T17006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  565.359076][T17006] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  565.368438][T17006] Uninit was stored to memory at:
[  565.373504][T17006]  do_recvmmsg+0xb11/0x2120
[  565.378352][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.383454][T17006]  do_syscall_64+0x54/0xd0
[  565.388022][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.393940][T17006] 
[  565.396260][T17006] Uninit was stored to memory at:
[  565.401447][T17006]  do_recvmmsg+0xb11/0x2120
[  565.405973][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.411156][T17006]  do_syscall_64+0x54/0xd0
[  565.415594][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.421645][T17006] 
[  565.423970][T17006] Uninit was stored to memory at:
[  565.429168][T17006]  do_recvmmsg+0xb11/0x2120
[  565.433680][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.438845][T17006]  do_syscall_64+0x54/0xd0
[  565.443287][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.449335][T17006] 
[  565.451658][T17006] Uninit was stored to memory at:
[  565.456691][T17006]  do_recvmmsg+0xb11/0x2120
[  565.461364][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.466425][T17006]  do_syscall_64+0x54/0xd0
[  565.470972][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.476888][T17006] 
[  565.479350][T17006] Uninit was stored to memory at:
[  565.484384][T17006]  do_recvmmsg+0xb11/0x2120
[  565.489028][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.494065][T17006]  do_syscall_64+0x54/0xd0
[  565.498627][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.504540][T17006] 
[  565.506844][T17006] Uninit was stored to memory at:
[  565.512007][T17006]  do_recvmmsg+0xb11/0x2120
[  565.516526][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.521712][T17006]  do_syscall_64+0x54/0xd0
[  565.526168][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.532239][T17006] 
[  565.534582][T17006] Uninit was stored to memory at:
[  565.539786][T17006]  do_recvmmsg+0xb11/0x2120
[  565.544300][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.549446][T17006]  do_syscall_64+0x54/0xd0
[  565.553870][T17006]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  565.559939][T17006] 
06:06:54 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:06:54 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080), 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000002540)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @dev}, 0x1c, 0x0}}, {{&(0x7f0000000280)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000000040)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0xd73b}}], 0x18}}], 0x2, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

06:06:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x371fc0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000002c0)={"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"})
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0x8}}, './file0\x00'})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000140)="66b94603000066b8f6ffffff66baff7f00000f300f1c43e066b8010000000f01c10f01df86faba420066b80500000066ef80500e9a36f00fc0360d00642edb165bdb0f0119", 0x45}], 0x1, 0xc3, &(0x7f00000001c0)=[@cstype0, @efer={0x2, 0xe101}], 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r1, 0x4068aea3, &(0x7f0000000200)={0xa8, 0x0, 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:06:54 executing program 4:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0))
r1 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r1, 0x80104592, &(0x7f0000000040)={0x3, 0x1b, 0x0, 0x101, "ed005400000000003ec13e0000000000000000000000000044002000"})
syz_usb_connect(0x0, 0x3e, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xa0, 0x7d, 0x69, 0x40, 0x22b8, 0x6425, 0x6cc1, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0xa}}]}}]}}, 0x0)

06:06:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x2)

06:06:54 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904b49fd21e254ee0a393df2bce145a832a"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  565.562260][T17006] Local variable msg_sys created at:
[  565.567534][T17006]  do_recvmmsg+0xc1/0x2120
[  565.572062][T17006]  __x64_sys_recvmmsg+0x2af/0x500
[  565.714940][T17111] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
06:06:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10001, 0x0, 0x7000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000140)=""/150)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  565.922928][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  565.929729][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
06:06:55 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000010000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
recvmmsg(r1, &(0x7f0000000480)=[{{&(0x7f0000000000)=@ax25={{}, [@netrom, @default, @null, @netrom, @rose, @netrom, @netrom, @default]}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000080)=""/5, 0x5}, {&(0x7f0000000100)=""/16, 0x10}, {&(0x7f0000000140)=""/232, 0xe8}, {&(0x7f0000000240)=""/223, 0xdf}], 0x4, &(0x7f0000000380)=""/210, 0xd2}, 0x849}], 0x1, 0x100, &(0x7f00000004c0))
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)

[  566.028527][   T18] usb 3-1: new high-speed USB device number 109 using dummy_hcd
[  566.048396][    T5] usb 5-1: new high-speed USB device number 50 using dummy_hcd
06:06:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x3)

[  566.364940][T17139] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  566.393676][T17145] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[  566.409962][    T5] usb 5-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=6c.c1
[  566.410091][   T18] usb 3-1: config 0 has an invalid interface number: 180 but max is 0
[  566.419462][    T5] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.427651][   T18] usb 3-1: config 0 has no interface number 0
[  566.427742][   T18] usb 3-1: too many endpoints for config 0 interface 180 altsetting 159: 210, using maximum allowed: 30
[  566.453491][   T18] usb 3-1: config 0 interface 180 altsetting 159 has 0 endpoint descriptors, different from the interface descriptor's value: 210
[  566.467180][   T18] usb 3-1: config 0 interface 180 has no altsetting 0
[  566.599631][    T5] usb 5-1: config 0 descriptor??
[  566.640600][    T5] usb 5-1: bad CDC descriptors
[  566.646117][    T5] usb 5-1: unsupported MDLM descriptors
[  566.652820][    T5] cdc_acm 5-1:0.0: Zero length descriptor references
[  566.660047][    T5] cdc_acm: probe of 5-1:0.0 failed with error -22
06:06:56 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req={0x6, 0x3, 0x4, 0x3}, 0x10)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r4, &(0x7f0000000100)=[{}], 0x1, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x81973000)

06:06:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$pptp(0x18, 0x1, 0x2)
dup3(r0, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(0xffffffffffffffff, 0x891b, &(0x7f0000000080)={'veth0_to_bridge\x00'})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SMI(r3, 0xaeb7)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
connect$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @empty}}, 0x1e)

[  566.871434][    T7] usb 5-1: USB disconnect, device number 50
[  566.920013][   T18] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  566.929345][   T18] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  566.937472][   T18] usb 3-1: Product: syz
[  566.941962][   T18] usb 3-1: Manufacturer: syz
[  566.946659][   T18] usb 3-1: SerialNumber: syz
06:06:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x4)

[  567.103963][   T18] usb 3-1: config 0 descriptor??
[  567.323317][T17174] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  567.463834][T17130] not chained 540000 origins
[  567.468808][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  567.477615][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  567.487690][T17130] Call Trace:
[  567.490979][T17130]  dump_stack_lvl+0x1ff/0x28e
[  567.495682][T17130]  dump_stack+0x25/0x28
[  567.499859][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  567.505623][T17130]  ? exc_page_fault+0x76/0x120
[  567.510414][T17130]  ? asm_exc_page_fault+0x1e/0x30
[  567.515473][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  567.520690][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  567.526959][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  567.533041][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  567.538334][T17130]  ? _copy_from_user+0x219/0x310
[  567.543293][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  567.548496][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  567.554310][T17130]  __msan_chain_origin+0xab/0xf0
[  567.559259][T17130]  do_recvmmsg+0xb11/0x2120
[  567.563784][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  567.574553][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  567.579757][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  567.584964][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  567.591222][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  567.596618][T17130]  ? do_syscall_64+0x54/0xd0
[  567.601234][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.606299][T17130]  do_syscall_64+0x54/0xd0
[  567.610759][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  567.616422][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.622331][T17130] RIP: 0033:0x7f7784b88ae9
[  567.626745][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  567.646358][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  567.654779][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  567.662753][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  567.670729][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  567.678716][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  567.686717][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  567.695790][T17130] Uninit was stored to memory at:
[  567.701198][T17130]  do_recvmmsg+0xb11/0x2120
[  567.705794][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.711020][T17130]  do_syscall_64+0x54/0xd0
[  567.715476][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.721546][T17130] 
[  567.723868][T17130] Uninit was stored to memory at:
[  567.729062][T17130]  do_recvmmsg+0xb11/0x2120
[  567.733583][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.738779][T17130]  do_syscall_64+0x54/0xd0
[  567.743222][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.749319][T17130] 
[  567.751643][T17130] Uninit was stored to memory at:
[  567.756699][T17130]  do_recvmmsg+0xb11/0x2120
[  567.761379][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.766439][T17130]  do_syscall_64+0x54/0xd0
[  567.771015][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.776937][T17130] 
[  567.779411][T17130] Uninit was stored to memory at:
[  567.784488][T17130]  do_recvmmsg+0xb11/0x2120
[  567.789140][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.794189][T17130]  do_syscall_64+0x54/0xd0
[  567.798793][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.804728][T17130] 
[  567.807056][T17130] Uninit was stored to memory at:
[  567.812272][T17130]  do_recvmmsg+0xb11/0x2120
[  567.816795][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.822081][T17130]  do_syscall_64+0x54/0xd0
[  567.826546][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.832606][T17130] 
[  567.834929][T17130] Uninit was stored to memory at:
[  567.840139][T17130]  do_recvmmsg+0xb11/0x2120
[  567.844657][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.849854][T17130]  do_syscall_64+0x54/0xd0
[  567.854285][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.860348][T17130] 
[  567.862673][T17130] Uninit was stored to memory at:
[  567.867728][T17130]  do_recvmmsg+0xb11/0x2120
[  567.872400][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.877450][T17130]  do_syscall_64+0x54/0xd0
[  567.879117][   T18] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  567.882015][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  567.882061][T17130] 
[  567.882067][T17130] Local variable msg_sys created at:
[  567.882076][T17130]  do_recvmmsg+0xc1/0x2120
[  567.882107][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  567.892522][   T18] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  567.924767][   T18] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  568.079388][    T5] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  568.396737][T17130] not chained 550000 origins
[  568.402003][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  568.410796][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  568.421042][T17130] Call Trace:
[  568.424335][T17130]  dump_stack_lvl+0x1ff/0x28e
[  568.429046][T17130]  dump_stack+0x25/0x28
[  568.433241][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  568.439000][T17130]  ? unix_dgram_recvmsg+0x20d/0x250
[  568.444228][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.449477][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  568.455400][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.460623][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  568.466451][T17130]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  568.472554][T17130]  ? should_fail+0x75/0x9c0
[  568.477082][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.482307][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  568.488585][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  568.494689][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  568.499999][T17130]  ? _copy_from_user+0x219/0x310
[  568.504972][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.510197][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  568.516030][T17130]  __msan_chain_origin+0xab/0xf0
[  568.521002][T17130]  do_recvmmsg+0xb11/0x2120
[  568.525536][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  568.531819][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.537046][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  568.542262][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  568.548541][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  568.553946][T17130]  ? do_syscall_64+0x54/0xd0
[  568.558565][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.563709][T17130]  do_syscall_64+0x54/0xd0
[  568.568238][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  568.573912][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.580617][T17130] RIP: 0033:0x7f7784b88ae9
[  568.585049][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  568.604675][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  568.613115][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  568.621113][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  568.629234][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  568.637224][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  568.645215][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  568.654176][T17130] Uninit was stored to memory at:
[  568.662182][T17130]  do_recvmmsg+0xb11/0x2120
[  568.666739][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.671944][T17130]  do_syscall_64+0x54/0xd0
[  568.676428][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.682503][T17130] 
[  568.684833][T17130] Uninit was stored to memory at:
[  568.690049][T17130]  do_recvmmsg+0xb11/0x2120
[  568.694571][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.699786][T17130]  do_syscall_64+0x54/0xd0
[  568.704242][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.710312][T17130] 
[  568.712639][T17130] Uninit was stored to memory at:
[  568.717716][T17130]  do_recvmmsg+0xb11/0x2120
[  568.722411][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.727471][T17130]  do_syscall_64+0x54/0xd0
[  568.732064][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.738132][T17130] 
[  568.740469][T17130] Uninit was stored to memory at:
[  568.745614][T17130]  do_recvmmsg+0xb11/0x2120
[  568.750289][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.755536][T17130]  do_syscall_64+0x54/0xd0
[  568.760136][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.766058][T17130] 
[  568.768534][T17130] Uninit was stored to memory at:
[  568.773590][T17130]  do_recvmmsg+0xb11/0x2120
[  568.778262][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.783321][T17130]  do_syscall_64+0x54/0xd0
[  568.787745][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.793826][T17130] 
[  568.796155][T17130] Uninit was stored to memory at:
[  568.801327][T17130]  do_recvmmsg+0xb11/0x2120
[  568.805858][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.811062][T17130]  do_syscall_64+0x54/0xd0
[  568.815508][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.821661][T17130] 
[  568.824073][T17130] Uninit was stored to memory at:
[  568.829271][T17130]  do_recvmmsg+0xb11/0x2120
[  568.833795][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.839070][T17130]  do_syscall_64+0x54/0xd0
[  568.843504][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  568.849580][T17130] 
[  568.851905][T17130] Local variable msg_sys created at:
[  568.857185][T17130]  do_recvmmsg+0xc1/0x2120
[  568.861785][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  568.978817][    T5] usb 5-1: unable to read config index 0 descriptor/all
[  568.985999][    T5] usb 5-1: can't read configurations, error -71
[  569.155095][T17130] not chained 560000 origins
[  569.160087][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  569.168876][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  569.178941][T17130] Call Trace:
[  569.182229][T17130]  dump_stack_lvl+0x1ff/0x28e
[  569.186949][T17130]  dump_stack+0x25/0x28
[  569.191125][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  569.196885][T17130]  ? unix_dgram_recvmsg+0x20d/0x250
[  569.202113][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.207614][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.213443][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.218662][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.224489][T17130]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  569.230585][T17130]  ? should_fail+0x75/0x9c0
[  569.235106][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.240323][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.246590][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  569.252685][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  569.257988][T17130]  ? _copy_from_user+0x219/0x310
[  569.262943][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.268160][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.273989][T17130]  __msan_chain_origin+0xab/0xf0
[  569.278957][T17130]  do_recvmmsg+0xb11/0x2120
[  569.283485][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.289756][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.294974][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.300199][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.306466][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  569.311865][T17130]  ? do_syscall_64+0x54/0xd0
[  569.316470][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.321536][T17130]  do_syscall_64+0x54/0xd0
[  569.325976][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  569.331629][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.337548][T17130] RIP: 0033:0x7f7784b88ae9
[  569.341970][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  569.363592][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  569.372028][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  569.380018][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  569.388004][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  569.395987][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  569.403972][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  569.413008][T17130] Uninit was stored to memory at:
[  569.418323][T17130]  do_recvmmsg+0xb11/0x2120
[  569.422853][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.427906][T17130]  do_syscall_64+0x54/0xd0
[  569.432511][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.438589][T17130] 
[  569.440915][T17130] Uninit was stored to memory at:
[  569.445969][T17130]  do_recvmmsg+0xb11/0x2120
[  569.450647][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.455738][T17130]  do_syscall_64+0x54/0xd0
[  569.460331][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.466257][T17130] 
[  569.468722][T17130] Uninit was stored to memory at:
[  569.473781][T17130]  do_recvmmsg+0xb11/0x2120
[  569.478441][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.483488][T17130]  do_syscall_64+0x54/0xd0
[  569.487924][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.493978][T17130] 
[  569.496299][T17130] Uninit was stored to memory at:
[  569.501510][T17130]  do_recvmmsg+0xb11/0x2120
[  569.506032][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.511228][T17130]  do_syscall_64+0x54/0xd0
[  569.515657][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.522191][T17130] 
[  569.524515][T17130] Uninit was stored to memory at:
[  569.529758][T17130]  do_recvmmsg+0xb11/0x2120
[  569.534277][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.539476][T17130]  do_syscall_64+0x54/0xd0
[  569.543909][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.550014][T17130] 
[  569.552336][T17130] Uninit was stored to memory at:
[  569.557390][T17130]  do_recvmmsg+0xb11/0x2120
[  569.562113][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.567163][T17130]  do_syscall_64+0x54/0xd0
[  569.571799][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.577808][T17130] 
[  569.580329][T17130] Uninit was stored to memory at:
[  569.585388][T17130]  do_recvmmsg+0xb11/0x2120
[  569.590097][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.595144][T17130]  do_syscall_64+0x54/0xd0
[  569.599876][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.605800][T17130] 
[  569.608303][T17130] Local variable msg_sys created at:
[  569.613670][T17130]  do_recvmmsg+0xc1/0x2120
[  569.618281][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.781450][T17130] not chained 570000 origins
[  569.786078][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  569.794946][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  569.805017][T17130] Call Trace:
[  569.808302][T17130]  dump_stack_lvl+0x1ff/0x28e
[  569.813008][T17130]  dump_stack+0x25/0x28
[  569.817183][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  569.822933][T17130]  ? unix_dgram_recvmsg+0x20d/0x250
[  569.828153][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.833376][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.839229][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.844448][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.850276][T17130]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  569.856384][T17130]  ? should_fail+0x75/0x9c0
[  569.860904][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.866125][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.872394][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  569.878491][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  569.883796][T17130]  ? _copy_from_user+0x219/0x310
[  569.888935][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.894152][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  569.899980][T17130]  __msan_chain_origin+0xab/0xf0
[  569.904949][T17130]  do_recvmmsg+0xb11/0x2120
[  569.909481][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.915754][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.920973][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  569.926189][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  569.932461][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  569.937865][T17130]  ? do_syscall_64+0x54/0xd0
[  569.942480][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  569.947539][T17130]  do_syscall_64+0x54/0xd0
[  569.951977][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  569.957632][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  569.963555][T17130] RIP: 0033:0x7f7784b88ae9
[  569.967986][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  569.987609][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  569.996046][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  570.004039][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  570.012027][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  570.020015][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  570.028003][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  570.040044][T17130] Uninit was stored to memory at:
[  570.045119][T17130]  do_recvmmsg+0xb11/0x2120
[  570.050445][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.055605][T17130]  do_syscall_64+0x54/0xd0
[  570.060143][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.066060][T17130] 
[  570.066859][   T18] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  570.068471][T17130] Uninit was stored to memory at:
[  570.068519][T17130]  do_recvmmsg+0xb11/0x2120
[  570.068550][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.068581][T17130]  do_syscall_64+0x54/0xd0
[  570.068610][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.068645][T17130] 
[  570.068649][T17130] Uninit was stored to memory at:
[  570.068686][T17130]  do_recvmmsg+0xb11/0x2120
[  570.068717][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.068751][T17130]  do_syscall_64+0x54/0xd0
[  570.068779][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.068822][T17130] 
[  570.068828][T17130] Uninit was stored to memory at:
[  570.068865][T17130]  do_recvmmsg+0xb11/0x2120
[  570.068895][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.068928][T17130]  do_syscall_64+0x54/0xd0
[  570.068953][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.068991][T17130] 
[  570.068996][T17130] Uninit was stored to memory at:
[  570.069033][T17130]  do_recvmmsg+0xb11/0x2120
[  570.069064][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.069097][T17130]  do_syscall_64+0x54/0xd0
[  570.069124][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.069162][T17130] 
[  570.069167][T17130] Uninit was stored to memory at:
[  570.069207][T17130]  do_recvmmsg+0xb11/0x2120
[  570.069238][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.069272][T17130]  do_syscall_64+0x54/0xd0
[  570.069300][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.069336][T17130] 
[  570.069341][T17130] Uninit was stored to memory at:
[  570.069380][T17130]  do_recvmmsg+0xb11/0x2120
[  570.069411][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.069444][T17130]  do_syscall_64+0x54/0xd0
[  570.069472][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  570.069510][T17130] 
[  570.069516][T17130] Local variable msg_sys created at:
[  570.069526][T17130]  do_recvmmsg+0xc1/0x2120
[  570.069556][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  570.264908][   T18] dvb_usb_az6027: probe of 3-1:0.180 failed with error -2
[  570.732994][   T18] usb 3-1: USB disconnect, device number 109
[  570.839175][T17130] not chained 580000 origins
[  570.843801][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  570.852583][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  570.862654][T17130] Call Trace:
[  570.865960][T17130]  dump_stack_lvl+0x1ff/0x28e
[  570.870687][T17130]  dump_stack+0x25/0x28
[  570.874865][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  570.880619][T17130]  ? unix_dgram_recvmsg+0x20d/0x250
[  570.885841][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.891150][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  570.896981][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.902228][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  570.908057][T17130]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  570.914335][T17130]  ? should_fail+0x75/0x9c0
[  570.918864][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.924085][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  570.930370][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  570.936469][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  570.942299][T17130]  ? _copy_from_user+0x219/0x310
[  570.947268][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.952746][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  570.958576][T17130]  __msan_chain_origin+0xab/0xf0
[  570.963537][T17130]  do_recvmmsg+0xb11/0x2120
[  570.968073][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  570.974338][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.979596][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  570.984821][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  570.991115][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  570.996522][T17130]  ? do_syscall_64+0x54/0xd0
[  571.001164][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.006246][T17130]  do_syscall_64+0x54/0xd0
[  571.010690][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  571.016449][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.022381][T17130] RIP: 0033:0x7f7784b88ae9
[  571.026823][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  571.046452][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  571.054926][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  571.062889][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  571.070847][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  571.078800][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  571.086756][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  571.096047][T17130] Uninit was stored to memory at:
[  571.101404][T17130]  do_recvmmsg+0xb11/0x2120
[  571.105929][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.111132][T17130]  do_syscall_64+0x54/0xd0
[  571.115665][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.121750][T17130] 
[  571.124075][T17130] Uninit was stored to memory at:
[  571.129285][T17130]  do_recvmmsg+0xb11/0x2120
[  571.133805][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.139014][T17130]  do_syscall_64+0x54/0xd0
[  571.143449][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.149529][T17130] 
[  571.151854][T17130] Uninit was stored to memory at:
[  571.156989][T17130]  do_recvmmsg+0xb11/0x2120
[  571.161650][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.166696][T17130]  do_syscall_64+0x54/0xd0
[  571.171249][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.177164][T17130] 
[  571.179666][T17130] Uninit was stored to memory at:
[  571.184705][T17130]  do_recvmmsg+0xb11/0x2120
[  571.189448][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.194542][T17130]  do_syscall_64+0x54/0xd0
[  571.199237][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.205164][T17130] 
[  571.207472][T17130] Uninit was stored to memory at:
[  571.212652][T17130]  do_recvmmsg+0xb11/0x2120
[  571.217173][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.222335][T17130]  do_syscall_64+0x54/0xd0
[  571.226785][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.232864][T17130] 
[  571.235187][T17130] Uninit was stored to memory at:
[  571.240384][T17130]  do_recvmmsg+0xb11/0x2120
[  571.244896][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.250103][T17130]  do_syscall_64+0x54/0xd0
[  571.254532][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.260574][T17130] 
[  571.262891][T17130] Uninit was stored to memory at:
[  571.267917][T17130]  do_recvmmsg+0xb11/0x2120
[  571.272647][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.277688][T17130]  do_syscall_64+0x54/0xd0
[  571.282229][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.288298][T17130] 
[  571.290620][T17130] Local variable msg_sys created at:
[  571.295894][T17130]  do_recvmmsg+0xc1/0x2120
[  571.300445][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.397421][T17130] not chained 590000 origins
[  571.402359][T17130] CPU: 0 PID: 17130 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  571.411147][T17130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  571.421187][T17130] Call Trace:
[  571.424466][T17130]  dump_stack_lvl+0x1ff/0x28e
[  571.429129][T17130]  dump_stack+0x25/0x28
[  571.433267][T17130]  kmsan_internal_chain_origin+0x8b/0x130
[  571.438977][T17130]  ? unix_dgram_recvmsg+0x20d/0x250
[  571.444179][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.449359][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  571.455166][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.460346][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  571.466133][T17130]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  571.472212][T17130]  ? should_fail+0x75/0x9c0
[  571.476699][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.481889][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  571.488117][T17130]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  571.494180][T17130]  ? kmsan_unpoison_memory+0xa8/0xf0
[  571.499445][T17130]  ? _copy_from_user+0x219/0x310
[  571.504373][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.509742][T17130]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  571.515540][T17130]  __msan_chain_origin+0xab/0xf0
[  571.520474][T17130]  do_recvmmsg+0xb11/0x2120
[  571.524965][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  571.531195][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.536375][T17130]  ? kmsan_get_metadata+0x11b/0x180
[  571.541573][T17130]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  571.547815][T17130]  ? __msan_poison_alloca+0x13c/0x180
[  571.553174][T17130]  ? do_syscall_64+0x54/0xd0
[  571.557763][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.562800][T17130]  do_syscall_64+0x54/0xd0
[  571.567212][T17130]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  571.572830][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.578731][T17130] RIP: 0033:0x7f7784b88ae9
[  571.583151][T17130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  571.602935][T17130] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  571.611335][T17130] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  571.619296][T17130] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  571.627251][T17130] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  571.635309][T17130] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  571.643334][T17130] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  571.652230][T17130] Uninit was stored to memory at:
[  571.657307][T17130]  do_recvmmsg+0xb11/0x2120
[  571.665253][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.670515][T17130]  do_syscall_64+0x54/0xd0
[  571.674958][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.681496][T17130] 
[  571.683826][T17130] Uninit was stored to memory at:
[  571.689043][T17130]  do_recvmmsg+0xb11/0x2120
[  571.693568][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.698779][T17130]  do_syscall_64+0x54/0xd0
[  571.703314][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.709392][T17130] 
[  571.711794][T17130] Uninit was stored to memory at:
[  571.716822][T17130]  do_recvmmsg+0xb11/0x2120
[  571.721543][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.726589][T17130]  do_syscall_64+0x54/0xd0
[  571.731210][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.737139][T17130] 
[  571.739611][T17130] Uninit was stored to memory at:
[  571.744748][T17130]  do_recvmmsg+0xb11/0x2120
[  571.749437][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.754482][T17130]  do_syscall_64+0x54/0xd0
[  571.759073][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.765195][T17130] 
[  571.767500][T17130] Uninit was stored to memory at:
[  571.772687][T17130]  do_recvmmsg+0xb11/0x2120
[  571.777213][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.782400][T17130]  do_syscall_64+0x54/0xd0
[  571.786830][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.792873][T17130] 
[  571.795193][T17130] Uninit was stored to memory at:
[  571.800429][T17130]  do_recvmmsg+0xb11/0x2120
[  571.805068][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.810307][T17130]  do_syscall_64+0x54/0xd0
[  571.814745][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.820790][T17130] 
[  571.823111][T17130] Uninit was stored to memory at:
[  571.828320][T17130]  do_recvmmsg+0xb11/0x2120
[  571.832842][T17130]  __x64_sys_recvmmsg+0x2af/0x500
[  571.838021][T17130]  do_syscall_64+0x54/0xd0
[  571.842617][T17130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  571.848663][T17130] 
[  571.850989][T17130] Local variable msg_sys created at:
[  571.856261][T17130]  do_recvmmsg+0xc1/0x2120
[  571.860862][T17130]  __x64_sys_recvmmsg+0x2af/0x500
06:07:01 executing program 5:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000050700"/20, @ANYRES32=0x0, @ANYBLOB="4518000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32, @ANYBLOB="3a977834a88fd7d92bdf9e6a0cd420e2f6249b03e7d6d1c0f56e80be346b7f8df31130c1aa5ba1df877d5f9274f45a03e6bb65fdd1fd818e8fb7fad55342881b9dec813f304f2855606f6f216245d0b2001f0574873dba62ead4855729fe33ea6eb02d20cbdd621a92e0322ba2df75f928ceacd0c505fbb35b5beea3c1bd2d93365d98e6ee24e90aa5d35cf0b2e155798c77074126b1f4e9060fab9f354f439fc837b7c517359fcad2d37331aff3088eb8d724443d2dd42d265b395f6a020c6f329566beea5ae11e4ef4cb693f8fa4ad"], 0x3c}}, 0x0)

06:07:01 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
socket$inet(0x2, 0x5, 0x3bd05263)
preadv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/122, 0x7a}, {&(0x7f0000000100)=""/192, 0xc0}, {&(0x7f0000000080)=""/13, 0xd}, {&(0x7f00000001c0)=""/205, 0xcd}, {&(0x7f00000002c0)=""/116, 0x74}, {&(0x7f0000000340)=""/227, 0xe3}], 0x6, 0x4b63, 0x6a)

06:07:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r3, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000140)="0f01c20f08baf80c66b8b4f66e8866efbafc0c66b89b28675466ef26673e660f38023f6f26660f38813c66660f3a62ff83b84d008ed80f01c366b9800000c00f326635002000000f30", 0x49}], 0x1, 0x20, &(0x7f00000000c0)=[@cstype3={0x5, 0xe}, @dstype3={0x7, 0x5}], 0x2)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

06:07:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x5)

06:07:01 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000011c0)={'wlan1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4e}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x3c}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=@ipv4_getnetconf={0x34, 0x52, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x70}, @NETCONFA_IFINDEX={0x8}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x2}, @NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x845}, 0x40)
writev(r3, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000010000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
accept(r3, &(0x7f0000000040)=@l2tp={0x2, 0x0, @empty}, &(0x7f00000000c0)=0x80)
r4 = signalfd(r3, &(0x7f0000000100)={[0x9a6]}, 0x8)
sendmsg$nl_route(r4, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=@mpls_getnetconf={0x1c, 0x52, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8000}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000)

06:07:01 executing program 2:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="120104000f886b40d90f2a0073d3010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000340)={0x0, 0x0, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000090018105e04da0500000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io(r1, &(0x7f00000003c0)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x0, 0x0, 0x0, '\b\x00', "006cf200"}}, 0x0}, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000d80)={0x2c, &(0x7f0000000bc0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000400000068"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000140)={0x2c, &(0x7f0000000280)={0x0, 0x0, 0x4, '\t\x00\x00\x00'}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, &(0x7f0000000680)={0x24, &(0x7f00000004c0)={0x20, 0x7, 0x4b, {0x4b, 0x3, "856204944179c6ee563b04a4e8cc6bb90909f0606f20a9a99dc589aa5dd74b1aafce98aaf509774926835e1f0fde1d8525556b57b9bc87bf59c45666af2d8407417009718245c78e6f"}}, &(0x7f00000005c0)={0x0, 0x3, 0x95, @string={0x95, 0x3, "2d018905e852121bbaee88662dbe1033ef74efcdfcb96ebfa863600b950d609c14c1b081609c89d4e9a8dd7557e54a46272ee32ef48353c5340de1cf64fb516202fb0a5ecc4c838c05ae2b312ee4f63e9206bac86343ba5004ce910c4ad4405d5e63cd6abc5682c03da4e905164c0433e5d0bd7511184aa007a77ab886b7b8dc1dacb2e9bba4f12e2d8ab35052cc4f146e6547"}}, &(0x7f0000000440)={0x0, 0x22, 0x16, {[@main=@item_012={0x1, 0x0, 0xa, 'e'}, @global=@item_012={0x1, 0x1, 0x6, "e4"}, @global=@item_4={0x3, 0x1, 0xa, "9d7d0a8f"}, @global, @local=@item_012={0x0, 0x2, 0x1}, @local=@item_4={0x3, 0x2, 0x8, "73d93583"}, @local=@item_4={0x3, 0x2, 0x3, "760e95c4"}, @global=@item_012={0x0, 0x1, 0x4}]}}, &(0x7f0000000540)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x37, 0x1, {0x22, 0x3bb}}}}, &(0x7f0000000880)={0x2c, &(0x7f00000006c0)={0x0, 0xa, 0x1c, "c87fb3daa10a90ab4fbbc47e2bb7a5035fa1b5f9436278b9ae2e1233"}, &(0x7f0000000700)={0x0, 0xa, 0x1, 0xc5}, &(0x7f0000000740)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000000780)={0x20, 0x1, 0xb6, "5b03f5d7177d081d8eb898e16b5f6040bb3c818fbd9d38c382af1311bb179a39788f7eea4a8b55bc9c603dc7718280980dd179447f76108b8484c5493de80302002dbaf31a864a5c2d9a3726d4a21e92ecc7d2c63b8ef7733326f0cf05cb5985254d3bfde6ce78ef6d225023a5674a86e326bf9f8bee4dd72ee9e224bcd226add298d71425af42d5ae816f96ded2977fdcd20142233e0757c4e998e17cbf072230bce17017246311ffa698269b5d9b2540a5256568b6"}, &(0x7f0000000840)={0x20, 0x3, 0x1, 0x1f}})
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000ac0)={0x24, &(0x7f0000000980)={0x0, 0x10, 0x58, {0x58, 0xf, "2d5e233e7606379aaf3339bde4916affccf9656244b46102dbabbc65c7dc0d6ec2267839b7d4a994dd81f3d0b59cd33b8bdb4f281941d2268987fc188786799fd37f265045c201c50a698319c2858bd69d6a01992245"}}, &(0x7f0000000a00)={0x0, 0x3, 0x4, @string={0x4, 0x3, "da17"}}, &(0x7f0000000a40)={0x0, 0x22, 0xe, {[@local=@item_4={0x3, 0x2, 0x2, "aae53bf4"}, @main=@item_012={0x0, 0x0, 0x9}, @global=@item_4={0x3, 0x1, 0x8, "cdb0f3ce"}, @main=@item_012={0x0, 0x0, 0xb}, @main=@item_012={0x1, 0x0, 0x9, '6'}]}}, &(0x7f0000000a80)={0x0, 0x21, 0x9, {0x9, 0x21, 0x9, 0x3, 0x1, {0x22, 0x8c4}}}}, &(0x7f0000000e00)={0x2c, &(0x7f0000000b00)={0x40, 0x15, 0xec, "27860dc1e872b1067ea8d19bc05a204e89171096594f38b9f0aef40df9ab49f2172295cd11d471452a46b8217aa20d99dab3c6c241db8bbe0905fa92bd2615bd0596e3742b89f5bf5833a550c17d48bbcf36ad203cccd49102d897d1d65b50a8f8eae978b536300e8969bce20b955b79d35bb5a3bbc2f6c6cbcf8742728e19caf88b8c1cd0248ee7738a2d240d74c993e3d5fe69423a8d459dae26c2423a11d4bbba28e4f7a5c945be4424235231da9162e82d50c748b8eb6178363d9042be5a6e3b16b20216f16755456b7083a601a528c35993299bec431d6b65df65088549d43aa469e4c15665de886b09"}, &(0x7f0000000c00)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000000c40)={0x0, 0x8, 0x1, 0xc9}, &(0x7f0000000c80)={0x20, 0x1, 0xcb, "e78597a0354bbfef418404997d802f281f38646e10c4e99f6cf9982e1cf7eef557755eb92e2945170b7f2c3cec812cd23ac21cedee523621ad4311143011e8c55ebd801b104925024a5e94f34869eb0ff7e2c1680921fd22ccd47ee2e8266fffb851ae0844a0199fd5d325169e299b45e98a75a9f19ae6f2117ea08d20f30a3cf39f6fb850c8fb681c2b348635988aafa7ed021b425676188ff046411b2826c2db518fac3e1d2ed1082d363755013f676ff7fa302f1c9155fd7e7b28b68e52fdd3f7c42de1b2c92363a7c6"}, &(0x7f0000000dc0)={0x20, 0x3, 0x1, 0x3f}})
syz_usb_control_io$hid(r1, &(0x7f0000000100)={0x24, &(0x7f0000000000)={0x20, 0x3, 0x1d, {0x1d, 0x5, "cfba8e17a3ac42a6401811a63a5eb9304b9155205fa73dd69bf7b3"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x427}}, &(0x7f0000000080)={0x0, 0x22, 0x1f, {[@local=@item_4={0x3, 0x2, 0x7, "599ec0e2"}, @local=@item_4={0x3, 0x2, 0x8, "114b43be"}, @global=@item_012={0x1, 0x1, 0x0, "02"}, @global=@item_4={0x3, 0x1, 0x0, "374a4c82"}, @main=@item_4={0x3, 0x0, 0xb, "170bfc8b"}, @main=@item_012={0x1, 0x0, 0xa, ')'}, @local, @local=@item_012={0x0, 0x2, 0x1}, @main=@item_012={0x2, 0x0, 0x4, "ec42"}, @local=@item_012={0x1, 0x2, 0x4, "e1"}]}}, &(0x7f00000000c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x467}}}}, &(0x7f0000000300)={0x2c, &(0x7f0000000140)={0x0, 0x13, 0xef, "02695677fcf2e12040eb07f91583ae8a59ec3ec16b111ad14ffb12d3382079089afd2ae15d7709ac43ad9ed498cc816a2d4ce6c1fb20b4c2b49372f1fc157b8659d80fae65d6cb1630da4bd2b871037c9f1f8a6622e17c4acb665e11c29173f393e9f381b5cd4ef3b2749646377586fb956f32628cbf15e63e5ddc94e10908872086fbade3cb9ce6b3eb287d6952c5d7e2032a538a0dc9c91c1d149009e7b8a5a3b085ea6719d8b12ddc1961662cedcbbc95f0c543b6ebb42e026b9e9d9b72efe764a1546fe6a122694baa26b1a3737424d78027fb64ad9f808ac3fca9a9c33d2e3ed5a191820acf73abbcf4bf538b"}, &(0x7f0000000240)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000280)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000380)={0x20, 0x1, 0xb6, "428f01031daa90f04f25ee9a35441c37517f715640302dbaa12e64b5629084b6696e074aaa88acb7849bf4381d83776cb4ee8bc3fc38e621134221c72e428900441afde9e1b6c035b58ce71c82ed86cdfaa4da650f19e91ee145897782ffa1d741a634d281ece9786830e617e35489724ca95fffe65920270eb8ad2771227ed8ca654338c51cfac17da558a3f12bf35eada80a7746e19cb8e1581f76bc8636b13341e9f28de9fd3defe0ebd8a2a7ac93fb4be4c99690"}, &(0x7f00000002c0)={0x20, 0x3, 0x1, 0x6}})

[  572.067703][T17224] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  572.129699][T17238] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  572.182696][T17224] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  572.209983][T17244] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  572.303700][T17225] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  572.348716][    T5] usb 3-1: new high-speed USB device number 110 using dummy_hcd
06:07:01 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0xd, 0x4, 0x4, 0x100000001, 0x0, r0}, 0x2c)
r2 = dup3(r1, r0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001100)={r1, &(0x7f0000000040)="adf42cd6eadc92ae7698674d6041b3f434029ce4e86e985c152aacbe6bdca75dd6e43f65fcab1bb13f4e8a128b026ce2137cd003b71d03e37a5ac4511d6bacbf5c3806ef8c8011c94277c44f17ef25980e70d50023a7d95db0773f3201649d94799e7810e97d19283a3eb866fb22ec301823b45cd2979bd28391cd62967af0e00958944afbb4debbd086c93c", &(0x7f0000000100)=""/4096}, 0x20)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0x5, &(0x7f0000000000)=@req={0x2, 0x9, 0x5, 0xf1}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_print_times', 0x80c05, 0x0)
write$FUSE_NOTIFY_DELETE(r4, &(0x7f0000000080)={0x38, 0x6, 0x0, {0x0, 0x0, 0xf, 0x0, '.-\x0eR\x15\xa1\x0fi\x05\x8b}`.%1\x8a\xca\xb0\xd3R\xee`\x9f\x8d.~\xd6\xa9^\x11_\x83\x7f3\xac\x90\xb5\xd1\xba\xb6\x9d\xb8f\x13\xa9\xf7\x81\xcb\x7f\xbb\x19\xf7Jy\x8aWlt\x023=^XcXf\x9aptc\x05\x15\xb4\xa6\xe9'}}, 0x21)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000010000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)=@newqdisc={0x24, 0x24, 0x4, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0xffe9}, {0xd, 0xfffe}, {0x7, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
bind(r5, &(0x7f0000001180)=@l2tp6={0xa, 0x0, 0x40000006, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9, 0x4}, 0x80)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0xa000000d})
epoll_wait(r7, &(0x7f0000000100)=[{}], 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000001140)={{0x1, 0x1, 0x18, r7, {0x5}}, './file0\x00'})

06:07:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x6)

06:07:01 executing program 4:
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
memfd_create(&(0x7f0000000080)='^\x92\x88jo\x98Y+\xe1k\xf2\xc6\x12\xd8\x98c:d\xc2q\xd9Xk\xbd\x80K\xd4W\xdf&\xdb\xc5\xbc\xb3\\\xf9\xd3\xce\xe3\x81\x97\xee\xff\xa9b\x03\xb5@\x82\x05\xa1O#\x89\xb0\xe1\xe0\xa0#\f\xfa-\x033\xb1\x86\x96Zg\r|/\x9c\xf7@y\xf8c2\xe7\'\xec\ag\x94\x9f\xa0\xcf\xca\xfb\x02\x00'/103, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x4e23, 0x80000000, @empty}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='lp\x00', 0x3)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0x900}, 0x1c)
connect$inet6(r0, &(0x7f0000000500)={0xa, 0x4e21, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0xce}, 0x1c)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x2)

06:07:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x60042, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0xa000000d})
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000))
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SMI(r4, 0xaeb7)
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[  572.869263][    T5] usb 3-1: New USB device found, idVendor=0fd9, idProduct=002a, bcdDevice=d3.73
[  572.878773][    T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  572.887053][    T5] usb 3-1: Product: syz
[  572.891692][    T5] usb 3-1: Manufacturer: syz
[  572.896493][    T5] usb 3-1: SerialNumber: syz
06:07:02 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x14700, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000040)={'syztnl1\x00', <r2=>0x0, 0x1, 0x700, 0xa85, 0xffff, {{0x6, 0x4, 0x0, 0x26, 0x18, 0x64, 0x0, 0xff, 0x29, 0x0, @remote, @local, {[@ra={0x94, 0x4}]}}}}})
bind$packet(r1, &(0x7f0000000140)={0x11, 0x3, r2, 0x1, 0x93, 0x6, @link_local}, 0x14)
bind$packet(r0, &(0x7f0000000200)={0x11, 0x10, r2, 0x1, 0x40}, 0x14)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r2, 0x1, 0x6, @random="39e7cb937fd0"}, 0x10)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0}, &(0x7f00000001c0)=0x14)
bind$packet(r0, &(0x7f0000000240)={0x11, 0xfe, r3, 0x1, 0x7f, 0x6, @remote}, 0x14)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
socket$inet(0x2, 0x808, 0x3)

[  573.072843][    T5] usb 3-1: config 0 descriptor??
[  573.185587][T17253] not chained 600000 origins
[  573.190664][T17253] CPU: 0 PID: 17253 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  573.199453][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  573.209520][T17253] Call Trace:
[  573.212806][T17253]  dump_stack_lvl+0x1ff/0x28e
[  573.217873][T17253]  dump_stack+0x25/0x28
[  573.222039][T17253]  kmsan_internal_chain_origin+0x8b/0x130
[  573.227885][T17253]  ? unix_dgram_recvmsg+0x20d/0x250
[  573.233196][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.238407][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  573.244233][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.249436][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  573.255251][T17253]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  573.261331][T17253]  ? should_fail+0x75/0x9c0
[  573.265840][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.271046][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  573.277303][T17253]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  573.283385][T17253]  ? kmsan_unpoison_memory+0xa8/0xf0
[  573.288676][T17253]  ? _copy_from_user+0x219/0x310
[  573.293625][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.298835][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  573.304653][T17253]  __msan_chain_origin+0xab/0xf0
[  573.309692][T17253]  do_recvmmsg+0xb11/0x2120
[  573.314217][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.319511][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  573.324729][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  573.330987][T17253]  ? __msan_poison_alloca+0x13c/0x180
[  573.336374][T17253]  ? do_syscall_64+0x54/0xd0
[  573.340972][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.346011][T17253]  do_syscall_64+0x54/0xd0
[  573.350520][T17253]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  573.356166][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.362081][T17253] RIP: 0033:0x7f7784b88ae9
[  573.366503][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  573.386117][T17253] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  573.394538][T17253] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  573.402515][T17253] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  573.410487][T17253] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  573.418457][T17253] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  573.426444][T17253] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  573.435724][T17253] Uninit was stored to memory at:
[  573.441043][T17253]  do_recvmmsg+0xb11/0x2120
[  573.445573][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.450770][T17253]  do_syscall_64+0x54/0xd0
[  573.455211][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.461292][T17253] 
[  573.463618][T17253] Uninit was stored to memory at:
[  573.468809][T17253]  do_recvmmsg+0xb11/0x2120
[  573.473335][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.478515][T17253]  do_syscall_64+0x54/0xd0
[  573.482965][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.489062][T17253] 
[  573.491388][T17253] Uninit was stored to memory at:
[  573.496443][T17253]  do_recvmmsg+0xb11/0x2120
[  573.501119][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.506173][T17253]  do_syscall_64+0x54/0xd0
[  573.510768][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.516706][T17253] 
[  573.519216][T17253] Uninit was stored to memory at:
[  573.524279][T17253]  do_recvmmsg+0xb11/0x2120
[  573.528947][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.534001][T17253]  do_syscall_64+0x54/0xd0
[  573.538593][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.544512][T17253] 
[  573.546837][T17253] Uninit was stored to memory at:
[  573.552056][T17253]  do_recvmmsg+0xb11/0x2120
[  573.556589][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.561872][T17253]  do_syscall_64+0x54/0xd0
[  573.566308][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.572381][T17253] 
[  573.574706][T17253] Uninit was stored to memory at:
[  573.579922][T17253]  do_recvmmsg+0xb11/0x2120
[  573.584447][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.589630][T17253]  do_syscall_64+0x54/0xd0
[  573.594072][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.600149][T17253] 
[  573.602478][T17253] Uninit was stored to memory at:
[  573.607536][T17253]  do_recvmmsg+0xb11/0x2120
[  573.612210][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.617265][T17253]  do_syscall_64+0x54/0xd0
[  573.621868][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  573.627812][T17253] 
[  573.630275][T17253] Local variable msg_sys created at:
[  573.635559][T17253]  do_recvmmsg+0xc1/0x2120
[  573.641157][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  573.651973][    T5] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
06:07:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x7)

[  573.680194][    T5] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  573.705375][T17288] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  573.735073][    T5] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  573.743250][    T5] usb 3-1: media controller created
[  573.825818][    T5] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  574.409591][T17253] not chained 610000 origins
[  574.414293][T17253] CPU: 0 PID: 17253 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  574.423088][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  574.433163][T17253] Call Trace:
[  574.436452][T17253]  dump_stack_lvl+0x1ff/0x28e
[  574.441159][T17253]  dump_stack+0x25/0x28
[  574.445338][T17253]  kmsan_internal_chain_origin+0x8b/0x130
[  574.451095][T17253]  ? unix_dgram_recvmsg+0x20d/0x250
[  574.456326][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.461724][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  574.467559][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.472778][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  574.478614][T17253]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  574.484890][T17253]  ? should_fail+0x75/0x9c0
[  574.489419][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.494642][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  574.500920][T17253]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  574.507019][T17253]  ? kmsan_unpoison_memory+0xa8/0xf0
[  574.512329][T17253]  ? _copy_from_user+0x219/0x310
[  574.517300][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.522523][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  574.528354][T17253]  __msan_chain_origin+0xab/0xf0
[  574.533323][T17253]  do_recvmmsg+0xb11/0x2120
[  574.537856][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.543095][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  574.548316][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  574.554590][T17253]  ? __msan_poison_alloca+0x13c/0x180
[  574.559994][T17253]  ? do_syscall_64+0x54/0xd0
[  574.564610][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.569663][T17253]  do_syscall_64+0x54/0xd0
[  574.574100][T17253]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  574.579755][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.585683][T17253] RIP: 0033:0x7f7784b88ae9
[  574.590113][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  574.609750][T17253] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  574.618190][T17253] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  574.626185][T17253] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  574.634177][T17253] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  574.642169][T17253] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  574.650159][T17253] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  574.659216][T17253] Uninit was stored to memory at:
[  574.664290][T17253]  do_recvmmsg+0xb11/0x2120
[  574.671380][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.676469][T17253]  do_syscall_64+0x54/0xd0
[  574.681043][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.686968][T17253] 
[  574.689429][T17253] Uninit was stored to memory at:
[  574.694486][T17253]  do_recvmmsg+0xb11/0x2120
[  574.699154][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.704250][T17253]  do_syscall_64+0x54/0xd0
[  574.708822][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.714764][T17253] 
[  574.717094][T17253] Uninit was stored to memory at:
[  574.722303][T17253]  do_recvmmsg+0xb11/0x2120
[  574.726824][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.732033][T17253]  do_syscall_64+0x54/0xd0
[  574.736464][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.742538][T17253] 
[  574.744876][T17253] Uninit was stored to memory at:
[  574.750084][T17253]  do_recvmmsg+0xb11/0x2120
[  574.754618][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.759898][T17253]  do_syscall_64+0x54/0xd0
[  574.764335][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.770422][T17253] 
[  574.772746][T17253] Uninit was stored to memory at:
[  574.777798][T17253]  do_recvmmsg+0xb11/0x2120
[  574.782468][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.787516][T17253]  do_syscall_64+0x54/0xd0
[  574.792105][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.798246][T17253] 
[  574.800572][T17253] Uninit was stored to memory at:
[  574.805626][T17253]  do_recvmmsg+0xb11/0x2120
[  574.810285][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.815354][T17253]  do_syscall_64+0x54/0xd0
[  574.819952][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.825871][T17253] 
[  574.828324][T17253] Uninit was stored to memory at:
[  574.833380][T17253]  do_recvmmsg+0xb11/0x2120
[  574.837903][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  574.843098][T17253]  do_syscall_64+0x54/0xd0
[  574.847534][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  574.853600][T17253] 
[  574.855930][T17253] Local variable msg_sys created at:
[  574.861330][T17253]  do_recvmmsg+0xc1/0x2120
[  574.865767][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.025963][T17253] not chained 620000 origins
[  575.030923][T17253] CPU: 0 PID: 17253 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  575.039714][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  575.049956][T17253] Call Trace:
[  575.053251][T17253]  dump_stack_lvl+0x1ff/0x28e
[  575.057952][T17253]  dump_stack+0x25/0x28
[  575.062127][T17253]  kmsan_internal_chain_origin+0x8b/0x130
[  575.067965][T17253]  ? unix_dgram_recvmsg+0x20d/0x250
[  575.073182][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.078400][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.084233][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.089451][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.095275][T17253]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  575.101375][T17253]  ? should_fail+0x75/0x9c0
[  575.105899][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.111118][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  575.117602][T17253]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  575.123701][T17253]  ? kmsan_unpoison_memory+0xa8/0xf0
[  575.129007][T17253]  ? _copy_from_user+0x219/0x310
[  575.133970][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.139191][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.145016][T17253]  __msan_chain_origin+0xab/0xf0
[  575.149979][T17253]  do_recvmmsg+0xb11/0x2120
[  575.154512][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.159741][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.164984][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  575.171685][T17253]  ? __msan_poison_alloca+0x13c/0x180
[  575.177090][T17253]  ? do_syscall_64+0x54/0xd0
[  575.181703][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.186758][T17253]  do_syscall_64+0x54/0xd0
[  575.191191][T17253]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  575.196850][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.202777][T17253] RIP: 0033:0x7f7784b88ae9
[  575.207205][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  575.226831][T17253] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  575.235273][T17253] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  575.243294][T17253] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  575.251285][T17253] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  575.259282][T17253] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  575.267269][T17253] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  575.276273][T17253] Uninit was stored to memory at:
[  575.281571][T17253]  do_recvmmsg+0xb11/0x2120
[  575.286093][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.291264][T17253]  do_syscall_64+0x54/0xd0
[  575.295702][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.301763][T17253] 
[  575.304087][T17253] Uninit was stored to memory at:
[  575.309284][T17253]  do_recvmmsg+0xb11/0x2120
[  575.313806][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.319011][T17253]  do_syscall_64+0x54/0xd0
[  575.323446][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.329530][T17253] 
[  575.331859][T17253] Uninit was stored to memory at:
[  575.336914][T17253]  do_recvmmsg+0xb11/0x2120
[  575.341591][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.346642][T17253]  do_syscall_64+0x54/0xd0
[  575.351229][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.357150][T17253] 
[  575.359615][T17253] Uninit was stored to memory at:
[  575.364677][T17253]  do_recvmmsg+0xb11/0x2120
[  575.369338][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.374392][T17253]  do_syscall_64+0x54/0xd0
[  575.378979][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.384901][T17253] 
[  575.387223][T17253] Uninit was stored to memory at:
[  575.392411][T17253]  do_recvmmsg+0xb11/0x2120
[  575.396930][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.402118][T17253]  do_syscall_64+0x54/0xd0
[  575.406551][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.412666][T17253] 
[  575.414994][T17253] Uninit was stored to memory at:
[  575.420214][T17253]  do_recvmmsg+0xb11/0x2120
[  575.424734][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.429930][T17253]  do_syscall_64+0x54/0xd0
[  575.434368][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.440443][T17253] 
[  575.442767][T17253] Uninit was stored to memory at:
[  575.447821][T17253]  do_recvmmsg+0xb11/0x2120
[  575.452505][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.457553][T17253]  do_syscall_64+0x54/0xd0
[  575.462127][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.468051][T17253] 
[  575.470520][T17253] Local variable msg_sys created at:
[  575.475809][T17253]  do_recvmmsg+0xc1/0x2120
[  575.480436][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.624192][T17322] udc-core: couldn't find an available UDC or it's busy
[  575.631537][T17322] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  575.686206][T17253] not chained 630000 origins
[  575.691085][T17253] CPU: 0 PID: 17253 Comm: syz-executor.5 Not tainted 5.15.0-rc7-syzkaller #0
[  575.699872][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  575.709941][T17253] Call Trace:
[  575.713229][T17253]  dump_stack_lvl+0x1ff/0x28e
[  575.717932][T17253]  dump_stack+0x25/0x28
[  575.722103][T17253]  kmsan_internal_chain_origin+0x8b/0x130
[  575.727857][T17253]  ? unix_dgram_recvmsg+0x20d/0x250
[  575.733080][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.738299][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.744132][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.749351][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.755185][T17253]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  575.761282][T17253]  ? should_fail+0x75/0x9c0
[  575.765809][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.771023][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  575.777294][T17253]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  575.783398][T17253]  ? kmsan_unpoison_memory+0xa8/0xf0
[  575.788699][T17253]  ? _copy_from_user+0x219/0x310
[  575.793665][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.798881][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  575.804706][T17253]  __msan_chain_origin+0xab/0xf0
[  575.809670][T17253]  do_recvmmsg+0xb11/0x2120
[  575.814202][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.819417][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  575.824635][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  575.830903][T17253]  ? __msan_poison_alloca+0x13c/0x180
[  575.836309][T17253]  ? do_syscall_64+0x54/0xd0
[  575.840920][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.845982][T17253]  do_syscall_64+0x54/0xd0
[  575.850417][T17253]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  575.856074][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.861991][T17253] RIP: 0033:0x7f7784b88ae9
[  575.866416][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  575.886038][T17253] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  575.894478][T17253] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  575.902468][T17253] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  575.910458][T17253] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  575.918448][T17253] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  575.926436][T17253] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  575.935634][T17253] Uninit was stored to memory at:
[  575.940953][T17253]  do_recvmmsg+0xb11/0x2120
[  575.945477][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.950630][T17253]  do_syscall_64+0x54/0xd0
[  575.955069][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.961152][T17253] 
[  575.963502][T17253] Uninit was stored to memory at:
[  575.968829][T17253]  do_recvmmsg+0xb11/0x2120
[  575.973344][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  575.978561][T17253]  do_syscall_64+0x54/0xd0
[  575.982997][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  575.989081][T17253] 
[  575.991410][T17253] Uninit was stored to memory at:
[  575.996469][T17253]  do_recvmmsg+0xb11/0x2120
[  576.001135][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.006182][T17253]  do_syscall_64+0x54/0xd0
[  576.010719][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.016637][T17253] 
[  576.019108][T17253] Uninit was stored to memory at:
[  576.024158][T17253]  do_recvmmsg+0xb11/0x2120
[  576.028816][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.033864][T17253]  do_syscall_64+0x54/0xd0
[  576.038437][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.044413][T17253] 
[  576.046736][T17253] Uninit was stored to memory at:
[  576.051947][T17253]  do_recvmmsg+0xb11/0x2120
[  576.056467][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.061701][T17253]  do_syscall_64+0x54/0xd0
[  576.066142][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.072219][T17253] 
[  576.074543][T17253] Uninit was stored to memory at:
[  576.079744][T17253]  do_recvmmsg+0xb11/0x2120
[  576.084269][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.089484][T17253]  do_syscall_64+0x54/0xd0
[  576.093921][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.100014][T17253] 
[  576.102338][T17253] Uninit was stored to memory at:
[  576.107400][T17253]  do_recvmmsg+0xb11/0x2120
[  576.112065][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.117116][T17253]  do_syscall_64+0x54/0xd0
[  576.121712][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.127630][T17253] 
[  576.130104][T17253] Local variable msg_sys created at:
[  576.135383][T17253]  do_recvmmsg+0xc1/0x2120
[  576.139959][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.148993][    T5] stb0899_attach: Driver disabled by Kconfig
[  576.155248][    T5] az6027: no front-end attached
[  576.155248][    T5] 
[  576.207658][    T5] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  576.217233][    T5] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input68
[  576.323303][    T5] dvb-usb: schedule remote query interval to 400 msecs.
[  576.330686][    T5] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  576.743797][    T5] =====================================================
[  576.750887][    T5] BUG: KMSAN: uninit-value in legacy_dvb_usb_read_remote_control+0x396/0x700
[  576.759670][    T5]  legacy_dvb_usb_read_remote_control+0x396/0x700
[  576.766112][    T5]  process_one_work+0xdc7/0x1760
[  576.771150][    T5]  worker_thread+0x1101/0x22b0
[  576.775930][    T5]  kthread+0x66b/0x780
[  576.780011][    T5]  ret_from_fork+0x1f/0x30
[  576.784500][    T5] 
[  576.786818][    T5] Local variable state created at:
[  576.791917][    T5]  legacy_dvb_usb_read_remote_control+0x69/0x700
[  576.792155][T17253] not chained 640000 origins
[  576.798259][    T5]  process_one_work+0xdc7/0x1760
[  576.798299][    T5] =====================================================
[  576.798307][    T5] Disabling lock debugging due to kernel taint
[  576.798943][    T5] Kernel panic - not syncing: panic_on_kmsan set ...
[  576.803515][T17253] CPU: 1 PID: 17253 Comm: syz-executor.5 Tainted: G    B             5.15.0-rc7-syzkaller #0
[  576.838241][T17253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  576.848290][T17253] Call Trace:
[  576.851562][T17253]  dump_stack_lvl+0x1ff/0x28e
[  576.856244][T17253]  dump_stack+0x25/0x28
[  576.860398][T17253]  kmsan_internal_chain_origin+0x8b/0x130
[  576.866132][T17253]  ? unix_dgram_recvmsg+0x20d/0x250
[  576.871332][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.876525][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  576.882341][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.887534][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  576.893336][T17253]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  576.899404][T17253]  ? should_fail+0x75/0x9c0
[  576.903903][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.909095][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  576.915348][T17253]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  576.921418][T17253]  ? kmsan_unpoison_memory+0xa8/0xf0
[  576.926710][T17253]  ? _copy_from_user+0x219/0x310
[  576.931647][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.936843][T17253]  ? kmsan_get_shadow_origin_ptr+0x97/0xd0
[  576.942645][T17253]  __msan_chain_origin+0xab/0xf0
[  576.947588][T17253]  do_recvmmsg+0xb11/0x2120
[  576.952108][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.957403][T17253]  ? kmsan_get_metadata+0x11b/0x180
[  576.962597][T17253]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[  576.968841][T17253]  ? __msan_poison_alloca+0x13c/0x180
[  576.974215][T17253]  ? do_syscall_64+0x54/0xd0
[  576.978803][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  576.983830][T17253]  do_syscall_64+0x54/0xd0
[  576.988241][T17253]  ? syscall_exit_to_user_mode+0xa4/0xc0
[  576.993875][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  576.999781][T17253] RIP: 0033:0x7f7784b88ae9
[  577.004283][T17253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  577.023887][T17253] RSP: 002b:00007f77820dd188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  577.032297][T17253] RAX: ffffffffffffffda RBX: 00007f7784c9c020 RCX: 00007f7784b88ae9
[  577.040265][T17253] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  577.048233][T17253] RBP: 00007f7784be2f25 R08: 0000000000000000 R09: 0000000000000000
[  577.056197][T17253] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  577.064162][T17253] R13: 00007f77851cfb2f R14: 00007f77820dd300 R15: 0000000000022000
[  577.072138][    T5] CPU: 0 PID: 5 Comm: kworker/0:0 Tainted: G    B             5.15.0-rc7-syzkaller #0
[  577.072942][T17253] Uninit was stored to memory at:
[  577.081686][    T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  577.081704][    T5] Workqueue: events legacy_dvb_usb_read_remote_control
[  577.081740][    T5] Call Trace:
[  577.081749][    T5]  dump_stack_lvl+0x1ff/0x28e
[  577.081778][    T5]  dump_stack+0x25/0x28
[  577.081801][    T5]  panic+0x44f/0xdeb
[  577.081893][    T5]  ? add_taint+0x187/0x210
[  577.086962][T17253]  do_recvmmsg+0xb11/0x2120
[  577.096965][    T5]  ? add_taint+0x187/0x210
[  577.096998][    T5]  kmsan_report+0x2ee/0x300
[  577.097024][    T5]  ? __msan_warning+0xb4/0x100
[  577.097055][    T5]  ? legacy_dvb_usb_read_remote_control+0x396/0x700
[  577.103948][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  577.107162][    T5]  ? process_one_work+0xdc7/0x1760
[  577.111872][T17253]  do_syscall_64+0x54/0xd0
[  577.115948][    T5]  ? worker_thread+0x1101/0x22b0
[  577.119870][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  577.124232][    T5]  ? kthread+0x66b/0x780
[  577.128764][T17253] 
[  577.133103][    T5]  ? ret_from_fork+0x1f/0x30
[  577.137598][T17253] Uninit was stored to memory at:
[  577.137638][T17253]  do_recvmmsg+0xb11/0x2120
[  577.142347][    T5]  ? kmsan_get_metadata+0x11b/0x180
[  577.142378][    T5]  __msan_warning+0xb4/0x100
[  577.149004][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  577.153959][    T5]  legacy_dvb_usb_read_remote_control+0x396/0x700
[  577.159134][T17253]  do_syscall_64+0x54/0xd0
[  577.163478][    T5]  ? kmsan_get_metadata+0x11b/0x180
[  577.168445][T17253]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  577.174276][    T5]  ? legacy_dvb_usb_setkeycode+0x9e0/0x9e0
[  577.178562][T17253] 
[  577.180842][    T5]  process_one_work+0xdc7/0x1760
[  577.185407][T17253] Uninit was stored to memory at:
[  577.185446][T17253]  do_recvmmsg+0xb11/0x2120
[  577.190414][    T5]  worker_thread+0x1101/0x22b0
[  577.190456][    T5]  kthread+0x66b/0x780
[  577.194942][T17253]  __x64_sys_recvmmsg+0x2af/0x500
[  577.200118][    T5]  ? worker_clr_flags+0x370/0x370
[  577.200155][    T5]  ? kthread_blkcg+0x120/0x120
[  577.200185][    T5]  ret_from_fork+0x1f/0x30
[  577.204742][T17253]  do_syscall_64+0x54/0xd0
[  577.210034][    T5] Kernel Offset: disabled
[  577.290923][    T5] Rebooting in 86400 seconds..