last executing test programs:

5.677714391s ago: executing program 1 (id=1114):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0))
syz_usbip_server_init(0x4)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1700bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
unshare(0x20020680)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40440, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="ae1e020000000000"], 0x20}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$unix(0x1, 0x2, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x44, r8, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)

5.618992709s ago: executing program 3 (id=1116):
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x48882, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
shutdown(r1, 0x0)
recvmmsg(r1, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)}, 0xdf4}], 0x1, 0x10122, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000001b40)={0x0, 0x0, &(0x7f0000001b00)={&(0x7f00000016c0)=ANY=[@ANYBLOB="9c010000190001000000000000000000e0000002000000000000000000000000ac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000edbd3e2fc6a46b65f0e422fbfcddfaf10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e400060000000000000000000000000000000000fe880000000000000000000000000001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000fc0100"/164], 0x19c}}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0xa02000000000000, 0x60, 0x0, 0x0)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readv(r6, &(0x7f0000000080), 0x0)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x16, 0x0, &(0x7f00000001c0)=0x2)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@gettclass={0x24, 0x2a, 0x4, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x12, 0x7}, {0xc, 0x4}, {0x5}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0xd1ed0a2ab6824b2c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_io_uring_setup(0x6d2c, &(0x7f0000000200)={0x0, 0x2369, 0x200, 0x0, 0x10}, &(0x7f0000000100), &(0x7f0000000180))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$cgroup_root(0xffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

3.47371035s ago: executing program 1 (id=1126):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x64, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
listen(r1, 0x2)
setsockopt$sock_int(r1, 0x1, 0x1e, &(0x7f0000000040)=0x1, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xf, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540), 0x10, 0x7, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000000580)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r5, 0x80045017, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
getsockopt$inet6_mptcp_buf(r6, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)
getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000480)={{{@in6=@dev, @in6=@ipv4={""/10, ""/2, @dev}}}, {{@in6=@private0}, 0x0, @in6}}, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
socket$nl_xfrm(0x10, 0x3, 0x6)
geteuid()

3.329144113s ago: executing program 0 (id=1127):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_dccp(0xa, 0x6, 0x0)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$RTC_PIE_ON(r2, 0x7005)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000002840)={{0x3, 0x0, 0x80, {0xdddd003f, 0x100000}}, "a9cbc4b723986beb2541731c8831607b6ee747534f2610e68420ac50bde6dad58d04aad3777f18b4f168b3950653ce1d7740b6225b60f102dea41282032f21c3f19760a59ad876506e4e939e80e92248edfd8137e41621c1a490cf3cbb0502fa6deb4cb0efa6bc813cca06ed4828bafa15d1afd8ac82b71d1a7b410eeac6a6f31e4995b05d3f93bf80a053ae74958ed42c6c4b4d0bcaa08d3e6025a166ac6f19973f974613e0d7ca520dd948ed23fcce9f475faa3e49d697324fa1b2cdfef7deb66a190e9185a90f5c54c88895af1a61f8c0722f0c0bf9835d8910449682cc5551ec995aec222238bb28f41ba7f99f93b785dd2d48cf389f27da125b9c3ec7f716d6b6b696a93e625f0e17b4ff3bac5eec8e2dd837254c16d8c9b2a773ac70b8dc7216980fcf1db0cd885a6f3379dfcca516b0b5771d3dfb2212fd569b8f6003dcf8478390e14a5bf73eb1a61a12ce20ea3f5fbd6d9a56a4adf6043190cc7d559e7773668d0498f6c7438917d204ed2ec53da03cc744619be3785cd8cddb678f8e90965f22242bb62fa374a876e5d4604a5f590dde45cacad3852a54154a90d7495cc4cfbd7baacc19604efd864cc76a7e867cd7403301f45a3ad20ed8edf412e4aae5f279eada88ee43a436dd3b1f37098b7d81759aff2d81e5593535d44035fdcbae0f45a7163c06b8ed7da27a03e266947d7f11d9e1600f1a88b99643a0b99abad360b8137415f7800f8a5a16ba306778733d5493cc73d0aacebe1cc4618847bd620034cb617c55e47ff8d8000f52c25a6b3e9272c297e6b30bed370dda4c2b56278893a4faefb28a87c40229d3f80814e128eedb7050465e1e00547a1b77ebaef78355d9867ce521138d63f147ec3de6cac38d9eeb1d167494466e00d97a32701117bbe0f95304970e632b9cf8ded044b3f1c01326095b422678d798a9c5f8ab05f4e6549639186723aa3d38927ed4ca94a9e6de3c4f5ce99d090389473455cb366c7dfcb43ebe60271a3693e80ae4948291753007f5032f518ffc832f3e819f3bdac1085a80cdd494cdcac4a874a14818b9dae534559c2c5a542a12949a22fddb9060e8a400f96512aa8eaaa6659932dc8852f5709a808604c2fda229c79933646e36255948baec6e0c2d4fbe056628157ba456603e5cb45761b5aa97c0daceb3e6d7a192d109847057cb4322c9c5e62403c921e9cebeca77d12c3ed05f5e131e3c00d9070618872ea8a1f05e4598c98739d3a9245e537ed992aa4eb8a571e4c7c0dc797f91e3258835f9db1b6501edaaf38c9fd4d718c743d30b6f1e480ce9408aa6b894055768738e3df843301d99b476ba8d30f6483022ad7fd50493e600700ef1b70c72f607feb0df9898b61a38f4f59d23779b7af4a5b5a0e7379877d8c875d1e47a9ddbac19208cd22e05f729a9175b9bf1c96618d63585204eb5ea29e0a0f17c12219fd51bc462dcff6d3ff73b64d2a5f7ebe6ebdefd841698e909cf1018a88afefc1802fc97c22a240f20ce6938ae6b2224f7ca311622695577f3e4cb8f7e87bcf5bcdcc5311815bab1499465f687903b4da5693c83cbe13ba3d94f413bbdf9886241fc1f0b9ea00e7b2d1c2fe29d8921c56919bbfa091d4542c590a18848256b7eca92114c5542356bb15e1cd59b28a5d5b86bb92c30e88ea6edc6efd3c685a7e9b840b61f445bb57d670d3dbba61da442fcdabd4c14b9dd6543aafca5bea6ca16c00bbdc0999cec79272dfd1de86bea7d830ec2deaa339c2fc57d6490ee7cf3bb4e6cb4b8dcaa4279bef0af601f96dc25a3cf926eb6c5eb9529a266e1a9d96fbb5e0ffeb472d40e3853f42d69e725d2dd570b531779a09a5f945a2dce4ddd898be60b9d38f3c305f942f8f8a3ee992de01a0d6b3db1a4174b770681d2470edd2319a9b9d04d3cadd67583a313c071f809c89134b2b714cb2d7247d4d6b5d794302e9408e946bf1cadc767a8ae918a6608f7d2dbb2d825e949c823ac6bda0c46dea864c83222f3c7f7ec020f3a6445f3762dfaae5a28c3857053b2548d11c9b9f4af5366b43012e35d14ba139085493e95ad24bcc92b835f3c72ff762fcbe3d04ee2051e959a9e680f51425d5eeeedd99767fccda20b44bbbac6989e1d6f70f030c2530b83923fbf27fbf24f62ff7a5619b39b338e165dcf66faf6092edd19216fdacfb8eb80bd7d8a7767f538c3021e20f498c8e456bc32af1157b5988950caf1c478047f132c01f53c12929f030e9d78c284e64a521350d72748ef214c05f4c8d2e47384c3cd29c99a2df1abb2e8ff5a363a488feb119e8ad5e3c39a4f24449d00b3772090b499e2c65b50a3e6ce7f1e2f2bac0ae5e58147d1d6887617ca38d12b1cc9a5e3ee47539f40179136698acd9b9e20a4f85335dcb19d4ba4a05bcd84b27a9f1897ab8f67abf78ba3ce4d87b37c129562d33bb0836c8fe830c068e7c8b6728ed585258c7d82b5c407d0532bf5ba60cfb0a6e6f3aa44bdf3bb7ac389023c3db4395c3875a3496d85640d423775d8ac0c4c3ab1831bdd785a5ca0ba2073bdf6970e4b63718944603ab32b83d7c73af090c3a941561a76f08e2235e1ea8a0b721cd6a73466664c411c33fd1a3e46e580c77034cb09ac38b6d1824f642d3354e827b6ddc0ca15c3bd7192882eaece388d428282c859fed7d280e5d81cd0252c149154e2038a3f2535781dc81d7221278c21ee819fb913fc8d97e96f3dbbf0b2cd63a0ceeadec43fca7a760f45aa53de97597b4afb3abf5921125e9f148da377556e6de1a62aab6055b10c1698649515e62c572d62d901ae7fcd417b627db64785fbdc21f0e978eb143d7abb2771de9a912466fb6e6f55a12f209e131732d45a8293f1a36ddddfad54f857016e3ab7fceb97ddfde1a8c8569dfa972ec636e7c93e603d5e1d0e98d6f109dfa6df50ce987abfc291aba0e488ba8f0596fbd1bacd58862b611250a85cd34e7d100f785286d815281b62ef2dfeea5e8ba4ee4a019af0ff59b0f4f3049f8718d0fca57de1cf88763d13ad26c50cccec4faba99d899ef079c3400052d065cc0a44e8f73dc5bef5f8681015b29c96dacd026d920f369a2b0c341b8295f5268e2d9bf80df2d9ea1017b5b41ec2060c2fecc67c040e7c37521b6d6174c4d4ed4accc5479f6fc4ddc0e45a7f8030ff8e23f000315a3565498d07bd0cc6459f5cff23b40ffb80ace2f48fe0c1a337bb4f748bb8c057089de5cd727b278b45d84a8f7df9f898b3cef2ec319b032f888c4953bfe141c8e4b67ab3f95fa133790ea17b27be21c9478da70641265045e81e28229a4dc15f59c2f18b1b9c082d1154bc9565508fc9419912b48f3b1271609006399a844f6ccedb6323ada63d3e0b340fd07cf9e3b98b1d193bd76796c2a185366b25468017d28371d8792eb42304961bc9c1f4ef4025d2814837dacc9f1d777bfeddb30eca1cacd9f5b6619c4000252ecdabf7107dff264046c111c6f5767e3486c37ec175f52bd3460a7ad49e35bb729ba76e2fa5e117c49b750000005e0abf56340740b81ea37c5df26b7c885cc5da412cf4e9932e2561aa7945945dcba0677786c9ea9b9aee47d73454df82048f021b30a817606c96415c22e1e908316f84aae52e050e31176408d35ef33091618df7d38d22bd2b626dc138f423c32362878c8f6538dcf0b96c4298668d4bb35773c952bbebd4778c964b0eae8eac9bef3469ea5da890377c500ea027180f5308585cd7941c7e3305c32d610de49b5c1acce6c285d88a99dcebb2b5972a276d416abf25b44c1712a43d3e30005a1535553e779c0f72ff519d2407214c02e7020ca479e93c3fb2b867ad73e69ba10e92f329cd54c4c80d227d0710cf384fd9a39d444053afce6d1e93b47137843d149e888bd868b1b2179c1fdd8291d15724db10a756300209ae4a2ed91788fe9f980af1bb00d05a8fe1a020fe4bba91fb487c8ea674a6739067a0a86b7f2a4fc141f6c864f065fc6e5effdb5a1f1d063c6888626e13ced52f3669677dad96da1cfff7d700e9f6f74131b8ac0f4fb6c8d5fd675b1ed6001bba7dd0e95567a6d06fe28e756609821312f4725c5909c6353ad385e57fb162e2f65b5e2a0100aaa356a19b9c5c183d195d0134adb8bc8d03415daafd95f3a5e44f201741e22dd905dc12469664040ce714a5d9042f58db392d6c6af1eaa4c82cd9b4996252b44334be627708463ffe52a80d8d1c8a5b1a23f9c68144c4a6c6387e542b3cb9de7765faf05fda086986d3c6a1f0906b2ea0eba741abb9514ccd57f2d8ea1d67145c5d71749b560f85093ecc265a24239078253fa0bd39bf67f8e1d78f07e167c05d808771c7b0146af368e8859273ef76f9feedf7fc69640b5e95a25076c477338e31cc9a7348b8a31a0f8d4dd9e6c46f18126279c5d1192ddee08a7057195689954b26a19dcfd2a59febb6556c18c18abc85527372919196b29a737f8bb3b97bebaf3e6c43099064e067f12772c2333be19dd4e803289430a660d68963a26ff1b1c8c664c0318a2558dec140d984837a936651906ab960b6bff8bc8b32704f3e0769e6c85c9f5bd50270bc1030ea71f2db5c43116bd0641ed31ab6db12514aec68febe59e04d2b872c9fc2173017ee6e75a18d6832c9992d1ed2ead9452dce9b2efa01dc97ea31ee5c3f5743760f2589615f45738140d0f8c148f1858d0897094a34727493e607132bc1eefa0d0ff236f9ac5a2a0f0bf06719c1d5061846e427fa36138c808741ccbd10ad3f6f54470804e656a8ab1a9ee9a523bed87cb2fd4d6db8aa6d6b80d1e9886dc12b915665101b9094a22f444379182f5356fed797ebd97ec6493bd681f69321f9735ae6d3d6822818c7cfb21c5f3a0f9d5b8ef070c916fe9ccbbf04128a27e7928e3572f125b986c52ec0de078b40135b922a2feb294b0349df06d1c3e2c9d2ed2ee88b7a1673423c6baedb51beb8f8cb1b3b986d1b9632fedfaec8e9a237311beb89cb0dd7efaa5b68537641d06b7cbfda581344c87452b4d3fe96cea6143378c4dd7586a9d55c666cce828ef91a35f3f0a5c9c369bd20c1bc7cc77fcf316a567fa21863b12c43faf3b9588dce4caa151937c6ee699cf49dba041775773ae062c69783758513a178bf07000000000000005dd768a466755af2ffbb9fa728724a18fc9f427672ad5867a72ae8caca60fcc90cf817c291a2025b5243ae36e200b5e5c9ee4e90eac775c3b29fe1df8c35716f37d11961084fc28b0f8855376ec85d7741535f88db7977629dd832f06bb258e9a88cfc8671df2763fd9383a777f768c7aaecb9a7af9e76bb719767767c3d5178e2a10765c6b2ae80753f403125a9203ede6ed44eb96a1a010842f88f020dbb7f8df8bcbea0b60f1b99dd9b9aae2dbc995edc8ed82ec5e21e8d5e4d8d9fd0bfab342db38d12bb24c20c2a579069d74624db16bb9ec501312d8de0e653e9e74668d0ed05ccb0eb99db410c0000000fc246302635630b295ccf849e45944a25baa7f4651fa37f147e0fa977c0304e7cf25fa78260ca03abe8dc32cfb461f019f7d82194a98daae521ec4eaf3e138bb95b09d8ff2f106febcc126743abc8f8b707cd2cae1548c6fe54f64bf46c9ff03975e0c37eda3d485ff76ea5ae71fa5a2ca0d9293ea0cd4186e6e2e26fc2ba5e2cdde9400d9c1717058157a8410c9cd7ca4e679f41d8932576e7b292f28dfb9775b0ac5eb5788a8ddf797e32919e7a41c305af2e4e37eb4d5600", "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"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$ttyprintk(0xffffff9c, &(0x7f0000000040), 0x80002, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000380)={0x3ff}, 0x0, 0x0)
listen(r1, 0x2)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x497, &(0x7f0000000480)={0x0, 0x707b, 0x0, 0x4, 0x288}, 0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r4, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000080)="a000bc0d5aaba7b30ff3683b314a40c27ac46fda2219b205e1396cd9110d8cc6", 0x20)
r6 = accept4$alg(r5, 0x0, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000007cc0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)

2.847738478s ago: executing program 2 (id=1128):
socket$kcm(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000640)='./file0\x00', 0x80)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000005c0)={0x0, @nfc={0x27, 0x0, 0x0, 0xe}, @ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, @hci={0x1f, 0x0, 0x1}, 0x9, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)='batadv_slave_0\x00', 0x0, 0x7, 0x8})
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x400010, &(0x7f0000394000/0x3000)=nil, 0x3)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x300}, 0x80)

2.582671305s ago: executing program 1 (id=1129):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r3=>0x0})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r4, 0xc25c4110, &(0x7f0000000080)={0x0, [[0x7fff], [0xfffffffc], [0x403]], '\x00', [{0x0, 0x5}], '\x00', 0x100})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
set_mempolicy_home_node(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, 0x0)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x28, r1, 0x219, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0xc040)

2.508936592s ago: executing program 3 (id=1130):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x2000, 0x0, 0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
times(&(0x7f00000001c0))
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f00000006c0)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x4, 0x0, 0x0, @broadcast=0x1000000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty}}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000400)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000740)="d40dd1b27efbe30cbea0a1cc2b7d9a6d93d4b513a08ad69ad66ad657d5a544df4b24a6734938b83e0c842b006964b63094a4f83d50149f51f42c70b4e7d447f42a397f0631883c4915c2d4c4522b1afffe640e88e1839e02d3729c7f70e4e121f6dd844923303341e540d4f022a86cdb7045cb395ff75947d3275178caba1009d329fc873fc02292da0c", 0x8a}, {&(0x7f0000000800)="85a6d3376372e21adbc86dd888f31f7fa15c6f270a0989289a8b3e95810f206187fa17c84de4e91d68c1ca8e87255537f149be4a81fef0791c86b4a053b5011b6639d9388dee546eace4f1f52f6ef368d99330e4a40625f44ef7fd4e9f25b2930a03a28d1170379fe3f921fad2db74fe465f01", 0x73}, {&(0x7f0000000880)="0a33bc3d1ea2713c57c56d04b031c7510f5fb23f62e6f93ad8c23a9550140274137822e7c07ba08bb35ada26b5b426bce9b6093ee386801efb0c83c6c2b963ec15305c9e756f5a7fb93144608e83cbe0636267f7e0579808f9c850f0fefc935bc3bcfe29232fd8c68c0230b6764a958d991a2a6e083a81d1735e66b52de0be59422585259f1d5904b2e00b5b19f7dea193a03f27c452b09c36539532643b447b2082d37b4ddfd23243252d488bcd98bcdda976fa6203023b01f55c1e92010fa74201808de6b38cc5ae9777aa8b50eaae92ece2136ef5faa6c8fed751a4fa5b42044f8c67c802951ace31683a06d79780855e7de975f1", 0xf6}, {&(0x7f0000000980)="03e0e30e58d498160ce13874c24c99ea7f1042686fbb0f8bc1725d0cb50178ffcc9a4e7fd6489e875af0173faae6639f500ef67a2d50c78b876872b64f0c6685889e6cbc98af0c8dbae6b2bf16c96cfe72d880a02064960242b559e267030caa9e9ccf349b547d5e5f4673b680f965337763bd83d3b2a6fc4d9398ff8d06309b314610029af009d7d1d3687a8d65823ad7149649d2d8fca957c5d719cc8d0dec872800855277e4d31cdc893c872775ee626e9531c849cd5da420d54fbf7c51a2", 0xc0}, {&(0x7f0000000a40)="3e6951e1e00dddb7e0a3d7f35eaa61388ed8cc48063a5ac7610e04049068a8807db54c72ee520e75ed7a7f981a4ea4ab88086c3d5ce018fa4051f6b59a6f8ed76211e121a820eabb7ef601ccd847fe", 0x4f}], 0x5, &(0x7f0000000b40)=[{0xb8, 0x1, 0x9, "d0dcc9cf8cea6eac89a74727fd606b0294650674860dc49c0d343fe10d6e19dacb78e43fdb1f3375bbda7e66c05575befa8f8b41facd09e7ab70b408ad91f23e6a44d2da3c77166ec9be7fd4fb54a35bd118a24d01fbec63dc109ea859afbbd1286d0cb3d18647c61f1e345414a019ba8b7658fcc42856dac0e110b6effbab608ebe9ed74fadbeed2c06f53b46734b473f31e7b6835132da473a14bce0d48f203d"}], 0xb8}, 0x4000090)

2.389823473s ago: executing program 0 (id=1131):
syz_clone(0x12800000, &(0x7f0000000000)="b60182bf206a252b759bf4cd76392bfdd5fcdbeedbf1c648ed38ed9f11b0eb0e44729374b3c5095f4090f531181b23c5d332cba833979748ad592eaeda4e3ec0b7e8068f7be628d2b8ba713986d5c0fb15957a6891b6b0fc29103d140abd97c2ab1721de2e95c774dcbd5b2f1f8e", 0x6e, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000001840)="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")
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001400)="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", 0x41d}, {&(0x7f0000000bc0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc9067bb6f7f7c3ee1720000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0769421fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61faec4a42c29d7f9e48a43b8cb7d3c5a1e5aa67f87538140f8d633a54bceb8b1dda2397ea147d3b26e903f608b6ab1844ea7cf630d828118bba0f0f85e2e6316ae1ed9a2a7d08a05c170cb76bf111930df0cf760f7768571afdefe82a95296cee7c010f748a97046efcc774e7d85edbd5058104fef4942fb4430da89f67d1fea33bf2acfb7630932206960e907", 0x168}], 0x2, 0x0, 0x0, 0x900}}], 0x1, 0x20000000)

2.389653806s ago: executing program 0 (id=1132):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
times(&(0x7f00000001c0))
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000040)={&(0x7f0000000400)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000740)="d40dd1b27efbe30cbea0a1cc2b7d9a6d93d4b513a08ad69ad66ad657d5a544df4b24a6734938b83e0c842b006964b63094a4f83d50149f51f42c70b4e7d447f42a397f0631883c4915c2d4c4522b1afffe640e88e1839e02d3729c7f70e4e121f6dd844923303341e540d4f022a86cdb7045cb395ff75947d3275178caba1009d329fc873fc02292da0c", 0x8a}, {&(0x7f0000000800)="85a6d3376372e21adbc86dd888f31f7fa15c6f270a0989289a8b3e95810f206187fa17c84de4e91d68c1ca8e87255537f149be4a81fef0791c86b4a053b5011b6639d9388dee546eace4f1f52f6ef368d99330e4a40625f44ef7fd4e9f25b2930a03a28d1170379fe3f921fad2db74fe465f01", 0x73}, {&(0x7f0000000880)="0a33bc3d1ea2713c57c56d04b031c7510f5fb23f62e6f93ad8c23a9550140274137822e7c07ba08bb35ada26b5b426bce9b6093ee386801efb0c83c6c2b963ec15305c9e756f5a7fb93144608e83cbe0636267f7e0579808f9c850f0fefc935bc3bcfe29232fd8c68c0230b6764a958d991a2a6e083a81d1735e66b52de0be59422585259f1d5904b2e00b5b19f7dea193a03f27c452b09c36539532643b447b2082d37b4ddfd23243252d488bcd98bcdda976fa6203023b01f55c1e92010fa74201808de6b38cc5ae9777aa8b50eaae92ece2136ef5faa6c8fed751a4fa5b42044f8c67c802951ace31683a06d79780855e7de975f1", 0xf6}, {&(0x7f0000000980)="03e0e30e58d498160ce13874c24c99ea7f1042686fbb0f8bc1725d0cb50178ffcc9a4e7fd6489e875af0173faae6639f500ef67a2d50c78b876872b64f0c6685889e6cbc98af0c8dbae6b2bf16c96cfe72d880a02064960242b559e267030caa9e9ccf349b547d5e5f4673b680f965337763bd83d3b2a6fc4d9398ff8d06309b314610029af009d7d1d3687a8d65823ad7149649d2d8fca957c5d719cc8d0dec872800855277e4d31cdc893c872775ee626e9531c849cd5da420d54fbf7c51a2", 0xc0}, {&(0x7f0000000a40)="3e6951e1e00dddb7e0a3d7f35eaa61388ed8cc48063a5ac7610e04049068a8807db54c72ee520e75ed7a7f981a4ea4ab88086c3d5ce018fa4051f6b59a6f8ed76211e121a820eabb7ef601ccd847fe", 0x4f}], 0x5, &(0x7f0000000b40)=[{0xb8, 0x1, 0x9, "d0dcc9cf8cea6eac89a74727fd606b0294650674860dc49c0d343fe10d6e19dacb78e43fdb1f3375bbda7e66c05575befa8f8b41facd09e7ab70b408ad91f23e6a44d2da3c77166ec9be7fd4fb54a35bd118a24d01fbec63dc109ea859afbbd1286d0cb3d18647c61f1e345414a019ba8b7658fcc42856dac0e110b6effbab608ebe9ed74fadbeed2c06f53b46734b473f31e7b6835132da473a14bce0d48f203d"}], 0xb8}, 0x4000090)

2.389130916s ago: executing program 1 (id=1133):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x2000000, 0x0, 0x0, 0xa, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0xfffffffc, 0x0, 0x0, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

2.309650063s ago: executing program 0 (id=1134):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000340)={0x28, 0x0, 0x2710, @my=0x1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = dup(r1)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
readv(r4, &(0x7f0000000080)=[{&(0x7f0000000500)=""/137, 0x89}], 0x1)
bind$802154_raw(r4, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000002000/0x4000)=nil, 0x4000}, 0x3})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008280)="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", 0x2000, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000, 0x0, 0x0, 0xee01}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006280)="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", 0x2000, &(0x7f0000000a00)={&(0x7f00000000c0)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
r7 = openat2$dir(0xffffff9c, &(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)={0x202000, 0x20, 0x5}, 0x18)
linkat(r6, &(0x7f0000000000)='./file0\x00', r7, &(0x7f00000001c0)='./file0/file0\x00', 0x1600)

2.099804008s ago: executing program 2 (id=1135):
socket(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYBLOB="996e06004d4c0700540012800800010068737200480002"], 0x90}}, 0x0)
io_uring_setup(0x178e, &(0x7f00000000c0)={0x0, 0x52c1})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000007c0))
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
io_setup(0x1, &(0x7f0000000740)=<r2=>0x0)
io_submit(r2, 0x0, &(0x7f0000000a40))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r3, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1}}], 0xfdef, 0x0)
r4 = fanotify_init(0x0, 0x101000)
syz_open_dev$hidraw(&(0x7f0000000200), 0x0, 0x200000)
fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
close_range(r4, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000900520001002abd7000ffdbdf251c000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x80)

1.799855488s ago: executing program 2 (id=1136):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="e4000000260001000000000000000000d40000800c000000000000000000000050bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b50464dad7f2a778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086c"], 0xe4}], 0x1}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x8)
sendto$inet(r7, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x12, 0xf, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, {{}, {}, {}, {0x85, 0x0, 0x0, 0xf}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xba}}}, &(0x7f0000000300)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r7, &(0x7f0000000fc0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001f80)="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", 0x22d}, {0x0}], 0x2}}], 0x1, 0x0)
sendto$inet(r7, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d2000000000f0ff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d000000001400060076657468115f746f5f7465616d0000000400cc000800050003000000140004"], 0x58}, 0x1, 0x0, 0x0, 0xc014}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="130000001000000002000000000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000016000000000000000000000000000000000000000000000000fd46dc1bfe0c277a1da6f875838204cab7da90c4f448e18f7eb34009ce2a082db82802ddab9d5769e4bb94abfdcb"], 0x48)

1.471259572s ago: executing program 0 (id=1137):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x0)
r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r2, 0x0, r3, 0x0, 0x10000000000016, 0x0)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800400, &(0x7f0000000100)={[{@usrquota}]})
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r4 = open(&(0x7f0000000300)='./bus\x00', 0x14103e, 0x18a)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x2000)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x85, &(0x7f0000000080), &(0x7f00000000c0)=0x3930)
ftruncate(r5, 0x3000000)
sendfile(r4, r5, 0x0, 0x80000001)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@ipv6_delrule={0x38, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x3}, [@FRA_DST={0x14, 0x7, @loopback}, @FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x1}]}, 0x38}}, 0x0)

1.470832497s ago: executing program 1 (id=1138):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x5, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xaf}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="120000"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
socket(0xa, 0x2, 0x0)
r6 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="1fe1bc7f", 0x4)
sendmmsg$unix(r6, &(0x7f0000003dc0)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
r7 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r7, 0x1, 0x8, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)

1.249178859s ago: executing program 3 (id=1139):
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$kcm(0x10, 0x2, 0x4)
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200), 0x2a0600, 0x0)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000180)='\b', 0x1}], 0x1)
lsetxattr$trusted_overlay_nlink(0x0, &(0x7f00000007c0), 0x0, 0x0, 0x1)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
r5 = syz_open_dev$video4linux(0x0, 0x0, 0x0)
ioctl$VIDIOC_TRY_DECODER_CMD(r5, 0xc0585605, &(0x7f0000000080)={0x1, 0x1, @stop_pts=0x3})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r4, 0xab00, r6)
r7 = dup3(r4, 0xffffffffffffffff, 0x80000)
ioctl$NBD_DO_IT(r7, 0xab03)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, r3, 0x1, 0x70bd2b, 0x8}, 0x14}}, 0x20000004)

1.148570199s ago: executing program 3 (id=1140):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000980)=@bridge_delneigh={0x28, 0x1c, 0xc07, 0x0, 0x0, {0x2, 0x0, 0x0, r4, 0xd0}, [@NDA_DST_MAC={0xa}]}, 0x28}}, 0x20024090)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
syz_genetlink_get_family_id$wireguard(&(0x7f0000000840), 0xffffffffffffffff) (async, rerun: 64)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x70}}, 0x0) (async, rerun: 64)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c) (async, rerun: 32)
r6 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0) (rerun: 32)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r6, 0x40045532, &(0x7f0000000040)) (async)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r8 = getpid()
sched_getscheduler(r8) (async)
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0x4a8080)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000005000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r10}, 0x10) (async)
r11 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x1, 0x0, 0x6000, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1}, 0x0) (async)
setsockopt$sock_int(r9, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) (async)
listen(r9, 0x0) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0) (async)
syz_open_dev$sg(&(0x7f0000000100), 0x20200000000000, 0x41)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)

1.09915903s ago: executing program 3 (id=1141):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x9b0, r0, 0x4}, 0x38)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000011c0), 0x2, 0x0)
capset(&(0x7f0000000100)={0x19980330}, &(0x7f0000000140)={0x1, 0x0, 0x0, 0xfffffffc, 0xb45ffffe, 0x7fffffff})
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0)
msgget$private(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000080)=0x4)
r2 = getpid()
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0x541b, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const={0x1, 0x0, 0x0, 0xd}]}}, 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x68060200)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000000)=[@mss, @timestamp, @window, @mss, @window, @window], 0x200002d9)
write$RDMA_USER_CM_CMD_DESTROY_ID(r1, 0x0, 0x1d)

871.24044ms ago: executing program 2 (id=1142):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
times(&(0x7f00000001c0))
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000040)={&(0x7f0000000400)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000740)="d40dd1b27efbe30cbea0a1cc2b7d9a6d93d4b513a08ad69ad66ad657d5a544df4b24a6734938b83e0c842b006964b63094a4f83d50149f51f42c70b4e7d447f42a397f0631883c4915c2d4c4522b1afffe640e88e1839e02d3729c7f70e4e121f6dd844923303341e540d4f022a86cdb7045cb395ff75947d3275178caba1009d329fc873fc02292da0c", 0x8a}, {&(0x7f0000000800)="85a6d3376372e21adbc86dd888f31f7fa15c6f270a0989289a8b3e95810f206187fa17c84de4e91d68c1ca8e87255537f149be4a81fef0791c86b4a053b5011b6639d9388dee546eace4f1f52f6ef368d99330e4a40625f44ef7fd4e9f25b2930a03a28d1170379fe3f921fad2db74fe465f01", 0x73}, {&(0x7f0000000880)="0a33bc3d1ea2713c57c56d04b031c7510f5fb23f62e6f93ad8c23a9550140274137822e7c07ba08bb35ada26b5b426bce9b6093ee386801efb0c83c6c2b963ec15305c9e756f5a7fb93144608e83cbe0636267f7e0579808f9c850f0fefc935bc3bcfe29232fd8c68c0230b6764a958d991a2a6e083a81d1735e66b52de0be59422585259f1d5904b2e00b5b19f7dea193a03f27c452b09c36539532643b447b2082d37b4ddfd23243252d488bcd98bcdda976fa6203023b01f55c1e92010fa74201808de6b38cc5ae9777aa8b50eaae92ece2136ef5faa6c8fed751a4fa5b42044f8c67c802951ace31683a06d79780855e7de975f1", 0xf6}, {&(0x7f0000000980)="03e0e30e58d498160ce13874c24c99ea7f1042686fbb0f8bc1725d0cb50178ffcc9a4e7fd6489e875af0173faae6639f500ef67a2d50c78b876872b64f0c6685889e6cbc98af0c8dbae6b2bf16c96cfe72d880a02064960242b559e267030caa9e9ccf349b547d5e5f4673b680f965337763bd83d3b2a6fc4d9398ff8d06309b314610029af009d7d1d3687a8d65823ad7149649d2d8fca957c5d719cc8d0dec872800855277e4d31cdc893c872775ee626e9531c849cd5da420d54fbf7c51a2", 0xc0}, {&(0x7f0000000a40)="3e6951e1e00dddb7e0a3d7f35eaa61388ed8cc48063a5ac7610e04049068a8807db54c72ee520e75ed7a7f981a4ea4ab88086c3d5ce018fa4051f6b59a6f8ed76211e121a820eabb7ef601ccd847fe", 0x4f}], 0x5, &(0x7f0000000b40)=[{0xb8, 0x1, 0x9, "d0dcc9cf8cea6eac89a74727fd606b0294650674860dc49c0d343fe10d6e19dacb78e43fdb1f3375bbda7e66c05575befa8f8b41facd09e7ab70b408ad91f23e6a44d2da3c77166ec9be7fd4fb54a35bd118a24d01fbec63dc109ea859afbbd1286d0cb3d18647c61f1e345414a019ba8b7658fcc42856dac0e110b6effbab608ebe9ed74fadbeed2c06f53b46734b473f31e7b6835132da473a14bce0d48f203d"}], 0xb8}, 0x4000090)

779.602887ms ago: executing program 2 (id=1143):
socket$kcm(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000640)='./file0\x00', 0x80)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000005c0)={0x0, @nfc={0x27, 0x0, 0x0, 0xe}, @ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, @hci={0x1f, 0x0, 0x1}, 0x9, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)='batadv_slave_0\x00', 0x0, 0x7, 0x8})
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x400010, &(0x7f0000394000/0x3000)=nil, 0x3)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x300}, 0x80)

580.068826ms ago: executing program 1 (id=1144):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c00028005000100001f000008000740000000001400108008"], 0x78}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_expedited', 0x101a02, 0x0)
sendfile(r0, r0, 0x0, 0x9)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff000)
sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x4, 0x6, 0x101, 0x0, 0x0, {0x1}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x40044010}, 0x800)
ioctl$sock_bt_hci(r1, 0x400448cc, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRESOCT=r6, @ANYBLOB="010000000000000000000900000008000300", @ANYRES32=r7, @ANYBLOB="0500070000000400050008"], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0xc004)

453.416499ms ago: executing program 0 (id=1145):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r2, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48004}, 0x44080)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x13)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)

159.899143ms ago: executing program 3 (id=1146):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$dsp1(0xffffff9c, &(0x7f0000000100), 0x10080, 0x0)
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f00001b8000/0x2000)=nil, &(0x7f000064f000/0x3000)=nil, 0x0, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x28})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sysfs$1(0x1, &(0x7f00000001c0)='sysfs\x00')
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x13)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a320000000014000000110001"], 0x54}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_DELRULE={0x38, 0x6, 0xa, 0x135cfb4307d517, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}]}], {0x14}}, 0x60}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000080)=0x21003, 0x4)

0s ago: executing program 2 (id=1147):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x2000, 0x0, 0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
times(&(0x7f00000001c0))
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f00000006c0)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x4, 0x0, 0x0, @broadcast=0x1000000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty}}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000400)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000740)="d40dd1b27efbe30cbea0a1cc2b7d9a6d93d4b513a08ad69ad66ad657d5a544df4b24a6734938b83e0c842b006964b63094a4f83d50149f51f42c70b4e7d447f42a397f0631883c4915c2d4c4522b1afffe640e88e1839e02d3729c7f70e4e121f6dd844923303341e540d4f022a86cdb7045cb395ff75947d3275178caba1009d329fc873fc02292da0c", 0x8a}, {&(0x7f0000000800)="85a6d3376372e21adbc86dd888f31f7fa15c6f270a0989289a8b3e95810f206187fa17c84de4e91d68c1ca8e87255537f149be4a81fef0791c86b4a053b5011b6639d9388dee546eace4f1f52f6ef368d99330e4a40625f44ef7fd4e9f25b2930a03a28d1170379fe3f921fad2db74fe465f01", 0x73}, {&(0x7f0000000880)="0a33bc3d1ea2713c57c56d04b031c7510f5fb23f62e6f93ad8c23a9550140274137822e7c07ba08bb35ada26b5b426bce9b6093ee386801efb0c83c6c2b963ec15305c9e756f5a7fb93144608e83cbe0636267f7e0579808f9c850f0fefc935bc3bcfe29232fd8c68c0230b6764a958d991a2a6e083a81d1735e66b52de0be59422585259f1d5904b2e00b5b19f7dea193a03f27c452b09c36539532643b447b2082d37b4ddfd23243252d488bcd98bcdda976fa6203023b01f55c1e92010fa74201808de6b38cc5ae9777aa8b50eaae92ece2136ef5faa6c8fed751a4fa5b42044f8c67c802951ace31683a06d79780855e7de975f1", 0xf6}, {&(0x7f0000000980)="03e0e30e58d498160ce13874c24c99ea7f1042686fbb0f8bc1725d0cb50178ffcc9a4e7fd6489e875af0173faae6639f500ef67a2d50c78b876872b64f0c6685889e6cbc98af0c8dbae6b2bf16c96cfe72d880a02064960242b559e267030caa9e9ccf349b547d5e5f4673b680f965337763bd83d3b2a6fc4d9398ff8d06309b314610029af009d7d1d3687a8d65823ad7149649d2d8fca957c5d719cc8d0dec872800855277e4d31cdc893c872775ee626e9531c849cd5da420d54fbf7c51a2", 0xc0}, {&(0x7f0000000a40)="3e6951e1e00dddb7e0a3d7f35eaa61388ed8cc48063a5ac7610e04049068a8807db54c72ee520e75ed7a7f981a4ea4ab88086c3d5ce018fa4051f6b59a6f8ed76211e121a820eabb7ef601ccd847fe", 0x4f}], 0x5, &(0x7f0000000b40)=[{0xb8, 0x1, 0x9, "d0dcc9cf8cea6eac89a74727fd606b0294650674860dc49c0d343fe10d6e19dacb78e43fdb1f3375bbda7e66c05575befa8f8b41facd09e7ab70b408ad91f23e6a44d2da3c77166ec9be7fd4fb54a35bd118a24d01fbec63dc109ea859afbbd1286d0cb3d18647c61f1e345414a019ba8b7658fcc42856dac0e110b6effbab608ebe9ed74fadbeed2c06f53b46734b473f31e7b6835132da473a14bce0d48f203d"}], 0xb8}, 0x4000090)

kernel console output (not intermixed with test programs):

0xa8/0x170
[  168.325287][ T9621]  ? __pfx_get_compat_msghdr+0x10/0x10
[  168.325304][ T9621]  ___sys_sendmsg+0x1b0/0x1e0
[  168.325315][ T9621]  ? __pfx____sys_sendmsg+0x10/0x10
[  168.325330][ T9621]  ? __pfx_lock_release+0x10/0x10
[  168.325342][ T9621]  ? trace_lock_acquire+0x14e/0x1f0
[  168.325355][ T9621]  ? __fget_files+0x206/0x3a0
[  168.325368][ T9621]  __sys_sendmsg+0x16e/0x220
[  168.325389][ T9621]  ? __pfx___sys_sendmsg+0x10/0x10
[  168.325420][ T9621]  __do_fast_syscall_32+0x73/0x120
[  168.325437][ T9621]  do_fast_syscall_32+0x32/0x80
[  168.325452][ T9621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.325478][ T9621] RIP: 0023:0xf7f8f579
[  168.325490][ T9621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.325501][ T9621] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  168.325510][ T9621] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000080
[  168.325516][ T9621] RDX: 0000000000000804 RSI: 0000000000000000 RDI: 0000000000000000
[  168.325521][ T9621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.325526][ T9621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.325531][ T9621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.325542][ T9621]  </TASK>
[  168.483489][    T8] vhci_hcd: vhci_device speed not set
[  168.560362][    T8] usb 39-1: new full-speed USB device number 9 using vhci_hcd
[  168.810412][ T1321] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  169.300357][ T1321] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  169.303846][ T1321] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  169.307703][ T1321] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  169.311753][ T1321] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  169.315939][ T1321] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  169.321585][ T1321] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  169.325118][ T1321] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  169.328135][ T1321] usb 8-1: Product: syz
[  169.329817][ T1321] usb 8-1: Manufacturer: syz
[  169.334401][ T1321] cdc_wdm 8-1:1.0: skipping garbage
[  169.336209][ T1321] cdc_wdm 8-1:1.0: skipping garbage
[  169.338815][ T1321] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  169.341248][ T1321] cdc_wdm 8-1:1.0: Unknown control protocol
[  169.372551][ T9600] vhci_hcd: connection reset by peer
[  169.375139][   T11] vhci_hcd: stop threads
[  169.376679][   T11] vhci_hcd: release socket
[  169.378861][   T11] vhci_hcd: disconnect device
[  169.535301][ T1321] usb 8-1: USB disconnect, device number 7
[  169.627473][ T9607] vhci_hcd: connection reset by peer
[  169.630960][   T45] vhci_hcd: stop threads
[  169.632691][   T45] vhci_hcd: release socket
[  169.634540][   T45] vhci_hcd: disconnect device
[  169.890412][   T66] Bluetooth: hci0: command 0x1407 tx timeout
[  170.369887][ T9652] FAULT_INJECTION: forcing a failure.
[  170.369887][ T9652] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.376457][ T9652] CPU: 2 UID: 0 PID: 9652 Comm: syz.3.627 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  170.376480][ T9652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.376490][ T9652] Call Trace:
[  170.376495][ T9652]  <TASK>
[  170.376502][ T9652]  dump_stack_lvl+0x16c/0x1f0
[  170.376530][ T9652]  should_fail_ex+0x50a/0x650
[  170.376559][ T9652]  save_fsave_header+0x17c/0x2e0
[  170.376577][ T9652]  ? __pfx_save_fsave_header+0x10/0x10
[  170.376610][ T9652]  ? __local_bh_enable_ip+0xa4/0x120
[  170.376638][ T9652]  copy_fpstate_to_sigframe+0x7b6/0xb20
[  170.376664][ T9652]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  170.376687][ T9652]  ? __sigqueue_free+0xba/0x2a0
[  170.376702][ T9652]  ? collect_signal+0x267/0x440
[  170.376716][ T9652]  ? find_held_lock+0x2d/0x110
[  170.376743][ T9652]  get_sigframe+0x4aa/0x9c0
[  170.376762][ T9652]  ? __pfx_get_sigframe+0x10/0x10
[  170.376780][ T9652]  ? _raw_spin_unlock_irq+0x23/0x50
[  170.376801][ T9652]  ? siginfo_layout+0x1d2/0x290
[  170.376823][ T9652]  ia32_setup_rt_frame+0xe4/0xb30
[  170.376850][ T9652]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  170.376874][ T9652]  ? _copy_from_user+0x98/0xd0
[  170.376899][ T9652]  arch_do_signal_or_restart+0x47b/0x7e0
[  170.376917][ T9652]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  170.376939][ T9652]  ? ksys_write+0x1ba/0x250
[  170.376955][ T9652]  ? __pfx_ksys_write+0x10/0x10
[  170.376975][ T9652]  syscall_exit_to_user_mode+0x150/0x2a0
[  170.377000][ T9652]  __do_fast_syscall_32+0x80/0x120
[  170.377017][ T9652]  do_fast_syscall_32+0x32/0x80
[  170.377031][ T9652]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.377055][ T9652] RIP: 0023:0xf7f8f579
[  170.377068][ T9652] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.377081][ T9652] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 000000000000009c
[  170.377096][ T9652] RAX: fffffffffffffff2 RBX: 0000000000000000 RCX: 0000000000000001
[  170.377106][ T9652] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  170.377115][ T9652] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.377124][ T9652] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.377155][ T9652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.377174][ T9652]  </TASK>
[  170.470411][ T5994] vhci_hcd: vhci_device speed not set
[  170.627644][ T9655] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  170.629588][ T9655] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  170.644758][ T9655] vhci_hcd vhci_hcd.0: Device attached
[  170.678423][ T9662] bad cache= option: none

[  170.678423][ T9662] 
[  170.681170][ T9662] CIFS: VFS: bad cache= option: none

[  170.861965][ T5995] vhci_hcd: vhci_device speed not set
[  170.930856][ T5995] usb 43-1: new full-speed USB device number 8 using vhci_hcd
[  170.994441][ T9672] FAULT_INJECTION: forcing a failure.
[  170.994441][ T9672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.999637][ T9672] CPU: 2 UID: 0 PID: 9672 Comm: syz.2.634 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  170.999658][ T9672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.999667][ T9672] Call Trace:
[  170.999672][ T9672]  <TASK>
[  170.999678][ T9672]  dump_stack_lvl+0x16c/0x1f0
[  170.999706][ T9672]  should_fail_ex+0x50a/0x650
[  170.999727][ T9672]  _copy_from_user+0x2e/0xd0
[  170.999748][ T9672]  move_addr_to_kernel+0x68/0x160
[  170.999771][ T9672]  __get_compat_msghdr+0x3f1/0x4d0
[  170.999793][ T9672]  get_compat_msghdr+0xd3/0x170
[  170.999811][ T9672]  ? __pfx_get_compat_msghdr+0x10/0x10
[  170.999838][ T9672]  ___sys_sendmsg+0x1b0/0x1e0
[  170.999855][ T9672]  ? __pfx____sys_sendmsg+0x10/0x10
[  170.999881][ T9672]  ? trace_lock_acquire+0x14e/0x1f0
[  170.999911][ T9672]  __sys_sendmmsg+0x2fa/0x420
[  170.999929][ T9672]  ? __pfx___sys_sendmmsg+0x10/0x10
[  170.999952][ T9672]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  170.999984][ T9672]  ? fput+0x67/0x440
[  171.000003][ T9672]  ? ksys_write+0x1ba/0x250
[  171.000018][ T9672]  ? __pfx_ksys_write+0x10/0x10
[  171.000037][ T9672]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  171.000057][ T9672]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  171.000081][ T9672]  __do_fast_syscall_32+0x73/0x120
[  171.000097][ T9672]  do_fast_syscall_32+0x32/0x80
[  171.000111][ T9672]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.000134][ T9672] RIP: 0023:0xf7f12579
[  171.000146][ T9672] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.000160][ T9672] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  171.000174][ T9672] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[  171.000183][ T9672] RDX: 00000000801ae9ab RSI: 0000000000000000 RDI: 0000000000000000
[  171.000192][ T9672] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.000200][ T9672] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.000209][ T9672] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.000228][ T9672]  </TASK>
[  171.970452][   T66] Bluetooth: hci0: command 0x1407 tx timeout
[  172.121961][ T9656] vhci_hcd: connection reset by peer
[  172.125472][ T1200] vhci_hcd: stop threads
[  172.126725][ T1200] vhci_hcd: release socket
[  172.129352][ T1200] vhci_hcd: disconnect device
[  172.154327][ T9690] serio: Serial port ptm0
[  172.208976][ T9695] netlink: 'syz.3.642': attribute type 32 has an invalid length.
[  172.212598][ T9695] netlink: 8 bytes leftover after parsing attributes in process `syz.3.642'.
[  172.215319][ T9695] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  172.228118][ T9690] netlink: 'syz.2.639': attribute type 10 has an invalid length.
[  172.235913][ T9690] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.238719][ T9690] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.383748][ T9718] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  173.385892][ T9718] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  173.391167][ T9718] vhci_hcd vhci_hcd.0: Device attached
[  173.393528][   T63] vhci_hcd: vhci_device speed not set
[  173.482718][   T66] Bluetooth: hci0: unexpected event for opcode 0x1405
[  173.580420][ T1321] vhci_hcd: vhci_device speed not set
[  173.641024][ T1321] usb 37-1: new full-speed USB device number 11 using vhci_hcd
[  173.650492][    T8] vhci_hcd: vhci_device speed not set
[  173.841658][ T9729] FAULT_INJECTION: forcing a failure.
[  173.841658][ T9729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.846413][ T9729] CPU: 3 UID: 0 PID: 9729 Comm: syz.2.650 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  173.846434][ T9729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.846445][ T9729] Call Trace:
[  173.846450][ T9729]  <TASK>
[  173.846458][ T9729]  dump_stack_lvl+0x16c/0x1f0
[  173.846488][ T9729]  should_fail_ex+0x50a/0x650
[  173.846513][ T9729]  _copy_to_user+0x32/0xd0
[  173.846538][ T9729]  simple_read_from_buffer+0xd0/0x160
[  173.846566][ T9729]  proc_fail_nth_read+0x198/0x270
[  173.846590][ T9729]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  173.846613][ T9729]  ? rw_verify_area+0xcf/0x680
[  173.846635][ T9729]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  173.846658][ T9729]  vfs_read+0x1df/0xbf0
[  173.846675][ T9729]  ? __fget_files+0x1fc/0x3a0
[  173.846693][ T9729]  ? __pfx___mutex_lock+0x10/0x10
[  173.846718][ T9729]  ? __pfx_vfs_read+0x10/0x10
[  173.846742][ T9729]  ? __fget_files+0x206/0x3a0
[  173.846768][ T9729]  ksys_read+0x12b/0x250
[  173.846784][ T9729]  ? __pfx_ksys_read+0x10/0x10
[  173.846808][ T9729]  __do_fast_syscall_32+0x73/0x120
[  173.846826][ T9729]  do_fast_syscall_32+0x32/0x80
[  173.846842][ T9729]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.846868][ T9729] RIP: 0023:0xf7f12579
[  173.846881][ T9729] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.846896][ T9729] RSP: 002b:00000000f5036590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  173.846912][ T9729] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5036620
[  173.846922][ T9729] RDX: 000000000000000f RSI: 00000000f739cff4 RDI: 0000000000000000
[  173.846932][ T9729] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  173.846941][ T9729] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  173.846951][ T9729] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.846973][ T9729]  </TASK>
[  173.992074][ T9733] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  173.994012][ T9733] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  173.997715][ T9733] vhci_hcd vhci_hcd.0: Device attached
[  174.366402][ T9743] serio: Serial port ptm0
[  174.380522][   T63] vhci_hcd: vhci_device speed not set
[  174.429030][ T9743] netlink: 'syz.3.653': attribute type 10 has an invalid length.
[  174.450586][   T63] usb 41-1: device descriptor read/64, error -110
[  174.537081][ T9750] ieee802154 phy0 wpan0: encryption failed: -22
[  174.650398][   T63] vhci_hcd: vhci_device speed not set
[  174.710419][   T63] usb 41-1: new full-speed USB device number 11 using vhci_hcd
[  174.781996][ T9719] vhci_hcd: connection reset by peer
[  174.847157][   T45] vhci_hcd: stop threads
[  174.848874][   T45] vhci_hcd: release socket
[  174.850411][   T45] vhci_hcd: disconnect device
[  175.351880][ T9734] vhci_hcd: connection reset by peer
[  175.353633][   T82] vhci_hcd: stop threads
[  175.354863][   T82] vhci_hcd: release socket
[  175.356700][   T82] vhci_hcd: disconnect device
[  175.483136][ T9768] FAULT_INJECTION: forcing a failure.
[  175.483136][ T9768] name failslab, interval 1, probability 0, space 0, times 0
[  175.488208][ T9768] CPU: 0 UID: 0 PID: 9768 Comm: syz.1.657 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  175.488230][ T9768] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.488240][ T9768] Call Trace:
[  175.488245][ T9768]  <TASK>
[  175.488252][ T9768]  dump_stack_lvl+0x16c/0x1f0
[  175.488282][ T9768]  should_fail_ex+0x50a/0x650
[  175.488302][ T9768]  ? fs_reclaim_acquire+0xae/0x150
[  175.488330][ T9768]  should_failslab+0xc2/0x120
[  175.488351][ T9768]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  175.488371][ T9768]  ? io_submit_one+0x123/0x1da0
[  175.488400][ T9768]  io_submit_one+0x123/0x1da0
[  175.488434][ T9768]  ? __pfx_io_submit_one+0x10/0x10
[  175.488460][ T9768]  ? __might_fault+0x13b/0x190
[  175.488488][ T9768]  ? lock_acquire+0x2f/0xb0
[  175.488507][ T9768]  ? __might_fault+0xe3/0x190
[  175.488533][ T9768]  ? __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  175.488549][ T9768]  __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  175.488569][ T9768]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  175.488598][ T9768]  __do_fast_syscall_32+0x73/0x120
[  175.488616][ T9768]  do_fast_syscall_32+0x32/0x80
[  175.488632][ T9768]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.488658][ T9768] RIP: 0023:0xf73fe579
[  175.488671][ T9768] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.488687][ T9768] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  175.488703][ T9768] RAX: ffffffffffffffda RBX: 00000000f5003000 RCX: 0000000000000001
[  175.488714][ T9768] RDX: 0000000020000940 RSI: 0000000000000000 RDI: 0000000000000000
[  175.488724][ T9768] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.488733][ T9768] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.488743][ T9768] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.488764][ T9768]  </TASK>
[  175.992178][ T9774] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  175.994763][ T9774] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  175.997829][ T9774] vhci_hcd vhci_hcd.0: Device attached
[  176.051683][ T5995] vhci_hcd: vhci_device speed not set
[  176.260507][ T5995] vhci_hcd: vhci_device speed not set
[  176.340625][ T5995] usb 43-1: device descriptor read/64, error -110
[  176.520529][ T5995] vhci_hcd: vhci_device speed not set
[  176.590420][ T5995] usb 43-1: new full-speed USB device number 9 using vhci_hcd
[  176.802090][ T9786] hub 2-0:1.0: USB hub found
[  176.804224][ T9786] hub 2-0:1.0: 6 ports detected
[  176.970453][   T56] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  177.155160][   T56] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  177.158839][   T56] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  177.162441][   T56] usb 2-1: Product: QEMU USB Tablet
[  177.164781][   T56] usb 2-1: Manufacturer: QEMU
[  177.166886][   T56] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  177.191725][   T56] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0003/input/input7
[  177.258544][   T56] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  177.358957][ T9796] netlink: 'syz.1.666': attribute type 12 has an invalid length.
[  177.494034][ T9775] vhci_hcd: connection reset by peer
[  177.495981][   T11] vhci_hcd: stop threads
[  177.511624][   T11] vhci_hcd: release socket
[  177.513471][   T11] vhci_hcd: disconnect device
[  177.593243][ T9805] netlink: 'syz.3.669': attribute type 12 has an invalid length.
[  177.761150][ T9808] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  177.771891][ T9808] CIFS mount error: No usable UNC path provided in device string!
[  177.771891][ T9808] 
[  177.775968][ T9808] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  178.440429][ T5994] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  178.590560][ T5994] usb 8-1: Using ep0 maxpacket: 8
[  178.594785][ T5994] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  178.598029][ T5994] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  178.600913][ T5994] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.604176][ T5994] usb 8-1: config 0 descriptor??
[  178.770663][ T1321] vhci_hcd: vhci_device speed not set
[  178.809697][ T5994] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  179.025863][ T9828] netlink: 64 bytes leftover after parsing attributes in process `syz.2.677'.
[  179.405858][ T9832] FAULT_INJECTION: forcing a failure.
[  179.405858][ T9832] name failslab, interval 1, probability 0, space 0, times 0
[  179.409563][ T9832] CPU: 1 UID: 0 PID: 9832 Comm: syz.0.676 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  179.409587][ T9832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.409594][ T9832] Call Trace:
[  179.409597][ T9832]  <TASK>
[  179.409601][ T9832]  dump_stack_lvl+0x16c/0x1f0
[  179.409618][ T9832]  should_fail_ex+0x50a/0x650
[  179.409631][ T9832]  ? fs_reclaim_acquire+0xae/0x150
[  179.409648][ T9832]  should_failslab+0xc2/0x120
[  179.409661][ T9832]  __kmalloc_noprof+0xce/0x4f0
[  179.409672][ T9832]  ? alloc_pipe_info+0x1ec/0x590
[  179.409685][ T9832]  alloc_pipe_info+0x1ec/0x590
[  179.409697][ T9832]  splice_direct_to_actor+0x793/0xa40
[  179.409714][ T9832]  ? get_pid_task+0xfc/0x250
[  179.409723][ T9832]  ? __pfx_direct_splice_actor+0x10/0x10
[  179.409739][ T9832]  ? __pfx_aa_file_perm+0x10/0x10
[  179.409751][ T9832]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  179.409767][ T9832]  ? __fget_files+0x1fc/0x3a0
[  179.409778][ T9832]  do_splice_direct+0x178/0x250
[  179.409793][ T9832]  ? __pfx_do_splice_direct+0x10/0x10
[  179.409808][ T9832]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  179.409824][ T9832]  ? rw_verify_area+0xcf/0x680
[  179.409839][ T9832]  do_sendfile+0xafb/0xe40
[  179.409849][ T9832]  ? __pfx_do_sendfile+0x10/0x10
[  179.409858][ T9832]  ? __fget_files+0x206/0x3a0
[  179.409871][ T9832]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  179.409882][ T9832]  ? ksys_write+0x1ba/0x250
[  179.409891][ T9832]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  179.409907][ T9832]  __do_fast_syscall_32+0x73/0x120
[  179.409917][ T9832]  do_fast_syscall_32+0x32/0x80
[  179.409926][ T9832]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.409941][ T9832] RIP: 0023:0xf7f38579
[  179.409949][ T9832] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  179.409958][ T9832] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  179.409967][ T9832] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000006
[  179.409973][ T9832] RDX: 0000000000000000 RSI: 0000000080000504 RDI: 0000000000000000
[  179.409978][ T9832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  179.409983][ T9832] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  179.409988][ T9832] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.409999][ T9832]  </TASK>
[  179.711754][ T9840] netlink: 'syz.0.681': attribute type 1 has an invalid length.
[  179.713874][ T9840] netlink: 16 bytes leftover after parsing attributes in process `syz.0.681'.
[  179.761514][ T9843] block nbd2: NBD_DISCONNECT
[  179.763390][ T9843] block nbd2: Disconnected due to user request.
[  179.766803][ T9843] block nbd2: shutting down sockets
[  179.800503][   T63] vhci_hcd: vhci_device speed not set
[  179.925706][ T9854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.683'.
[  180.034563][ T9857] netlink: 2048 bytes leftover after parsing attributes in process `syz.2.685'.
[  180.037495][ T9857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'.
[  180.102533][ T9858] 9pnet_fd: Insufficient options for proto=fd
[  180.380460][    T8] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  180.540350][    T8] usb 6-1: Using ep0 maxpacket: 32
[  180.543366][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.547229][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.551273][    T8] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  180.555155][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.560097][    T8] usb 6-1: config 0 descriptor??
[  180.881777][ T9867] netlink: 'syz.2.689': attribute type 32 has an invalid length.
[  180.884530][ T9867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.689'.
[  180.888041][ T9867] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  180.976948][    T8] savu 0003:1E7D:2D5A.0004: hiddev1,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  181.175233][ T9860] FAULT_INJECTION: forcing a failure.
[  181.175233][ T9860] name failslab, interval 1, probability 0, space 0, times 0
[  181.180697][ T9860] CPU: 0 UID: 0 PID: 9860 Comm: syz.1.686 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  181.180719][ T9860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.180729][ T9860] Call Trace:
[  181.180734][ T9860]  <TASK>
[  181.180740][ T9860]  dump_stack_lvl+0x16c/0x1f0
[  181.180787][ T9860]  should_fail_ex+0x50a/0x650
[  181.180808][ T9860]  ? fs_reclaim_acquire+0xae/0x150
[  181.180834][ T9860]  should_failslab+0xc2/0x120
[  181.180855][ T9860]  __kmalloc_noprof+0xce/0x4f0
[  181.180874][ T9860]  ? io_cache_alloc_new+0x3f/0xd0
[  181.180901][ T9860]  io_cache_alloc_new+0x3f/0xd0
[  181.180916][ T9860]  io_prep_rw+0x3bf/0x10b0
[  181.180935][ T9860]  ? __pfx_io_prep_rw+0x10/0x10
[  181.180953][ T9860]  ? __io_alloc_req_refill+0x30c/0x5b0
[  181.180975][ T9860]  io_prep_rwv+0xa8/0x360
[  181.180991][ T9860]  ? __pfx_io_prep_rwv+0x10/0x10
[  181.181015][ T9860]  io_submit_sqes+0x850/0x25f0
[  181.181049][ T9860]  __do_sys_io_uring_enter+0xd60/0x1670
[  181.181074][ T9860]  ? __fget_files+0x206/0x3a0
[  181.181092][ T9860]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  181.181116][ T9860]  ? fput+0x67/0x440
[  181.181136][ T9860]  ? ksys_write+0x1ba/0x250
[  181.181151][ T9860]  ? __pfx_ksys_write+0x10/0x10
[  181.181174][ T9860]  __do_fast_syscall_32+0x73/0x120
[  181.181191][ T9860]  do_fast_syscall_32+0x32/0x80
[  181.181206][ T9860]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.181232][ T9860] RIP: 0023:0xf73fe579
[  181.181245][ T9860] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.181261][ T9860] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  181.181276][ T9860] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000000047ba
[  181.181287][ T9860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  181.181296][ T9860] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.181305][ T9860] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  181.181315][ T9860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.181336][ T9860]  </TASK>
[  181.182291][    T8] usb 6-1: USB disconnect, device number 7
[  181.326894][ T6274] usb 8-1: USB disconnect, device number 8
[  181.515107][ T9877] block nbd3: NBD_DISCONNECT
[  181.517247][ T9877] block nbd3: Disconnected due to user request.
[  181.519951][ T9877] block nbd3: shutting down sockets
[  181.647098][ T9883] ieee802154 phy0 wpan0: encryption failed: -22
[  181.734407][ T5995] vhci_hcd: vhci_device speed not set
[  182.085483][ T9902] netlink: 64 bytes leftover after parsing attributes in process `syz.1.698'.
[  182.662228][ T9906] block nbd3: NBD_DISCONNECT
[  182.664019][ T9906] block nbd3: Disconnected due to user request.
[  182.666301][ T9906] block nbd3: shutting down sockets
[  182.742311][ T9904] 9pnet_fd: Insufficient options for proto=fd
[  182.900606][ T9922] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  182.902595][ T9922] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  182.905790][ T9922] vhci_hcd vhci_hcd.0: Device attached
[  183.070642][ T5995] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  183.090669][    T8] vhci_hcd: vhci_device speed not set
[  183.150472][    T8] usb 37-1: new full-speed USB device number 12 using vhci_hcd
[  183.248662][ T5995] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  183.251451][ T5995] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  183.254448][ T5995] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  183.257185][ T5995] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  183.260571][ T5995] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  183.288169][ T5995] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  183.291320][ T5995] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  183.294178][ T5995] usb 7-1: Product: syz
[  183.296136][ T5995] usb 7-1: Manufacturer: syz
[  183.337731][ T5995] cdc_wdm 7-1:1.0: skipping garbage
[  183.339446][ T5995] cdc_wdm 7-1:1.0: skipping garbage
[  183.350344][ T5995] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  183.352608][ T5995] cdc_wdm 7-1:1.0: Unknown control protocol
[  183.613379][ T5995] usb 7-1: USB disconnect, device number 5
[  184.342080][ T9923] vhci_hcd: connection reset by peer
[  184.356336][   T82] vhci_hcd: stop threads
[  184.357676][   T82] vhci_hcd: release socket
[  184.359587][   T82] vhci_hcd: disconnect device
[  184.400437][ T9940] ieee802154 phy0 wpan0: encryption failed: -22
[  184.469787][ T9943] netlink: 72 bytes leftover after parsing attributes in process `syz.0.710'.
[  184.474896][ T9943] FAULT_INJECTION: forcing a failure.
[  184.474896][ T9943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.480020][ T9943] CPU: 3 UID: 0 PID: 9943 Comm: syz.0.710 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  184.480041][ T9943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.480051][ T9943] Call Trace:
[  184.480056][ T9943]  <TASK>
[  184.480063][ T9943]  dump_stack_lvl+0x16c/0x1f0
[  184.480092][ T9943]  should_fail_ex+0x50a/0x650
[  184.480117][ T9943]  _copy_from_user+0x2e/0xd0
[  184.480141][ T9943]  move_addr_to_kernel+0x68/0x160
[  184.480167][ T9943]  __get_compat_msghdr+0x3f1/0x4d0
[  184.480196][ T9943]  get_compat_msghdr+0xd3/0x170
[  184.480217][ T9943]  ? __pfx_get_compat_msghdr+0x10/0x10
[  184.480246][ T9943]  ___sys_sendmsg+0x1b0/0x1e0
[  184.480266][ T9943]  ? __pfx____sys_sendmsg+0x10/0x10
[  184.480307][ T9943]  ? trace_lock_acquire+0x14e/0x1f0
[  184.480341][ T9943]  __sys_sendmmsg+0x2fa/0x420
[  184.480361][ T9943]  ? __pfx___sys_sendmmsg+0x10/0x10
[  184.480386][ T9943]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  184.480423][ T9943]  ? fput+0x67/0x440
[  184.480445][ T9943]  ? ksys_write+0x1ba/0x250
[  184.480461][ T9943]  ? __pfx_ksys_write+0x10/0x10
[  184.480481][ T9943]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  184.480504][ T9943]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  184.480530][ T9943]  __do_fast_syscall_32+0x73/0x120
[  184.480548][ T9943]  do_fast_syscall_32+0x32/0x80
[  184.480564][ T9943]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  184.480590][ T9943] RIP: 0023:0xf7f38579
[  184.480604][ T9943] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  184.480619][ T9943] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  184.480636][ T9943] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020003a00
[  184.480647][ T9943] RDX: 0000000000000001 RSI: 000000000004c040 RDI: 0000000000000000
[  184.480657][ T9943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.480666][ T9943] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  184.480676][ T9943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.480697][ T9943]  </TASK>
[  184.610367][ T9945] netlink: 72 bytes leftover after parsing attributes in process `syz.0.711'.
[  184.731340][ T9948] block nbd0: NBD_DISCONNECT
[  184.732897][ T9948] block nbd0: Disconnected due to user request.
[  184.735531][ T9948] block nbd0: shutting down sockets
[  185.172234][ T9957] FAULT_INJECTION: forcing a failure.
[  185.172234][ T9957] name failslab, interval 1, probability 0, space 0, times 0
[  185.177376][ T9957] CPU: 1 UID: 0 PID: 9957 Comm: syz.1.715 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  185.177398][ T9957] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.177409][ T9957] Call Trace:
[  185.177415][ T9957]  <TASK>
[  185.177422][ T9957]  dump_stack_lvl+0x16c/0x1f0
[  185.177452][ T9957]  should_fail_ex+0x50a/0x650
[  185.177472][ T9957]  ? find_held_lock+0x2d/0x110
[  185.177502][ T9957]  should_failslab+0xc2/0x120
[  185.177524][ T9957]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  185.177545][ T9957]  ? dst_alloc+0x99/0x1a0
[  185.177571][ T9957]  dst_alloc+0x99/0x1a0
[  185.177596][ T9957]  rt_dst_alloc+0x35/0x3a0
[  185.177620][ T9957]  ip_route_output_key_hash_rcu+0x8a5/0x2770
[  185.177654][ T9957]  ip_route_output_key_hash+0x138/0x2e0
[  185.177681][ T9957]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  185.177712][ T9957]  ? __pfx_lock_release+0x10/0x10
[  185.177731][ T9957]  ? trace_lock_acquire+0x14e/0x1f0
[  185.177747][ T9957]  ? hlock_class+0x4e/0x130
[  185.177776][ T9957]  ip_route_output_flow+0x27/0x150
[  185.177804][ T9957]  raw_sendmsg+0xbd2/0x3870
[  185.177854][ T9957]  ? __pfx_raw_sendmsg+0x10/0x10
[  185.177878][ T9957]  ? hlock_class+0x4e/0x130
[  185.177918][ T9957]  ? __pfx___might_resched+0x10/0x10
[  185.177939][ T9957]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.177967][ T9957]  ? aa_sk_perm+0x2f5/0xb20
[  185.177990][ T9957]  ? __import_iovec+0x1f2/0x6d0
[  185.178015][ T9957]  ? __pfx_raw_sendmsg+0x10/0x10
[  185.178041][ T9957]  inet_sendmsg+0x119/0x140
[  185.178067][ T9957]  ____sys_sendmsg+0x907/0xb40
[  185.178092][ T9957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.178113][ T9957]  ? get_compat_msghdr+0x11b/0x170
[  185.178146][ T9957]  ___sys_sendmsg+0x135/0x1e0
[  185.178171][ T9957]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.178200][ T9957]  ? trace_lock_acquire+0x14e/0x1f0
[  185.178232][ T9957]  __sys_sendmmsg+0x2fa/0x420
[  185.178269][ T9957]  ? __pfx___sys_sendmmsg+0x10/0x10
[  185.178293][ T9957]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  185.178326][ T9957]  ? fput+0x67/0x440
[  185.178346][ T9957]  ? ksys_write+0x1ba/0x250
[  185.178361][ T9957]  ? __pfx_ksys_write+0x10/0x10
[  185.178380][ T9957]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  185.178401][ T9957]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  185.178426][ T9957]  __do_fast_syscall_32+0x73/0x120
[  185.178442][ T9957]  do_fast_syscall_32+0x32/0x80
[  185.178456][ T9957]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.178481][ T9957] RIP: 0023:0xf73fe579
[  185.178493][ T9957] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.178508][ T9957] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  185.178524][ T9957] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005240
[  185.178534][ T9957] RDX: 0000000000000300 RSI: 000000000401eb94 RDI: 0000000000000000
[  185.178544][ T9957] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.178554][ T9957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.178564][ T9957] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.178586][ T9957]  </TASK>
[  185.472975][ T9964] netlink: 4 bytes leftover after parsing attributes in process `syz.1.718'.
[  185.530367][ T9971] FAULT_INJECTION: forcing a failure.
[  185.530367][ T9971] name failslab, interval 1, probability 0, space 0, times 0
[  185.535293][ T9971] CPU: 3 UID: 0 PID: 9971 Comm: syz.2.719 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  185.535313][ T9971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.535323][ T9971] Call Trace:
[  185.535328][ T9971]  <TASK>
[  185.535334][ T9971]  dump_stack_lvl+0x16c/0x1f0
[  185.535362][ T9971]  should_fail_ex+0x50a/0x650
[  185.535381][ T9971]  ? fs_reclaim_acquire+0xae/0x150
[  185.535408][ T9971]  should_failslab+0xc2/0x120
[  185.535428][ T9971]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  185.535446][ T9971]  ? __alloc_skb+0x2b3/0x380
[  185.535465][ T9971]  __alloc_skb+0x2b3/0x380
[  185.535479][ T9971]  ? __pfx___alloc_skb+0x10/0x10
[  185.535495][ T9971]  ? lock_acquire+0x2f/0xb0
[  185.535518][ T9971]  netlink_alloc_large_skb+0x69/0x130
[  185.535541][ T9971]  netlink_sendmsg+0x689/0xd70
[  185.535565][ T9971]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.535595][ T9971]  ____sys_sendmsg+0x9ae/0xb40
[  185.535618][ T9971]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.535638][ T9971]  ? get_compat_msghdr+0x11b/0x170
[  185.535667][ T9971]  ___sys_sendmsg+0x135/0x1e0
[  185.535686][ T9971]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.535710][ T9971]  ? __pfx_lock_release+0x10/0x10
[  185.535727][ T9971]  ? trace_lock_acquire+0x14e/0x1f0
[  185.535750][ T9971]  ? __fget_files+0x206/0x3a0
[  185.535773][ T9971]  __sys_sendmsg+0x16e/0x220
[  185.535789][ T9971]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.535819][ T9971]  __do_fast_syscall_32+0x73/0x120
[  185.535836][ T9971]  do_fast_syscall_32+0x32/0x80
[  185.535850][ T9971]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.535875][ T9971] RIP: 0023:0xf7f12579
[  185.535887][ T9971] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.535901][ T9971] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  185.535916][ T9971] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000340
[  185.535925][ T9971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  185.535934][ T9971] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.535942][ T9971] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.535951][ T9971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.535970][ T9971]  </TASK>
[  186.269290][ T9989] netlink: 64 bytes leftover after parsing attributes in process `syz.1.723'.
[  186.576382][T10002] fuse: Bad value for 'fd'
[  186.621425][T10004] netlink: 64 bytes leftover after parsing attributes in process `syz.2.727'.
[  186.823255][T10007] FAULT_INJECTION: forcing a failure.
[  186.823255][T10007] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.828472][T10007] CPU: 0 UID: 0 PID: 10007 Comm: syz.1.730 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  186.828495][T10007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.828506][T10007] Call Trace:
[  186.828511][T10007]  <TASK>
[  186.828518][T10007]  dump_stack_lvl+0x16c/0x1f0
[  186.828548][T10007]  should_fail_ex+0x50a/0x650
[  186.828571][T10007]  strncpy_from_user+0x3b/0x2d0
[  186.828592][T10007]  getname_flags.part.0+0x8f/0x550
[  186.828619][T10007]  getname+0x8d/0xe0
[  186.828635][T10007]  do_sys_openat2+0x104/0x1e0
[  186.828657][T10007]  ? __pfx_do_sys_openat2+0x10/0x10
[  186.828681][T10007]  ? __fget_files+0x206/0x3a0
[  186.828704][T10007]  __ia32_compat_sys_openat+0x16e/0x210
[  186.828729][T10007]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  186.828752][T10007]  ? ksys_write+0x1ba/0x250
[  186.828777][T10007]  __do_fast_syscall_32+0x73/0x120
[  186.828794][T10007]  do_fast_syscall_32+0x32/0x80
[  186.828810][T10007]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.828836][T10007] RIP: 0023:0xf73fe579
[  186.828850][T10007] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.828864][T10007] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  186.828881][T10007] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000080
[  186.828891][T10007] RDX: 000000000008e383 RSI: 0000000000000000 RDI: 0000000000000000
[  186.828901][T10007] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.828910][T10007] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.828920][T10007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.828940][T10007]  </TASK>
[  186.907255][T10011] serio: Serial port ptm0
[  186.961520][T10011] netlink: 'syz.0.729': attribute type 10 has an invalid length.
[  187.521200][T10023] block nbd3: NBD_DISCONNECT
[  187.523199][T10023] block nbd3: Disconnected due to user request.
[  187.525568][T10023] block nbd3: shutting down sockets
[  187.550392][ T1321] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  187.702251][ T1321] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  187.705762][ T1321] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  187.710009][ T1321] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  187.713761][ T1321] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  187.718159][ T1321] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  187.722869][ T1321] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  187.726110][ T1321] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  187.728853][ T1321] usb 7-1: Product: syz
[  187.730050][ T1321] usb 7-1: Manufacturer: syz
[  187.733303][ T1321] cdc_wdm 7-1:1.0: skipping garbage
[  187.734874][ T1321] cdc_wdm 7-1:1.0: skipping garbage
[  187.736830][ T1321] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  187.739022][ T1321] cdc_wdm 7-1:1.0: Unknown control protocol
[  187.830422][ T5994] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  187.936949][ T5999] usb 7-1: USB disconnect, device number 6
[  187.983204][ T5994] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  187.986710][ T5994] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  187.990502][ T5994] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  187.994153][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  187.997615][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  188.003344][ T5994] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  188.006944][ T5994] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  188.010028][ T5994] usb 6-1: Product: syz
[  188.011439][ T5994] usb 6-1: Manufacturer: syz
[  188.014735][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  188.016818][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  188.019594][ T5994] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  188.021911][ T5994] cdc_wdm 6-1:1.0: Unknown control protocol
[  188.217835][T10035] netlink: 'syz.0.738': attribute type 12 has an invalid length.
[  188.219409][ T5994] usb 6-1: USB disconnect, device number 8
[  188.290592][    T8] vhci_hcd: vhci_device speed not set
[  188.918712][T10045] ieee802154 phy0 wpan0: encryption failed: -22
[  189.107825][T10054] serio: Serial port ptm1
[  189.120903][T10053] block nbd0: NBD_DISCONNECT
[  189.122893][T10053] block nbd0: Disconnected due to user request.
[  189.125515][T10053] block nbd0: shutting down sockets
[  189.175589][T10054] netlink: 'syz.1.743': attribute type 10 has an invalid length.
[  189.519111][T10061] netlink: 64 bytes leftover after parsing attributes in process `syz.0.746'.
[  190.050462][ T5994] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  190.222365][ T5994] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  190.225906][ T5994] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  190.229963][ T5994] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  190.233741][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  190.237715][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  190.243648][ T5994] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  190.247044][ T5994] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  190.250113][ T5994] usb 6-1: Product: syz
[  190.251866][ T5994] usb 6-1: Manufacturer: syz
[  190.302015][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  190.303802][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  190.305839][ T5994] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  190.307578][ T5994] cdc_wdm 6-1:1.0: Unknown control protocol
[  190.470541][T10074] netlink: 'syz.3.751': attribute type 1 has an invalid length.
[  190.503593][ T5994] usb 6-1: USB disconnect, device number 9
[  190.780509][    T8] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  190.930421][    T8] usb 5-1: Using ep0 maxpacket: 8
[  190.933172][    T8] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  190.935630][    T8] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  190.938486][    T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  190.941397][    T8] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  190.945129][    T8] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  190.947678][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.951442][    T8] usbtmc 5-1:16.0: bulk endpoints not found
[  191.000032][T10085] ieee802154 phy0 wpan0: encryption failed: -22
[  191.155913][T10067] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  191.177871][ T6274] usb 5-1: USB disconnect, device number 8
[  191.184469][T10088] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  191.187186][T10088] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  191.190614][T10088] vhci_hcd vhci_hcd.0: Device attached
[  191.383093][T10094] vxcan1: tx address claim with dlc 1
[  191.386256][T10094] ubi: mtd0 is already attached to ubi0
[  191.470457][ T5999] vhci_hcd: vhci_device speed not set
[  191.530537][ T5999] usb 43-1: new full-speed USB device number 10 using vhci_hcd
[  192.022409][T10089] vhci_hcd: connection reset by peer
[  192.024447][   T45] vhci_hcd: stop threads
[  192.026280][   T45] vhci_hcd: release socket
[  192.028259][   T45] vhci_hcd: disconnect device
[  192.820412][    T8] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  192.836831][T10120] ieee802154 phy0 wpan0: encryption failed: -22
[  192.972245][    T8] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  192.975706][    T8] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  192.979122][    T8] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  192.982891][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  192.987158][    T8] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  192.993264][    T8] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  192.997023][    T8] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  193.000429][    T8] usb 7-1: Product: syz
[  193.002328][    T8] usb 7-1: Manufacturer: syz
[  193.009148][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  193.011527][    T8] cdc_wdm 7-1:1.0: skipping garbage
[  193.013942][    T8] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  193.015871][    T8] cdc_wdm 7-1:1.0: Unknown control protocol
[  193.211127][    T8] usb 7-1: USB disconnect, device number 7
[  193.543730][T10135] random: crng reseeded on system resumption
[  193.873936][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  193.876543][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  193.944257][T10134] netlink: 20 bytes leftover after parsing attributes in process `syz.0.771'.
[  195.374570][T10149] serio: Serial port ptm0
[  195.440598][T10149] netlink: 'syz.2.775': attribute type 10 has an invalid length.
[  195.970409][   T66] Bluetooth: hci3: command 0x0419 tx timeout
[  196.099673][T10164] ieee802154 phy0 wpan0: encryption failed: -22
[  196.260888][T10167] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  196.262825][T10167] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  196.343134][T10167] vhci_hcd vhci_hcd.0: Device attached
[  196.412356][T10175] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  196.414300][T10175] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  196.416757][T10175] vhci_hcd vhci_hcd.0: Device attached
[  196.810497][ T5995] vhci_hcd: vhci_device speed not set
[  196.870512][ T5995] usb 41-1: new full-speed USB device number 12 using vhci_hcd
[  197.675906][T10185] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  197.678492][T10185] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  197.683092][T10185] vhci_hcd vhci_hcd.0: Device attached
[  197.941270][    T8] vhci_hcd: vhci_device speed not set
[  198.000479][    T8] usb 37-1: new full-speed USB device number 13 using vhci_hcd
[  198.312245][T10176] vhci_hcd: connection reset by peer
[  198.316001][ T1200] vhci_hcd: stop threads
[  198.320441][ T1200] vhci_hcd: release socket
[  198.321879][ T1200] vhci_hcd: disconnect device
[  198.400408][ T5999] vhci_hcd: vhci_device speed not set
[  198.668419][T10168] vhci_hcd: connection reset by peer
[  198.670950][   T62] vhci_hcd: stop threads
[  198.672708][   T62] vhci_hcd: release socket
[  198.674552][   T62] vhci_hcd: disconnect device
[  198.794924][T10204] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  198.797602][T10204] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  198.800985][T10204] vhci_hcd vhci_hcd.0: Device attached
[  199.517566][T10186] vhci_hcd: connection reset by peer
[  199.520428][   T62] vhci_hcd: stop threads
[  199.522200][   T62] vhci_hcd: release socket
[  199.524145][   T62] vhci_hcd: disconnect device
[  199.586181][T10213] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  199.588880][T10213] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  199.593075][T10213] vhci_hcd vhci_hcd.0: Device attached
[  199.770442][ T6274] vhci_hcd: vhci_device speed not set
[  199.832410][ T6274] usb 39-1: new full-speed USB device number 10 using vhci_hcd
[  199.833509][T10222] block nbd0: NBD_DISCONNECT
[  199.837134][T10222] block nbd0: Disconnected due to user request.
[  199.840479][T10222] block nbd0: shutting down sockets
[  201.271267][T10205] vhci_hcd: connection closed
[  201.271664][ T1146] vhci_hcd: stop threads
[  201.275574][ T1146] vhci_hcd: release socket
[  201.277626][ T1146] vhci_hcd: disconnect device
[  201.343606][T10234] FAULT_INJECTION: forcing a failure.
[  201.343606][T10234] name failslab, interval 1, probability 0, space 0, times 0
[  201.348347][T10234] CPU: 0 UID: 0 PID: 10234 Comm: syz.2.796 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  201.348366][T10234] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.348375][T10234] Call Trace:
[  201.348381][T10234]  <TASK>
[  201.348387][T10234]  dump_stack_lvl+0x16c/0x1f0
[  201.348415][T10234]  should_fail_ex+0x50a/0x650
[  201.348435][T10234]  ? fs_reclaim_acquire+0xae/0x150
[  201.348460][T10234]  should_failslab+0xc2/0x120
[  201.348480][T10234]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  201.348499][T10234]  ? __alloc_skb+0x2b3/0x380
[  201.348516][T10234]  __alloc_skb+0x2b3/0x380
[  201.348531][T10234]  ? __pfx___alloc_skb+0x10/0x10
[  201.348546][T10234]  ? lock_acquire+0x2f/0xb0
[  201.348571][T10234]  netlink_alloc_large_skb+0x69/0x130
[  201.348595][T10234]  netlink_sendmsg+0x689/0xd70
[  201.348620][T10234]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.348649][T10234]  ____sys_sendmsg+0x9ae/0xb40
[  201.348671][T10234]  ? __pfx_____sys_sendmsg+0x10/0x10
[  201.348690][T10234]  ? get_compat_msghdr+0x11b/0x170
[  201.348720][T10234]  ___sys_sendmsg+0x135/0x1e0
[  201.348739][T10234]  ? __pfx____sys_sendmsg+0x10/0x10
[  201.348760][T10234]  ? __pfx_lock_release+0x10/0x10
[  201.348777][T10234]  ? trace_lock_acquire+0x14e/0x1f0
[  201.348799][T10234]  ? __fget_files+0x206/0x3a0
[  201.348821][T10234]  __sys_sendmsg+0x16e/0x220
[  201.348839][T10234]  ? __pfx___sys_sendmsg+0x10/0x10
[  201.348867][T10234]  __do_fast_syscall_32+0x73/0x120
[  201.348884][T10234]  do_fast_syscall_32+0x32/0x80
[  201.348898][T10234]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  201.348924][T10234] RIP: 0023:0xf7f12579
[  201.348935][T10234] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  201.348949][T10234] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  201.348964][T10234] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001080
[  201.348973][T10234] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  201.348982][T10234] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  201.348991][T10234] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  201.349005][T10234] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  201.349023][T10234]  </TASK>
[  201.413513][T10237] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  201.432927][T10237] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  201.437037][T10237] vhci_hcd vhci_hcd.0: Device attached
[  201.619227][T10214] vhci_hcd: connection reset by peer
[  201.630735][   T11] vhci_hcd: stop threads
[  201.633294][   T11] vhci_hcd: release socket
[  201.635259][   T11] vhci_hcd: disconnect device
[  201.928502][T10245] vxcan1: tx address claim with dlc 1
[  201.934973][T10245] ubi: mtd0 is already attached to ubi0
[  201.990369][ T5995] vhci_hcd: vhci_device speed not set
[  202.630620][T10257] ieee802154 phy0 wpan0: encryption failed: -22
[  202.840439][ T5994] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  203.002386][ T5994] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  203.005873][ T5994] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  203.009973][ T5994] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  203.013718][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  203.018124][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  203.024163][ T5994] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  203.027738][ T5994] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  203.030165][ T5994] usb 6-1: Product: syz
[  203.031555][ T5994] usb 6-1: Manufacturer: syz
[  203.034800][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  203.036244][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  203.038130][ T5994] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  203.039778][ T5994] cdc_wdm 6-1:1.0: Unknown control protocol
[  203.206139][T10238] vhci_hcd: connection reset by peer
[  203.208074][   T62] vhci_hcd: stop threads
[  203.210752][   T62] vhci_hcd: release socket
[  203.212759][   T62] vhci_hcd: disconnect device
[  203.225866][T10262] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  203.241052][ T5994] usb 6-1: USB disconnect, device number 10
[  203.290395][    T8] vhci_hcd: vhci_device speed not set
[  203.367735][T10269] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  203.369780][T10269] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  203.374581][T10269] vhci_hcd vhci_hcd.0: Device attached
[  203.440423][T10273] ieee802154 phy0 wpan0: encryption failed: -22
[  203.551123][ T5995] vhci_hcd: vhci_device speed not set
[  203.630523][ T5995] usb 43-1: new full-speed USB device number 11 using vhci_hcd
[  203.776323][T10278] ieee802154 phy0 wpan0: encryption failed: -22
[  204.208502][T10281] netlink: 'syz.1.808': attribute type 12 has an invalid length.
[  204.840696][T10271] vhci_hcd: connection reset by peer
[  204.843402][ T1200] vhci_hcd: stop threads
[  204.845124][ T1200] vhci_hcd: release socket
[  204.846996][ T1200] vhci_hcd: disconnect device
[  204.920448][ T6274] vhci_hcd: vhci_device speed not set
[  204.960259][T10291] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  204.962997][T10291] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  204.966148][T10291] vhci_hcd vhci_hcd.0: Device attached
[  206.290529][ T6274] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  206.442299][ T6274] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  206.445698][ T6274] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  206.449476][ T6274] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  206.452968][ T6274] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  206.457787][ T6274] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  206.462738][ T6274] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  206.465373][ T6274] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  206.467774][ T6274] usb 6-1: Product: syz
[  206.469088][ T6274] usb 6-1: Manufacturer: syz
[  206.472249][ T6274] cdc_wdm 6-1:1.0: skipping garbage
[  206.473798][ T6274] cdc_wdm 6-1:1.0: skipping garbage
[  206.475694][ T6274] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  206.477447][ T6274] cdc_wdm 6-1:1.0: Unknown control protocol
[  206.498789][T10292] vhci_hcd: connection closed
[  206.499033][ T1146] vhci_hcd: stop threads
[  206.501866][ T1146] vhci_hcd: release socket
[  206.503510][ T1146] vhci_hcd: disconnect device
[  206.679594][ T6274] usb 6-1: USB disconnect, device number 11
[  206.686829][T10368] netlink: 'syz.3.817': attribute type 12 has an invalid length.
[  206.770747][T10371] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  206.773165][T10371] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  206.776010][T10371] vhci_hcd vhci_hcd.0: Device attached
[  206.970451][ T1321] vhci_hcd: vhci_device speed not set
[  207.030510][ T1321] usb 41-1: new full-speed USB device number 13 using vhci_hcd
[  207.745265][T10378] vxcan1: tx address claim with dlc 1
[  207.763259][T10378] ubi: mtd0 is already attached to ubi0
[  208.204823][T10372] vhci_hcd: connection reset by peer
[  208.207325][ T1031] vhci_hcd: stop threads
[  208.210576][ T1031] vhci_hcd: release socket
[  208.220500][ T1031] vhci_hcd: disconnect device
[  208.390718][T10389] netlink: 'syz.2.822': attribute type 12 has an invalid length.
[  208.766541][ T5995] vhci_hcd: vhci_device speed not set
[  208.960962][T10394] block nbd1: NBD_DISCONNECT
[  208.963033][T10394] block nbd1: Disconnected due to user request.
[  208.965109][T10394] block nbd1: shutting down sockets
[  209.116749][T10397] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  209.118736][T10397] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  209.121134][T10397] vhci_hcd vhci_hcd.0: Device attached
[  209.320533][ T5996] vhci_hcd: vhci_device speed not set
[  209.401249][T10413] serio: Serial port ptm0
[  209.453192][T10412] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  209.455233][T10412] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  209.457558][T10412] vhci_hcd vhci_hcd.0: Device attached
[  209.458774][T10413] netlink: 'syz.0.829': attribute type 10 has an invalid length.
[  209.462630][ T5996] usb 39-1: new full-speed USB device number 11 using vhci_hcd
[  209.715771][T10419] netlink: 'syz.0.830': attribute type 12 has an invalid length.
[  210.141009][T10423] FAULT_INJECTION: forcing a failure.
[  210.141009][T10423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.144965][T10423] CPU: 3 UID: 0 PID: 10423 Comm: syz.3.831 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  210.144986][T10423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.144997][T10423] Call Trace:
[  210.145003][T10423]  <TASK>
[  210.145010][T10423]  dump_stack_lvl+0x16c/0x1f0
[  210.145040][T10423]  should_fail_ex+0x50a/0x650
[  210.145065][T10423]  _copy_to_user+0x32/0xd0
[  210.145091][T10423]  simple_read_from_buffer+0xd0/0x160
[  210.145121][T10423]  proc_fail_nth_read+0x198/0x270
[  210.145146][T10423]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.145172][T10423]  ? rw_verify_area+0xcf/0x680
[  210.145197][T10423]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  210.145220][T10423]  vfs_read+0x1df/0xbf0
[  210.145237][T10423]  ? __fget_files+0x1fc/0x3a0
[  210.145255][T10423]  ? __pfx___mutex_lock+0x10/0x10
[  210.145282][T10423]  ? __pfx_vfs_read+0x10/0x10
[  210.145306][T10423]  ? __fget_files+0x206/0x3a0
[  210.145331][T10423]  ksys_read+0x12b/0x250
[  210.145347][T10423]  ? __pfx_ksys_read+0x10/0x10
[  210.145372][T10423]  __do_fast_syscall_32+0x73/0x120
[  210.145389][T10423]  do_fast_syscall_32+0x32/0x80
[  210.145406][T10423]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.145433][T10423] RIP: 0023:0xf7f8f579
[  210.145446][T10423] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  210.145462][T10423] RSP: 002b:00000000f50b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  210.145479][T10423] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50b6620
[  210.145489][T10423] RDX: 000000000000000f RSI: 00000000f741cff4 RDI: 0000000000000000
[  210.145499][T10423] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  210.145508][T10423] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  210.145518][T10423] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.145540][T10423]  </TASK>
[  210.685103][T10400] vhci_hcd: connection reset by peer
[  210.690630][   T82] vhci_hcd: stop threads
[  210.691934][   T82] vhci_hcd: release socket
[  210.693304][   T82] vhci_hcd: disconnect device
[  210.862604][T10414] vhci_hcd: connection closed
[  210.862856][ T1031] vhci_hcd: stop threads
[  210.865520][ T1031] vhci_hcd: release socket
[  210.870359][ T1031] vhci_hcd: disconnect device
[  211.192774][T10443] netlink: 'syz.3.839': attribute type 12 has an invalid length.
[  211.251349][T10445] vxcan1: tx address claim with dlc 1
[  211.258303][T10445] ubi: mtd0 is already attached to ubi0
[  211.327133][T10442] netlink: 'syz.0.837': attribute type 10 has an invalid length.
[  211.734953][   T39] audit: type=1326 audit(1738716352.427:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f38579 code=0x7ffc0000
[  211.743352][   T39] audit: type=1326 audit(1738716352.427:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f385a7 code=0x7ffc0000
[  211.750139][   T39] audit: type=1326 audit(1738716352.427:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f38579 code=0x7ffc0000
[  211.757294][   T39] audit: type=1326 audit(1738716352.427:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f385a7 code=0x7ffc0000
[  211.765854][   T39] audit: type=1326 audit(1738716352.427:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f38579 code=0x7ffc0000
[  211.776574][   T39] audit: type=1326 audit(1738716352.427:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f385a7 code=0x7ffc0000
[  211.784780][   T39] audit: type=1326 audit(1738716352.427:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f38579 code=0x7ffc0000
[  211.791891][   T39] audit: type=1326 audit(1738716352.437:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f385a7 code=0x7ffc0000
[  211.799782][   T39] audit: type=1326 audit(1738716352.437:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f38579 code=0x7ffc0000
[  211.808071][   T39] audit: type=1326 audit(1738716352.437:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10446 comm="syz.0.840" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f385a7 code=0x7ffc0000
[  212.089545][T10451] serio: Serial port ptm0
[  212.140438][ T1321] vhci_hcd: vhci_device speed not set
[  212.161151][T10451] netlink: 'syz.1.841': attribute type 10 has an invalid length.
[  212.225710][T10458] serio: Serial port ptm1
[  212.278657][T10458] netlink: 'syz.3.843': attribute type 10 has an invalid length.
[  212.539822][T10461] FAULT_INJECTION: forcing a failure.
[  212.539822][T10461] name failslab, interval 1, probability 0, space 0, times 0
[  212.544223][T10461] CPU: 2 UID: 0 PID: 10461 Comm: syz.2.844 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  212.544238][T10461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.544243][T10461] Call Trace:
[  212.544247][T10461]  <TASK>
[  212.544251][T10461]  dump_stack_lvl+0x16c/0x1f0
[  212.544269][T10461]  should_fail_ex+0x50a/0x650
[  212.544282][T10461]  ? fs_reclaim_acquire+0xae/0x150
[  212.544299][T10461]  ? kvm_hv_vcpu_init+0xa4/0x7c0
[  212.544309][T10461]  should_failslab+0xc2/0x120
[  212.544321][T10461]  __kmalloc_cache_noprof+0x68/0x420
[  212.544330][T10461]  ? __pfx_mark_lock+0x10/0x10
[  212.544344][T10461]  kvm_hv_vcpu_init+0xa4/0x7c0
[  212.544355][T10461]  kvm_hv_set_msr_common+0x10a/0x31b0
[  212.544369][T10461]  ? __pfx_kvm_hv_set_msr_common+0x10/0x10
[  212.544380][T10461]  ? hlock_class+0x4e/0x130
[  212.544394][T10461]  ? __lock_acquire+0x15a9/0x3c40
[  212.544409][T10461]  kvm_set_msr_common+0x137a/0x33c0
[  212.544425][T10461]  ? __pfx_kvm_set_msr_common+0x10/0x10
[  212.544451][T10461]  vmx_set_msr+0xc2b/0x3950
[  212.544474][T10461]  ? __pfx_vmx_set_msr+0x10/0x10
[  212.544495][T10461]  ? __might_fault+0x13b/0x190
[  212.544516][T10461]  ? __pfx_lock_release+0x10/0x10
[  212.544534][T10461]  ? trace_lock_acquire+0x14e/0x1f0
[  212.544553][T10461]  kvm_set_msr_ignored_check+0x14a/0x820
[  212.544579][T10461]  ? __pfx_kvm_set_msr_ignored_check+0x10/0x10
[  212.544606][T10461]  ? _copy_from_user+0x59/0xd0
[  212.544633][T10461]  kvm_arch_vcpu_ioctl+0x318b/0x5050
[  212.544647][T10461]  ? __lock_acquire+0x15a9/0x3c40
[  212.544658][T10461]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  212.544671][T10461]  ? __pfx___lock_acquire+0x10/0x10
[  212.544681][T10461]  ? stack_trace_save+0x95/0xd0
[  212.544690][T10461]  ? __pfx_stack_trace_save+0x10/0x10
[  212.544698][T10461]  ? __pfx_mark_lock+0x10/0x10
[  212.544709][T10461]  ? stack_depot_save_flags+0x28/0x9e0
[  212.544723][T10461]  ? lock_acquire.part.0+0x11b/0x380
[  212.544736][T10461]  ? __mutex_trylock_common+0xea/0x250
[  212.544749][T10461]  ? __pfx___mutex_trylock_common+0x10/0x10
[  212.544760][T10461]  ? hlock_class+0x4e/0x130
[  212.544773][T10461]  ? kvm_vcpu_ioctl+0x27f/0x16b0
[  212.544784][T10461]  ? rcu_is_watching+0x12/0xc0
[  212.544798][T10461]  ? trace_contention_end+0xee/0x140
[  212.544810][T10461]  ? __mutex_lock+0x1cc/0xb10
[  212.544826][T10461]  ? kvm_vcpu_ioctl+0x27f/0x16b0
[  212.544837][T10461]  ? __pfx___mutex_lock+0x10/0x10
[  212.544854][T10461]  ? find_held_lock+0x2d/0x110
[  212.544871][T10461]  ? kvm_vcpu_ioctl+0x1258/0x16b0
[  212.544881][T10461]  kvm_vcpu_ioctl+0x1258/0x16b0
[  212.544893][T10461]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  212.544904][T10461]  ? tomoyo_path_number_perm+0x190/0x5b0
[  212.544916][T10461]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  212.544925][T10461]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  212.544939][T10461]  ? do_vfs_ioctl+0x513/0x1950
[  212.544963][T10461]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  212.545000][T10461]  ? __pfx_lock_release+0x10/0x10
[  212.545018][T10461]  ? trace_lock_acquire+0x14e/0x1f0
[  212.545033][T10461]  kvm_vcpu_compat_ioctl+0x210/0x3d0
[  212.545062][T10461]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  212.545096][T10461]  ? __fget_files+0x206/0x3a0
[  212.545116][T10461]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  212.545127][T10461]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  212.545147][T10461]  __do_fast_syscall_32+0x73/0x120
[  212.545157][T10461]  do_fast_syscall_32+0x32/0x80
[  212.545166][T10461]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.545181][T10461] RIP: 0023:0xf7f12579
[  212.545189][T10461] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.545198][T10461] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  212.545207][T10461] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae89
[  212.545213][T10461] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  212.545218][T10461] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.545223][T10461] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.545228][T10461] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.545240][T10461]  </TASK>
[  212.703625][T10462] netlink: 64 bytes leftover after parsing attributes in process `syz.0.840'.
[  212.912671][T10465] FAULT_INJECTION: forcing a failure.
[  212.912671][T10465] name failslab, interval 1, probability 0, space 0, times 0
[  212.917293][T10465] CPU: 3 UID: 0 PID: 10465 Comm: syz.2.845 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  212.917315][T10465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.917325][T10465] Call Trace:
[  212.917330][T10465]  <TASK>
[  212.917337][T10465]  dump_stack_lvl+0x16c/0x1f0
[  212.917367][T10465]  should_fail_ex+0x50a/0x650
[  212.917387][T10465]  ? find_held_lock+0x2d/0x110
[  212.917416][T10465]  should_failslab+0xc2/0x120
[  212.917438][T10465]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  212.917459][T10465]  ? dst_alloc+0x99/0x1a0
[  212.917485][T10465]  dst_alloc+0x99/0x1a0
[  212.917510][T10465]  rt_dst_alloc+0x35/0x3a0
[  212.917533][T10465]  ip_route_output_key_hash_rcu+0x8a5/0x2770
[  212.917567][T10465]  ip_route_output_key_hash+0x138/0x2e0
[  212.917594][T10465]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  212.917631][T10465]  ? __pfx_lock_release+0x10/0x10
[  212.917650][T10465]  ? trace_lock_acquire+0x14e/0x1f0
[  212.917666][T10465]  ? hlock_class+0x4e/0x130
[  212.917694][T10465]  ip_route_output_flow+0x27/0x150
[  212.917721][T10465]  raw_sendmsg+0xbd2/0x3870
[  212.917756][T10465]  ? __pfx_raw_sendmsg+0x10/0x10
[  212.917780][T10465]  ? hlock_class+0x4e/0x130
[  212.917822][T10465]  ? __pfx___might_resched+0x10/0x10
[  212.917843][T10465]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  212.917877][T10465]  ? aa_sk_perm+0x2f5/0xb20
[  212.917901][T10465]  ? __import_iovec+0x1f2/0x6d0
[  212.917926][T10465]  ? __pfx_raw_sendmsg+0x10/0x10
[  212.917952][T10465]  inet_sendmsg+0x119/0x140
[  212.917997][T10465]  ____sys_sendmsg+0x907/0xb40
[  212.918022][T10465]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.918043][T10465]  ? get_compat_msghdr+0x11b/0x170
[  212.918076][T10465]  ___sys_sendmsg+0x135/0x1e0
[  212.918095][T10465]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.918123][T10465]  ? trace_lock_acquire+0x14e/0x1f0
[  212.918156][T10465]  __sys_sendmmsg+0x2fa/0x420
[  212.918177][T10465]  ? __pfx___sys_sendmmsg+0x10/0x10
[  212.918203][T10465]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  212.918239][T10465]  ? fput+0x67/0x440
[  212.918261][T10465]  ? ksys_write+0x1ba/0x250
[  212.918277][T10465]  ? __pfx_ksys_write+0x10/0x10
[  212.918298][T10465]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  212.918321][T10465]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  212.918349][T10465]  __do_fast_syscall_32+0x73/0x120
[  212.918367][T10465]  do_fast_syscall_32+0x32/0x80
[  212.918383][T10465]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.918407][T10465] RIP: 0023:0xf7f12579
[  212.918419][T10465] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.918432][T10465] RSP: 002b:00000000f501555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  212.918445][T10465] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005240
[  212.918451][T10465] RDX: 0000000000000300 RSI: 000000000401eb94 RDI: 0000000000000000
[  212.918456][T10465] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.918461][T10465] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.918466][T10465] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.918477][T10465]  </TASK>
[  213.170915][T10474] block nbd3: NBD_DISCONNECT
[  213.172646][T10474] block nbd3: Disconnected due to user request.
[  213.174875][T10474] block nbd3: shutting down sockets
[  213.300892][T10482] block nbd2: NBD_DISCONNECT
[  213.302872][T10482] block nbd2: Disconnected due to user request.
[  213.305392][T10482] block nbd2: shutting down sockets
[  213.370665][ T6274] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  213.511569][T10493] serio: Serial port ptm0
[  213.531942][ T6274] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  213.536363][ T6274] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  213.542108][ T6274] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  213.545678][ T6274] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.548911][ T6274] usb 6-1: Product: syz
[  213.550353][    T8] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  213.550773][ T6274] usb 6-1: Manufacturer: syz
[  213.554728][ T6274] usb 6-1: SerialNumber: syz
[  213.564184][T10493] netlink: 'syz.0.858': attribute type 10 has an invalid length.
[  213.681220][   T56] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  213.703431][    T8] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  213.706264][    T8] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  213.709055][    T8] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  213.714608][    T8] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  213.714788][T10501] Invalid source name
[  213.717232][    T8] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.718487][T10501] UBIFS error (pid: 10501): cannot open "ubifs", error -22
[  213.720893][    T8] usb 8-1: Product: syz
[  213.720903][    T8] usb 8-1: Manufacturer: syz
[  213.720910][    T8] usb 8-1: SerialNumber: syz
[  213.760954][T10476] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  213.764209][T10503] netlink: 28 bytes leftover after parsing attributes in process `syz.0.861'.
[  213.831775][   T56] usb 7-1: config 0 has an invalid interface number: 3 but max is 0
[  213.834143][   T56] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  213.837038][   T56] usb 7-1: config 0 has no interface number 0
[  213.838857][   T56] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  213.841893][   T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.845280][   T56] usb 7-1: config 0 descriptor??
[  213.927662][    T8] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  214.128190][T10484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.131902][T10484] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.145261][ T1321] usb 8-1: USB disconnect, device number 9
[  214.148789][ T1321] usblp0: removed
[  214.366126][T10476] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  214.570690][ T6274] cdc_mbim 6-1:1.0: MAC-Address: 42:42:42:42:42:42
[  214.572733][ T6274] cdc_mbim 6-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  214.574969][ T6274] cdc_mbim 6-1:1.0: setting rx_max = 2048
[  214.680402][ T5996] vhci_hcd: vhci_device speed not set
[  214.773275][ T6274] cdc_mbim 6-1:1.0: setting tx_max = 184
[  214.775501][ T6274] cdc_mbim 6-1:1.0: cdc-wdm0: USB WDM device
[  214.779570][ T6274] wwan wwan0: port wwan0mbim0 attached
[  214.784514][ T6274] cdc_mbim 6-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.1-1, CDC MBIM, 42:42:42:42:42:42
[  215.002451][T10525] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  215.004421][T10525] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  215.006706][T10525] vhci_hcd vhci_hcd.0: Device attached
[  215.068371][ T1321] usb 6-1: USB disconnect, device number 12
[  215.071468][ T1321] cdc_mbim 6-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.1-1, CDC MBIM
[  215.162129][ T1321] wwan wwan0: port wwan0mbim0 disconnected
[  215.660479][    T8] vhci_hcd: vhci_device speed not set
[  215.732698][    T8] usb 43-1: new full-speed USB device number 12 using vhci_hcd
[  215.783785][T10549] ieee802154 phy0 wpan0: encryption failed: -22
[  215.937839][T10548] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  215.939758][T10548] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  215.942926][T10548] vhci_hcd vhci_hcd.0: Device attached
[  216.130423][ T5999] vhci_hcd: vhci_device speed not set
[  216.190432][ T5999] usb 37-1: new full-speed USB device number 14 using vhci_hcd
[  216.239795][T10554] nfs4: Bad value for 'source'
[  216.445885][ T1321] usb 7-1: USB disconnect, device number 8
[  216.572587][T10527] vhci_hcd: connection reset by peer
[  216.574357][   T45] vhci_hcd: stop threads
[  216.575624][   T45] vhci_hcd: release socket
[  216.576993][   T45] vhci_hcd: disconnect device
[  216.691525][   T66] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  216.803398][T10569] netlink: 'syz.2.878': attribute type 12 has an invalid length.
[  217.097463][T10551] vhci_hcd: connection reset by peer
[  217.099960][   T11] vhci_hcd: stop threads
[  217.101761][   T11] vhci_hcd: release socket
[  217.103685][   T11] vhci_hcd: disconnect device
[  217.725880][   T39] kauditd_printk_skb: 3451 callbacks suppressed
[  217.725896][   T39] audit: type=1326 audit(1738716358.417:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.735728][   T39] audit: type=1326 audit(1738716358.417:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.744135][   T39] audit: type=1326 audit(1738716358.417:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.755953][   T39] audit: type=1326 audit(1738716358.417:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.764321][   T39] audit: type=1326 audit(1738716358.417:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.772750][   T39] audit: type=1326 audit(1738716358.417:3478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.781030][   T39] audit: type=1326 audit(1738716358.417:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.789268][   T39] audit: type=1326 audit(1738716358.417:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.801119][   T39] audit: type=1326 audit(1738716358.427:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.809337][   T39] audit: type=1326 audit(1738716358.427:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.1.889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  217.893504][T10602] netlink: 'syz.2.891': attribute type 32 has an invalid length.
[  217.895822][T10602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  217.898519][T10602] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  218.356044][T10612] ieee802154 phy0 wpan0: encryption failed: -22
[  218.711202][T10615] block nbd1: shutting down sockets
[  219.578177][T10636] vivid-002: =================  START STATUS  =================
[  219.581502][T10636] vivid-002: Radio HW Seek Mode: Bounded
[  219.584389][T10636] vivid-002: Radio Programmable HW Seek: false
[  219.586305][T10636] vivid-002: RDS Rx I/O Mode: Block I/O
[  219.588037][T10636] vivid-002: Generate RBDS Instead of RDS: false
[  219.590239][T10636] vivid-002: RDS Reception: true
[  219.592202][T10636] vivid-002: RDS Program Type: 0 inactive
[  219.593989][T10636] vivid-002: RDS PS Name:  inactive
[  219.595581][T10636] vivid-002: RDS Radio Text:  inactive
[  219.597150][T10636] vivid-002: RDS Traffic Announcement: false inactive
[  219.599193][T10636] vivid-002: RDS Traffic Program: false inactive
[  219.602596][T10636] vivid-002: RDS Music: false inactive
[  219.604324][T10636] vivid-002: ==================  END STATUS  ==================
[  219.623871][T10636] PKCS7: Unknown OID: [5] 0.0
[  219.625755][T10636] PKCS7: Only support pkcs7_signedData type
[  219.655904][T10638] serio: Serial port ptm0
[  219.707876][T10638] netlink: 'syz.1.901': attribute type 10 has an invalid length.
[  219.827616][T10649] netlink: 'syz.1.905': attribute type 32 has an invalid length.
[  219.830751][T10649] netlink: 8 bytes leftover after parsing attributes in process `syz.1.905'.
[  219.834363][T10649] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  220.306306][T10665] FAULT_INJECTION: forcing a failure.
[  220.306306][T10665] name failslab, interval 1, probability 0, space 0, times 0
[  220.310947][T10665] CPU: 1 UID: 0 PID: 10665 Comm: syz.2.907 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  220.310962][T10665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.310968][T10665] Call Trace:
[  220.310971][T10665]  <TASK>
[  220.310974][T10665]  dump_stack_lvl+0x16c/0x1f0
[  220.310994][T10665]  should_fail_ex+0x50a/0x650
[  220.311005][T10665]  ? fs_reclaim_acquire+0xae/0x150
[  220.311022][T10665]  should_failslab+0xc2/0x120
[  220.311034][T10665]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  220.311045][T10665]  ? mark_lock+0xb5/0xc60
[  220.311055][T10665]  ? __get_vm_area_node+0x101/0x2f0
[  220.311065][T10665]  __get_vm_area_node+0x101/0x2f0
[  220.311075][T10665]  __vmalloc_node_range_noprof+0x26a/0x1530
[  220.311086][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.311098][T10665]  ? mark_lock+0xb5/0xc60
[  220.311110][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.311122][T10665]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  220.311132][T10665]  ? __pfx_aa_get_newest_label+0x10/0x10
[  220.311147][T10665]  ? rcu_is_watching+0x12/0xc0
[  220.311161][T10665]  ? trace_cap_capable+0x1a2/0x210
[  220.311176][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.311185][T10665]  __vmalloc_noprof+0x6d/0x90
[  220.311195][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.311204][T10665]  bpf_prog_alloc_no_stats+0x54/0x630
[  220.311213][T10665]  ? security_capable+0x7e/0x260
[  220.311228][T10665]  bpf_prog_alloc+0x3b/0x230
[  220.311236][T10665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  220.311249][T10665]  bpf_prog_load+0x1a00/0x2480
[  220.311263][T10665]  ? __pfx_bpf_prog_load+0x10/0x10
[  220.311275][T10665]  ? find_held_lock+0x2d/0x110
[  220.311290][T10665]  ? __might_fault+0x13b/0x190
[  220.311306][T10665]  ? __might_fault+0xe3/0x190
[  220.311321][T10665]  __sys_bpf+0x5677/0x57a0
[  220.311332][T10665]  ? __pfx_lock_release+0x10/0x10
[  220.311344][T10665]  ? __pfx___sys_bpf+0x10/0x10
[  220.311355][T10665]  ? vfs_write+0x306/0x1150
[  220.311367][T10665]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  220.311388][T10665]  ? fput+0x67/0x440
[  220.311400][T10665]  ? ksys_write+0x1ba/0x250
[  220.311408][T10665]  ? __pfx_ksys_write+0x10/0x10
[  220.311420][T10665]  __ia32_sys_bpf+0x76/0xe0
[  220.311432][T10665]  __do_fast_syscall_32+0x73/0x120
[  220.311442][T10665]  do_fast_syscall_32+0x32/0x80
[  220.311451][T10665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.311466][T10665] RIP: 0023:0xf7f12579
[  220.311473][T10665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.311482][T10665] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  220.311491][T10665] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200017c0
[  220.311496][T10665] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  220.311501][T10665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.311506][T10665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.311511][T10665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.311522][T10665]  </TASK>
[  220.311526][T10665] syz.2.907: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  220.416967][T10665] CPU: 1 UID: 0 PID: 10665 Comm: syz.2.907 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  220.416989][T10665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.416998][T10665] Call Trace:
[  220.417004][T10665]  <TASK>
[  220.417010][T10665]  dump_stack_lvl+0x16c/0x1f0
[  220.417038][T10665]  warn_alloc+0x24d/0x3a0
[  220.417058][T10665]  ? __pfx_warn_alloc+0x10/0x10
[  220.417075][T10665]  ? rcu_is_watching+0x12/0xc0
[  220.417099][T10665]  ? __kmalloc_cache_node_noprof+0x245/0x3f0
[  220.417121][T10665]  ? __kasan_kmalloc+0x8a/0xb0
[  220.417138][T10665]  ? __get_vm_area_node+0x1dc/0x2f0
[  220.417158][T10665]  __vmalloc_node_range_noprof+0xd24/0x1530
[  220.417178][T10665]  ? mark_lock+0xb5/0xc60
[  220.417198][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.417219][T10665]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  220.417237][T10665]  ? __pfx_aa_get_newest_label+0x10/0x10
[  220.417260][T10665]  ? rcu_is_watching+0x12/0xc0
[  220.417283][T10665]  ? trace_cap_capable+0x1a2/0x210
[  220.417308][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.417324][T10665]  __vmalloc_noprof+0x6d/0x90
[  220.417341][T10665]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  220.417358][T10665]  bpf_prog_alloc_no_stats+0x54/0x630
[  220.417374][T10665]  ? security_capable+0x7e/0x260
[  220.417399][T10665]  bpf_prog_alloc+0x3b/0x230
[  220.417414][T10665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  220.417437][T10665]  bpf_prog_load+0x1a00/0x2480
[  220.417462][T10665]  ? __pfx_bpf_prog_load+0x10/0x10
[  220.417482][T10665]  ? find_held_lock+0x2d/0x110
[  220.417509][T10665]  ? __might_fault+0x13b/0x190
[  220.417545][T10665]  ? __might_fault+0xe3/0x190
[  220.417572][T10665]  __sys_bpf+0x5677/0x57a0
[  220.417593][T10665]  ? __pfx_lock_release+0x10/0x10
[  220.417614][T10665]  ? __pfx___sys_bpf+0x10/0x10
[  220.417633][T10665]  ? vfs_write+0x306/0x1150
[  220.417654][T10665]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  220.417688][T10665]  ? fput+0x67/0x440
[  220.417707][T10665]  ? ksys_write+0x1ba/0x250
[  220.417722][T10665]  ? __pfx_ksys_write+0x10/0x10
[  220.417740][T10665]  __ia32_sys_bpf+0x76/0xe0
[  220.417761][T10665]  __do_fast_syscall_32+0x73/0x120
[  220.417777][T10665]  do_fast_syscall_32+0x32/0x80
[  220.417792][T10665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.417816][T10665] RIP: 0023:0xf7f12579
[  220.417828][T10665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.417841][T10665] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  220.417856][T10665] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200017c0
[  220.417866][T10665] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  220.417875][T10665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.417883][T10665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.417891][T10665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.417935][T10665]  </TASK>
[  220.417941][T10665] Mem-Info:
[  220.518615][T10665] active_anon:10513 inactive_anon:73 isolated_anon:0
[  220.518615][T10665]  active_file:3450 inactive_file:36132 isolated_file:0
[  220.518615][T10665]  unevictable:3415 dirty:681 writeback:0
[  220.518615][T10665]  slab_reclaimable:7813 slab_unreclaimable:68739
[  220.518615][T10665]  mapped:28323 shmem:5448 pagetables:670
[  220.518615][T10665]  sec_pagetables:304 bounce:0
[  220.518615][T10665]  kernel_misc_reclaimable:0
[  220.518615][T10665]  free:38978 free_pcp:7233 free_cma:0
[  220.534839][T10665] Node 0 active_anon:2844kB inactive_anon:292kB active_file:824kB inactive_file:8292kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3884kB dirty:332kB writeback:0kB shmem:4792kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9384kB pagetables:908kB sec_pagetables:1136kB all_unreclaimable? yes
[  220.547035][T10665] Node 1 active_anon:23908kB inactive_anon:0kB active_file:12976kB inactive_file:136236kB unevictable:10124kB isolated(anon):0kB isolated(file):0kB mapped:109408kB dirty:2392kB writeback:0kB shmem:17000kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2900kB pagetables:1872kB sec_pagetables:80kB all_unreclaimable? no
[  220.559861][T10665] Node 0 DMA free:2980kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:512kB local_pcp:28kB free_cma:0kB
[  220.570817][T10665] lowmem_reserve[]: 0 297 0 0 0
[  220.572418][T10665] Node 0 DMA32 free:23892kB boost:6144kB min:19816kB low:23232kB high:26648kB reserved_highatomic:4096KB active_anon:2808kB inactive_anon:292kB active_file:824kB inactive_file:8284kB unevictable:3536kB writepending:332kB present:1032196kB managed:305052kB mlocked:0kB bounce:0kB free_pcp:2336kB local_pcp:1080kB free_cma:0kB
[  220.582761][T10665] lowmem_reserve[]: 0 0 0 0 0
[  220.584716][T10665] Node 1 DMA32 free:151856kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:23708kB inactive_anon:0kB active_file:12976kB inactive_file:136236kB unevictable:3624kB writepending:2392kB present:1048432kB managed:948252kB mlocked:196kB bounce:0kB free_pcp:24868kB local_pcp:192kB free_cma:0kB
[  220.596048][T10665] lowmem_reserve[]: 0 0 0 0 0
[  220.597922][T10665] Node 0 DMA: 51*4kB (UM) 65*8kB (UM) 53*16kB (UM) 22*32kB (UM) 5*64kB (UM) 1*128kB (U) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2980kB
[  220.603245][T10665] Node 0 DMA32: 203*4kB (UH) 93*8kB (UMEH) 46*16kB (UMEH) 117*32kB (UMEH) 91*64kB (UMEH) 44*128kB (UE) 13*256kB (UME) 2*512kB (UM) 2*1024kB (UM) 0*2048kB 0*4096kB = 23892kB
[  220.608196][T10665] Node 1 DMA32: 230*4kB (UM) 300*8kB (UM) 414*16kB (UME) 310*32kB (UM) 211*64kB (UME) 97*128kB (UME) 65*256kB (ME) 24*512kB (UME) 8*1024kB (UME) 4*2048kB (ME) 15*4096kB (UM) = 152536kB
[  220.614098][T10665] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  220.617164][T10665] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  220.620079][T10665] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  220.623075][T10665] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  220.626039][T10665] 45030 total pagecache pages
[  220.627656][T10665] 0 pages in swap cache
[  220.629114][T10665] Free swap  = 124592kB
[  220.630583][T10665] Total swap = 124996kB
[  220.631937][T10665] 524155 pages RAM
[  220.633202][T10665] 0 pages HighMem/MovableOnly
[  220.634798][T10665] 206989 pages reserved
[  220.644769][T10665] 0 pages cma reserved
[  220.710488][T10674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.713255][T10674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.759716][T10682] xt_CT: No such helper "syz0"
[  220.840420][    T8] vhci_hcd: vhci_device speed not set
[  220.843816][T10693] netlink: 'syz.3.919': attribute type 12 has an invalid length.
[  221.090075][T10694] can0: slcan on ttyS3.
[  221.099536][T10694] netlink: 20 bytes leftover after parsing attributes in process `syz.1.918'.
[  221.350655][ T5999] vhci_hcd: vhci_device speed not set
[  222.345694][T10690] can0 (unregistered): slcan off ttyS3.
[  222.654719][T10717] FAULT_INJECTION: forcing a failure.
[  222.654719][T10717] name failslab, interval 1, probability 0, space 0, times 0
[  222.660141][T10717] CPU: 2 UID: 0 PID: 10717 Comm: syz.1.927 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  222.660164][T10717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.660174][T10717] Call Trace:
[  222.660179][T10717]  <TASK>
[  222.660186][T10717]  dump_stack_lvl+0x16c/0x1f0
[  222.660217][T10717]  should_fail_ex+0x50a/0x650
[  222.660237][T10717]  ? fs_reclaim_acquire+0xae/0x150
[  222.660266][T10717]  should_failslab+0xc2/0x120
[  222.660304][T10717]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  222.660325][T10717]  ? __alloc_skb+0x2b3/0x380
[  222.660345][T10717]  __alloc_skb+0x2b3/0x380
[  222.660361][T10717]  ? __pfx___alloc_skb+0x10/0x10
[  222.660390][T10717]  ? lockdep_hardirqs_on_prepare+0x410/0x420
[  222.660413][T10717]  ? sctp_packet_config+0x79d/0xf40
[  222.660438][T10717]  ? __pfx_lock_release+0x10/0x10
[  222.660460][T10717]  sctp_packet_transmit+0x1ec/0x3090
[  222.660490][T10717]  ? sctp_outq_flush+0xb5a/0x3380
[  222.660524][T10717]  sctp_outq_flush+0xb74/0x3380
[  222.660553][T10717]  ? __pfx_sctp_outq_flush+0x10/0x10
[  222.660579][T10717]  ? __pfx_lock_release+0x10/0x10
[  222.660611][T10717]  sctp_do_sm+0x3e15/0x5c90
[  222.660645][T10717]  ? __pfx_sctp_do_sm+0x10/0x10
[  222.660698][T10717]  ? sctp_make_abort_user+0x2a9/0x4a0
[  222.660716][T10717]  ? lockdep_hardirqs_on+0x7c/0x110
[  222.660740][T10717]  ? __pfx_sctp_make_abort_user+0x10/0x10
[  222.660761][T10717]  sctp_primitive_ABORT+0x9f/0xd0
[  222.660786][T10717]  sctp_close+0x231/0x930
[  222.660810][T10717]  ? __pfx_sctp_close+0x10/0x10
[  222.660827][T10717]  ? __sock_release+0x86/0x270
[  222.660846][T10717]  ? lock_acquire+0x2f/0xb0
[  222.660864][T10717]  ? __sock_release+0x86/0x270
[  222.660885][T10717]  ? ip_mc_drop_socket+0x1f/0x290
[  222.660903][T10717]  ? down_write+0x14e/0x200
[  222.660922][T10717]  inet_release+0x13c/0x280
[  222.660947][T10717]  inet6_release+0x4f/0x70
[  222.660971][T10717]  __sock_release+0xb0/0x270
[  222.660989][T10717]  ? __pfx_sock_close+0x10/0x10
[  222.661004][T10717]  sock_close+0x1c/0x30
[  222.661020][T10717]  __fput+0x3ff/0xb70
[  222.661046][T10717]  __fput_sync+0xa1/0xc0
[  222.661066][T10717]  __ia32_sys_close+0x86/0x100
[  222.661088][T10717]  __do_fast_syscall_32+0x73/0x120
[  222.661104][T10717]  do_fast_syscall_32+0x32/0x80
[  222.661120][T10717]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  222.661145][T10717] RIP: 0023:0xf73fe579
[  222.661158][T10717] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  222.661173][T10717] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000006
[  222.661189][T10717] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  222.661198][T10717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  222.661206][T10717] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  222.661214][T10717] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  222.661223][T10717] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  222.661244][T10717]  </TASK>
[  223.131244][T10726] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  223.133916][T10726] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  223.137652][T10726] vhci_hcd vhci_hcd.0: Device attached
[  223.310565][ T1321] vhci_hcd: vhci_device speed not set
[  223.370405][ T1321] usb 41-1: new full-speed USB device number 14 using vhci_hcd
[  223.937434][T10731] netlink: 327 bytes leftover after parsing attributes in process `syz.1.931'.
[  223.941162][   T39] kauditd_printk_skb: 20 callbacks suppressed
[  223.941172][   T39] audit: type=1326 audit(1738716364.637:3503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.949196][   T39] audit: type=1326 audit(1738716364.637:3504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.956292][   T39] audit: type=1326 audit(1738716364.637:3505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.963224][   T39] audit: type=1326 audit(1738716364.637:3506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.969391][   T39] audit: type=1326 audit(1738716364.637:3507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=231 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.976066][   T39] audit: type=1326 audit(1738716364.637:3508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.983070][   T39] audit: type=1326 audit(1738716364.637:3509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.989240][   T39] audit: type=1326 audit(1738716364.647:3510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  223.997252][   T39] audit: type=1326 audit(1738716364.647:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  224.003404][   T39] audit: type=1326 audit(1738716364.647:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.1.931" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  224.131065][T10754] ip6gretap0: entered promiscuous mode
[  224.134076][T10754] batadv_slave_0: entered promiscuous mode
[  224.138492][T10754] ip6gretap0: left promiscuous mode
[  224.140808][T10754] batadv_slave_0: left promiscuous mode
[  224.310431][ T5994] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  224.345671][T10771] netlink: 'syz.0.947': attribute type 12 has an invalid length.
[  224.406550][T10727] vhci_hcd: connection reset by peer
[  224.410597][ T1146] vhci_hcd: stop threads
[  224.412004][ T1146] vhci_hcd: release socket
[  224.413522][ T1146] vhci_hcd: disconnect device
[  224.472749][ T5994] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  224.475568][ T5994] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  224.478799][ T5994] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  224.526385][T10774] syz.3.949 (10774): drop_caches: 2
[  224.638195][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  224.642837][ T5994] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  224.648505][ T5994] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  224.708104][ T5994] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  224.710757][ T5994] usb 6-1: Product: syz
[  224.711991][ T5994] usb 6-1: Manufacturer: syz
[  224.715214][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  224.716744][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  224.719358][ T5994] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  224.721149][ T5994] cdc_wdm 6-1:1.0: Unknown control protocol
[  224.921176][ T6274] usb 6-1: USB disconnect, device number 13
[  225.121252][T10797] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  225.123853][T10797] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  225.127682][T10797] vhci_hcd vhci_hcd.0: Device attached
[  225.549976][T10801] netlink: 'syz.2.956': attribute type 10 has an invalid length.
[  225.573452][T10801] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  225.610440][ T5996] vhci_hcd: vhci_device speed not set
[  225.681058][ T5996] usb 43-1: new full-speed USB device number 13 using vhci_hcd
[  226.100538][   T30] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  226.250460][   T30] usb 5-1: Using ep0 maxpacket: 16
[  226.254022][   T30] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEF, changing to 0x8F
[  226.258099][   T30] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  226.262451][   T30] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  226.266112][   T30] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  226.271295][   T30] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  226.271941][T10798] vhci_hcd: connection reset by peer
[  226.274169][   T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.276005][ T1146] vhci_hcd: stop threads
[  226.280181][ T1146] vhci_hcd: release socket
[  226.280691][   T30] usb 5-1: config 0 descriptor??
[  226.281612][ T1146] vhci_hcd: disconnect device
[  226.286022][   T30] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input9
[  226.294370][ T5347] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  226.299340][ T5347] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  226.305657][ T5347] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  226.310119][ T5347] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  226.643731][T10839] netlink: 'syz.3.968': attribute type 12 has an invalid length.
[  226.647370][T10838] mmap: syz.1.969 (10838) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  226.709070][T10841] FAULT_INJECTION: forcing a failure.
[  226.709070][T10841] name failslab, interval 1, probability 0, space 0, times 0
[  226.714132][T10841] CPU: 1 UID: 0 PID: 10841 Comm: syz.1.970 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  226.714153][T10841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.714164][T10841] Call Trace:
[  226.714169][T10841]  <TASK>
[  226.714176][T10841]  dump_stack_lvl+0x16c/0x1f0
[  226.714205][T10841]  should_fail_ex+0x50a/0x650
[  226.714228][T10841]  should_failslab+0xc2/0x120
[  226.714248][T10841]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  226.714266][T10841]  ? trace_lock_acquire+0x14e/0x1f0
[  226.714281][T10841]  ? skb_clone+0x190/0x3f0
[  226.714301][T10841]  skb_clone+0x190/0x3f0
[  226.714319][T10841]  dev_queue_xmit_nit+0x38f/0xbc0
[  226.714343][T10841]  dev_hard_start_xmit+0x283/0x7b0
[  226.714369][T10841]  __dev_queue_xmit+0x7f0/0x43e0
[  226.714401][T10841]  ? __pfx___dev_queue_xmit+0x10/0x10
[  226.714442][T10841]  ? rcu_is_watching+0x12/0xc0
[  226.714466][T10841]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  226.714491][T10841]  ? __copy_skb_header+0x2e8/0x5b0
[  226.714524][T10841]  ? __skb_clone+0x570/0x760
[  226.714556][T10841]  netlink_deliver_tap+0xa61/0xca0
[  226.714585][T10841]  netlink_unicast+0x5e1/0x7f0
[  226.714611][T10841]  ? __pfx_netlink_unicast+0x10/0x10
[  226.714635][T10841]  ? __phys_addr_symbol+0x30/0x80
[  226.714660][T10841]  ? __check_object_size+0x488/0x710
[  226.714684][T10841]  netlink_sendmsg+0x8b8/0xd70
[  226.714711][T10841]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.714743][T10841]  ____sys_sendmsg+0x9ae/0xb40
[  226.714766][T10841]  ? __pfx_____sys_sendmsg+0x10/0x10
[  226.714787][T10841]  ? get_compat_msghdr+0x11b/0x170
[  226.714819][T10841]  ___sys_sendmsg+0x135/0x1e0
[  226.714838][T10841]  ? __pfx____sys_sendmsg+0x10/0x10
[  226.714866][T10841]  ? __pfx_lock_release+0x10/0x10
[  226.714884][T10841]  ? trace_lock_acquire+0x14e/0x1f0
[  226.714909][T10841]  ? __fget_files+0x206/0x3a0
[  226.714933][T10841]  __sys_sendmsg+0x16e/0x220
[  226.714950][T10841]  ? __pfx___sys_sendmsg+0x10/0x10
[  226.714984][T10841]  __do_fast_syscall_32+0x73/0x120
[  226.715001][T10841]  do_fast_syscall_32+0x32/0x80
[  226.715017][T10841]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  226.715043][T10841] RIP: 0023:0xf73fe579
[  226.715056][T10841] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  226.715071][T10841] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  226.715087][T10841] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  226.715097][T10841] RDX: 0000000004008014 RSI: 0000000000000000 RDI: 0000000000000000
[  226.715107][T10841] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  226.715116][T10841] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  226.715124][T10841] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  226.715145][T10841]  </TASK>
[  227.124416][T10851] netlink: 48 bytes leftover after parsing attributes in process `syz.2.974'.
[  227.636480][T10869] netlink: 'syz.3.980': attribute type 2 has an invalid length.
[  228.093505][T10878] 9pnet_fd: Insufficient options for proto=fd
[  228.524209][ T1321] vhci_hcd: vhci_device speed not set
[  228.767054][T10901] netlink: 'syz.2.993': attribute type 10 has an invalid length.
[  228.850761][ T5994] usb 5-1: USB disconnect, device number 9
[  228.894851][T10909] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  228.896686][T10909] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  228.899052][T10909] vhci_hcd vhci_hcd.0: Device attached
[  229.796843][T10927] hsr0: entered allmulticast mode
[  229.798473][T10927] hsr_slave_0: entered allmulticast mode
[  229.800264][T10927] hsr_slave_1: entered allmulticast mode
[  229.810797][T10927] hsr_slave_0: left promiscuous mode
[  229.813829][T10927] hsr_slave_1: left promiscuous mode
[  229.827816][T10927] hsr0 (unregistering): left allmulticast mode
[  229.934123][T10933] serio: Serial port ptm0
[  229.995715][T10933] netlink: 'syz.1.1003': attribute type 10 has an invalid length.
[  230.037030][T10941] FAULT_INJECTION: forcing a failure.
[  230.037030][T10941] name failslab, interval 1, probability 0, space 0, times 0
[  230.041408][T10941] CPU: 2 UID: 0 PID: 10941 Comm: syz.1.1006 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  230.041423][T10941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.041441][T10941] Call Trace:
[  230.041444][T10941]  <TASK>
[  230.041449][T10941]  dump_stack_lvl+0x16c/0x1f0
[  230.041468][T10941]  should_fail_ex+0x50a/0x650
[  230.041482][T10941]  should_failslab+0xc2/0x120
[  230.041494][T10941]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  230.041507][T10941]  ? skb_clone+0x190/0x3f0
[  230.041519][T10941]  skb_clone+0x190/0x3f0
[  230.041529][T10941]  netlink_deliver_tap+0xafd/0xca0
[  230.041545][T10941]  netlink_unicast+0x5e1/0x7f0
[  230.041560][T10941]  ? __pfx_netlink_unicast+0x10/0x10
[  230.041574][T10941]  ? __phys_addr_symbol+0x30/0x80
[  230.041588][T10941]  ? __check_object_size+0x488/0x710
[  230.041602][T10941]  netlink_sendmsg+0x8b8/0xd70
[  230.041618][T10941]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.041635][T10941]  ____sys_sendmsg+0x9ae/0xb40
[  230.041649][T10941]  ? __pfx_____sys_sendmsg+0x10/0x10
[  230.041661][T10941]  ? get_compat_msghdr+0x11b/0x170
[  230.041679][T10941]  ___sys_sendmsg+0x135/0x1e0
[  230.041689][T10941]  ? __pfx____sys_sendmsg+0x10/0x10
[  230.041704][T10941]  ? __pfx_lock_release+0x10/0x10
[  230.041715][T10941]  ? trace_lock_acquire+0x14e/0x1f0
[  230.041728][T10941]  ? __fget_files+0x206/0x3a0
[  230.041742][T10941]  __sys_sendmsg+0x16e/0x220
[  230.041752][T10941]  ? __pfx___sys_sendmsg+0x10/0x10
[  230.041770][T10941]  __do_fast_syscall_32+0x73/0x120
[  230.041780][T10941]  do_fast_syscall_32+0x32/0x80
[  230.041788][T10941]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  230.041805][T10941] RIP: 0023:0xf73fe579
[  230.041850][T10941] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  230.041864][T10941] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  230.041878][T10941] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000020000540
[  230.041885][T10941] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  230.041890][T10941] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  230.041895][T10941] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  230.041900][T10941] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  230.041912][T10941]  </TASK>
[  230.130783][T10910] vhci_hcd: connection closed
[  230.132648][ T1134] vhci_hcd: stop threads
[  230.136375][ T1134] vhci_hcd: release socket
[  230.138424][ T1134] vhci_hcd: disconnect device
[  230.258893][T10948] netlink: 'syz.3.1009': attribute type 4 has an invalid length.
[  230.610804][T10954] block nbd1: NBD_DISCONNECT
[  230.612710][T10954] block nbd1: Disconnected due to user request.
[  230.615088][T10954] block nbd1: shutting down sockets
[  230.753132][T10963] overlayfs: failed to resolve './file0': -2
[  230.780487][ T5996] vhci_hcd: vhci_device speed not set
[  230.818141][T10968] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1015'.
[  230.823492][T10968] batman_adv: batadv0: Adding interface: ipvlan2
[  230.825391][T10968] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.832654][T10968] batman_adv: batadv0: Not using interface ipvlan2 (retrying later): interface not active
[  231.269726][T10983] FAULT_INJECTION: forcing a failure.
[  231.269726][T10983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.274819][T10983] CPU: 1 UID: 0 PID: 10983 Comm: syz.3.1020 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  231.274841][T10983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.274851][T10983] Call Trace:
[  231.274856][T10983]  <TASK>
[  231.274863][T10983]  dump_stack_lvl+0x16c/0x1f0
[  231.274893][T10983]  should_fail_ex+0x50a/0x650
[  231.274917][T10983]  _copy_from_user+0x2e/0xd0
[  231.274941][T10983]  ? __pfx_drm_prime_fd_to_handle_ioctl+0x10/0x10
[  231.274970][T10983]  drm_ioctl+0x4fc/0xba0
[  231.274995][T10983]  ? __pfx_drm_ioctl+0x10/0x10
[  231.275032][T10983]  drm_compat_ioctl+0x327/0x460
[  231.275059][T10983]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  231.275083][T10983]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  231.275111][T10983]  __do_fast_syscall_32+0x73/0x120
[  231.275129][T10983]  do_fast_syscall_32+0x32/0x80
[  231.275145][T10983]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  231.275172][T10983] RIP: 0023:0xf7f8f579
[  231.275184][T10983] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  231.275200][T10983] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  231.275216][T10983] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c00c642e
[  231.275226][T10983] RDX: 0000000020000800 RSI: 0000000000000000 RDI: 0000000000000000
[  231.275236][T10983] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  231.275246][T10983] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  231.275255][T10983] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  231.275276][T10983]  </TASK>
[  231.530391][ T5995] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  231.700414][ T5995] usb 5-1: Using ep0 maxpacket: 16
[  231.704242][ T5995] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  231.708593][ T5995] usb 5-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  231.711482][ T5995] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.714987][ T5995] usb 5-1: config 0 descriptor??
[  231.920861][   T39] kauditd_printk_skb: 77 callbacks suppressed
[  231.920931][   T39] audit: type=1326 audit(1738716372.617:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10980 comm="syz.0.1019" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f38579 code=0x0
[  232.173960][ T5995] hid (null): unknown global tag 0xc
[  232.175583][ T5995] hid (null): global environment stack underflow
[  232.177443][ T5995] hid (null): unknown global tag 0xd
[  232.179753][ T5995] kye 0003:0458:5016.0005: control desc unexpectedly large
[  232.186373][ T5995] input: HID 0458:5016 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0458:5016.0005/input/input10
[  232.263943][ T5995] input: HID 0458:5016 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0458:5016.0005/input/input11
[  232.334387][ T5995] kye 0003:0458:5016.0005: input,hiddev0,hidraw1: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.0-1/input0
[  232.599168][T11007] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  232.703858][T11007] /dev/sr0: Can't open blockdev
[  232.910476][   T30] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  233.040408][   T30] usb 6-1: device descriptor read/64, error -71
[  233.053123][T11018] overlayfs: failed to clone upperpath
[  233.290433][   T30] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  233.420434][   T30] usb 6-1: device descriptor read/64, error -71
[  233.530464][   T30] usb usb6-port1: attempt power cycle
[  233.629853][T11022] vxcan1: tx address claim with dlc 1
[  233.633119][T11022] ubi: mtd0 is already attached to ubi0
[  233.890544][   T30] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  233.914973][   T30] usb 6-1: device descriptor read/8, error -71
[  234.117071][ T5994] usb 5-1: USB disconnect, device number 10
[  234.161530][   T30] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  234.190728][   T30] usb 6-1: device descriptor read/8, error -71
[  234.300882][   T30] usb usb6-port1: unable to enumerate USB device
[  234.311893][T11031] fuse: Bad value for 'fd'
[  234.397532][T11033] vxcan1: tx address claim with dlc 1
[  234.400890][T11033] ubi: mtd0 is already attached to ubi0
[  235.171063][T11039] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  235.171469][ T6274] IPVS: starting estimator thread 0...
[  235.175080][T11039] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1037'.
[  235.260460][T11040] IPVS: using max 39 ests per chain, 93600 per kthread
[  235.719029][T11055] ieee802154 phy0 wpan0: encryption failed: -22
[  236.032254][T11057] 9pnet_fd: Insufficient options for proto=fd
[  236.371558][T11069] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1044'.
[  236.544868][T11073] fuse: Bad value for 'fd'
[  236.982260][T11076] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1046'.
[  236.984789][T11078] FAULT_INJECTION: forcing a failure.
[  236.984789][T11078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.986602][T11076] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.991174][T11078] CPU: 0 UID: 0 PID: 11078 Comm: syz.3.1047 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  236.991197][T11078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  236.991206][T11078] Call Trace:
[  236.991211][T11078]  <TASK>
[  236.991217][T11078]  dump_stack_lvl+0x16c/0x1f0
[  236.991246][T11078]  should_fail_ex+0x50a/0x650
[  236.991270][T11078]  _copy_from_user+0x2e/0xd0
[  236.991293][T11078]  bpf_test_init.isra.0+0xf1/0x150
[  236.991317][T11078]  bpf_prog_test_run_xdp+0x4f0/0x1560
[  236.991344][T11078]  ? lock_acquire+0x2f/0xb0
[  236.991362][T11078]  ? __fget_files+0x40/0x3a0
[  236.991380][T11078]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  236.991403][T11078]  ? __fget_files+0x206/0x3a0
[  236.991423][T11078]  ? fput+0x67/0x440
[  236.991444][T11078]  ? __bpf_prog_get+0xa0/0x290
[  236.991462][T11078]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  236.991483][T11078]  __sys_bpf+0x1921/0x57a0
[  236.991503][T11078]  ? __pfx_lock_release+0x10/0x10
[  236.991523][T11078]  ? __pfx___sys_bpf+0x10/0x10
[  236.991543][T11078]  ? vfs_write+0x306/0x1150
[  236.991564][T11078]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  236.991605][T11078]  ? fput+0x67/0x440
[  236.991626][T11078]  ? ksys_write+0x1ba/0x250
[  236.991649][T11078]  ? __pfx_ksys_write+0x10/0x10
[  236.991670][T11078]  __ia32_sys_bpf+0x76/0xe0
[  236.991693][T11078]  __do_fast_syscall_32+0x73/0x120
[  236.991710][T11078]  do_fast_syscall_32+0x32/0x80
[  236.991725][T11078]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  236.991749][T11078] RIP: 0023:0xf7f8f579
[  236.991762][T11078] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  236.991779][T11078] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  236.991796][T11078] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000500
[  236.991807][T11078] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000000
[  236.991816][T11078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  236.991824][T11078] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  236.991833][T11078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  236.991854][T11078]  </TASK>
[  237.033619][T11080] vivid-007: disconnect
[  237.119625][T11076] batman_adv: batadv0: Removing interface: batadv_slave_1
[  237.768189][T11092] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1051'.
[  237.994017][T11079] vivid-007: reconnect
[  238.261780][T11112] fuse: Bad value for 'fd'
[  238.371820][T11116] netlink: 'syz.1.1059': attribute type 12 has an invalid length.
[  239.136105][T11124] x_tables: ip_tables: udp.0 match: invalid size 16 (kernel) != (user) 40
[  239.301904][T11128] netlink: 'syz.1.1063': attribute type 12 has an invalid length.
[  239.430615][ T6274] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  239.583508][ T6274] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  239.586715][ T6274] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  239.590660][ T6274] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  239.593832][ T6274] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  239.598152][ T6274] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  239.607903][ T6274] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  239.613675][ T6274] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  239.616922][ T6274] usb 5-1: Product: syz
[  239.618684][ T6274] usb 5-1: Manufacturer: syz
[  239.629344][ T6274] cdc_wdm 5-1:1.0: skipping garbage
[  239.632376][ T6274] cdc_wdm 5-1:1.0: skipping garbage
[  239.637364][ T6274] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  239.639714][ T6274] cdc_wdm 5-1:1.0: Unknown control protocol
[  239.839309][T11130] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1064'.
[  239.848240][   T66] Bluetooth: hci3: unexpected event for opcode 0x2036
[  239.849930][ T5995] usb 5-1: USB disconnect, device number 11
[  240.461596][T11152] serio: Serial port ptm1
[  240.517619][T11152] netlink: 'syz.0.1070': attribute type 10 has an invalid length.
[  240.760242][T11158] vivid-007: disconnect
[  241.052969][T11172] serio: Serial port ptm0
[  241.601028][T11157] vivid-007: reconnect
[  241.677409][T11180] delete_channel: no stack
[  241.858493][T11194] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  241.860840][   T56] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  241.861252][T11194] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  241.869262][T11194] vhci_hcd vhci_hcd.0: Device attached
[  241.935629][T11197] ieee802154 phy0 wpan0: encryption failed: -22
[  242.020449][   T56] usb 8-1: Using ep0 maxpacket: 32
[  242.026924][   T56] usb 8-1: config 0 has no interfaces?
[  242.030750][   T56] usb 8-1: New USB device found, idVendor=061d, idProduct=c180, bcdDevice=fc.f0
[  242.033342][   T56] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.036440][   T56] usb 8-1: Product: syz
[  242.038159][   T56] usb 8-1: Manufacturer: syz
[  242.039648][   T56] usb 8-1: SerialNumber: syz
[  242.043513][   T56] usb 8-1: config 0 descriptor??
[  242.140658][ T5996] vhci_hcd: vhci_device speed not set
[  242.200524][ T5996] usb 39-1: new full-speed USB device number 12 using vhci_hcd
[  242.266236][ T5994] usb 8-1: USB disconnect, device number 10
[  242.496234][T11202] vxcan1: tx address claim with dlc 1
[  242.888684][T11207] serio: Serial port ptm0
[  243.078249][T11210] vxcan1: tx address claim with dlc 1
[  243.083003][T11210] ubi: mtd0 is already attached to ubi0
[  243.502299][T11195] vhci_hcd: connection reset by peer
[  243.505289][ T1200] vhci_hcd: stop threads
[  243.506910][ T1200] vhci_hcd: release socket
[  243.508972][ T1200] vhci_hcd: disconnect device
[  243.526763][T11214] syzkaller1: entered promiscuous mode
[  243.529175][T11214] syzkaller1: entered allmulticast mode
[  243.533770][T11214] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  243.661526][T11220] netlink: 'syz.3.1092': attribute type 10 has an invalid length.
[  243.664924][T11220] syz_tun: entered promiscuous mode
[  243.671716][T11220] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  243.778262][T11226] netlink: 'syz.3.1094': attribute type 12 has an invalid length.
[  243.977115][T11228] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  243.979518][T11228] IPv6: NLM_F_CREATE should be set when creating new route
[  244.277944][T11235] netlink: 'syz.0.1097': attribute type 1 has an invalid length.
[  244.281611][T11235] netlink: 'syz.0.1097': attribute type 1 has an invalid length.
[  244.779034][T11242] vxcan1: tx address claim with dlc 1
[  244.870447][ T5994] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  245.000450][ T5994] usb 8-1: device descriptor read/64, error -71
[  245.001373][T11248] serio: Serial port ptm0
[  245.003863][T11247] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  245.006392][T11247] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  245.008597][T11247] vhci_hcd vhci_hcd.0: Device attached
[  245.131766][T11252] netlink: 'syz.1.1100': attribute type 10 has an invalid length.
[  245.250430][ T5994] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  245.333271][    T8] vhci_hcd: vhci_device speed not set
[  245.390544][ T5994] usb 8-1: device descriptor read/64, error -71
[  245.400887][    T8] usb 37-1: new full-speed USB device number 15 using vhci_hcd
[  245.510590][ T5994] usb usb8-port1: attempt power cycle
[  245.870550][ T5994] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  245.891087][ T5994] usb 8-1: device descriptor read/8, error -71
[  246.140507][ T5994] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  246.160844][ T5994] usb 8-1: device descriptor read/8, error -71
[  246.271073][ T5994] usb usb8-port1: unable to enumerate USB device
[  246.490952][T11249] vhci_hcd: connection reset by peer
[  246.493322][ T1134] vhci_hcd: stop threads
[  246.495286][ T1134] vhci_hcd: release socket
[  246.497165][ T1134] vhci_hcd: disconnect device
[  246.621205][T11274] netlink: 'syz.0.1108': attribute type 12 has an invalid length.
[  247.460974][ T5996] vhci_hcd: vhci_device speed not set
[  247.527923][   T39] audit: type=1326 audit(1738716388.217:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11282 comm="syz.0.1111" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f38579 code=0x0
[  247.706105][T11295] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  247.708112][T11295] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  247.710455][T11295] vhci_hcd vhci_hcd.0: Device attached
[  247.744415][T11298] netlink: 232 bytes leftover after parsing attributes in process `syz.3.1116'.
[  248.090046][ T5996] vhci_hcd: vhci_device speed not set
[  248.184775][ T5996] usb 39-1: device descriptor read/64, error -110
[  248.209800][ T5994] IPVS: starting estimator thread 0...
[  248.310491][T11302] IPVS: using max 21 ests per chain, 50400 per kthread
[  248.392988][ T5996] vhci_hcd: vhci_device speed not set
[  248.450499][ T5996] usb 39-1: new full-speed USB device number 13 using vhci_hcd
[  249.351825][T11296] vhci_hcd: connection reset by peer
[  249.354285][ T1031] vhci_hcd: stop threads
[  249.355602][ T1031] vhci_hcd: release socket
[  249.357051][ T1031] vhci_hcd: disconnect device
[  249.426295][T11317] 9pnet_fd: Insufficient options for proto=fd
[  249.461258][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  249.466394][T11312] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  249.703832][T11324] vlan2: entered promiscuous mode
[  249.705795][T11324] vlan2: entered allmulticast mode
[  249.707765][T11324] hsr_slave_1: entered allmulticast mode
[  249.717659][T11324] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1125'.
[  249.818861][T11324] hsr_slave_1 (unregistering): left allmulticast mode
[  249.830909][T11324] hsr_slave_1 (unregistering): left promiscuous mode
[  250.530464][    T8] vhci_hcd: vhci_device speed not set
[  251.861899][T11362] netlink: 'syz.2.1136': attribute type 11 has an invalid length.
[  252.041351][T11368] evm: overlay not supported
[  252.081390][T11370] nbd: must specify an index to disconnect
[  252.084348][T11369] block nbd3: shutting down sockets
[  252.185380][T11378] capability: warning: `syz.3.1141' uses 32-bit capabilities (legacy support in use)
[  253.618193][T11388] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  253.623340][T11388] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  253.628603][T11388] CPU: 3 UID: 0 PID: 11388 Comm: syz.1.1144 Not tainted 6.14.0-rc1-syzkaller-00026-gd009de7d5428 #0
[  253.632409][T11388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.636618][T11388] RIP: 0010:iter_file_splice_write+0xa2d/0x10b0
[  253.638814][T11388] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 b1 04 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 1a 05 00 00 49 8b 54 24 08 4c 89 ee 4c 89 ff 83
[  253.646191][T11388] RSP: 0018:ffffc90021dbf928 EFLAGS: 00010202
[  253.648600][T11388] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c001000
[  253.651791][T11388] RDX: 0000000000000001 RSI: ffffffff823d9cb5 RDI: 0000000000000008
[  253.654869][T11388] RBP: 00000000000002cb R08: 0000000000000006 R09: 0000000000000000
[  253.657902][T11388] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  253.660986][T11388] R13: ffff888072c031b8 R14: 7fffffffffffefff R15: ffff88805c43e800
[  253.664021][T11388] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f5086b40
[  253.667315][T11388] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  253.669709][T11388] CR2: 00000000f5074da4 CR3: 0000000069dc4000 CR4: 0000000000352ef0
[  253.672001][T11388] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  253.674352][T11388] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  253.676985][T11388] Call Trace:
[  253.677997][T11388]  <TASK>
[  253.678868][T11388]  ? die_addr+0x3b/0xa0
[  253.680164][T11388]  ? exc_general_protection+0x155/0x230
[  253.681854][T11388]  ? asm_exc_general_protection+0x26/0x30
[  253.683701][T11388]  ? iter_file_splice_write+0x9f5/0x10b0
[  253.685398][T11388]  ? iter_file_splice_write+0xa2d/0x10b0
[  253.687211][T11388]  ? iter_file_splice_write+0x9f5/0x10b0
[  253.689326][T11388]  ? __pfx_iter_file_splice_write+0x10/0x10
[  253.691551][T11388]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  253.693822][T11388]  ? splice_direct_to_actor+0x346/0xa40
[  253.695565][T11388]  ? __pfx_iter_file_splice_write+0x10/0x10
[  253.697280][T11388]  direct_splice_actor+0x18f/0x6c0
[  253.698792][T11388]  splice_direct_to_actor+0x346/0xa40
[  253.700557][T11388]  ? __pfx_direct_splice_actor+0x10/0x10
[  253.702821][T11388]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  253.703700][ T5996] vhci_hcd: vhci_device speed not set
[  253.705012][T11388]  ? __fget_files+0x1fc/0x3a0
[  253.708384][T11388]  do_splice_direct+0x178/0x250
[  253.709869][T11388]  ? __pfx_do_splice_direct+0x10/0x10
[  253.711435][T11388]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  253.713158][T11388]  ? rw_verify_area+0xcf/0x680
[  253.714594][T11388]  do_sendfile+0xafb/0xe40
[  253.716206][T11388]  ? __pfx_do_sendfile+0x10/0x10
[  253.718144][T11388]  ? __ia32_sys_futex_time32+0x1da/0x460
[  253.720253][T11388]  ? __ia32_sys_futex_time32+0x2fd/0x460
[  253.722213][T11388]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  253.724265][T11388]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  253.726679][T11388]  __do_fast_syscall_32+0x73/0x120
[  253.728459][T11388]  do_fast_syscall_32+0x32/0x80
[  253.729978][T11388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  253.731822][T11388] RIP: 0023:0xf73fe579
[  253.733018][T11388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  253.739838][T11388] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  253.742887][T11388] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000008
[  253.746002][T11388] RDX: 0000000000000000 RSI: 000000007ffff000 RDI: 0000000000000000
[  253.749138][T11388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  253.751444][T11388] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  253.754229][T11388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  253.757039][T11388]  </TASK>
[  253.758140][T11388] Modules linked in:
[  253.760423][T11388] ---[ end trace 0000000000000000 ]---
[  253.770507][T11388] RIP: 0010:iter_file_splice_write+0xa2d/0x10b0
[  253.772974][T11388] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 b1 04 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 1a 05 00 00 49 8b 54 24 08 4c 89 ee 4c 89 ff 83
[  253.780638][T11388] RSP: 0018:ffffc90021dbf928 EFLAGS: 00010202
[  253.783166][T11388] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c001000
[  253.786315][T11388] RDX: 0000000000000001 RSI: ffffffff823d9cb5 RDI: 0000000000000008
[  253.789491][T11388] RBP: 00000000000002cb R08: 0000000000000006 R09: 0000000000000000
[  253.793203][T11388] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  253.796390][T11388] R13: ffff888072c031b8 R14: 7fffffffffffefff R15: ffff88805c43e800
[  253.799573][T11388] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f5086b40
[  253.809609][T11388] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  253.811807][T11388] CR2: 00000000f5074da4 CR3: 0000000069dc4000 CR4: 0000000000352ef0
[  253.814526][T11388] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  253.817822][T11388] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  253.820764][T11388] Kernel panic - not syncing: Fatal exception
[  253.823170][T11388] Kernel Offset: disabled
[  253.824535][T11388] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:46:34  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=00000000200d1900
RSI=ffffffff891c4b81 RDI=0000000000000005 RBP=0000000080000002 RSP=ffffc90006a17c88
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=00000000000068c2 R13=0000000000000000 R14=00000000200000c0 R15=00000000200d1900
RIP=ffffffff8b4621de RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c286508 CR3=000000004bc32000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000d5468c RBX=0000000000000001 RCX=ffffffff8b468e39 RDX=ffffed10056a6f86
RSI=ffffffff8bd2d1a0 RDI=ffffffff818ffd39 RBP=ffffed1003ad2910 RSP=ffffc9000047fdd8
R8 =0000000000000000 R9 =ffffed10056a6f85 R10=ffff88802b537c2b R11=0000000000000001
R12=0000000000000001 R13=ffff88801d694880 R14=ffffffff905fd810 R15=0000000000000000
RIP=ffffffff810014b0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2d9cd3 CR3=000000004bc32000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffffffff9a9ed9b8 RCX=ffffffff81961fe9 RDX=0000000000000000
RSI=ffffffff8bd2d1a0 RDI=ffffffff9a9ed9bc RBP=0000000000000206 RSP=ffffc90020697c08
R8 =0000000000000000 R9 =fffffbfff20bfb02 R10=ffffffff905fd817 R11=0000000000000001
R12=ffff88804c484268 R13=ffffffff9a9ed9b0 R14=ffffc90020697d68 R15=1ffff920040d2f8c
RIP=ffffffff81969eb4 RFL=00000803 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055581c17c000 CR3=0000000073b8a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f742cff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85386df5 RDI=ffffffff9aad2e20 RBP=ffffffff9aad2de0 RSP=ffffc90021dbf320
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=000000000000005d R14=ffffffff9aad2de0 R15=0000000000000000
RIP=ffffffff85386e1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5074da4 CR3=0000000069dc4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000