last executing test programs:

6.177773412s ago: executing program 2 (id=1009):
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x35, 0xf2, &(0x7f0000000040)="b311dfa9f9ceef20289f64f18634b8bda308e008364a7c41ccb70931d0905d74a7658e9f7024f3874ba09bd5bdbec9b6652926cb06", &(0x7f0000000080)=""/242, 0xa8f, 0x0, 0x20, 0x33, &(0x7f0000000180)="6c591c361f963a30c19cace645f4c5c6b51239fd9776960198926c57444b5eb6", &(0x7f00000001c0)="2d9e22136237e636a17f8ba7779babfaa193d45a84303af4bdf28109a14a17395a4ad8697063f3abbe6d734f54ba59e4c05f49", 0x4, 0x0, 0x7}, 0x4c)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e21, 0x8, @loopback, 0xffff}, 0x1c)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'pimreg\x00', <r2=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000300)={{{@in=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000400)=0xe4)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000440)={{{@in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, @in6=@loopback, 0x4e24, 0x0, 0x4e23, 0xb, 0xa, 0x20, 0x20, 0x2c, r2, r3}, {0x4, 0xeafe, 0x6, 0x4, 0x20000000000, 0x40, 0x7e5d8574, 0x1}, {0x81, 0x8, 0x6, 0x5}, 0x7, 0x6e6bb8, 0x0, 0x0, 0x2}, {{@in=@private=0xa010102, 0x4d4, 0x6c}, 0xa, @in=@multicast1, 0x3502, 0x0, 0x0, 0x9, 0x7, 0x6, 0xf}}, 0xe4)
r4 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETVERSION(r4, 0x80044942, &(0x7f0000000540))
syz_open_dev$usbmon(&(0x7f0000000580), 0x100, 0x101001)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_TESTMODE(r5, &(0x7f0000000a00)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000680)={0x324, r6, 0x1, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TESTDATA={0xcb, 0x45, "7d2c9cfa09df07f968dd6e16173ee8e230a215010331848fe8841342daf366dd40d6720e4a1d3887bde4dc353db589bcbcc5aa9fa5f860628b5fe24cc26f363903421dab810dad2f377e2144111889fa874152a9886e65b512846ef47abdba43a044f306daa4c403b402398b31b7ed7f21a9c5982a6976fe9aedb2097c4663dcc1a77ee0f265baf0f19212d96179b289d38759b2981a63382c0ea320c0a516b0fc19ee5df41a42745baed1670b6c162816b4960e8b1d80507666733291a3ae95bde6a3a0666abf"}, @NL80211_ATTR_TESTDATA={0x93, 0x45, "34f22471bab393add008ff3e24f85d5ed1ba5439c1e8f0034029373d48b3c200d10b63af023a9d08ebef71593d3ee612319a7c5ad49011f953c3d142790302b27eff7ce63f76b30242a80daad35bd0f92f0ffadf89535f2c1c147a0499cc92e602679438293e7e2b60e282379905bb701eec3289390814f229f38c96b50c86f4901e72b6d5ac98c1f341d2e0aa8d7f"}, @NL80211_ATTR_TESTDATA={0xc0, 0x45, "8e7afb48c68c54adf8d4bbe7d99d2e63ee7569a5a3df288416c849e7c26537e9a9f4e77b9d61c93e8301d35c2d6fdbd5ee5acb86f053cc41dd64ad49c7f6440679c67fbbc08f62d52aa90e22122c05e0e030ea1298a32f5b3811b9df931e5adb857b534fc2af10fed9194b562cfbc8c66f98f863b09348803a2afec023b81ddaa9591051f3bc6f57b690b44e7cf82e3a5432c19018e9d04f5d54c35d3ed50b6033ed1e6d3118d604a6e8f7ac0e4b290826d182d87fa2f011b85e60a1"}, @NL80211_ATTR_TESTDATA={0x8, 0x45, "4883ee43"}, @NL80211_ATTR_TESTDATA={0xd6, 0x45, "46d7a6f2253ba663e81cff50b5501ca746f963427ab04293b2cead1a507006e965cd820590a1158994d04cff93ca0a45589b9f53d0b577c8eda9af4fc1a4bd0b9f2e52e4bd92ac7fd7af1168efd3c821c51a74a1723993a12c61c305ba537ed3a47f2ae2884fed47dd29c0ac8b4670099531b1f880706778b627d2ed85ef7c36444f3897b00234e471d313d1c9a466c865b270f9e6bbd5ae154ca669e769c8a75fb4c81f73afe4ca4e5d9cc307555fae33eda247a662fdb253a1255b599ba4b14af740768c4274748a1fca12787736cbfe79"}, @NL80211_ATTR_TESTDATA={0x8, 0x45, "057497a1"}]}, 0x324}}, 0x4088000)
setsockopt$SO_J1939_FILTER(0xffffffffffffffff, 0x6b, 0x1, &(0x7f0000000a40)=[{0x0, 0x3, {0x2, 0xff, 0x4}, {0x1, 0xf0, 0x2}, 0x2, 0xff}], 0x1c)
r8 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000a80)={0x28, 0x0, 0x0, @host}, 0x10, 0x80800)
connect$vsock_stream(r8, &(0x7f0000000ac0)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f0000000b00)={0x2020, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}, 0x2020)
sched_setattr(r9, &(0x7f0000002b40)={0x38, 0x0, 0xa, 0x10001, 0x4, 0x6, 0x100, 0x2, 0x50000000, 0x2}, 0x0)
ioctl$sock_proto_private(r8, 0x89ec, &(0x7f0000002b80)="04edf4f5bb869a48f80459f24d825be6a834d0cfb3714854f9e1300f1cc30ecd4ecea75863818db8a10a92a066a1f1ebd5c51a0521")
sched_setattr(r9, &(0x7f0000002bc0)={0x38, 0x0, 0x47, 0x727, 0x1ff, 0x7, 0x3, 0x6, 0xb9bb, 0x2}, 0x0)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002c40), r5)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r5, &(0x7f0000002d40)={&(0x7f0000002c00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002d00)={&(0x7f0000002c80)={0x5c, r10, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_TX_USECS_LOW={0x8, 0x10, 0x2}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x3ff}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x3}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x7fff}, @ETHTOOL_A_COALESCE_TX_USECS_LOW={0x8, 0x10, 0x1d}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x8}, @ETHTOOL_A_COALESCE_TX_USECS_IRQ={0x8, 0x8, 0x40}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x1ff}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x6}]}, 0x5c}, 0x1, 0x0, 0x0, 0x2000c804}, 0x58)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000002dc0), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(r8, 0x0, &(0x7f0000002e00)=<r13=>0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r11, &(0x7f0000002ec0)={&(0x7f0000002d80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002e80)={&(0x7f0000002e40)={0x3c, r12, 0x200, 0x70bd26, 0x25dfdbff, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x3}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x1}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x3}]}, 0x3c}}, 0x10)
pipe2$watch_queue(&(0x7f0000002f00)={0xffffffffffffffff, <r14=>0xffffffffffffffff}, 0x80)
write$tcp_mem(r14, &(0x7f0000002f40)={0x9, 0x20, 0x41a77cac, 0x20, 0x3}, 0x48)

6.038305683s ago: executing program 2 (id=1010):
r0 = syz_usb_connect$printer(0x5, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000000030020f003176c4000000000010902247251000000"], 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000005c000000953fdb7d823af8fa63fd7e0a8a06ca18460840dae55ce144f2c89f7a5879da6678d93051856b814f57368b9b10ed1275f9a8336e0e80802e4c5e851f555209fd5e6749c1b5cedcc503114c570202f8a5fc2ba5480fc6b5ac323249364968a18248501f5fb681ec5e3e9894b43b923f36e9258adca58e45782f4fb1be1b8e48dce9763f8432fb8b9ff357d1becab057952304c0d5636694bf24002af2ba5b38d280d31ac237789ab3bfddfeb002ecf03b1c2b6db2bf0553dcb148a1c27c34"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0xffe4, &(0x7f0000000000)={&(0x7f0000003500)=@newtaction={0x60, 0x30, 0x1, 0x70bd28, 0x0, {}, [{0x4c, 0x1, [@m_ctinfo={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x31fd, 0x4, 0x0, 0x0, 0xfa05}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0xa850}, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000003c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB='\a\x00'/12, @ANYRES32, @ANYBLOB="834e53ad08bb85b5c85063cb2fc0d1d7566f331d32258c69a8afab60cb11833373fb3164a3e553ca9467b1e209fe23fb5a2f8040b5c3438b9e32b1c00de3f44b65b88b5d8a88f12c2b0a15378dceb35ff985acbe7d2bf128962b9d0d08a041c4725658e2e3eac2de84b37bbeacea1c3c6ab174dab37096fb0a89429edad91dd394c1e81bd81c3a9be8112a75f4a94f156200000000000000000000000000c1988b5f93b598d3c148c6659936201093a94b7f00eb9868a30a8f5d927e04cc921a0c6b35433b83e57696cd6904e4de5824f74ceac51497ceef67f3571129827bbfd63968f4d67c0bba8903329e9264e5b77a9587a9a113d34c10bd", @ANYRES64=0x0], 0xd)
syz_usb_control_io(r0, 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x2e, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r6, {0x4, 0x8001}, {0x0, 0x3}, {0x1, 0xe}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2006c805}, 0x20040054)
ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f0000000380)=0x800)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[], 0x0)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x68080, 0x0)
close(r9)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
writev(r8, &(0x7f0000000380)=[{&(0x7f0000000180)="4cf9eb807f4bf1", 0x7}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000004740)={0x1, 0x0, 0x0, &(0x7f00000046c0)=[{0x0}], &(0x7f0000004700)}, 0x20)
socket(0x840000000002, 0x3, 0xff)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r10, 0xffffffffffffffff, 0x0)
poll(&(0x7f0000000080)=[{r7, 0x5}], 0x1, 0x7ff)

5.687643182s ago: executing program 0 (id=1011):
r0 = fsopen(0x0, 0x0)
fsmount(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x10000000001, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_mreqn(r2, 0x0, 0x20, 0x0, 0x300)
r3 = socket$kcm(0x10, 0x2, 0x0)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000a40), 0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB='6@\x00\x00&\x00'], 0xfe33)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xd, 0x0, 0xffffffffffffffff, 0x1f5e0305, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)={0x14, 0x0, 0x5, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x10)

4.584903068s ago: executing program 0 (id=1023):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x41, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r3, 0x8982, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80005}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
pipe2(&(0x7f00000004c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x800)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000002080)={{0x1, 0x1, 0x18, <r7=>r4, {0x3}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
syz_io_uring_setup(0x4df, &(0x7f0000000100)={0x0, 0x1fffff, 0x10100, 0xfffffffe, 0x241}, &(0x7f0000000300)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r6, 0x0, 0x0, 0x0, {}, 0x1})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r10, &(0x7f0000000200)={0x1f, 0x0, @none, 0x4, 0x1}, 0x2d)
listen(r7, 0x8)
accept4$bt_l2cap(r10, 0x0, 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e130100c9", @ANYBLOB=' '], 0x16)
r11 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r12=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r11, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080)=0x1, r12, 0x0, 0x2, 0x4}}, 0x20)

3.521199137s ago: executing program 0 (id=1019):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xffffffff}, 0x10}, 0x94)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$inet(r5, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
close(r6)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
mount(0x0, &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000300)='nilfs2\x00', 0x1a0c000, 0x0)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808b", 0x4)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000005c0)=ANY=[@ANYBLOB="fc000000190001000000000000faffff1f010000000000000000000000000000ac1414aa00000000005c090000dd0e0000000000000000000a00000000007889cc1641b80ad3298540fd01906c71409e35805bd8b307b323b8c3f46bda2e6c3b97e7642a12dca23718b69e060e64a94b6a49d76ac85e75c9a36118d59ca8dc7980c2048e090c5b2cff980a5d127891dcc5c45d8fc5ed1ce970b5ad75d37276d2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffff16000000000000000000000000000002000000000000000000006b396f6a000000000000000000804000000000000000000800000000000000000000000044000500ac1414aa000000000000000000000000000000003c00000000000000ffffff7f00000000000000000000000000000000000300"/176], 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="cc000000210001000000000004000000fc020000000000000000000000000000fc02000000000000000000000000000000000000000000000a00000000000000fa9b572d859997fc32282313cf7e", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000050001100ff0200000000000000000000000000010a0101000000000000000000000000000a010100000000000000000000000000000000060000000000000000000000003c000000000000000a000a002c0013007f000001000000000000000000000000e0000001000000000000000000000000000000000a000000"], 0xcc}}, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000040)={0x0, 0x0, 0x6, 0x4, 0x200, &(0x7f0000000880)="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"})
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x3bf, 0x101, 0x147}})
ioctl$TIOCL_PASTESEL(r9, 0x541c, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)

3.445054446s ago: executing program 3 (id=1020):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$netlink(0x10, 0x3, 0x4)
writev(r3, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560aff820fffff5bab003a0000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100040c100000000100224e0000", 0x58}], 0x1)
read$FUSE(0xffffffffffffffff, &(0x7f0000000980)={0x2020}, 0x2020)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'macvlan0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="8400000010000305000000040000000000000000", @ANYRES32=0x0, @ANYBLOB="1546010000000000540012800c0001006d6163766c616e0044000280060002000100000008000100010000000800030003000000080007000500000008000100100000000600020001000000100005800a000400aaaaaaaaaa2e000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00'], 0x84}}, 0x20008040)
mount(&(0x7f0000000140)=@sg0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='ubifs\x00', 0x2208004, 0x0)

3.014469963s ago: executing program 2 (id=1021):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x41, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r3, 0x8982, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80005}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
pipe2(&(0x7f00000004c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x800)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000002080)={{0x1, 0x1, 0x18, <r7=>r4, {0x3}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
syz_io_uring_setup(0x4df, &(0x7f0000000100)={0x0, 0x1fffff, 0x10100, 0xfffffffe, 0x241}, &(0x7f0000000300)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r6, 0x0, 0x0, 0x0, {}, 0x1})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r10, &(0x7f0000000200)={0x1f, 0x0, @none, 0x4, 0x1}, 0x2d)
listen(r7, 0x8)
accept4$bt_l2cap(r10, 0x0, 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e130100c900", @ANYBLOB=' '], 0x16)
r11 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r12=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r11, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080)=0x1, r12, 0x0, 0x2, 0x4}}, 0x20)

2.503826284s ago: executing program 0 (id=1022):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000003680)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x800bcbf, 0x80, 0x3, 0x1000}, 0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x0, r1, 0x0})
io_uring_enter(r2, 0x3516, 0x3e44, 0x8, 0x0, 0x0)

2.459943727s ago: executing program 1 (id=1024):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000001ec0)={0x1, &(0x7f0000001e80)=[{0x0, 0x1000}]})

2.448652627s ago: executing program 3 (id=1025):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000003300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x8020}, 0x200000c0)
r3 = memfd_secret(0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x82200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = syz_io_uring_setup(0x88e, &(0x7f0000000140)={0x0, 0x3cfa, 0x0, 0x80000002, 0x1b9}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_SHUTDOWN={0x22, 0x40})
io_uring_enter(r5, 0x47f6, 0x0, 0x2, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
fcntl$setpipe(r3, 0x407, 0x4)
fchownat(r3, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, &(0x7f0000000040)={{@local, 0x3}, @local, 0x3, 0x6, 0x8d4, 0x4, 0x5, 0x3f80000, 0x4})

2.380557188s ago: executing program 1 (id=1026):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
tkill(r3, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

2.377164603s ago: executing program 0 (id=1027):
r0 = openat$mixer(0xffffff9c, &(0x7f00000007c0), 0x300, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(r0, 0x80044dfb, &(0x7f0000000040))
syz_clone(0x1806900, &(0x7f00000005c0)="cda4e403e58ad91d40b687f7956392d18f820497dffff9a3b7bbe47b3dac01e425ffd8fd1899f0456724294f48c838400821fdfcf481ef0f1ee3ea5d45a4d9bcc6e6057a0934b9242ac9183aa40fc92d53739dddab81b1ab2600d88d39983051718c533ea355985f7b1b73e01c66b85fee1c7850513e416395c736914ccf13a56b94ed86d87061924f218b1fd21d064c4dd0a1a44492e0dd69e84ef5e1f00aec70bc6acc559310122e93f885066f58f30fbd8fc994206ea13f75cc43ba74bb55168c7ef8a76bf169cfb2", 0xca, &(0x7f0000000380), &(0x7f0000000480), &(0x7f00000006c0)="ee7a6193bc22243b8f7a4699ff82effd0a132336350a9dd70dd2910ca5b12de68accc49e33ca3030ccd04de65419eb8ecbf54e2b629e3ecf0190fbf2cf0996ab0c6a0ac2e3d6f874ff1d96c2a6f504b344c09daa4b21d2cc16b8d4f6241d2c9bf71a1a50468f40dfbadee005b11f")
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00'}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000fec000/0x14000)=nil, 0x14000, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
recvmsg(r4, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2062)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001800010010000000000000000a370000", @ANYRES32=0x0, @ANYBLOB="0013fa89c32eb80001"], 0x30}}, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000001000100ff7f00000202000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b00010062617461647600000400028008000a00", @ANYRES32=<r8=>0xffffffffffffffff], 0x3c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYRES8=r8, @ANYRES64, @ANYRES32=r6, @ANYRES8, @ANYRES16], 0x7c}, 0x1, 0x0, 0x0, 0x8890}, 0x0)

2.192051875s ago: executing program 2 (id=1028):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={<r0=>0x0}, &(0x7f0000000100)=0xc)
getpgid(r0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/ksm/run\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x101102)
syz_io_uring_setup(0x49c, &(0x7f0000000600)={0x0, 0xe7a9, 0x100, 0xfffa, 0x36f}, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x42e, 0x20000000001, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x9}, 0x0, &(0x7f0000000500)={0x3ff, 0x8000, 0x400000000001, 0x9, 0x9143, 0xf, 0x80000002, 0x2}, 0x0, 0x0)
getresuid(&(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200))

1.580560613s ago: executing program 3 (id=1029):
setpgid(0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x38, 0x3, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_EXPRESSIONS={0x4, 0x6, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0x6}, @val={0x480}}}]}]}]}]}], {0x14, 0x10}}, 0xe4}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x10, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0xff}]}, &(0x7f0000000080)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f0000000180)={'syztnl1\x00', <r1=>0x0, 0x29, 0x9, 0x2b, 0x200000, 0x1b, @mcast2, @mcast1, 0x7800, 0x40, 0x0, 0xffffffff}})
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000200)={@remote, r1}, 0x14)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000004c0)={'vlan1\x00', &(0x7f0000000480)=@ethtool_eee={0x17}})
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000240)={{{@in6=@mcast2, @in6=@remote, 0x4e22, 0xfffd, 0x4e23, 0x2, 0x2, 0x30, 0x80, 0x88, r1, 0xffffffffffffffff}, {0x3, 0xffffffffffffffff, 0x4, 0x8, 0x7f, 0x1, 0xb, 0x2}, {0x80000001, 0x5, 0x4, 0x80000001}, 0xfffffffe, 0x6e6bbc, 0x1, 0x0, 0x0, 0x1}, {{@in=@local, 0x4d6, 0x3c}, 0xa, @in=@private=0xa010101, 0x0, 0x3, 0x0, 0x7f, 0x5, 0x8, 0x1}}, 0xe4)

1.577666325s ago: executing program 1 (id=1030):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x80)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB], 0x94}}, 0x8000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x235, &(0x7f0000000500)={0x0, 0x4533, 0x10100, 0x0, 0x24c, 0x0, r3}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x2280}, 0x1})
io_uring_enter(r4, 0x234f, 0x2d59, 0x2, 0x0, 0x0)
sched_getscheduler(r1)
getpid()
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
r7 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r7, 0x1, 0x3c, 0x0, 0x0)
bind$inet(r7, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r7, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0}, 0x275a}], 0x1, 0x60010020, 0x0)
sendto$inet(r7, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
getpid()

1.577313431s ago: executing program 3 (id=1031):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x800001c, @local}, {0x0, 0x17c1, 0x8}}}}}, 0x0)
close(r1)
socket(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x2a)
ioperm(0x8000000000003, 0x400000000000012e, 0x7ffffff9)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r2, &(0x7f0000003100)={0x0, 0x0, &(0x7f00000030c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="14000000000403"], 0x14}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000003180), r2)

1.462049278s ago: executing program 1 (id=1032):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400000000000000001000084080000000000000001"], 0x0, 0x42}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="0600000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="00002000023b2b00000000000000000000003cb908bed1a75191f300"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000001c0)={@cgroup=r1, r1, 0x2f, 0x20, 0x4}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in6=@loopback, 0x3, 0xffff, 0x4e24, 0x1000, 0xa, 0x0, 0x0, 0x84}, {@in, 0xffffffff, 0x32}, @in6=@local, {0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x0, 0x0, 0x1000000000000000}, {0x400}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xaf}, [@algo_crypt={0x48, 0x2, {{'cbc(des3_ede)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd2a}}]}, 0x154}}, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, 0xf0, 0x67)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000000200)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = open(&(0x7f0000002280)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r2, &(0x7f0000002300)={0x50, 0x0, r5, {0x7, 0x9, 0x0, 0x1030002}}, 0x50)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r6)
r9 = socket$packet(0x11, 0x3, 0x300)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000003400)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r10}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a0000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000000000085000000a500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r9, 0x1, 0x32, &(0x7f0000000080)=r11, 0x4)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r12, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050e72210283ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)
sendmsg$TIPC_NL_KEY_SET(r6, &(0x7f0000002380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000022c0)={&(0x7f00000023c0)={0x14, r8, 0x800, 0x70ad25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x2404c880}, 0x24004840)
setsockopt$inet_int(r7, 0x0, 0xb, &(0x7f0000000000)=0x1ff, 0x4)
sendto$inet(r7, 0x0, 0xffef, 0x20000000, &(0x7f0000000240)={0x2, 0x4e22, @remote}, 0x10)
recvmmsg(r7, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}, 0x7fffffff}], 0x1, 0x12061, 0x0)
read$FUSE(r2, &(0x7f0000004580)={0x2020, 0x0, <r13=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r2, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r13}, 0x10)

1.399420508s ago: executing program 0 (id=1033):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000340)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_usbip_server_init(0x6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ioctl$int_out(r3, 0x5460, &(0x7f0000000240))
syz_open_dev$tty20(0xc, 0x4, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x0, 0x5004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000001280)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
munlockall()

1.221890986s ago: executing program 2 (id=1034):
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r5 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_COPY(r5, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3})
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x20, r3, 0x800, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x9}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000081}, 0x8001)
sendmsg$NL80211_CMD_SET_COALESCE(r2, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r3, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x810, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
r9 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000300)={0x0, 0x1300, &(0x7f0000001200)={&(0x7f0000001140)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a10000000000800410073697700140033006c6f000000000000004ce06e530f00000000000000"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000001980)={0x2, 0x1, @loopback}, 0x10)

425.705059ms ago: executing program 1 (id=1035):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000003680)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x800bcbf, 0x80, 0x3, 0x1000}, 0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x0, r1, 0x0})
io_uring_enter(r2, 0x3516, 0x3e44, 0x8, 0x0, 0x0)

370.788921ms ago: executing program 1 (id=1036):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x41, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r3, 0x8982, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80005}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
pipe2(&(0x7f00000004c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x800)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000002080)={{0x1, 0x1, 0x18, <r7=>r4, {0x3}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
syz_io_uring_setup(0x4df, &(0x7f0000000100)={0x0, 0x1fffff, 0x10100, 0xfffffffe, 0x241}, &(0x7f0000000300)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r6, 0x0, 0x0, 0x0, {}, 0x1})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r10, &(0x7f0000000200)={0x1f, 0x0, @none, 0x4, 0x1}, 0x2d)
listen(r7, 0x8)
accept4$bt_l2cap(r10, 0x0, 0x0, 0x800)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e130100c900", @ANYBLOB=' '], 0x16)
r11 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r12=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r11, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080)=0x1, r12, 0x0, 0x2, 0x4}}, 0x20)

312.675448ms ago: executing program 2 (id=1037):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000040)="f5", 0x1, 0x4048021, &(0x7f0000000180)={0xa, 0x4e60, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @rand_addr=' \x01\x00', 0xfffffffd}, 0x1c)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x3, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x237, &(0x7f0000000380)={0x0, 0x262e, 0x10100, 0x0, 0x170}, &(0x7f00000002c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x3000}, 0x1})
pipe(&(0x7f0000000440)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$setpipe(r7, 0x407, 0x8900003)
r8 = syz_open_dev$usbfs(0x0, 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r8, 0x80045515, &(0x7f0000002a40))
io_uring_enter(r4, 0x708, 0x41e3, 0x0, 0x0, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000000240)=0x1)
io_setup(0x8, &(0x7f0000000680)=<r9=>0x0)
io_pgetevents(r9, 0x2, 0x2, &(0x7f00000000c0)=[{}, {}], &(0x7f0000000700)={0x0, 0x3938700}, 0x0)

306.562365ms ago: executing program 3 (id=1038):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x10)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
sendmsg(r2, &(0x7f0000000c00)={0x0, 0x0, 0x0}, 0x20000080)
io_setup(0x42, &(0x7f0000000100)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000580)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r2, &(0x7f0000000000)='e', 0x3f}])
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r5)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100ffffffff000000003900000008000300", @ANYRES32=r7, @ANYBLOB="18005a801400018005000a"], 0x34}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r11, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r10, 0x4018aee3, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x8000}})
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x40, r12, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {}, @broadcast, @device_a, @from_mac=@broadcast, {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x3, 0x8}, @void}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x20080050)

0s ago: executing program 3 (id=1039):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
tkill(r3, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

0s ago: executing program 0 (id=1040):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r3=>0x0})
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x1, 0x6, @broadcast}, 0x10)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, r3}, 0xc)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="899f9f6c9ed7a3d47056a74d81d1f2053a0c5c43e0bb7e0a232992344f782daa352cffe93b1fdaaa2cda2707c5cbe391957a", 0x32}, {&(0x7f0000000080)="5e288229dc9f8e35613485c94801ece0df22382b242d2afb00f66b", 0x1b}], 0x2, &(0x7f0000000c00)=[{0x9c, 0x115, 0x1, "55eb75767be288dcb81f0b32fa80c174dab5be01791f67e7fc63f91255d429e681d7a5f104aee1b1ac7f592b54b5172ebdef2fcdcfdcda3666e9601e18e27b88ee8b93e8f07e48c3db025971ef4ae433a220d67246d9e12420fa81d359fd5924becdc5e20637bd24478ac5f531eec516d73ebbcc4e9c133a610b450a6f5a15f5bfc17b15ad5950a8b255413eea"}, {0xf0, 0x101, 0x0, "52a508a8187447e790c3b639e00864140b77a9b20e4bc66eccaf3fa12ca63381dad72e7ddc4eada9739d7630685e63d7be717d239972a9aec80a6deb2a479c73c13bdc7dc9b399e52767f3ba89db058e0682bc086abec4ad4691c2bb533f6d58444cbf518111827c812b01e25f344598c60ba2597f8ac142a961cf46710704f976dcbd80288e2558855d02abf69ebb1c7b94c2610ac93131203134911a1b2a6fb20f59aa92f394da2bc4052cdf69dc4a96f2d73ad42625edc2ecaca3875901b0e9fb485bb396ca03319929d2a51f5545549e517af4185674470ac5518b5ce0bf4173d9e5"}, {0x100, 0x310, 0x9bdb, "4315afedd12c101175a45cde2d43be182ccba8ab0c898ea0e203c2c432f574870dce636b584f1328fa8bafab67a18c395151790fff3550885246bffe30ffdff13cb83c1a7f7082256fc14f1c081c21fbf312e7d04fdcc5bf9ce76d64184a48ca7f37896cb881dfcf306127f216102cb4a2679e03e27581bb375d2640efc3a2ea34348dce02efecde8dcf2fad26dea3a3b6e487ee5a08e91bd8389e12fde39ea47061f0402a65b7ea7a357efafb4ca7de3487d48df38b461b00dc1561c70c8b705930097d05b342ae62221e6ae1de6909077a5634583fdee7572b4bc5873c41b79763d0c9423df61fafb6563a3d926bc0cc05"}, {0x60, 0x107, 0x8, "5f149c35828d675a504ab75fb541ef2f14af131c4bb404fad204cf31e8e7eb35c05164b89aff25a50430475b65c509fa81563dfe4d030051316e2652e4c7d94bbfa103977f5bc1d324f5f5120368f3194e"}, {0xfc, 0xff, 0x1a073d93, "7c005ac22aa40c872eb8e09f7bf97cf0d17924c1f17c8e834fdb84311f715c085b73f1e85b327eb64cad5513f8ec9fbc8918ae35200dcea6367ccbf959cab816cc21e71a80207f9821d3816fdcd56113a3a003655baddb20b4ed70f679a6ce75eb523f98662fb598570974b647fe60105af98e172dc9d9bacabfae1412f4d329236358ba26892f087c8cde9ce0924eca06e102d10319a22c01fb626e2ab0c9d280a9efa1c56a5ef8cd22d1cd6156f28e169cf507737057b48d47133763033c9bf1e0feab5b78ff4bcefd049df9038e07407a14f0b5328f187b1a4c3b0dacf121eab9c2c917e3e091daf06c527d"}, {0x104, 0x11, 0x8, "30829cf8174e10b534df5068cbf54ae268742ea28822d00dda1bc0be73eef54cb893b74680827ebb4122c7edaccfbfdffadc9eefad2caa210770fc002b39acac8eb682fddd663eac9dec89f7a072d84ae825a7fff0691b19d41ee942e20e920750e8fd99400cc443c62cede8cde5923648d936cd4026dbcdc08bfb7ff43bceceb97acd8b30eda524a1001e9c784c6157a8bdbaac8da1e124814f0207fb710b111e638476fa75193061c7e97fa7416509e35767b24ce9602ec4cecd50cdd54c3febeb5968edce3d6b545522276561a479d4ba408ac1998622a77ccf4a07b2d6cf33a30ddcebf5244e538e7dbccc881802585ab8116bea"}, {0x2c, 0x84, 0x4, "2837e34c9666a2f6aaaaca1e4047004d5181cd5458cc9000e5498e6485"}, {0xfc, 0x10e, 0x800, "1bf2bcc3ffa1e64788b5c27805ebf9d2c0312b4ac44191f3836cc712ff97aa946d80b3ab770fe1ce32c5ecc53b2cd3ec7b4c7a9c542aa2640996d578ab6c861b193608c89d143989b4153f50afda49731585235e67ecb283e329347de4da27ba841b66cfe1831d8c61aeb9af54bc851a088e2588b406585af8f0a2361d871bf1a432f1e4f452d0d72dd402cb4edb541d85bdd1c75d2cf3b7d519160e65b7fd8be597f5600fb0ec2e4ec64ee43a552f3a5e449468549db66caf450ad58a7191e2df4bc081aabc7e44ee5435904ebfe52b450453bd273c1cb49683d54e1deaeef415ea4b09b1aeec59300d469fd292"}, {0x100c, 0x107, 0x4, "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"}], 0x1620}, 0x48000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8b26, &(0x7f0000000000)={'wlan1\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
socket$packet(0x11, 0x3, 0x300)

kernel console output (not intermixed with test programs):

562935][ T7794] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.575375][ T7794] 8021q: adding VLAN 0 to HW filter on device batadv6
[  164.580082][ T7794] bond3: (slave batadv6): Enslaving as an active interface with an up link
[  164.586965][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.429'.
[  164.647187][ T7794] bond3 (unregistering): (slave batadv6): Releasing backup interface
[  164.651442][ T7794] bond3 (unregistering): Released all slaves
[  164.719118][ T6677] usb 5-1: USB disconnect, device number 15
[  164.912499][    T9] usbhid 8-1:0.0: can't add hid device: -32
[  164.914093][ T7796] netlink: 12 bytes leftover after parsing attributes in process `syz.3.430'.
[  164.914448][    T9] usbhid 8-1:0.0: probe with driver usbhid failed with error -32
[  164.937785][ T7796] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.956660][ T7796] 8021q: adding VLAN 0 to HW filter on device batadv2
[  164.960600][ T7796] bond3: (slave batadv2): Enslaving as an active interface with an up link
[  164.975163][ T7796] netlink: 4 bytes leftover after parsing attributes in process `syz.3.430'.
[  165.032559][ T7796] bond3 (unregistering): (slave batadv2): Releasing backup interface
[  165.038309][ T7796] bond3 (unregistering): Released all slaves
[  165.087575][   T34] usb 6-1: USB disconnect, device number 12
[  165.152251][   T24] usb 8-1: USB disconnect, device number 16
[  165.297185][ T7798] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  165.300649][ T7798] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  165.321628][ T7838] netlink: 8 bytes leftover after parsing attributes in process `syz.0.433'.
[  165.348157][ T7798] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  165.358262][ T7798] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  165.385558][ T7798] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  165.397279][ T7798] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  166.422388][   T40] audit: type=1804 audit(1762371251.670:71): pid=7850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.437" name="/newroot/106/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  167.212078][ T7860] evm: overlay not supported
[  167.351829][ T7868] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  167.354518][ T7868] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  167.358464][ T7868] vhci_hcd vhci_hcd.0: Device attached
[  167.586326][ T6677] libceph: connect (1)[c::]:6789 error -101
[  167.590200][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  167.594400][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  167.600202][ T6677] libceph: connect (1)[c::]:6789 error -101
[  167.602347][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  167.632586][ T7870] ceph: No mds server is up or the cluster is laggy
[  167.634502][ T6022] usb 42-1: SetAddress Request (15) to port 0
[  167.638056][ T6022] usb 42-1: new SuperSpeed USB device number 15 using vhci_hcd
[  167.768709][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.772617][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.776149][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  167.780239][    T9] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  167.783125][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.788973][    T9] usb 6-1: config 0 descriptor??
[  167.826359][ T7877] netlink: 4 bytes leftover after parsing attributes in process `syz.0.443'.
[  167.873012][ T7869] vhci_hcd: connection reset by peer
[  167.875773][   T13] vhci_hcd: stop threads
[  167.877395][   T13] vhci_hcd: release socket
[  167.878998][   T13] vhci_hcd: disconnect device
[  168.208084][    T9] hid_parser_main: 28 callbacks suppressed
[  168.208163][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.212706][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.215392][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.217771][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.220162][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.222509][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.224913][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.227572][ T5937] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  168.229992][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.232445][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.235461][    T9] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  168.245479][    T9] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  168.386789][ T5937] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  168.395695][ T5937] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  168.404825][ T5937] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  168.409121][ T5937] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  168.411995][ T5937] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.426115][ T5937] usb 5-1: config 0 descriptor??
[  168.576615][ T6677] libceph: connect (1)[c::]:6789 error -101
[  168.578542][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  168.595770][   T34] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  168.622974][ T7886] ceph: No mds server is up or the cluster is laggy
[  168.745971][   T34] usb 8-1: Using ep0 maxpacket: 8
[  168.749960][   T34] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  168.753335][   T34] usb 8-1: config 0 has no interface number 0
[  168.756403][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  168.760607][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  168.764060][   T34] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  168.767677][   T34] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  168.772200][   T34] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  168.775089][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.779723][   T34] usb 8-1: config 0 descriptor??
[  168.785032][   T34] ldusb 8-1:0.55: LD USB Device #1 now attached to major 180 minor 1
[  168.847309][ T5937] plantronics 0003:047F:FFFF.0010: hiddev2,hidraw2: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  169.038019][ T6677] usb 8-1: USB disconnect, device number 17
[  169.044718][ T6677] ldusb 8-1:0.55: LD USB Device #1 now disconnected
[  169.464155][   T40] audit: type=1804 audit(1762371510.701:72): pid=7898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.448" name="/newroot/106/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  169.894738][ T7905] binder: BINDER_SET_CONTEXT_MGR already set
[  169.897269][ T7905] binder: 7904:7905 ioctl 4018620d 80004a80 returned -16
[  170.283611][ T5937] usb 6-1: USB disconnect, device number 13
[  170.317287][ T7907] binder: 7906:7907 ioctl 4018620d 0 returned -22
[  170.631981][ T7912] binder: 7911:7912 ioctl 4018620d 0 returned -22
[  170.649342][ T5937] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  170.799490][ T5937] usb 6-1: Using ep0 maxpacket: 16
[  170.803473][ T5937] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  170.807118][ T5937] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  170.810626][ T5937] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  170.814024][ T5937] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.817764][ T5937] usb 6-1: config 0 descriptor??
[  170.889138][   T34] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  170.941986][ T6677] libceph: connect (1)[c::]:6789 error -101
[  170.944610][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  170.944766][    T9] usb 5-1: USB disconnect, device number 16
[  170.978337][ T7916] ceph: No mds server is up or the cluster is laggy
[  171.049313][   T34] usb 7-1: Using ep0 maxpacket: 16
[  171.052319][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  171.055708][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.058700][   T34] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  171.061532][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.065238][   T34] usb 7-1: config 0 descriptor??
[  171.476205][   T34] usbhid 7-1:0.0: can't add hid device: -32
[  171.478078][   T34] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  171.483038][ T7912] netlink: 12 bytes leftover after parsing attributes in process `syz.2.453'.
[  171.502838][ T7912] 8021q: adding VLAN 0 to HW filter on device bond1
[  171.549334][ T7912] 8021q: adding VLAN 0 to HW filter on device batadv4
[  171.556854][ T7912] bond1: (slave batadv4): Enslaving as an active interface with an up link
[  171.576704][ T7912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.453'.
[  171.713740][ T7912] bond1 (unregistering): (slave batadv4): Releasing backup interface
[  171.717636][ T7912] bond1 (unregistering): Released all slaves
[  171.844727][   T24] usb 7-1: USB disconnect, device number 17
[  172.147140][ T5937] usbhid 6-1:0.0: can't add hid device: -32
[  172.148359][ T7907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.452'.
[  172.149701][ T5937] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  172.187590][ T7907] 8021q: adding VLAN 0 to HW filter on device bond2
[  172.201972][ T7907] 8021q: adding VLAN 0 to HW filter on device batadv6
[  172.207196][ T7907] bond2: (slave batadv6): Enslaving as an active interface with an up link
[  172.215809][ T7907] netlink: 4 bytes leftover after parsing attributes in process `syz.1.452'.
[  172.287690][ T7907] bond2 (unregistering): (slave batadv6): Releasing backup interface
[  172.293203][ T7907] bond2 (unregistering): Released all slaves
[  172.367431][   T34] usb 6-1: USB disconnect, device number 14
[  172.409589][ T7939] 9pnet_virtio: no channels available for device syz
[  172.701764][ T6022] usb 42-1: device descriptor read/8, error -110
[  172.832056][   T24] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  172.935268][ T7950] binder: BINDER_SET_CONTEXT_MGR already set
[  172.937240][ T7950] binder: 7949:7950 ioctl 4018620d 80004a80 returned -16
[  173.004754][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.009060][   T24] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.013981][   T24] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  173.023986][   T24] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  173.027280][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.034027][   T24] usb 8-1: config 0 descriptor??
[  173.146083][ T6022] usb usb42-port1: attempt power cycle
[  173.442395][   T24] hid_parser_main: 66 callbacks suppressed
[  173.442416][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.447986][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.450519][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.453764][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.456747][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.459629][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.462267][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.466415][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.469304][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.472210][   T24] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  173.481148][   T24] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  173.725408][ T6022] usb usb42-port1: unable to enumerate USB device
[  173.991611][ T7968] netlink: 888 bytes leftover after parsing attributes in process `syz.1.469'.
[  174.048773][ T7972] netlink: 8 bytes leftover after parsing attributes in process `syz.1.470'.
[  174.077269][ T7972] lo speed is unknown, defaulting to 1000
[  174.080989][ T7972] lo speed is unknown, defaulting to 1000
[  174.085989][ T7972] lo speed is unknown, defaulting to 1000
[  174.165015][   T34] lo speed is unknown, defaulting to 1000
[  174.165151][ T7972] infiniband syz0: set active
[  174.168734][ T7972] infiniband syz0: added lo
[  174.189539][ T7972] RDS/IB: syz0: added
[  174.191089][ T7972] smc: adding ib device syz0 with port count 1
[  174.193139][ T7972] smc:    ib device syz0 port 1 has no pnetid
[  174.196071][   T34] lo speed is unknown, defaulting to 1000
[  174.198169][ T7972] lo speed is unknown, defaulting to 1000
[  174.321406][ T7972] lo speed is unknown, defaulting to 1000
[  174.326124][   T53] libceph: connect (1)[c::]:6789 error -101
[  174.328291][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  174.373316][ T7977] ceph: No mds server is up or the cluster is laggy
[  174.428934][ T7972] lo speed is unknown, defaulting to 1000
[  174.520575][ T7972] lo speed is unknown, defaulting to 1000
[  174.589442][ T7992] trusted_key: syz.2.474 sent an empty control message without MSG_MORE.
[  174.759540][ T8000] tipc: Can't bind to reserved service type 2
[  174.765772][ T8000] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[  174.772502][ T8000] netlink: 277 bytes leftover after parsing attributes in process `syz.2.475'.
[  174.776254][ T8000] netlink: 277 bytes leftover after parsing attributes in process `syz.2.475'.
[  174.798980][   T40] audit: type=1326 audit(1762371516.033:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7993 comm="syz.2.475" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x0
[  175.287812][ T8005] binder: 8004:8005 ioctl c0306201 0 returned -14
[  175.561598][   T34] usb 8-1: USB disconnect, device number 18
[  175.726822][ T8010] FAULT_INJECTION: forcing a failure.
[  175.726822][ T8010] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  175.730802][ T8010] CPU: 2 UID: 0 PID: 8010 Comm: syz.3.480 Not tainted syzkaller #0 PREEMPT(full) 
[  175.730817][ T8010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.730823][ T8010] Call Trace:
[  175.730837][ T8010]  <TASK>
[  175.730842][ T8010]  dump_stack_lvl+0x16c/0x1f0
[  175.730867][ T8010]  should_fail_ex+0x512/0x640
[  175.730892][ T8010]  _copy_from_user+0x2e/0xd0
[  175.730909][ T8010]  kvm_arch_vm_ioctl+0x1414/0x18b0
[  175.730923][ T8010]  ? is_bpf_text_address+0x94/0x1a0
[  175.730939][ T8010]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  175.730951][ T8010]  ? __kernel_text_address+0xd/0x40
[  175.730961][ T8010]  ? unwind_get_return_address+0x59/0xa0
[  175.730972][ T8010]  ? arch_stack_walk+0xa6/0x100
[  175.730986][ T8010]  ? __lock_acquire+0x622/0x1c90
[  175.731002][ T8010]  ? __pfx_stack_trace_save+0x10/0x10
[  175.731013][ T8010]  ? look_up_lock_class+0x6b/0x150
[  175.731027][ T8010]  ? __lock_acquire+0x622/0x1c90
[  175.731042][ T8010]  ? __lock_acquire+0x622/0x1c90
[  175.731067][ T8010]  ? __lock_acquire+0x622/0x1c90
[  175.731087][ T8010]  ? find_held_lock+0x2b/0x80
[  175.731097][ T8010]  ? is_bpf_text_address+0x8a/0x1a0
[  175.731111][ T8010]  ? bpf_ksym_find+0x124/0x1c0
[  175.731123][ T8010]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  175.731135][ T8010]  ? is_bpf_text_address+0x94/0x1a0
[  175.731149][ T8010]  ? kernel_text_address+0x8d/0x100
[  175.731164][ T8010]  ? widen_string+0xdc/0x2d0
[  175.731178][ T8010]  ? __kernel_text_address+0xd/0x40
[  175.731187][ T8010]  ? unwind_get_return_address+0x59/0xa0
[  175.731197][ T8010]  ? arch_stack_walk+0xa6/0x100
[  175.731209][ T8010]  kvm_vm_ioctl+0x1a91/0x3fd0
[  175.731223][ T8010]  ? stack_trace_save+0x8e/0xc0
[  175.731234][ T8010]  ? __pfx_stack_trace_save+0x10/0x10
[  175.731246][ T8010]  ? stack_depot_save_flags+0x29/0x9c0
[  175.731263][ T8010]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  175.731274][ T8010]  ? kasan_save_stack+0x42/0x60
[  175.731286][ T8010]  ? kasan_save_stack+0x33/0x60
[  175.731297][ T8010]  ? kasan_save_track+0x14/0x30
[  175.731308][ T8010]  ? __kasan_save_free_info+0x3b/0x60
[  175.731316][ T8010]  ? __kasan_slab_free+0x5f/0x80
[  175.731327][ T8010]  ? kfree+0x2b8/0x6d0
[  175.731335][ T8010]  ? tomoyo_path_number_perm+0x470/0x580
[  175.731351][ T8010]  ? security_file_ioctl_compat+0x9b/0x240
[  175.731361][ T8010]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  175.731376][ T8010]  ? __do_fast_syscall_32+0x7c/0x300
[  175.731388][ T8010]  ? do_fast_syscall_32+0x32/0x80
[  175.731399][ T8010]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.731412][ T8010]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  175.731425][ T8010]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  175.731449][ T8010]  ? kasan_quarantine_put+0x10a/0x240
[  175.731460][ T8010]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.731473][ T8010]  ? find_held_lock+0x2b/0x80
[  175.731483][ T8010]  ? tomoyo_path_number_perm+0x295/0x580
[  175.731501][ T8010]  ? tomoyo_path_number_perm+0x18d/0x580
[  175.731519][ T8010]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  175.731542][ T8010]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.731560][ T8010]  ? do_vfs_ioctl+0x128/0x14f0
[  175.731575][ T8010]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  175.731591][ T8010]  kvm_vm_compat_ioctl+0x393/0x3f0
[  175.731603][ T8010]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  175.731615][ T8010]  ? find_held_lock+0x2b/0x80
[  175.731625][ T8010]  ? hook_file_ioctl_common+0x145/0x410
[  175.731638][ T8010]  ? __fget_files+0x20e/0x3c0
[  175.731650][ T8010]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  175.731663][ T8010]  __ia32_compat_sys_ioctl+0x242/0x370
[  175.731680][ T8010]  __do_fast_syscall_32+0x7c/0x300
[  175.731693][ T8010]  do_fast_syscall_32+0x32/0x80
[  175.731706][ T8010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.731718][ T8010] RIP: 0023:0xf7f32579
[  175.731726][ T8010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.731736][ T8010] RSP: 002b:00000000f540555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  175.731746][ T8010] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c048aec8
[  175.731753][ T8010] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  175.731758][ T8010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.731764][ T8010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.731770][ T8010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.731782][ T8010]  </TASK>
[  175.910888][   T53] libceph: connect (1)[c::]:6789 error -101
[  175.912926][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  175.943484][ T8013] ceph: No mds server is up or the cluster is laggy
[  176.163466][ T8030] netlink: 12 bytes leftover after parsing attributes in process `syz.1.487'.
[  176.282183][ T8034] macvlan2: entered allmulticast mode
[  176.283890][ T8034] veth1_vlan: entered allmulticast mode
[  176.289155][ T8034] veth1_vlan: left allmulticast mode
[  176.507271][   T53] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  176.669662][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.673196][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  176.676303][   T53] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  176.680304][   T53] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  176.683107][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.687246][   T53] usb 6-1: config 0 descriptor??
[  176.992050][   T29] libceph: connect (1)[c::]:6789 error -101
[  176.994083][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  177.040106][ T8037] ceph: No mds server is up or the cluster is laggy
[  177.104578][   T53] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  177.417782][ T8051] netlink: 28 bytes leftover after parsing attributes in process `syz.2.492'.
[  177.829262][   T40] audit: type=1326 audit(1762371519.058:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.835997][   T40] audit: type=1326 audit(1762371519.058:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.844044][   T40] audit: type=1326 audit(1762371519.058:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.852827][   T40] audit: type=1326 audit(1762371519.058:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.860074][   T40] audit: type=1326 audit(1762371519.058:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.867172][   T40] audit: type=1326 audit(1762371519.058:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.874229][   T40] audit: type=1326 audit(1762371519.058:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.881290][   T40] audit: type=1326 audit(1762371519.058:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  177.888687][   T40] audit: type=1326 audit(1762371519.058:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8059 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=338 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  178.089796][ T8063] binder: 8062:8063 ioctl c0306201 0 returned -14
[  178.363070][ T8067] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  178.365098][ T8067] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  178.367769][ T8067] vhci_hcd vhci_hcd.0: Device attached
[  178.640257][   T24] usb 38-1: SetAddress Request (14) to port 0
[  178.642154][   T24] usb 38-1: new SuperSpeed USB device number 14 using vhci_hcd
[  178.997157][ T8068] vhci_hcd: connection reset by peer
[  178.999579][   T46] vhci_hcd: stop threads
[  179.001167][   T46] vhci_hcd: release socket
[  179.002679][   T46] vhci_hcd: disconnect device
[  179.095033][   T53] libceph: connect (1)[c::]:6789 error -101
[  179.097031][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  179.142933][ T8076] ceph: No mds server is up or the cluster is laggy
[  179.216695][ T6022] usb 6-1: USB disconnect, device number 15
[  179.394111][ T8087] binder: BINDER_SET_CONTEXT_MGR already set
[  179.396602][ T8087] binder: 8086:8087 ioctl 4018620d 80004a80 returned -16
[  179.478257][ T8088] overlayfs: failed to resolve './file1/file0': -2
[  179.651707][ T6024] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  179.657486][ T8090] binder: BINDER_SET_CONTEXT_MGR already set
[  179.659394][ T8090] binder: 8089:8090 ioctl 4018620d 80004a80 returned -16
[  179.811852][ T6024] usb 8-1: Using ep0 maxpacket: 16
[  179.815202][ T6024] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.819040][ T6024] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.822888][ T6024] usb 8-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  179.825623][ T6024] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.830199][ T6024] usb 8-1: config 0 descriptor??
[  179.902012][   T61] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  180.072365][   T61] usb 6-1: Using ep0 maxpacket: 16
[  180.082197][   T61] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.085636][   T61] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.089629][   T61] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  180.093125][   T61] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.097519][   T61] usb 6-1: config 0 descriptor??
[  180.238778][ T6024] usbhid 8-1:0.0: can't add hid device: -32
[  180.239633][ T8087] netlink: 12 bytes leftover after parsing attributes in process `syz.3.503'.
[  180.241422][ T6024] usbhid 8-1:0.0: probe with driver usbhid failed with error -32
[  180.258409][ T8087] 8021q: adding VLAN 0 to HW filter on device bond3
[  180.271971][ T8087] 8021q: adding VLAN 0 to HW filter on device batadv3
[  180.275568][ T8087] bond3: (slave batadv3): Enslaving as an active interface with an up link
[  180.280891][ T8087] netlink: 4 bytes leftover after parsing attributes in process `syz.3.503'.
[  180.345188][ T8087] bond3 (unregistering): (slave batadv3): Releasing backup interface
[  180.349090][ T8087] bond3 (unregistering): Released all slaves
[  180.437212][ T6024] usb 8-1: USB disconnect, device number 19
[  180.508880][   T61] usbhid 6-1:0.0: can't add hid device: -32
[  180.510486][ T8090] netlink: 12 bytes leftover after parsing attributes in process `syz.1.504'.
[  180.510818][   T61] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  180.535261][ T8090] 8021q: adding VLAN 0 to HW filter on device bond2
[  180.568356][ T8090] 8021q: adding VLAN 0 to HW filter on device batadv7
[  180.571356][ T8106] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  180.574228][ T8106] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  180.580490][ T8090] bond2: (slave batadv7): Enslaving as an active interface with an up link
[  180.592954][ T8106] vhci_hcd vhci_hcd.0: Device attached
[  180.598464][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.504'.
[  180.699063][ T8111] binder: 8110:8111 ioctl c0306201 0 returned -14
[  180.716915][ T8090] bond2 (unregistering): (slave batadv7): Releasing backup interface
[  180.722150][ T8090] bond2 (unregistering): Released all slaves
[  180.791008][ T6024] usb 6-1: USB disconnect, device number 16
[  180.873681][ T6022] usb 42-1: SetAddress Request (19) to port 0
[  180.876340][ T6022] usb 42-1: new SuperSpeed USB device number 19 using vhci_hcd
[  181.169733][ T8107] vhci_hcd: connection reset by peer
[  181.172963][   T95] vhci_hcd: stop threads
[  181.174847][   T95] vhci_hcd: release socket
[  181.176893][   T95] vhci_hcd: disconnect device
[  181.263837][   T61] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  181.415941][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  181.420163][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  181.423684][   T61] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  181.428173][   T61] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  181.431787][   T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.437985][   T61] usb 8-1: config 0 descriptor??
[  181.564407][   T34] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  181.704455][   T34] usb 6-1: device descriptor read/64, error -71
[  181.830484][   T29] libceph: connect (1)[c::]:6789 error -101
[  181.833079][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  181.845508][   T61] hid_parser_main: 66 callbacks suppressed
[  181.845520][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.850705][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.853248][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.855955][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.858500][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.860882][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.863468][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.866157][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.868526][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.870902][   T61] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  181.878707][   T61] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  181.883752][ T8121] ceph: No mds server is up or the cluster is laggy
[  181.945917][   T34] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  182.074993][   T34] usb 6-1: device descriptor read/64, error -71
[  182.185344][   T34] usb usb6-port1: attempt power cycle
[  182.525686][   T34] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  182.557080][   T34] usb 6-1: device descriptor read/8, error -71
[  182.797679][   T29] libceph: connect (1)[c::]:6789 error -101
[  182.801282][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  182.845449][ T8138] ceph: No mds server is up or the cluster is laggy
[  183.066521][   T34] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  183.087077][   T34] usb 6-1: device descriptor read/8, error -71
[  183.206945][   T34] usb usb6-port1: unable to enumerate USB device
[  183.680964][   T24] usb 38-1: device descriptor read/8, error -110
[  183.981414][ T5937] usb 8-1: USB disconnect, device number 20
[  184.101998][   T24] usb usb38-port1: attempt power cycle
[  184.201769][   T29] libceph: connect (1)[c::]:6789 error -101
[  184.203689][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  184.217197][ T8163] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  184.219275][ T8163] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  184.222167][ T8163] vhci_hcd vhci_hcd.0: Device attached
[  184.249375][ T8160] ceph: No mds server is up or the cluster is laggy
[  184.488359][ T6024] usb 44-1: SetAddress Request (11) to port 0
[  184.491127][ T6024] usb 44-1: new SuperSpeed USB device number 11 using vhci_hcd
[  184.658915][   T24] usb usb38-port1: unable to enumerate USB device
[  184.854448][ T8164] vhci_hcd: connection reset by peer
[  184.857406][   T13] vhci_hcd: stop threads
[  184.859009][   T13] vhci_hcd: release socket
[  184.861313][   T13] vhci_hcd: disconnect device
[  185.030651][ T8177] macvlan2: entered allmulticast mode
[  185.032460][ T8177] veth1_vlan: entered allmulticast mode
[  185.037645][ T8177] veth1_vlan: left allmulticast mode
[  185.564778][ T8185] mmap: syz.1.526 (8185) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  185.920275][ T6022] usb 42-1: device descriptor read/8, error -110
[  186.321287][ T6022] usb usb42-port1: attempt power cycle
[  186.369843][ T8197] comedi comedi3: 8255: I/O port conflict (0x40404f26,4)
[  186.374410][ T8197] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  186.376907][ T8197] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  186.379622][ T8197] comedi comedi3: 8255: I/O port conflict (0xc,4)
[  186.382453][ T8197] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  186.384897][ T8197] comedi comedi3: 8255: I/O port conflict (0xfff,4)
[  186.387226][ T8197] comedi comedi3: 8255: I/O port conflict (0x5c95238c,4)
[  186.391056][ T8197] comedi comedi3: 8255: I/O port conflict (0xa,4)
[  186.393711][ T8197] comedi comedi3: 8255: I/O port conflict (0x3bf,4)
[  186.396093][ T8197] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  186.398642][ T8197] comedi comedi3: 8255: I/O port conflict (0x20000001,4)
[  186.401727][ T8197] comedi comedi3: 8255: I/O port conflict (0x400e1c8,4)
[  186.404196][ T8197] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  186.406734][ T8197] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  186.408978][ T8197] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  186.413020][ T8197] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  186.415755][ T8197] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  186.418400][ T8197] comedi comedi3: 8255: I/O port conflict (0xb,4)
[  186.420911][ T8197] comedi comedi3: 8255: I/O port conflict (0x10,4)
[  186.423028][ T8197] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  186.425102][ T8197] comedi comedi3: 8255: I/O port conflict (0xef,4)
[  186.445863][   T53] libceph: connect (1)[c::]:6789 error -101
[  186.448027][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  186.483852][ T8199] ceph: No mds server is up or the cluster is laggy
[  186.619936][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  186.619947][   T40] audit: type=1804 audit(1762372295.836:105): pid=8208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.533" name="/newroot/115/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  186.893090][ T6022] usb usb42-port1: unable to enumerate USB device
[  187.055192][ T8211] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  187.403489][ T8219] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  187.405562][ T8219] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  187.408301][ T8219] vhci_hcd vhci_hcd.0: Device attached
[  187.757486][ T8226] macvlan2: entered allmulticast mode
[  187.759252][ T8226] veth1_vlan: entered allmulticast mode
[  187.766012][ T8226] veth1_vlan: left allmulticast mode
[  188.025081][ T8220] vhci_hcd: connection closed
[  188.025627][   T13] vhci_hcd: stop threads
[  188.028774][   T13] vhci_hcd: release socket
[  188.030371][   T13] vhci_hcd: disconnect device
[  188.872166][ T8244] binder: 8243:8244 ioctl c0306201 0 returned -14
[  189.196712][   T53] libceph: connect (1)[c::]:6789 error -101
[  189.199370][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  189.243108][ T8248] ceph: No mds server is up or the cluster is laggy
[  189.524117][ T6024] usb 44-1: device descriptor read/8, error -110
[  189.925197][ T6024] usb usb44-port1: attempt power cycle
[  190.083545][ T8266] macvlan2: entered allmulticast mode
[  190.086761][ T8266] veth1_vlan: entered allmulticast mode
[  190.091629][ T8266] veth1_vlan: left allmulticast mode
[  190.498727][ T6024] usb usb44-port1: unable to enumerate USB device
[  190.784887][ T8276] binder: 8275:8276 ioctl c0306201 0 returned -14
[  191.046382][   T29] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  191.206607][   T29] usb 8-1: Using ep0 maxpacket: 16
[  191.209670][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.213229][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.216418][   T29] usb 8-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  191.219696][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.223778][   T29] usb 8-1: config 0 descriptor??
[  191.635707][   T29] usbhid 8-1:0.0: can't add hid device: -32
[  191.637728][   T29] usbhid 8-1:0.0: probe with driver usbhid failed with error -32
[  191.637748][ T8276] netlink: 12 bytes leftover after parsing attributes in process `syz.3.551'.
[  191.651404][ T8276] 8021q: adding VLAN 0 to HW filter on device bond3
[  191.662367][ T8276] 8021q: adding VLAN 0 to HW filter on device batadv4
[  191.665400][ T8276] bond3: (slave batadv4): Enslaving as an active interface with an up link
[  191.670280][ T8276] netlink: 4 bytes leftover after parsing attributes in process `syz.3.551'.
[  191.723812][ T8276] bond3 (unregistering): (slave batadv4): Releasing backup interface
[  191.728031][ T8276] bond3 (unregistering): Released all slaves
[  191.788624][ T6024] usb 8-1: USB disconnect, device number 21
[  192.341384][ T8295] 9pnet_fd: Insufficient options for proto=fd
[  192.351007][ T8295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.554'.
[  193.383657][ T8315] macvlan2: entered allmulticast mode
[  193.385486][ T8315] veth1_vlan: entered allmulticast mode
[  193.389803][ T8315] veth1_vlan: left allmulticast mode
[  193.406918][ T8318] ipvlan2: entered promiscuous mode
[  193.410717][ T8318] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  193.933023][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  193.935107][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  194.362189][ T8333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.568'.
[  194.772215][   T40] audit: type=1804 audit(1762372559.982:106): pid=8345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.571" name="/newroot/128/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  196.032593][ T8361] Bluetooth: MGMT ver 1.23
[  196.765349][   T40] audit: type=1326 audit(1762372561.979:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  196.774791][   T40] audit: type=1326 audit(1762372561.979:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  196.781433][   T40] audit: type=1326 audit(1762372561.979:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  196.788733][   T40] audit: type=1326 audit(1762372561.979:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  196.796418][   T40] audit: type=1326 audit(1762372561.979:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  196.806208][   T40] audit: type=1326 audit(1762372561.979:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  196.812889][   T40] audit: type=1326 audit(1762372561.979:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  196.822161][   T40] audit: type=1326 audit(1762372561.979:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  196.830136][   T40] audit: type=1326 audit(1762372561.979:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.583" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000
[  197.311314][ T8384] capability: warning: `syz.3.586' uses 32-bit capabilities (legacy support in use)
[  197.475493][ T8388] FAULT_INJECTION: forcing a failure.
[  197.475493][ T8388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.480854][ T8388] CPU: 0 UID: 0 PID: 8388 Comm: syz.1.588 Not tainted syzkaller #0 PREEMPT(full) 
[  197.480876][ T8388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.480887][ T8388] Call Trace:
[  197.480893][ T8388]  <TASK>
[  197.480899][ T8388]  dump_stack_lvl+0x16c/0x1f0
[  197.480924][ T8388]  should_fail_ex+0x512/0x640
[  197.480954][ T8388]  copy_fpstate_to_sigframe+0x854/0xaf0
[  197.480982][ T8388]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  197.481008][ T8388]  ? cgroup_freezing+0x136/0x3b0
[  197.481035][ T8388]  ? x86_task_fpu+0x5f/0x90
[  197.481056][ T8388]  get_sigframe+0x4a8/0x9c0
[  197.481080][ T8388]  ? __pfx_get_sigframe+0x10/0x10
[  197.481102][ T8388]  ? _raw_spin_unlock_irq+0x23/0x50
[  197.481119][ T8388]  ? siginfo_layout+0x1d2/0x290
[  197.481142][ T8388]  ia32_setup_rt_frame+0xe3/0xb30
[  197.481174][ T8388]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  197.481207][ T8388]  arch_do_signal_or_restart+0x471/0x790
[  197.481230][ T8388]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  197.481256][ T8388]  ? ksys_write+0x1ac/0x250
[  197.481275][ T8388]  ? __pfx_ksys_write+0x10/0x10
[  197.481298][ T8388]  exit_to_user_mode_loop+0x85/0x130
[  197.481325][ T8388]  __do_fast_syscall_32+0x240/0x300
[  197.481349][ T8388]  do_fast_syscall_32+0x32/0x80
[  197.481369][ T8388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.481390][ T8388] RIP: 0023:0xf7fb4579
[  197.481404][ T8388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.481419][ T8388] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  197.481436][ T8388] RAX: ffffffffffffffe0 RBX: 0000000000000003 RCX: 0000000080003c00
[  197.481446][ T8388] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  197.481456][ T8388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.481465][ T8388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  197.481475][ T8388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.481499][ T8388]  </TASK>
[  197.568237][    C0] vkms_vblank_simulate: vblank timer overrun
[  197.855019][ T8399] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  197.857106][ T8399] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  197.860187][   T24] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  197.863445][ T8399] vhci_hcd vhci_hcd.0: Device attached
[  197.929768][ T8402] macvlan2: entered allmulticast mode
[  197.931486][ T8402] veth1_vlan: entered allmulticast mode
[  197.934328][ T8402] veth1_vlan: left allmulticast mode
[  198.086578][   T24] usb 7-1: Using ep0 maxpacket: 16
[  198.090029][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.094296][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.103257][   T24] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  198.106227][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.110757][   T24] usb 7-1: config 0 descriptor??
[  198.196550][ T6024] usb 40-1: SetAddress Request (18) to port 0
[  198.198602][ T6024] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[  198.255681][ T8405] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  198.257781][ T8405] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  198.260742][ T8405] vhci_hcd vhci_hcd.0: Device attached
[  198.431698][ T8400] vhci_hcd: connection reset by peer
[  198.433799][   T95] vhci_hcd: stop threads
[  198.435234][   T95] vhci_hcd: release socket
[  198.436846][   T95] vhci_hcd: disconnect device
[  198.516983][   T24] usbhid 7-1:0.0: can't add hid device: -32
[  198.517952][ T8392] netlink: 12 bytes leftover after parsing attributes in process `syz.2.590'.
[  198.519004][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  198.526818][ T5946] usb 38-1: SetAddress Request (18) to port 0
[  198.528813][ T5946] usb 38-1: new SuperSpeed USB device number 18 using vhci_hcd
[  198.533675][ T8392] 8021q: adding VLAN 0 to HW filter on device bond1
[  198.543112][ T8392] 8021q: adding VLAN 0 to HW filter on device batadv5
[  198.547159][ T8392] bond1: (slave batadv5): Enslaving as an active interface with an up link
[  198.552660][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.590'.
[  198.622277][ T8392] bond1 (unregistering): (slave batadv5): Releasing backup interface
[  198.627969][ T8392] bond1 (unregistering): Released all slaves
[  198.673105][ T8406] vhci_hcd: connection reset by peer
[  198.674922][   T46] vhci_hcd: stop threads
[  198.676509][   T46] vhci_hcd: release socket
[  198.678332][   T46] vhci_hcd: disconnect device
[  198.692893][   T61] usb 7-1: USB disconnect, device number 18
[  199.632429][ T8436] macvlan2: entered allmulticast mode
[  199.634295][ T8436] veth1_vlan: entered allmulticast mode
[  199.639441][ T8436] veth1_vlan: left allmulticast mode
[  200.180585][ T8444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.604'.
[  200.187738][ T8444] geneve2: entered promiscuous mode
[  200.523954][ T8458] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  200.525849][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  200.528268][ T8458] vhci_hcd vhci_hcd.0: Device attached
[  200.669565][   T53] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  200.771826][ T6677] libceph: connect (1)[c::]:6789 error -101
[  200.773844][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  200.799500][   T59] usb 42-1: SetAddress Request (23) to port 0
[  200.801464][   T59] usb 42-1: new SuperSpeed USB device number 23 using vhci_hcd
[  200.820524][ T8462] ceph: No mds server is up or the cluster is laggy
[  200.838120][   T53] usb 8-1: too many configurations: 9, using maximum allowed: 8
[  200.846676][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.859668][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.863045][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.866055][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.868836][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.872742][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.875634][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.878414][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.889564][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.892727][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.895503][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.898829][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.910464][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.913289][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.916671][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.930412][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.933214][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.936568][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.940564][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.943914][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.947132][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.960116][   T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  200.962957][   T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  200.966306][   T53] usb 8-1: config 0 interface 0 has no altsetting 0
[  200.970019][   T53] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  200.972825][   T53] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  200.975389][   T53] usb 8-1: Product: syz
[  200.976673][   T53] usb 8-1: Manufacturer: syz
[  200.978088][   T53] usb 8-1: SerialNumber: syz
[  200.981033][   T53] usb 8-1: config 0 descriptor??
[  200.985596][   T53] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[  201.120321][ T8459] vhci_hcd: connection reset by peer
[  201.122629][   T95] vhci_hcd: stop threads
[  201.123974][   T95] vhci_hcd: release socket
[  201.125494][   T95] vhci_hcd: disconnect device
[  201.192213][   T53] usb 8-1: USB disconnect, device number 22
[  201.197428][   T53] yurex 8-1:0.0: USB YUREX #0 now disconnected
[  202.031336][   T24] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  202.183476][   T24] usb 8-1: too many configurations: 9, using maximum allowed: 8
[  202.186850][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.189629][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.193360][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.196352][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.199264][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.203873][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.206828][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.209680][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.213370][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.216365][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.219155][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.222893][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.225715][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.228672][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.232500][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.235537][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.238302][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.241912][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.245270][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.248031][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.251296][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.254767][   T24] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.257802][   T24] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.261213][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  202.265042][   T24] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  202.268079][   T24] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  202.270663][   T24] usb 8-1: Product: syz
[  202.272125][   T24] usb 8-1: Manufacturer: syz
[  202.273629][   T24] usb 8-1: SerialNumber: syz
[  202.276275][   T24] usb 8-1: config 0 descriptor??
[  202.282914][   T24] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[  202.361858][ T6005] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  202.481630][ T8474] FAULT_INJECTION: forcing a failure.
[  202.481630][ T8474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.485905][ T8474] CPU: 3 UID: 0 PID: 8474 Comm: syz.3.614 Not tainted syzkaller #0 PREEMPT(full) 
[  202.485919][ T8474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.485926][ T8474] Call Trace:
[  202.485929][ T8474]  <TASK>
[  202.485934][ T8474]  dump_stack_lvl+0x16c/0x1f0
[  202.485950][ T8474]  should_fail_ex+0x512/0x640
[  202.485968][ T8474]  _copy_to_user+0x32/0xd0
[  202.485986][ T8474]  simple_read_from_buffer+0xcb/0x170
[  202.486004][ T8474]  proc_fail_nth_read+0x197/0x240
[  202.486016][ T8474]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  202.486028][ T8474]  ? rw_verify_area+0xcf/0x6c0
[  202.486037][ T8474]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  202.486048][ T8474]  vfs_read+0x1e4/0xcf0
[  202.486062][ T8474]  ? __pfx_vfs_read+0x10/0x10
[  202.486071][ T8474]  ? find_held_lock+0x2b/0x80
[  202.486086][ T8474]  ? __fget_files+0x20e/0x3c0
[  202.486100][ T8474]  ksys_read+0x12a/0x250
[  202.486110][ T8474]  ? __pfx_ksys_read+0x10/0x10
[  202.486122][ T8474]  ? rcu_is_watching+0x12/0xc0
[  202.486136][ T8474]  __do_fast_syscall_32+0x7c/0x300
[  202.486150][ T8474]  do_fast_syscall_32+0x32/0x80
[  202.486162][ T8474]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.486175][ T8474] RIP: 0023:0xf7f32579
[  202.486183][ T8474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.486193][ T8474] RSP: 002b:00000000f5426590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  202.486203][ T8474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5426620
[  202.486210][ T8474] RDX: 000000000000000f RSI: 00000000f73c6ff4 RDI: 0000000000000000
[  202.486216][ T8474] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  202.486221][ T8474] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  202.486227][ T8474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.486241][ T8474]  </TASK>
[  202.542638][ T6005] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  202.552511][   T34] usb 8-1: USB disconnect, device number 23
[  202.558082][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.560105][   T34] yurex 8-1:0.0: USB YUREX #0 now disconnected
[  202.560267][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.569338][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.570057][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.575030][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.578400][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.581416][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.584371][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.587765][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.590567][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.593799][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.597220][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.600020][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.602880][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.606990][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.609777][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.612629][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.615951][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.618873][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.621663][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.625330][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.628178][ T6005] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  202.631086][ T6005] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  202.634562][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  202.638235][ T6005] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  202.641207][ T6005] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  202.643934][ T6005] usb 7-1: Product: syz
[  202.645271][ T6005] usb 7-1: Manufacturer: syz
[  202.646851][ T6005] usb 7-1: SerialNumber: syz
[  202.649857][ T6005] usb 7-1: config 0 descriptor??
[  202.656559][ T6005] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  202.866277][ T8485] netlink: 8 bytes leftover after parsing attributes in process `syz.2.616'.
[  202.885212][   T53] usb 7-1: USB disconnect, device number 19
[  202.888356][   T53] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  203.244917][ T6677] libceph: connect (1)[c::]:6789 error -101
[  203.246901][ T6677] libceph: mon0 (1)[c::]:6789 connect error
[  203.293232][ T8494] ceph: No mds server is up or the cluster is laggy
[  203.304565][ T6024] usb 40-1: device descriptor read/8, error -110
[  203.509949][ T8511] binder: 8510:8511 ioctl 4018620d 0 returned -22
[  203.627429][ T8515] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  203.629501][ T8515] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  203.632613][ T8515] vhci_hcd vhci_hcd.0: Device attached
[  203.633672][ T5946] usb 38-1: device descriptor read/8, error -110
[  203.694205][ T6024] usb usb40-port1: attempt power cycle
[  203.703873][ T6005] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  203.964046][ T6677] usb 44-1: SetAddress Request (15) to port 0
[  203.966700][ T6677] usb 44-1: new SuperSpeed USB device number 15 using vhci_hcd
[  204.024834][ T5946] usb usb38-port1: attempt power cycle
[  204.087691][   T40] kauditd_printk_skb: 21 callbacks suppressed
[  204.087701][   T40] audit: type=1804 audit(1762373593.283:137): pid=8524 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.626" name="/newroot/144/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  204.235758][ T8516] vhci_hcd: connection reset by peer
[  204.238720][   T13] vhci_hcd: stop threads
[  204.240187][   T13] vhci_hcd: release socket
[  204.241684][   T13] vhci_hcd: disconnect device
[  204.265092][ T6024] usb usb40-port1: unable to enumerate USB device
[  204.585424][ T5946] usb usb38-port1: unable to enumerate USB device
[  204.932142][ T5937] libceph: connect (1)[c::]:6789 error -101
[  204.934252][ T5937] libceph: mon0 (1)[c::]:6789 connect error
[  204.979636][ T8530] ceph: No mds server is up or the cluster is laggy
[  205.265086][ T8541] netlink: 20 bytes leftover after parsing attributes in process `syz.0.631'.
[  205.867089][   T59] usb 42-1: device descriptor read/8, error -110
[  206.295033][   T59] usb usb42-port1: attempt power cycle
[  206.539559][ T8555] netlink: 'syz.2.637': attribute type 11 has an invalid length.
[  206.565904][ T8557] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  206.568369][ T8557] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  206.571617][ T8557] vhci_hcd vhci_hcd.0: Device attached
[  206.672104][ T8565] binder: 8564:8565 ioctl 4018620d 0 returned -22
[  206.716803][   T34] libceph: connect (1)[c::]:6789 error -101
[  206.719447][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  206.763872][ T8561] ceph: No mds server is up or the cluster is laggy
[  206.838149][   T29] usb 38-1: SetAddress Request (22) to port 0
[  206.841114][   T29] usb 38-1: new SuperSpeed USB device number 22 using vhci_hcd
[  206.878747][   T59] usb usb42-port1: unable to enumerate USB device
[  206.942562][ T8576] netlink: 8 bytes leftover after parsing attributes in process `syz.2.641'.
[  206.945359][ T8576] netlink: 20 bytes leftover after parsing attributes in process `syz.2.641'.
[  206.950867][ T8576] geneve2: entered promiscuous mode
[  206.952516][ T8576] geneve2: entered allmulticast mode
[  207.070943][ T8578] netlink: 8 bytes leftover after parsing attributes in process `syz.2.642'.
[  207.097124][ T8582] 9pnet_fd: Insufficient options for proto=fd
[  207.819559][ T6005] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  207.980553][ T6005] usb 6-1: Using ep0 maxpacket: 16
[  207.984830][ T6005] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.988535][ T8589] TCP: TCP_TX_DELAY enabled
[  207.991552][ T6005] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.995772][ T6005] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  207.999355][ T6005] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.010562][ T6005] usb 6-1: config 0 descriptor??
[  208.295990][ T8558] vhci_hcd: connection reset by peer
[  208.297972][ T1144] vhci_hcd: stop threads
[  208.299347][ T1144] vhci_hcd: release socket
[  208.301545][ T1144] vhci_hcd: disconnect device
[  208.418629][ T6005] usbhid 6-1:0.0: can't add hid device: -32
[  208.419636][ T8587] netlink: 12 bytes leftover after parsing attributes in process `syz.1.645'.
[  208.420719][ T6005] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  208.437960][ T8587] 8021q: adding VLAN 0 to HW filter on device bond2
[  208.456426][ T8587] 8021q: adding VLAN 0 to HW filter on device batadv8
[  208.461550][ T8587] bond2: (slave batadv8): Enslaving as an active interface with an up link
[  208.465942][ T8587] netlink: 4 bytes leftover after parsing attributes in process `syz.1.645'.
[  208.523243][ T8587] bond2 (unregistering): (slave batadv8): Releasing backup interface
[  208.526842][ T8587] bond2 (unregistering): Released all slaves
[  208.679532][   T34] usb 6-1: USB disconnect, device number 21
[  208.996448][   T40] audit: type=1804 audit(1762373854.187:138): pid=8599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.648" name="/newroot/148/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  209.081398][ T6677] usb 44-1: device descriptor read/8, error -110
[  210.210812][ T6677] usb usb44-port1: attempt power cycle
[  210.376197][   T40] audit: type=1326 audit(1762373855.565:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8619 comm="syz.0.655" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x0
[  210.725633][   T53] libceph: connect (1)[c::]:6789 error -101
[  210.728141][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  210.769404][ T8626] ceph: No mds server is up or the cluster is laggy
[  210.816309][ T8633] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  210.818387][ T8633] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  210.824863][ T8633] vhci_hcd vhci_hcd.0: Device attached
[  210.904501][ T6677] usb usb44-port1: unable to enumerate USB device
[  211.075843][   T40] audit: type=1804 audit(1762374112.265:140): pid=8645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.661" name="/newroot/169/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  211.165919][   T53] usb 40-1: SetAddress Request (22) to port 0
[  211.167985][   T53] usb 40-1: new SuperSpeed USB device number 22 using vhci_hcd
[  211.322747][ T8634] vhci_hcd: connection reset by peer
[  211.325008][ T1220] vhci_hcd: stop threads
[  211.326624][ T1220] vhci_hcd: release socket
[  211.328258][ T1220] vhci_hcd: disconnect device
[  211.827737][ T8648] binder: 8647:8648 ioctl c0306201 0 returned -14
[  211.884626][   T29] usb 38-1: device descriptor read/8, error -110
[  212.286126][   T29] usb usb38-port1: attempt power cycle
[  212.345331][ T5937] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  212.506904][ T5937] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  212.510649][ T5937] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  212.513646][ T5937] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  212.518231][ T5937] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  212.521162][ T5937] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.524888][ T5937] usb 7-1: config 0 descriptor??
[  212.846445][   T29] usb usb38-port1: unable to enumerate USB device
[  212.939244][ T5937] hid_parser_main: 28 callbacks suppressed
[  212.939258][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.943803][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.946380][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.948665][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.950930][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.953329][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.956441][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.959506][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.962342][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.964713][ T5937] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  212.975254][ T5937] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  213.949064][ T8670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.669'.
[  214.096642][   T40] audit: type=1804 audit(1762374115.272:141): pid=8674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.671" name="/newroot/191/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  214.287363][ T8681] binder: 8680:8681 ioctl c0306201 0 returned -14
[  215.055579][   T29] usb 7-1: USB disconnect, device number 21
[  215.255550][   T29] libceph: connect (1)[c::]:6789 error -101
[  215.257477][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  215.260060][ T8705] hsr0: entered allmulticast mode
[  215.262181][ T8705] hsr_slave_0: entered allmulticast mode
[  215.266917][ T8705] hsr_slave_0: left promiscuous mode
[  215.279930][ T8705] hsr0 (unregistering): left allmulticast mode
[  215.300856][ T8700] ceph: No mds server is up or the cluster is laggy
[  215.562452][ T8715] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  215.565231][ T8715] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  215.568592][ T8715] vhci_hcd vhci_hcd.0: Device attached
[  215.577752][ T8715] netlink: 16 bytes leftover after parsing attributes in process `syz.2.678'.
[  215.784260][ T8721] netlink: 72 bytes leftover after parsing attributes in process `syz.1.683'.
[  215.871072][   T29] usb 42-1: SetAddress Request (27) to port 0
[  215.873101][   T29] usb 42-1: new SuperSpeed USB device number 27 using vhci_hcd
[  216.120232][ T8716] vhci_hcd: connection reset by peer
[  216.122531][ T1148] vhci_hcd: stop threads
[  216.124159][ T1148] vhci_hcd: release socket
[  216.125709][ T1148] vhci_hcd: disconnect device
[  216.291279][   T53] usb 40-1: device descriptor read/8, error -110
[  216.682934][   T53] usb usb40-port1: attempt power cycle
[  216.768041][ T8732] binder: 8731:8732 ioctl c0306201 0 returned -14
[  217.304908][   T53] usb usb40-port1: unable to enumerate USB device
[  218.135963][ T8761] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  218.138764][ T8761] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  218.141764][ T8761] vhci_hcd vhci_hcd.0: Device attached
[  218.361449][   T53] libceph: connect (1)[c::]:6789 error -101
[  218.364562][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  218.404169][ T6005] usb 44-1: SetAddress Request (19) to port 0
[  218.406442][ T6005] usb 44-1: new SuperSpeed USB device number 19 using vhci_hcd
[  218.413949][ T8767] ceph: No mds server is up or the cluster is laggy
[  218.515475][   T40] audit: type=1326 audit(1762374119.695:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.524126][   T40] audit: type=1326 audit(1762374119.695:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.533582][   T40] audit: type=1326 audit(1762374119.695:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.542929][   T40] audit: type=1326 audit(1762374119.695:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.551720][   T40] audit: type=1326 audit(1762374119.695:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.559190][   T40] audit: type=1326 audit(1762374119.695:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.569742][ T8780] FAULT_INJECTION: forcing a failure.
[  218.569742][ T8780] name failslab, interval 1, probability 0, space 0, times 0
[  218.571303][   T40] audit: type=1326 audit(1762374119.745:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.574773][ T8780] CPU: 1 UID: 0 PID: 8780 Comm: syz.1.702 Not tainted syzkaller #0 PREEMPT(full) 
[  218.574795][ T8780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.574804][ T8780] Call Trace:
[  218.574809][ T8780]  <TASK>
[  218.574815][ T8780]  dump_stack_lvl+0x16c/0x1f0
[  218.574839][ T8780]  should_fail_ex+0x512/0x640
[  218.574867][ T8780]  should_failslab+0xc2/0x120
[  218.574889][ T8780]  __kmalloc_noprof+0xdd/0x880
[  218.574915][ T8780]  ? aa_label_asxprint+0x75/0x140
[  218.574943][ T8780]  ? aa_label_asxprint+0x75/0x140
[  218.574990][ T8780]  aa_label_asxprint+0x75/0x140
[  218.575016][ T8780]  apparmor_lsmprop_to_secctx+0xb2/0x1a0
[  218.575037][ T8780]  security_lsmprop_to_secctx+0x146/0x1a0
[  218.575062][ T8780]  audit_log_subj_ctx+0x29b/0x460
[  218.575086][ T8780]  ? map_id_range_up+0x2ce/0x3b0
[  218.575100][ T8780]  ? __pfx_audit_log_subj_ctx+0x10/0x10
[  218.575125][ T8780]  ? audit_log_format+0xe8/0x130
[  218.575151][ T8780]  audit_log_task_context+0x85/0xb0
[  218.575173][ T8780]  ? __pfx_audit_log_task_context+0x10/0x10
[  218.575200][ T8780]  audit_log_task+0x1c2/0x3f0
[  218.575216][ T8780]  ? __pfx_audit_log_task+0x10/0x10
[  218.575235][ T8780]  ? ksys_write+0x190/0x250
[  218.575256][ T8780]  audit_seccomp+0x79/0x1f0
[  218.575278][ T8780]  __seccomp_filter+0xa74/0x11c0
[  218.575302][ T8780]  ? __pfx___seccomp_filter+0x10/0x10
[  218.575321][ T8780]  ? handle_mm_fault+0x1e0/0xd10
[  218.575348][ T8780]  ? fput+0x9b/0xd0
[  218.575368][ T8780]  ? ksys_write+0x1ac/0x250
[  218.575387][ T8780]  __secure_computing+0x215/0x320
[  218.575415][ T8780]  syscall_trace_enter+0x89/0x240
[  218.575441][ T8780]  __do_fast_syscall_32+0x1c7/0x300
[  218.575476][ T8780]  do_fast_syscall_32+0x32/0x80
[  218.575497][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  218.575517][ T8780] RIP: 0023:0xf7fb4579
[  218.575529][ T8780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  218.575545][ T8780] RSP: 002b:00000000f548555c EFLAGS: 00000296 ORIG_RAX: 0000000000000162
[  218.575560][ T8780] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000007
[  218.575571][ T8780] RDX: 0000000080000240 RSI: 0000000000000000 RDI: 0000000000000000
[  218.575580][ T8780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  218.575588][ T8780] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  218.575598][ T8780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  218.575620][ T8780]  </TASK>
[  218.575713][ T8780] audit: error in audit_log_subj_ctx
[  218.581570][   T40] audit: type=1326 audit(1762374119.745:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.675652][   T40] audit: type=1326 audit(1762374119.745:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.1.702" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb4579 code=0x7ffc0000
[  218.779043][ T8762] vhci_hcd: connection reset by peer
[  218.781184][ T1144] vhci_hcd: stop threads
[  218.782572][ T1144] vhci_hcd: release socket
[  218.785188][ T1144] vhci_hcd: disconnect device
[  218.939475][ T8783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.703'.
[  218.943418][ T8783] netlink: 20 bytes leftover after parsing attributes in process `syz.0.703'.
[  219.412781][ T8788] lo speed is unknown, defaulting to 1000
[  219.746432][   T53] libceph: connect (1)[c::]:6789 error -101
[  219.748412][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  219.790461][ T8802] ceph: No mds server is up or the cluster is laggy
[  219.936408][   T34] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  220.097954][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.101366][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.105389][   T34] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  220.109753][   T34] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  220.119641][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.126125][   T34] usb 8-1: config 0 descriptor??
[  220.200433][   T53] libceph: connect (1)[c::]:6789 error -101
[  220.202443][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  220.226849][ T8820] ceph: No mds server is up or the cluster is laggy
[  220.540095][   T34] hid_parser_main: 28 callbacks suppressed
[  220.540109][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.546962][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.549427][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.551772][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.554175][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.556798][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.559587][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.561898][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.564251][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.566575][   T34] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  220.572558][   T34] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  220.675694][ T8836] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  220.678457][ T8836] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  220.681737][ T8836] vhci_hcd vhci_hcd.0: Device attached
[  220.928355][   T29] usb 42-1: device descriptor read/8, error -110
[  220.998012][    T9] usb 40-1: SetAddress Request (26) to port 0
[  221.000890][    T9] usb 40-1: new SuperSpeed USB device number 26 using vhci_hcd
[  221.334487][   T29] usb usb42-port1: attempt power cycle
[  221.339700][ T8837] vhci_hcd: connection reset by peer
[  221.342367][   T13] vhci_hcd: stop threads
[  221.343831][   T13] vhci_hcd: release socket
[  221.345361][   T13] vhci_hcd: disconnect device
[  221.403596][ T8850] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  221.405712][ T8850] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  221.408820][ T8850] vhci_hcd vhci_hcd.0: Device attached
[  221.478737][   T29] usb 42-1: SetAddress Request (29) to port 0
[  221.480785][   T29] usb 42-1: new SuperSpeed USB device number 29 using vhci_hcd
[  221.947976][ T8860] lo speed is unknown, defaulting to 1000
[  222.042093][ T8851] vhci_hcd: connection reset by peer
[  222.044889][ T1148] vhci_hcd: stop threads
[  222.046757][ T1148] vhci_hcd: release socket
[  222.048806][ T1148] vhci_hcd: disconnect device
[  222.478565][ T8865] 9pnet_fd: Insufficient options for proto=fd
[  222.655725][   T24] usb 8-1: USB disconnect, device number 24
[  223.218511][   T53] libceph: connect (1)[c::]:6789 error -101
[  223.223525][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  223.226541][ T8887] ceph: No mds server is up or the cluster is laggy
[  223.231881][   T53] libceph: connect (1)[c::]:6789 error -101
[  223.236101][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  223.494405][ T6005] usb 44-1: device descriptor read/8, error -110
[  223.497908][   T53] libceph: connect (1)[c::]:6789 error -101
[  223.516143][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  223.886760][ T6005] usb usb44-port1: attempt power cycle
[  224.041199][   T53] libceph: connect (1)[c::]:6789 error -101
[  224.043319][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  224.048678][   T53] libceph: connect (1)[c::]:6789 error -101
[  224.050676][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  224.089570][ T8896] ceph: No mds server is up or the cluster is laggy
[  224.098825][ T8898] ceph: No mds server is up or the cluster is laggy
[  224.440557][ T8920] 9pnet_fd: Insufficient options for proto=fd
[  224.457523][ T6005] usb usb44-port1: unable to enumerate USB device
[  224.459089][ T8920] netlink: 4 bytes leftover after parsing attributes in process `syz.2.735'.
[  225.450322][ T8932] 9pnet_fd: Insufficient options for proto=fd
[  225.734926][ T6005] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  225.886834][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  225.890262][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  225.893279][ T6005] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  225.897530][ T6005] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  225.900379][ T6005] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.904188][ T6005] usb 8-1: config 0 descriptor??
[  226.055353][    T9] usb 40-1: device descriptor read/8, error -110
[  226.334040][ T6005] hid_parser_main: 28 callbacks suppressed
[  226.334059][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.338653][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.341109][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.343634][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.346281][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.348627][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.351029][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.353481][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.356014][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.358349][ T6005] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  226.363767][ T6005] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  226.449633][ T1335] libceph: connect (1)[c::]:6789 error -101
[  226.451738][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  226.457354][    T9] usb usb40-port1: attempt power cycle
[  226.496960][ T8936] ceph: No mds server is up or the cluster is laggy
[  226.536076][   T29] usb 42-1: device descriptor read/8, error -110
[  226.927016][   T29] usb usb42-port1: unable to enumerate USB device
[  227.037969][    T9] usb usb40-port1: unable to enumerate USB device
[  228.470866][   T34] usb 8-1: USB disconnect, device number 25
[  228.950788][ T8969] ceph: No mds server is up or the cluster is laggy
[  228.953180][   T29] libceph: connect (1)[c::]:6789 error -101
[  228.955252][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  229.619864][   T24] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  229.728252][ T1335] libceph: connect (1)[c::]:6789 error -101
[  229.731520][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  229.759887][   T29] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  229.772904][ T8982] ceph: No mds server is up or the cluster is laggy
[  229.781681][   T24] usb 7-1: Using ep0 maxpacket: 16
[  229.785049][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.789452][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.792764][   T24] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  229.795673][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.799487][   T24] usb 7-1: config 0 descriptor??
[  229.932044][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.936714][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.941427][   T29] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  229.946991][   T29] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  229.951282][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.957254][   T29] usb 8-1: config 0 descriptor??
[  230.052009][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  230.052070][   T40] audit: type=1804 audit(1762374387.219:159): pid=8994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.759" name="/newroot/176/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  230.245673][   T24] usbhid 7-1:0.0: can't add hid device: -32
[  230.247675][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  230.251046][ T8977] netlink: 12 bytes leftover after parsing attributes in process `syz.2.753'.
[  230.279005][ T8977] 8021q: adding VLAN 0 to HW filter on device bond1
[  230.289633][ T8977] 8021q: adding VLAN 0 to HW filter on device batadv6
[  230.292744][ T8977] bond1: (slave batadv6): Enslaving as an active interface with an up link
[  230.297760][ T8977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.753'.
[  230.349536][ T8998] binder: 8976:8998 ioctl c0306201 800002c0 returned -14
[  230.367973][ T8977] bond1 (unregistering): (slave batadv6): Releasing backup interface
[  230.376643][ T8977] bond1 (unregistering): Released all slaves
[  230.399040][   T29] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  230.439362][ T5937] usb 7-1: USB disconnect, device number 22
[  230.947607][ T9004] binder: BINDER_SET_CONTEXT_MGR already set
[  230.950264][ T9004] binder: 9003:9004 ioctl 4018620d 80004a80 returned -16
[  231.674868][ T1335] libceph: connect (1)[c::]:6789 error -101
[  231.677308][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  231.725156][ T9012] ceph: No mds server is up or the cluster is laggy
[  232.001731][ T1335] libceph: connect (1)[c::]:6789 error -101
[  232.003902][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  232.049152][ T9017] ceph: No mds server is up or the cluster is laggy
[  232.489148][   T34] usb 8-1: USB disconnect, device number 26
[  232.868602][ T9033] binder: 9032:9033 ioctl c0306201 0 returned -14
[  234.236350][ T1335] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  234.406535][ T1335] usb 7-1: Using ep0 maxpacket: 16
[  234.410361][ T1335] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.414748][ T1335] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.418688][ T1335] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  234.422035][ T1335] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.427623][ T1335] usb 7-1: config 0 descriptor??
[  234.640162][   T53] libceph: connect (1)[c::]:6789 error -101
[  234.642366][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  234.689124][ T9053] ceph: No mds server is up or the cluster is laggy
[  234.786131][ T9058] binder: 9057:9058 ioctl 4018620d 0 returned -22
[  234.925905][ T1335] usbhid 7-1:0.0: can't add hid device: -32
[  234.926964][ T9047] netlink: 12 bytes leftover after parsing attributes in process `syz.2.771'.
[  234.928832][ T1335] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  234.946599][ T9047] 8021q: adding VLAN 0 to HW filter on device bond1
[  234.960049][ T9047] 8021q: adding VLAN 0 to HW filter on device batadv7
[  234.964573][ T9047] bond1: (slave batadv7): Enslaving as an active interface with an up link
[  234.971935][ T9047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.771'.
[  235.024228][ T9063] binder: 9043:9063 ioctl c0306201 800002c0 returned -14
[  235.071426][ T9047] bond1 (unregistering): (slave batadv7): Releasing backup interface
[  235.076207][ T9047] bond1 (unregistering): Released all slaves
[  236.009845][    T9] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  236.170954][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.175053][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  236.179159][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  236.183358][    T9] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  236.186961][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.192516][    T9] usb 8-1: config 0 descriptor??
[  236.601712][    T9] hid_parser_main: 66 callbacks suppressed
[  236.601724][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.606694][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.609075][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.611483][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.613786][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.616131][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.618429][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.620873][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.623291][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.625684][    T9] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  236.633748][    T9] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  236.956786][   T24] usb 7-1: USB disconnect, device number 23
[  238.134777][ T9091] netlink: 12 bytes leftover after parsing attributes in process `syz.1.787'.
[  238.339788][ T9095] 9pnet_fd: Insufficient options for proto=fd
[  238.346760][ T9095] netlink: 4 bytes leftover after parsing attributes in process `syz.2.788'.
[  238.600556][ T9096] tipc: Started in network mode
[  238.602230][ T9096] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  238.611292][ T9096] tipc: Enabled bearer <eth:team0>, priority 0
[  238.761405][ T6005] usb 8-1: USB disconnect, device number 27
[  239.004899][ T1335] libceph: connect (1)[c::]:6789 error -101
[  239.006934][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  239.053628][ T9101] ceph: No mds server is up or the cluster is laggy
[  239.165596][   T40] audit: type=1326 audit(1762374396.316:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.174169][   T40] audit: type=1326 audit(1762374396.316:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.183182][   T40] audit: type=1326 audit(1762374396.316:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.193700][   T40] audit: type=1326 audit(1762374396.316:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.202509][   T40] audit: type=1326 audit(1762374396.316:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.210132][   T40] audit: type=1326 audit(1762374396.316:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.220051][   T40] audit: type=1326 audit(1762374396.366:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.228861][   T40] audit: type=1326 audit(1762374396.366:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.237772][   T40] audit: type=1326 audit(1762374396.366:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.246197][   T40] audit: type=1326 audit(1762374396.366:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.3.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  239.724316][   T53] tipc: Node number set to 11578026
[  240.279780][ T9131] 9pnet_fd: Insufficient options for proto=fd
[  240.292691][ T9131] netlink: 4 bytes leftover after parsing attributes in process `syz.3.800'.
[  240.404442][ T9135] tipc: Started in network mode
[  240.406085][ T9135] tipc: Node identity 080211000001, cluster identity 4711
[  240.408764][ T9135] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  240.411739][ T9135] mac80211_hwsim hwsim7 syzkaller0: entered allmulticast mode
[  241.278179][ T9141] netlink: 12 bytes leftover after parsing attributes in process `syz.2.802'.
[  241.328931][ T9145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.806'.
[  241.407624][   T61] tipc: Node number set to 134418688
[  241.564006][ T9156] tipc: Enabled bearer <eth:team0>, priority 0
[  241.843574][ T9161] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  241.846036][ T9161] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  241.849591][ T9161] vhci_hcd vhci_hcd.0: Device attached
[  242.288682][   T53] usb 44-1: SetAddress Request (23) to port 0
[  242.308587][   T53] usb 44-1: new SuperSpeed USB device number 23 using vhci_hcd
[  242.749075][ T9162] vhci_hcd: connection reset by peer
[  242.752883][ T1144] vhci_hcd: stop threads
[  242.754348][ T1144] vhci_hcd: release socket
[  242.758859][ T1144] vhci_hcd: disconnect device
[  242.804783][ T9183] netlink: 8 bytes leftover after parsing attributes in process `syz.1.815'.
[  243.319584][ T6005] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  243.479802][ T6005] usb 7-1: Using ep0 maxpacket: 16
[  243.483912][ T6005] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.488781][ T6005] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  243.493442][ T6005] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  243.497460][ T6005] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.507198][ T6005] usb 7-1: config 0 descriptor??
[  243.924287][ T6005] usbhid 7-1:0.0: can't add hid device: -32
[  243.927270][ T9193] netlink: 12 bytes leftover after parsing attributes in process `syz.2.819'.
[  243.930806][ T6005] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  243.947789][ T9193] 8021q: adding VLAN 0 to HW filter on device bond1
[  243.976442][ T9193] 8021q: adding VLAN 0 to HW filter on device batadv8
[  243.981756][ T9193] bond1: (slave batadv8): Enslaving as an active interface with an up link
[  243.997675][ T9193] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'.
[  244.069166][ T9193] bond1 (unregistering): (slave batadv8): Releasing backup interface
[  244.075039][ T9193] bond1 (unregistering): Released all slaves
[  244.176480][ T5937] usb 7-1: USB disconnect, device number 24
[  244.626818][ T9214] fuse: Bad value for 'fd'
[  244.655927][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.829'.
[  244.829718][   T29] libceph: connect (1)[c::]:6789 error -101
[  244.832481][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  244.868789][ T9218] ceph: No mds server is up or the cluster is laggy
[  244.987067][ T9229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.831'.
[  244.996240][ T9229] macvlan2: entered allmulticast mode
[  244.998080][ T9229] veth1_vlan: entered allmulticast mode
[  245.367191][ T9235] fuse: Bad value for 'user_id'
[  245.368817][ T9235] fuse: Bad value for 'user_id'
[  246.940361][ T9270] vivid-000: =================  START STATUS  =================
[  246.942798][ T9270] vivid-000: Interlaced VBI Format: false
[  246.944861][ T9270] vivid-000: ==================  END STATUS  ==================
[  246.947686][ T9271] netlink: 'syz.1.843': attribute type 1 has an invalid length.
[  246.990586][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  246.990597][   T40] audit: type=1800 audit(1762374404.125:173): pid=9266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.842" name="file0" dev="9p" ino=72351905 res=0 errno=0
[  247.325370][ T6005] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  247.455587][   T53] usb 44-1: device descriptor read/8, error -110
[  247.479424][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  247.483343][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  247.486985][ T6005] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  247.490982][ T6005] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  247.493791][ T6005] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.498443][ T6005] usb 8-1: config 0 descriptor??
[  247.499228][   T29] libceph: connect (1)[c::]:6789 error -101
[  247.502777][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  247.545779][ T9298] ceph: No mds server is up or the cluster is laggy
[  247.849244][   T53] usb usb44-port1: attempt power cycle
[  247.854205][ T9320] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  247.856360][ T9320] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  247.860266][ T9320] vhci_hcd vhci_hcd.0: Device attached
[  247.906989][ T6005] hid_parser_main: 28 callbacks suppressed
[  247.907002][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.912095][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.923707][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.926976][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.929383][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.931756][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.934248][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.937304][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.939813][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.942190][ T6005] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  247.947658][ T6005] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  248.029658][ T9341] pim6reg: entered allmulticast mode
[  248.033646][ T9341] pim6reg: left allmulticast mode
[  248.146202][ T9346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.868'.
[  248.150798][ T1335] usb 38-1: SetAddress Request (26) to port 0
[  248.153198][ T1335] usb 38-1: new SuperSpeed USB device number 26 using vhci_hcd
[  248.194240][ T9348] netlink: 'syz.2.869': attribute type 2 has an invalid length.
[  248.417702][   T53] usb usb44-port1: unable to enumerate USB device
[  248.672471][ T9323] vhci_hcd: connection reset by peer
[  248.674297][   T95] vhci_hcd: stop threads
[  248.675685][   T95] vhci_hcd: release socket
[  248.677221][   T95] vhci_hcd: disconnect device
[  249.677885][ T9380] netlink: 'syz.0.879': attribute type 1 has an invalid length.
[  249.681080][ T9380] netlink: 396 bytes leftover after parsing attributes in process `syz.0.879'.
[  249.755068][ T9381] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  249.757770][ T9381] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  249.761768][ T9381] vhci_hcd vhci_hcd.0: Device attached
[  250.084192][ T6005] usb 8-1: USB disconnect, device number 28
[  250.289471][   T53] usb 42-1: SetAddress Request (31) to port 0
[  250.291503][   T53] usb 42-1: new SuperSpeed USB device number 31 using vhci_hcd
[  250.442812][ T9382] vhci_hcd: connection reset by peer
[  250.450037][   T95] vhci_hcd: stop threads
[  250.451401][   T95] vhci_hcd: release socket
[  250.452845][   T95] vhci_hcd: disconnect device
[  250.480141][ T6005] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  250.641982][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  250.646330][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  250.650582][ T6005] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  250.656778][ T6005] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  250.660797][ T6005] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.666691][ T6005] usb 8-1: config 0 descriptor??
[  250.729149][ T9415] FAULT_INJECTION: forcing a failure.
[  250.729149][ T9415] name failslab, interval 1, probability 0, space 0, times 0
[  250.734511][ T9415] CPU: 3 UID: 0 PID: 9415 Comm: syz.0.890 Not tainted syzkaller #0 PREEMPT(full) 
[  250.734535][ T9415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.734544][ T9415] Call Trace:
[  250.734550][ T9415]  <TASK>
[  250.734556][ T9415]  dump_stack_lvl+0x16c/0x1f0
[  250.734581][ T9415]  should_fail_ex+0x512/0x640
[  250.734621][ T9415]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  250.734644][ T9415]  should_failslab+0xc2/0x120
[  250.734671][ T9415]  kmem_cache_alloc_node_noprof+0x78/0x770
[  250.734688][ T9415]  ? __alloc_skb+0x2b2/0x380
[  250.734717][ T9415]  ? __alloc_skb+0x2b2/0x380
[  250.734738][ T9415]  ? __pfx_netlink_insert+0x10/0x10
[  250.734755][ T9415]  __alloc_skb+0x2b2/0x380
[  250.734780][ T9415]  ? __pfx___alloc_skb+0x10/0x10
[  250.734803][ T9415]  ? netlink_autobind.isra.0+0x158/0x370
[  250.734828][ T9415]  netlink_alloc_large_skb+0x69/0x140
[  250.734847][ T9415]  netlink_sendmsg+0x698/0xdd0
[  250.734866][ T9415]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.734891][ T9415]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  250.734919][ T9415]  ____sys_sendmsg+0xa98/0xc70
[  250.734937][ T9415]  ? free_raid_bio+0x330/0x480
[  250.734959][ T9415]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.734979][ T9415]  ? get_compat_msghdr+0x11a/0x170
[  250.735013][ T9415]  ___sys_sendmsg+0x134/0x1d0
[  250.735032][ T9415]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.735060][ T9415]  ? find_held_lock+0x2b/0x80
[  250.735089][ T9415]  __sys_sendmsg+0x16d/0x220
[  250.735104][ T9415]  ? __pfx___sys_sendmsg+0x10/0x10
[  250.735128][ T9415]  ? rcu_is_watching+0x12/0xc0
[  250.735148][ T9415]  __do_fast_syscall_32+0x7c/0x300
[  250.735169][ T9415]  do_fast_syscall_32+0x32/0x80
[  250.735187][ T9415]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.735208][ T9415] RIP: 0023:0xf7fa5579
[  250.735220][ T9415] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.735237][ T9415] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  250.735252][ T9415] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  250.735261][ T9415] RDX: 0000000004000050 RSI: 0000000000000000 RDI: 0000000000000000
[  250.735270][ T9415] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.735280][ T9415] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  250.735289][ T9415] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.735312][ T9415]  </TASK>
[  251.089257][ T6005] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  251.431484][   T61] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  251.545030][ T9444] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  251.583299][   T61] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 32
[  251.586872][   T61] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  251.594569][   T61] usb 7-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  251.598179][   T61] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.600992][   T61] usb 7-1: Product: syz
[  251.602586][   T61] usb 7-1: Manufacturer: syz
[  251.604079][   T61] usb 7-1: SerialNumber: syz
[  251.607541][ T9427] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  251.611403][   T61] usblp0: Disabling reads from problematic bidirectional printer
[  251.802927][   T40] audit: type=1326 audit(1762374408.938:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.812789][   T40] audit: type=1326 audit(1762374408.938:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.818289][ T9449] pim6reg: entered allmulticast mode
[  251.819639][   T40] audit: type=1326 audit(1762374408.938:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.828606][   T40] audit: type=1326 audit(1762374408.948:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.835316][   T40] audit: type=1326 audit(1762374408.948:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.842082][   T40] audit: type=1326 audit(1762374408.948:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.848628][   T40] audit: type=1326 audit(1762374408.948:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.855518][   T40] audit: type=1326 audit(1762374408.948:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  251.862272][   T40] audit: type=1326 audit(1762374408.948:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9447 comm="syz.0.900" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  252.627045][ T9453] gtp0: entered promiscuous mode
[  252.813567][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.0.902'.
[  252.818163][ T9462] warning: `syz.1.905' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  253.139454][ T6005] usb 8-1: USB disconnect, device number 29
[  253.223734][ T1335] usb 38-1: device descriptor read/8, error -110
[  253.288887][ T9468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.906'.
[  253.299749][ T9468] macvlan2: entered allmulticast mode
[  253.301521][ T9468] veth1_vlan: entered allmulticast mode
[  253.615455][ T1335] usb usb38-port1: attempt power cycle
[  254.080492][   T61] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 25 if 0 alt 0 proto 1 vid 0x03F0 pid 0x0004
[  254.086355][   T61] usb 7-1: USB disconnect, device number 25
[  254.092540][   T61] usblp0: removed
[  254.117794][ T9487] netlink: 88 bytes leftover after parsing attributes in process `syz.0.911'.
[  254.176950][ T1335] usb usb38-port1: unable to enumerate USB device
[  255.376746][   T53] usb 42-1: device descriptor read/8, error -110
[  255.459847][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  255.462934][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  256.059028][   T53] usb usb42-port1: attempt power cycle
[  256.118978][    T9] libceph: connect (1)[c::]:6789 error -101
[  256.121702][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  256.126783][    T9] libceph: connect (1)[c::]:6789 error -101
[  256.130680][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  256.151723][ T9521] ceph: No mds server is up or the cluster is laggy
[  256.298996][ T6005] libceph: connect (1)[c::]:6789 error -101
[  256.301291][ T6005] libceph: mon0 (1)[c::]:6789 connect error
[  256.335320][ T9527] ceph: No mds server is up or the cluster is laggy
[  256.479643][ T9531] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  256.494500][ T9531] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  256.674323][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  256.674341][   T40] audit: type=1326 audit(1762374413.791:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9530 comm="syz.2.921" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x0
[  256.726700][ T9543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.922'.
[  256.735380][ T9543] macvlan2: entered allmulticast mode
[  256.737154][ T9543] veth1_vlan: entered allmulticast mode
[  256.926618][   T40] audit: type=1804 audit(1762374414.041:213): pid=9546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.925" name="/newroot/235/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  256.989813][   T53] usb usb42-port1: unable to enumerate USB device
[  257.202578][ T9548] binder: 9547:9548 ioctl c0306201 0 returned -14
[  257.663778][   T40] audit: type=1326 audit(1762374414.790:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.680745][   T40] audit: type=1326 audit(1762374414.790:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=372 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.687433][   T40] audit: type=1326 audit(1762374414.790:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.695009][   T40] audit: type=1326 audit(1762374414.790:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.702898][   T40] audit: type=1326 audit(1762374414.790:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.709772][   T40] audit: type=1326 audit(1762374414.790:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.717539][   T40] audit: type=1326 audit(1762374414.800:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.727869][   T40] audit: type=1326 audit(1762374414.810:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.3.928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[  257.741161][   T53] lo speed is unknown, defaulting to 1000
[  257.933525][ T9581] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  257.937208][ T9581] syzkaller0: entered promiscuous mode
[  257.939478][ T9581] syzkaller0: entered allmulticast mode
[  257.963340][ T5946] libceph: connect (1)[c::]:6789 error -101
[  257.965395][ T5946] libceph: mon0 (1)[c::]:6789 connect error
[  258.057468][ T9579] ceph: No mds server is up or the cluster is laggy
[  258.756343][ T9580] tipc: Resetting bearer <eth:syzkaller0>
[  258.768129][ T9580] tipc: Disabling bearer <eth:syzkaller0>
[  258.796462][ T9601] netlink: 96 bytes leftover after parsing attributes in process `syz.1.940'.
[  258.807979][ T9601] netlink: 80 bytes leftover after parsing attributes in process `syz.1.940'.
[  258.812911][ T9601] netlink: 48 bytes leftover after parsing attributes in process `syz.1.940'.
[  258.925956][ T9607] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.999288][ T9607] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.099312][ T9607] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.190691][ T9607] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.233603][ T9625] tmpfs: Bad value for 'huge'
[  259.313793][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  259.332348][ T6005] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  259.346180][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  259.361672][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  259.379889][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  259.492533][ T6005] usb 7-1: Using ep0 maxpacket: 16
[  259.496124][ T6005] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  259.499926][ T6005] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  259.512046][ T6005] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  259.523397][ T6005] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.527209][ T6005] usb 7-1: config 0 descriptor??
[  259.613647][ T9637] syz.1.952 invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=0, oom_score_adj=0
[  259.617088][ T9637] CPU: 1 UID: 0 PID: 9637 Comm: syz.1.952 Not tainted syzkaller #0 PREEMPT(full) 
[  259.617103][ T9637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.617109][ T9637] Call Trace:
[  259.617113][ T9637]  <TASK>
[  259.617118][ T9637]  dump_stack_lvl+0x16c/0x1f0
[  259.617134][ T9637]  dump_header+0x101/0x930
[  259.617146][ T9637]  oom_kill_process+0x272/0xa40
[  259.617156][ T9637]  ? oom_cpuset_eligible.isra.0+0x199/0x2d0
[  259.617174][ T9637]  out_of_memory+0x1405/0x1700
[  259.617193][ T9637]  ? __pfx_out_of_memory+0x10/0x10
[  259.617207][ T9637]  __alloc_frozen_pages_noprof+0x1dfa/0x2470
[  259.617226][ T9637]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  259.617239][ T9637]  ? find_held_lock+0x2b/0x80
[  259.617255][ T9637]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  259.617273][ T9637]  ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80
[  259.617287][ T9637]  ? policy_nodemask+0xea/0x4e0
[  259.617303][ T9637]  alloc_pages_mpol+0x1fb/0x550
[  259.617318][ T9637]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  259.617332][ T9637]  ? get_freelist+0x1a8/0x1e0
[  259.617348][ T9637]  new_slab+0x268/0x360
[  259.617365][ T9637]  ___slab_alloc+0xdae/0x1a60
[  259.617382][ T9637]  ? alloc_empty_file+0x55/0x1e0
[  259.617402][ T9637]  ? alloc_empty_file+0x55/0x1e0
[  259.617416][ T9637]  ? __slab_alloc.constprop.0+0x63/0x110
[  259.617431][ T9637]  __slab_alloc.constprop.0+0x63/0x110
[  259.617450][ T9637]  kmem_cache_alloc_noprof+0x43f/0x6e0
[  259.617460][ T9637]  ? alloc_empty_file+0x55/0x1e0
[  259.617477][ T9637]  ? alloc_empty_file+0x55/0x1e0
[  259.617490][ T9637]  alloc_empty_file+0x55/0x1e0
[  259.617504][ T9637]  alloc_file_pseudo+0x13a/0x230
[  259.617520][ T9637]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  259.617535][ T9637]  ? __pfx_unix_socketpair+0x10/0x10
[  259.617556][ T9637]  sock_alloc_file+0x50/0x210
[  259.617568][ T9637]  __sys_socketpair+0x34e/0x5a0
[  259.617586][ T9637]  ? __pfx___sys_socketpair+0x10/0x10
[  259.617606][ T9637]  __ia32_sys_socketpair+0x95/0x100
[  259.617636][ T9637]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  259.617649][ T9637]  __do_fast_syscall_32+0x7c/0x300
[  259.617663][ T9637]  do_fast_syscall_32+0x32/0x80
[  259.617676][ T9637]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.617689][ T9637] RIP: 0023:0xf7fb4579
[  259.617698][ T9637] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  259.617708][ T9637] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000168
[  259.617718][ T9637] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000002
[  259.617724][ T9637] RDX: 0000000000000000 RSI: 0000000080000500 RDI: 0000000000000000
[  259.617730][ T9637] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  259.617736][ T9637] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  259.617742][ T9637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  259.617756][ T9637]  </TASK>
[  259.617771][ T9637] Mem-Info:
[  259.711955][ T9637] active_anon:8135 inactive_anon:20278 isolated_anon:19
[  259.711955][ T9637]  active_file:2786 inactive_file:3536 isolated_file:0
[  259.711955][ T9637]  unevictable:18175 dirty:262 writeback:0
[  259.711955][ T9637]  slab_reclaimable:6359 slab_unreclaimable:58715
[  259.711955][ T9637]  mapped:37804 shmem:25558 pagetables:1373
[  259.711955][ T9637]  sec_pagetables:315 bounce:0
[  259.711955][ T9637]  kernel_misc_reclaimable:0
[  259.711955][ T9637]  free:60140 free_pcp:35 free_cma:0
[  259.725645][ T9637] Node 0 active_anon:0kB inactive_anon:2796kB active_file:68kB inactive_file:16kB unevictable:11288kB isolated(anon):76kB isolated(file):0kB mapped:920kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9284kB pagetables:1636kB sec_pagetables:1120kB all_unreclaimable? no Balloon:0kB
[  259.789977][ T9637] Node 0 DMA free:2108kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:68kB inactive_file:4kB unevictable:240kB writepending:4kB zspages:16kB present:15992kB managed:15360kB mlocked:240kB bounce:0kB free_pcp:124kB local_pcp:0kB free_cma:0kB
[  259.802648][ T9637] lowmem_reserve[]: 0 294 294 294 294
[  259.806029][ T9637] Node 0 DMA32 free:18772kB boost:2048kB min:15496kB low:18856kB high:22216kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:2792kB active_file:0kB inactive_file:12kB unevictable:10592kB writepending:0kB zspages:1748kB present:1032196kB managed:301156kB mlocked:7560kB bounce:0kB free_pcp:44kB local_pcp:24kB free_cma:0kB
[  259.817288][ T9637] lowmem_reserve[]: 0 0 0 0 0
[  259.819030][ T9637] Node 0 DMA: 85*4kB (U) 35*8kB (UM) 4*16kB (U) 5*32kB (UM) 1*64kB (M) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2060kB
[  259.824146][ T9637] Node 0 DMA32: 427*4kB (UME) 133*8kB (UE) 96*16kB (UE) 178*32kB (UE) 40*64kB (UME) 14*128kB (UME) 7*256kB (UM) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 16660kB
[  259.829597][ T9637] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  259.832670][ T9637] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  259.836259][ T9637] 43582 total pagecache pages
[  259.837859][ T9637] 601 pages in swap cache
[  259.839348][ T9637] Free swap  = 104700kB
[  259.851065][ T9637] Total swap = 124996kB
[  259.852511][ T9637] 524155 pages RAM
[  259.854441][ T9637] 0 pages HighMem/MovableOnly
[  259.856031][ T9637] 207971 pages reserved
[  259.857412][ T9637] 0 pages cma reserved
[  259.858872][ T9637] oom-kill:constraint=CONSTRAINT_MEMORY_POLICY,nodemask=0,cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz1,task=syz.1.952,pid=9637,uid=0
[  259.884476][ T9637] Out of memory (oom_kill_allocating_task): Killed process 9636 (syz.1.952) total-vm:104144kB, anon-rss:10240kB, file-rss:22708kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0
[  259.992818][ T6005] usbhid 7-1:0.0: can't add hid device: -32
[  259.995055][ T6005] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[  259.995707][ T9623] netlink: 12 bytes leftover after parsing attributes in process `syz.2.949'.
[  260.013443][ T9623] 8021q: adding VLAN 0 to HW filter on device bond1
[  260.045090][ T9623] 8021q: adding VLAN 0 to HW filter on device batadv9
[  260.049210][ T9623] bond1: (slave batadv9): Enslaving as an active interface with an up link
[  260.061169][ T9623] netlink: 4 bytes leftover after parsing attributes in process `syz.2.949'.
[  260.121227][ T9648] binder: 9620:9648 ioctl c0306201 800002c0 returned -14
[  260.216598][ T9623] bond1 (unregistering): (slave batadv9): Releasing backup interface
[  260.225078][ T9623] bond1 (unregistering): Released all slaves
[  261.003640][ T9666] macvlan3: entered allmulticast mode
[  261.055244][   T29] libceph: connect (1)[c::]:6789 error -101
[  261.057354][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  261.102907][ T9665] ceph: No mds server is up or the cluster is laggy
[  261.981869][   T40] kauditd_printk_skb: 36 callbacks suppressed
[  261.981879][   T40] audit: type=1804 audit(1762374419.093:258): pid=9687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.964" name="/newroot/246/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  262.042740][    T9] usb 7-1: USB disconnect, device number 26
[  262.374841][ T9696] netlink: 27 bytes leftover after parsing attributes in process `syz.2.966'.
[  262.930642][ T9706] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  262.933422][ T9706] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  262.936692][ T9706] vhci_hcd vhci_hcd.0: Device attached
[  262.954012][ T9708] vhci_hcd: connection closed
[  262.954173][ T1144] vhci_hcd: stop threads
[  262.957107][ T1144] vhci_hcd: release socket
[  262.958672][ T1144] vhci_hcd: disconnect device
[  263.014921][ T9712] 9pnet_fd: Insufficient options for proto=fd
[  263.321665][ T9724] netlink: 12 bytes leftover after parsing attributes in process `syz.1.975'.
[  263.342739][ T9724] 8021q: adding VLAN 0 to HW filter on device bond2
[  263.362942][ T9724] 8021q: adding VLAN 0 to HW filter on device batadv9
[  263.367389][ T9724] bond2: (slave batadv9): Enslaving as an active interface with an up link
[  263.379283][ T9724] netlink: 4 bytes leftover after parsing attributes in process `syz.1.975'.
[  263.448551][ T9724] bond2 (unregistering): (slave batadv9): Releasing backup interface
[  263.452573][ T9724] bond2 (unregistering): Released all slaves
[  263.522166][   T40] audit: type=1804 audit(1762374420.631:259): pid=9730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.976" name="/newroot/243/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  263.551932][ T9732] syz.3.977 (9732): drop_caches: 2
[  263.951254][ T9744] 9pnet_fd: Insufficient options for proto=fd
[  264.569893][   T29] libceph: connect (1)[c::]:6789 error -101
[  264.571902][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  264.612341][ T9758] ceph: No mds server is up or the cluster is laggy
[  265.300146][   T40] audit: type=1804 audit(1762374422.409:260): pid=9785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.997" name="/newroot/257/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  265.977918][ T9798] 9pnet_virtio: no channels available for device syz
[  266.038635][ T9800] fuse: Bad value for 'fd'
[  266.126576][ T9800] overlayfs: failed lookup in lower (newroot/233, name='file1', err=-40): overlapping layers
[  266.481192][ T9810] lo speed is unknown, defaulting to 1000
[  266.796752][ T9821] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1007'.
[  266.813513][ T9821] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  266.994266][ T5946] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  267.168404][ T5946] usb 7-1: Using ep0 maxpacket: 32
[  267.174041][ T5946] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  267.176683][ T5946] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  267.179995][ T5946] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  267.187754][ T5946] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  267.191589][ T5946] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  267.196815][ T5946] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  267.208207][ T5946] usb 7-1: config 0 descriptor??
[  267.420703][ T9835] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1014'.
[  267.454016][   T40] audit: type=1804 audit(1762374424.556:261): pid=9836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1012" name="/newroot/259/file0/bus" dev="9p" ino=72351971 res=1 errno=0
[  267.774225][ T9840] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  267.780421][ T9840] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  267.786341][ T9840] mac80211_hwsim hwsim7 syzkaller0: left allmulticast mode
[  268.536025][ T1335] libceph: connect (1)[c::]:6789 error -101
[  268.538253][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  268.543455][ T1335] libceph: connect (1)[c::]:6789 error -101
[  268.546388][ T1335] libceph: mon0 (1)[c::]:6789 connect error
[  268.577647][ T9844] ceph: No mds server is up or the cluster is laggy
[  269.760624][ T5946] usb 7-1: USB disconnect, device number 27
[  269.878553][ T9867] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1019'.
[  269.883078][ T9867] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1019'.
[  269.886038][ T9867] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1019'.
[  270.124896][ T9868] macvlan4: entered allmulticast mode
[  270.613317][ T5946] libceph: connect (1)[c::]:6789 error -101
[  270.616162][ T5946] libceph: mon0 (1)[c::]:6789 connect error
[  270.634650][ T9887] ceph: No mds server is up or the cluster is laggy
[  270.733802][ T9895] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1027'.
[  270.781328][ T9895] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1027'.
[  270.798745][ T9895] batadv7: entered allmulticast mode
[  271.226204][ T9898] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1029'.
[  271.417752][ T9908] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1032'.
[  271.684177][ T9918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1034'.
[  271.688519][ T9922] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  271.690642][ T9922] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  271.694151][ T9922] vhci_hcd vhci_hcd.0: Device attached
[  272.043140][ T1335] usb 38-1: SetAddress Request (30) to port 0
[  272.046047][ T1335] usb 38-1: new SuperSpeed USB device number 30 using vhci_hcd
[  272.299169][ T9923] vhci_hcd: connection reset by peer
[  272.301727][   T12] vhci_hcd: stop threads
[  272.303587][   T12] vhci_hcd: release socket
[  272.305458][   T12] vhci_hcd: disconnect device
[  272.376029][ T9926] lo speed is unknown, defaulting to 1000
[  272.378859][ T9926] lo speed is unknown, defaulting to 1000
[  272.382446][ T9926] lo speed is unknown, defaulting to 1000
[  272.388305][ T9926] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  272.398735][ T9926] infiniband syz: RDMA CMA: cma_listen_on_dev, error -98
[  272.424814][ T9926] lo speed is unknown, defaulting to 1000
[  272.429323][ T9926] lo speed is unknown, defaulting to 1000
[  272.433233][ T9926] lo speed is unknown, defaulting to 1000
[  272.436919][ T9926] lo speed is unknown, defaulting to 1000
[  272.551119][ T9936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1038'.
[  272.910829][   T53] libceph: connect (1)[c::]:6789 error -101
[  272.913598][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  272.950779][ T9942] ceph: No mds server is up or the cluster is laggy
[  272.955729][ T9947] batadv_slave_1: entered promiscuous mode
[  272.960418][ T9947] ------------[ cut here ]------------
[  272.965086][ T9947] wlan1: Failed check-sdata-in-driver check, flags: 0x0
[  272.969143][ T9947] WARNING: CPU: 3 PID: 9947 at net/mac80211/main.c:425 ieee80211_link_info_change_notify+0x349/0x3f0
[  272.972790][ T9947] Modules linked in:
[  272.974510][ T9947] CPU: 3 UID: 0 PID: 9947 Comm: syz.0.1040 Not tainted syzkaller #0 PREEMPT(full) 
[  272.978917][ T9947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.982477][ T9947] RIP: 0010:ieee80211_link_info_change_notify+0x349/0x3f0
[  272.984830][ T9947] Code: 74 24 08 48 81 c6 20 01 00 00 48 89 74 24 08 e8 ed 08 f3 f6 8b 54 24 04 48 8b 74 24 08 48 c7 c7 80 97 e2 8c e8 48 88 b1 f6 90 <0f> 0b 90 90 e9 0b fe ff ff e8 c9 08 f3 f6 90 0f 0b 90 e9 21 fd ff
[  272.990738][ T9947] RSP: 0018:ffffc90003d5fa30 EFLAGS: 00010282
[  272.992641][ T9947] RAX: 0000000000000000 RBX: ffff88806c9a8d80 RCX: ffffc9000c001000
[  272.995129][ T9947] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  272.997648][ T9947] RBP: 0000000000040000 R08: 0000000000000001 R09: 0000000000000000
[  273.000236][ T9947] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88806c9a97b8
[  273.003043][ T9947] R13: ffff88806c9aa590 R14: 0000000000000000 R15: ffff888044948e80
[  273.005742][ T9947] FS:  0000000000000000(0000) GS:ffff888097b10000(0063) knlGS:00000000f5496b40
[  273.008583][ T9947] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  273.010982][ T9947] CR2: 00000000f73b344c CR3: 000000006dfd8000 CR4: 0000000000352ef0
[  273.014433][ T9947] Call Trace:
[  273.015894][ T9947]  <TASK>
[  273.017157][ T9947]  ieee80211_recalc_txpower+0xe4/0x110
[  273.019436][ T9947]  ieee80211_set_tx_power+0x2b8/0x10d0
[  273.022014][ T9947]  cfg80211_wext_siwtxpower+0x311/0x680
[  273.024316][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.026391][ T9947]  ioctl_standard_call+0xb5/0x1d0
[  273.028103][ T9947]  compat_standard_call+0xf2/0x350
[  273.029835][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.031911][ T9947]  ? __pfx_compat_standard_call+0x10/0x10
[  273.033830][ T9947]  ? full_name_hash+0xbc/0x110
[  273.035914][ T9947]  ? netdev_name_node_lookup+0x127/0x180
[  273.038358][ T9947]  ? __pfx_compat_standard_call+0x10/0x10
[  273.040771][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.043344][ T9947]  wireless_process_ioctl.constprop.0+0x291/0x3d0
[  273.045582][ T9947]  compat_wext_handle_ioctl+0x284/0x310
[  273.047823][ T9947]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  273.050290][ T9947]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.052689][ T9947]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.054651][ T9947]  compat_sock_ioctl+0x320/0x730
[  273.056511][ T9947]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  273.058253][ T9947]  ? hook_file_ioctl_common+0x145/0x410
[  273.060215][ T9947]  ? __fget_files+0x20e/0x3c0
[  273.062333][ T9947]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  273.064343][ T9947]  __ia32_compat_sys_ioctl+0x242/0x370
[  273.066199][ T9947]  __do_fast_syscall_32+0x7c/0x300
[  273.067818][ T9947]  do_fast_syscall_32+0x32/0x80
[  273.069354][ T9947]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  273.071495][ T9947] RIP: 0023:0xf7fa5579
[  273.073156][ T9947] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  273.081237][ T9947] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  273.084290][ T9947] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000008b26
[  273.086849][ T9947] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  273.089568][ T9947] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  273.093003][ T9947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  273.096557][ T9947] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  273.099993][ T9947]  </TASK>
[  273.101595][ T9947] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  273.104614][ T9947] CPU: 3 UID: 0 PID: 9947 Comm: syz.0.1040 Not tainted syzkaller #0 PREEMPT(full) 
[  273.108134][ T9947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.111882][ T9947] Call Trace:
[  273.112946][ T9947]  <TASK>
[  273.113929][ T9947]  dump_stack_lvl+0x3d/0x1f0
[  273.115478][ T9947]  vpanic+0x640/0x6f0
[  273.117149][ T9947]  ? ieee80211_link_info_change_notify+0x349/0x3f0
[  273.119817][ T9947]  panic+0xca/0xd0
[  273.121394][ T9947]  ? __pfx_panic+0x10/0x10
[  273.123245][ T9947]  check_panic_on_warn+0xab/0xb0
[  273.124845][ T9947]  __warn+0xf6/0x3c0
[  273.126116][ T9947]  ? preempt_schedule_notrace+0x62/0xe0
[  273.127854][ T9947]  ? ieee80211_link_info_change_notify+0x349/0x3f0
[  273.130058][ T9947]  report_bug+0x3c3/0x580
[  273.131924][ T9947]  ? ieee80211_link_info_change_notify+0x349/0x3f0
[  273.134643][ T9947]  handle_bug+0x184/0x210
[  273.136526][ T9947]  exc_invalid_op+0x17/0x50
[  273.138521][ T9947]  asm_exc_invalid_op+0x1a/0x20
[  273.140600][ T9947] RIP: 0010:ieee80211_link_info_change_notify+0x349/0x3f0
[  273.143600][ T9947] Code: 74 24 08 48 81 c6 20 01 00 00 48 89 74 24 08 e8 ed 08 f3 f6 8b 54 24 04 48 8b 74 24 08 48 c7 c7 80 97 e2 8c e8 48 88 b1 f6 90 <0f> 0b 90 90 e9 0b fe ff ff e8 c9 08 f3 f6 90 0f 0b 90 e9 21 fd ff
[  273.151471][ T9947] RSP: 0018:ffffc90003d5fa30 EFLAGS: 00010282
[  273.153821][ T9947] RAX: 0000000000000000 RBX: ffff88806c9a8d80 RCX: ffffc9000c001000
[  273.156386][ T9947] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  273.158887][ T9947] RBP: 0000000000040000 R08: 0000000000000001 R09: 0000000000000000
[  273.161447][ T9947] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88806c9a97b8
[  273.164714][ T9947] R13: ffff88806c9aa590 R14: 0000000000000000 R15: ffff888044948e80
[  273.168113][ T9947]  ? __warn_printk+0x1a5/0x350
[  273.170201][ T9947]  ieee80211_recalc_txpower+0xe4/0x110
[  273.172487][ T9947]  ieee80211_set_tx_power+0x2b8/0x10d0
[  273.174817][ T9947]  cfg80211_wext_siwtxpower+0x311/0x680
[  273.177128][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.179089][ T9947]  ioctl_standard_call+0xb5/0x1d0
[  273.180732][ T9947]  compat_standard_call+0xf2/0x350
[  273.182559][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.185119][ T9947]  ? __pfx_compat_standard_call+0x10/0x10
[  273.187546][ T9947]  ? full_name_hash+0xbc/0x110
[  273.189565][ T9947]  ? netdev_name_node_lookup+0x127/0x180
[  273.191997][ T9947]  ? __pfx_compat_standard_call+0x10/0x10
[  273.194418][ T9947]  ? __pfx_cfg80211_wext_siwtxpower+0x10/0x10
[  273.197048][ T9947]  wireless_process_ioctl.constprop.0+0x291/0x3d0
[  273.199643][ T9947]  compat_wext_handle_ioctl+0x284/0x310
[  273.201994][ T9947]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  273.204457][ T9947]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.206885][ T9947]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.209330][ T9947]  compat_sock_ioctl+0x320/0x730
[  273.211392][ T9947]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  273.213607][ T9947]  ? hook_file_ioctl_common+0x145/0x410
[  273.215891][ T9947]  ? __fget_files+0x20e/0x3c0
[  273.217873][ T9947]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  273.219636][ T9947]  __ia32_compat_sys_ioctl+0x242/0x370
[  273.221405][ T9947]  __do_fast_syscall_32+0x7c/0x300
[  273.223128][ T9947]  do_fast_syscall_32+0x32/0x80
[  273.224716][ T9947]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  273.226777][ T9947] RIP: 0023:0xf7fa5579
[  273.228081][ T9947] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  273.234067][ T9947] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  273.236714][ T9947] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000008b26
[  273.239191][ T9947] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  273.241653][ T9947] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  273.244120][ T9947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  273.246599][ T9947] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  273.249113][ T9947]  </TASK>
[  273.250775][ T9947] Kernel Offset: disabled
[  273.252133][ T9947] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:40:30  Registers:
info registers vcpu 0

CPU#0
RAX=00000000004721e1 RBX=0000000000000000 RCX=ffffffff8b5d42a9 RDX=0000000000000000
RSI=ffffffff8da27d8c RDI=ffffffff8bf075c0 RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8
R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908239d0 R15=0000000000000000
RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097810000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fe18ff8 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffffea0001e364c0 RCX=00000000348eea4d RDX=0000000000000000
RSI=ffffffff8da02445 RDI=ffffffff8bf075c0 RBP=ffffffff8dcc5540 RSP=ffffc90003cef508
R8 =d50308388980f833 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffffea0001e364c0 R13=0000000000000001 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b5d3754 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097910000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5425cc0 CR3=00000000252ca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000561a0320ebe0 0000561a0320ebe0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000561a031d2a20
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f594fbf1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f594fbf1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f594fb52c80
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000002 RBX=ffffffff8e3c45e0 RCX=ffffc9000446f26c RDX=0000000000000002
RSI=ffffffff8e3c45e0 RDI=ffff888000b78000 RBP=0000000000000001 RSP=ffffc9000446f238
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000006beb
R12=ffffffff8e3c45e0 R13=ffffc9000446f26c R14=0000000000000002 R15=0000000000000002
RIP=ffffffff8197ec63 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097a10000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f744a068 CR3=000000006a990000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000079 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85267f35 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc90003d5f3a0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000079 R14=ffffffff9adc2da0 R15=ffffffff85267ed0
RIP=ffffffff85267f5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097b10000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73b344c CR3=000000006dfd8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000