last executing test programs:

8m2.840011913s ago: executing program 2 (id=1008):
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, 0x0, 0x0, 0x103)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'})
ppoll(&(0x7f0000000080)=[{r0, 0x80}, {r1, 0x500}], 0x2, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @any, 0x7fd}, 0xe)
syz_usb_connect$cdc_ecm(0x5, 0xab, &(0x7f0000000380)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x99, 0x1, 0x1, 0xfe, 0x10, 0x7, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x2, 0x6, 0x0, 0x2, {{0x9, 0x24, 0x6, 0x0, 0x0, "c6e3ceee"}, {0x5, 0x24, 0x0, 0xc3}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x6, 0x9, 0xd}, [@mbim={0xc, 0x24, 0x1b, 0x6, 0xb7, 0x0, 0x7, 0x7, 0x9}, @mbim={0xc, 0x24, 0x1b, 0x6, 0x800, 0x1, 0x0, 0x3, 0x3}, @mdlm_detail={0x29, 0x24, 0x13, 0x7, "0468681e9015e73aca59425fbce294c73a25e0c798eb0d7808d82db73e2db3a01c1d24b01b"}, @mbim_extended={0x8, 0x24, 0x1c, 0xfff1, 0x5, 0x1}, @mbim_extended={0x8, 0x24, 0x1c, 0x2, 0x7, 0xa}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0xf4, 0x8, 0x9}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0xff, 0x2, 0xf}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x8, 0x50, 0x40}}}}}]}}]}}, &(0x7f0000000540)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x201, 0x1, 0x9, 0x4, 0xff, 0xff}, 0x5, &(0x7f00000001c0)={0x5, 0xf, 0x5}, 0x3, [{0x15, &(0x7f0000000300)=@string={0x15, 0x3, "e2605fb29e81a3899c41e80cd6617019785ce6"}}, {0xa4, &(0x7f0000000440)=@string={0xa4, 0x3, "daa5f1971c38311a89f1254b485497ad00b1a13f93c57b75e91164ac15aed55686508864681be25147dc84073b63191811bd54a05f0d1998cce58d7088670206691da6505501a17e2d1971074ed1fe85edd9368401fb9d0b7edfb74425b84a462043e84f9b4922175271c56819237cb21bcf5aefd6722a13d42fcbac7d188c948f41c63c66330a9bd487edf5ef814d7ecb7fcf98b5270e5790be18505c5b90fb510e"}}, {0x2e, &(0x7f0000000500)=@string={0x2e, 0x3, "dd9a9170938623c6a2c0f9ea51b2b8f2ad27f819023fe9cb46a2900e80ef078289107edc3d108d9619025927"}}]})
shutdown(r4, 0x1)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000340)=0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x4008132, 0xffffffffffffffff, 0x0)

7m59.759564161s ago: executing program 2 (id=1021):
r0 = mq_open(&(0x7f0000000100)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05|\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7jo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2\x1e\xd8\xdfJ\xcc\xd7\x9b\xfa\xf0\x0f\x05\xf1\xc4 \xde@\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xec\x87\x1b\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8\x99$\xfb(\x9b5\xcbF4?O\x1d\xd7\x01*\xc9\xd6L\x86 \x1b\xab9\x1b\x12k\xf9\xec\xd8\x16E\x11-\xfd\x10\x89\x8d\xccbP\x14\x89w\xef\x90\x1d\xc9\x02\xeb\x01V\xfbm\x86\x8a\xc1.m\xd0\xa2\xa4\xc9\a;(\n\xc0\"\x1f\xe4\x1d\x85\xb3\x95\xec\xbb\x9b\x01\x85\xffx\xf2\a\f=\xd1\xcf\xec\xb8!\v\x958\xbf\x15b-\x92\xd6\xb5\xbf\xe2\x92\xc2\xa3}\xd0;\xd1\x96\x86\x8a\x1b\xe1w\xf9\xb0\xd2\xab\xc9\x8a\x19\n\xc5o\x1e\x13/\xe4\x91\x7f\xa5\xf1\xddW\xdb\x98\xcd\x94\xfc\x90\xa0\x05*', 0x6e93ebbbcc0884f2, 0x15b, 0x0)
mq_getsetattr(r0, &(0x7f0000000300)={0x800, 0x0, 0x1}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x6, 0x0, 0x7fff0006}]}) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
setrlimit(0x4, &(0x7f0000000180)={0x80, 0xc7}) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r1, 0x84, 0x7f, 0x0, &(0x7f0000000000)) (async)
r2 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
fsmount(0xffffffffffffffff, 0x0, 0x70) (async)
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r3, 0x89e3, &(0x7f0000000200)={0x20034, 0x1, 0x7, 0x7, 0x270, 0x81}) (async)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
setuid(0xee01) (async)
tkill(0x0, 0x13) (async)
connect$inet6(0xffffffffffffffff, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r4, &(0x7f00000000c0), 0x0, 0x22, 0x0) (async)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sendmsg(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) (async)
openat$sysfs(0xffffff9c, 0x0, 0x42, 0x0) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
socket$nl_route(0x10, 0x3, 0x0)

7m59.703045398s ago: executing program 2 (id=1022):
pipe2(&(0x7f0000000000)={<r0=>0x0, 0x0}, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
syz_emit_ethernet(0x65, &(0x7f0000000500)={@remote, @local, @val={@void, {0x8100, 0x0, 0x1, 0x1}}, {@llc={0x4, {@llc={0xbc, 0x0, "d3", "789c2222584e025ac76cc58949d62fdb20693d84327f438ad03e4853d2aad5879c3d465076e6692dc3462f0c6fb55b543566db8db2d09d3fd4a176436b04edadcc2251d87dc01143f4b980c088d2cf26"}}}}}, &(0x7f0000000080)={0x0, 0x1, [0x2e9, 0x567, 0x865, 0x254]})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x400}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r2, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)

7m58.796347626s ago: executing program 2 (id=1024):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chmod(&(0x7f00000001c0)='./file0\x00', 0x9)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)

7m58.615078508s ago: executing program 2 (id=1026):
socket$vsock_stream(0x28, 0x1, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x100000000, 0x8, 0x0, 0x3}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000001c00), 0x400000000000159, 0x40840)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$inet(r4, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0, 0x0, 0x0, 0xf5}}], 0x40001b6, 0x0)
close(r5)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x24054800)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000000100d8ea3fa1a08f361a6037b4c655b416"], 0x14}}, 0x40)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x840)
mlock2(&(0x7f000027f000/0x2000)=nil, 0x2000, 0x1)

7m58.453484941s ago: executing program 2 (id=1028):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) (async, rerun: 64)
syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180), &(0x7f00000001c0)) (rerun: 64)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0x80, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x6e}}}}, [@NL80211_ATTR_MAC_ADDRS={0x58, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @broadcast}, {0xa}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x440}, 0x40009d0) (async)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8) (async)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendmmsg$inet6(r2, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0) (rerun: 32)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000440)={'ip6tnl0\x00', &(0x7f00000003c0)={'syztnl1\x00', <r4=>0x0, 0x29, 0x4, 0x0, 0x9, 0x0, @private2={0xfc, 0x2, '\x00', 0x4}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x8, 0x7f00, 0x39, 0xffffff80}}) (rerun: 32)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=@dellinkprop={0x48, 0x6d, 0x8, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r4, 0x48000, 0x80}, [@IFLA_MAP={0x20, 0xe, {0x88c, 0x8, 0xfffffffffffff000, 0x6, 0x6, 0x9}}, @IFLA_LINK_NETNSID={0x8, 0x25, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x24000011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8) (async)
close(r2)

7m58.353222844s ago: executing program 32 (id=1028):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) (async, rerun: 64)
syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180), &(0x7f00000001c0)) (rerun: 64)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0x80, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x6e}}}}, [@NL80211_ATTR_MAC_ADDRS={0x58, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @broadcast}, {0xa}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x440}, 0x40009d0) (async)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8) (async)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendmmsg$inet6(r2, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0) (rerun: 32)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000440)={'ip6tnl0\x00', &(0x7f00000003c0)={'syztnl1\x00', <r4=>0x0, 0x29, 0x4, 0x0, 0x9, 0x0, @private2={0xfc, 0x2, '\x00', 0x4}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x8, 0x7f00, 0x39, 0xffffff80}}) (rerun: 32)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=@dellinkprop={0x48, 0x6d, 0x8, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r4, 0x48000, 0x80}, [@IFLA_MAP={0x20, 0xe, {0x88c, 0x8, 0xfffffffffffff000, 0x6, 0x6, 0x9}}, @IFLA_LINK_NETNSID={0x8, 0x25, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x24000011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8) (async)
close(r2)

7m48.88892155s ago: executing program 0 (id=1046):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(&(0x7f0000000100)='\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x40000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file1\x00', 0x1c0)
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x1}, 0x18, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
landlock_restrict_self(r0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000300)='./file0/file1\x00', &(0x7f0000000340), 0x0, 0x0)
umount2(&(0x7f0000000380)='./file0/file0\x00', 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', 0xfff6)
mount$bind(&(0x7f0000000440)='\x00', &(0x7f0000000480)='./file0/file0\x00', &(0x7f00000004c0), 0x21, 0x0)
pivot_root(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='./file0/file0\x00')

7m48.784133786s ago: executing program 0 (id=1047):
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0194a79dfed8120fcbfb6b9d98840600000003"], 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010023010000340200001c00000008000100", @ANYRES32=0x0, @ANYBLOB="080004"], 0x2c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000001340)=ANY=[@ANYBLOB="9feb01001800000000000000280000002800000004000000020000000000000e0300000000000000000000000000000200"/68], 0x0, 0x44}, 0x20)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="780100000314030c2bbd7000fbdbdf250900020073797a3200000000080041007278650014003300626174616476300000000000000000000900020073797a300000000008004100736977001400330076657468305f746f5f7465616d0000000900020073797a3100000300080041007369770014003300776732000000000000000000000000000900020073797a310000000008004100736977001400330076657468315f746f5f626174616476000900020073797a320000000008004100856977001400330076657468305f746f5f626f6e640000000900020073797a32000000000800410072786500140033007663616e3000000000000000000000000900020073797a300000000008004100727865001400330073797a6b616c6c6572300000000000000900020073797a30000000000800410073697700140033007465616d5f736c6176655f30000000000900020073797a3100000000080041007369770014003300626f6e645f736c6176655f3000000000f4dbe8c0970883c0f37a3faf590cfb9880cd48079a4de46e34c8c65b785c5daeef647d50a80c8bfd3164bd14"], 0x178}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000)
sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYRESOCT=r3, @ANYRES16=r2, @ANYBLOB="08828f04000000080004903307810000ffffffff05000a000100000008000400ef770e881d292b000000000800000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r7, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
r8 = socket$kcm(0x29, 0x2, 0x0)
writev(r8, &(0x7f0000000480)=[{&(0x7f00000001c0)="13", 0x1}], 0x1)
ioctl$sock_kcm_SIOCKCMATTACH(r8, 0x89e0, &(0x7f0000000040)={r7, r6})
ioctl$sock_kcm_SIOCKCMUNATTACH(r8, 0x89e1, &(0x7f0000000340)={r7})
close_range(r5, 0xffffffffffffffff, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r9, &(0x7f0000000280)=ANY=[@ANYBLOB="0b0602000003000053e65fe3251100000086896b4c33a6c0caff078958f1000000003dae581aa0e21f72642fa5b63e"], 0x20)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x65)

7m47.63150507s ago: executing program 0 (id=1052):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x5)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) (fail_nth: 4)
r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0xffffffffffffffff}, 0xc)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c09425, &(0x7f00000000c0)={"ce107d6ca0b21660d66b7433d817a82b", <r2=>0x0, 0x0, {0xfffffffffffffffc, 0x100}, {0x6, 0x4}, 0x5, [0x500, 0x6, 0x4, 0x6, 0x10ba, 0x80000000, 0x0, 0xe9, 0x1000, 0x2, 0x100010000000, 0x4, 0x100000001, 0x7fff, 0x3, 0x2]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7040000000004008500000033000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3000000}, 0x50)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000440)={<r5=>0x0, 0x59e, 0x2})
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000000840)={{r0}, r2, 0x0, @unused=[0x9, 0x0, 0xf, 0x401], @devid=r5})

7m47.437165126s ago: executing program 0 (id=1053):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
r0 = landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000200)={0x100, r1}, 0x0)
close(r1)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
close(r0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f00000005c0)='ns/mnt\x00')
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x9b301a, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = gettid()
r5 = getuid()
sendmsg$nl_netfilter(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000680)={0x190, 0x0, 0x6, 0x101, 0x70bd2c, 0x25dfdbfd, {0x4, 0x0, 0x1}, [@typed={0x8, 0x52, 0x0, 0x0, @pid=r4}, @typed={0x8, 0xaa, 0x0, 0x0, @fd=r2}, @nested={0x124, 0x101, 0x0, 0x1, [@nested={0x4, 0x104}, @typed={0x8a, 0x103, 0x0, 0x0, @binary="85a0044374eec04e15ff83e637609d17f32997076ef9cfed3e1acc6cfbe5adfc02055a509c7751d417cc394506519650cbebbf4c4703edb3dada0c6ccd3511be7372af14855928c154f5fc387cdcd9f5a4ba225e2436aa70ff97673e57593c99f26b544739ce504bf9100858b7628332b21295d8aea216510b7359a195509e39b47e304e1bbd"}, @typed={0x90, 0x125, 0x0, 0x0, @binary="6284fc8d5d2178da89901ed6e092e6b22865ffcce6a533453c465fc5c24122266d20bdbb98596df1ceaa6b0e26dba58f811925494d42e3a9899c675fda3ea5b0e4be1470108e6a8448ae8a1c7753c84ad59af6ca7c9a23cfdcc62b6c11cac7599bed8d08599de560ad67b81950cf28280e2c02f1a7f2e023808a5ef7649f2f2154f6f58fcbb9909cac6d449a"}]}, @typed={0x8, 0xab, 0x0, 0x0, @uid=r5}, @typed={0x4, 0xb8}, @generic="db9d3acdfae48b40b9afcb65d8eb5ff70be47e416992e757ebb9b4ce89201797cb1650281269035becb6ea33f27dacba776d3036", @typed={0x7, 0x8a, 0x0, 0x0, @str='^*\x00'}]}, 0x190}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
mount$bind(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

7m47.393931108s ago: executing program 0 (id=1054):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x6, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0xc, 0x1, 0x0, "093d4a3b5b7bc69a21cfb7f5eaac46dbe89b13471a0488a6679f9a2102249341"})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x82801, 0x0)
write$sequencer(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="81040808f9ffffff940f32f0411976ec9402ff"], 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4000}]}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x0)

7m47.081986095s ago: executing program 0 (id=1056):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, r0, 0x2)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = fanotify_init(0x4, 0x1000)
fanotify_mark(r2, 0x1, 0x8000021, r1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, r3, 0x2)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x8, 0x0)
fanotify_mark(r5, 0x1, 0x8000020, r4, 0x0)
close_range(r1, r5, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r6, 0x0, 0x484, 0x0, &(0x7f0000000080))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_version={{0xc, 0x8}, {0x1, 0xc8, 0x5, 0x0, 0x80}}}, 0xb)

7m46.983942874s ago: executing program 33 (id=1056):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, r0, 0x2)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r2 = fanotify_init(0x4, 0x1000)
fanotify_mark(r2, 0x1, 0x8000021, r1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, r3, 0x2)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x8, 0x0)
fanotify_mark(r5, 0x1, 0x8000020, r4, 0x0)
close_range(r1, r5, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r6, 0x0, 0x484, 0x0, &(0x7f0000000080))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_version={{0xc, 0x8}, {0x1, 0xc8, 0x5, 0x0, 0x80}}}, 0xb)

13.559872455s ago: executing program 1 (id=3538):
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, <r0=>0x0})
prlimit64(r0, 0x1, &(0x7f0000000040), 0x0)
epoll_create1(0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r3, 0x29, 0x4c, 0x0, &(0x7f0000000180))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000400)={@val={0x1c, 0x800}, @val={0x1, 0x3, 0x0, 0x14, 0x14, 0x1}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x67, 0x0, 0x0, 0x84, 0x0, @rand_addr=0x640100fd, @local}, {{0x200, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0x8, 0x40, 0x1, 0x0, 0x1c, {[@mptcp=@generic={0xa3, 0x9, "0fe0e8cb896776"}]}}}}}}, 0x42)

13.36877971s ago: executing program 1 (id=3541):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x44000}, 0x2)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = fsopen(&(0x7f0000000140)='debugfs\x00', 0x0)
syz_usb_control_io$lan78xx(r1, &(0x7f0000000100)={0xc, &(0x7f0000000000)={0x40, 0x9, 0x9, {0x9, 0x31, "a81dbef67b3dfb"}}, &(0x7f00000000c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x813}}}, &(0x7f0000000400)={0x1c, &(0x7f0000000180)={0x0, 0x5, 0xb7, "0fae7c8270b41d90071f907fdd5daa64b08d47c9d87fb597b71ec8a483463ed527d6f25308b049cac790ad2d05c52a97c7733eff5cf154f1cf662b62e50cb59c183e3d1ccb28dd30dec1adf6366e40a8e17144c0c37d25448ba81172fb8728ecefc7563bef80c75a67b503b87c4fc6ba92e01a0e74687b2e1dd4fac3466261f0c47ce38a77151ea029d6d445a48a9a58a77871d26f3a6c1402a3a66b126c9478c2f9f68be3c9912dff24a56146ac545ab5bdbdfc13f5d9"}, &(0x7f0000000240)={0x0, 0xa, 0x1, 0xe1}, &(0x7f0000000280)={0x0, 0x8, 0x1, 0x7b}, &(0x7f00000002c0)={0xc0, 0xa1, 0x4}, &(0x7f0000000380)={0x40, 0xa0, 0x4, 0x5}, &(0x7f00000003c0)={0xc0, 0xa2, 0x2f, "64e639fbdd011a15146ce6fc889b552b6e59535d9c343459be4ad478cddc10b8dadbf38dcedfec7b7022d087d8de0e"}})
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x8, 0x0, 0x0, 0x0)
sendmsg$netlink(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000800)={0x24, 0x76, 0x31f, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@broadcast}, @nested={0xc, 0xd, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @pid}]}]}, 0x24}], 0x1}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0xa80d, 0x1, 0x3}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000900)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r6, 0x80015b11, &(0x7f0000000040))

9.969548178s ago: executing program 1 (id=3553):
pipe2(&(0x7f0000001440)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r1, 0x0, r0, 0x0, 0x6, 0x0)
fcntl$setpipe(r0, 0x407, 0xb)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000002dc0)=0x14)
sendmmsg(r2, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r4}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x9ac, 0x5a3, 0x6, 0x8000, 0xffffffffffffffff, 0x0, '\x00', r4, r0, 0x4, 0x1, 0x1, 0xa, @value=r0}, 0x50)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000000)={r5, 0x3a, &(0x7f00000015c0)}, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="1472b9508d44754dca437100000000abe81ec800"], 0x14}}, 0x0)

7.349960652s ago: executing program 5 (id=3560):
r0 = fanotify_init(0x202, 0x0)
read(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="11000000040000000400000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000200007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0x8}}, './file0\x00'})
r4 = ioctl$USERFAULTFD_IOC_NEW(r3, 0xaa00)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x11, r4, 0x10172000)
ioctl$USBDEVFS_CONTROL(r3, 0xc0105500, &(0x7f0000000280)={0x1, 0xf, 0xfff, 0xfffe, 0x3e, 0xfffffffa, &(0x7f0000000240)="69f5e2023b58630f5bf080ba3a73f4391503e551dfc052f9b626d953ccb51e7dcf3f6b83520e113eba495ca07943daac5c0e2f7080d30398e19ed1a24569"})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xe, 0x0, &(0x7f0000000040)="25a688a800a34400000000000000", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
get_mempolicy(0x0, &(0x7f0000000080), 0x2, &(0x7f0000fff000/0x1000)=nil, 0x2)

7.110152711s ago: executing program 5 (id=3562):
sched_setscheduler(0x0, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
futex(&(0x7f0000000240)=0x2, 0x102, 0xfffffffe, 0x0, 0x0, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec96558", 0xe}, {&(0x7f0000000680)="a33d07f52a7d5192a6c65b63827d", 0xe}], 0x2)
r3 = openat$vcsa(0xffffff9c, &(0x7f0000000000), 0x80, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000380)=0x14)
connect$packet(r3, &(0x7f0000000180)={0x11, 0xf5, r4, 0x1, 0x3, 0x6, @local}, 0x14)
openat$nullb(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r5 = syz_open_dev$cec(&(0x7f00000003c0), 0x0, 0x0)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000009780)={0x2020, 0x0, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r6, &(0x7f00000002c0)=ANY=[@ANYBLOB="b0000000daffffff", @ANYRES64=0x3, @ANYBLOB="040000000000000000000000000000000000000000000080040000000000000000000000ff0000000100000000000000060000000000000005000000000000009c0000000000000081000000000000007e0000000000000000000000070000006e04000000800000508c0000", @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="04000000c45aa2c04b5fdbec0000000000f50ddfa9f4a9d6903954b233d900000002000800adb210fa0100000007000000000000000000d2a4"], 0xb0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r5, 0xc05c6104, &(0x7f0000004180)={"2370491d", 0x0, 0x5, 0x2, 0x8, 0x5, '\x00', "91049dad", '\x00', "64bdac32", ["e86621d9cc668c391f77c506", "3549ffffffffffffff010800", "2fc7977386a7a0236a9cc1f0", "cf6cce2296b3f853e224c4e0"]})

6.889388704s ago: executing program 1 (id=3563):
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$dri(0x0, 0x80000001, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
socket(0x2, 0x80805, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
socket$netlink(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r3, &(0x7f0000000080)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0x0, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0xb4, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x12}, {[@timestamp={0x44, 0x4, 0x1c, 0x0, 0x6}]}}, {0x4e20, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "31150048d5e06bdc339f0b82e56e05e9a3f461bd8f05c60ff304e7fee8a3221b", "b54970b8807c69e8aba2815e90ed451c3c1a9dff75f0f264e44cbb999c8f292e5aa143fd63ea1886e0cd425df0d8e5e7", "2bed86cd87cd326b66a3ca343e29e347dc61214ad793ad9f48b4d287", {"b15c14be998215153aaf76bbf0aead9a", "5cd7bcd4dc8e1acb0a78f4793cfd119c"}}}}}, 0xc2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa101, 0x0)
ioctl$TCSETAF(r5, 0x5408, &(0x7f00000000c0)={0x4e00, 0x0, 0x730, 0xbdff, 0xe, "feeeff000000001b"})
write$binfmt_aout(r5, &(0x7f0000001040)=ANY=[], 0xff2e)
ioctl$TCSETS(r5, 0x40045431, 0x0)
r6 = syz_open_pts(r5, 0x8182)
dup3(r6, r5, 0x0)

5.893762367s ago: executing program 1 (id=3567):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d047008476100000001090212"], 0x0)
syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x2, 0x8003, 0x40024e}, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x18, r2, 0x1, 0x81}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x3a)

5.729671005s ago: executing program 4 (id=3569):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
r3 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000000)=0x58, 0x800)
ioctl$BTRFS_IOC_SNAP_DESTROY(r3, 0x5000940f, &(0x7f00000083c0)={{r0}, "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"})
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}}, 0x50)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xec, 0xec, 0x9, [@union={0xa, 0x8, 0x0, 0x5, 0x0, 0x70, [{0x6, 0x1, 0x1}, {0x7, 0x1, 0x6}, {0x0, 0x1, 0x7}, {0x7, 0x1, 0xb58}, {0x4, 0x4, 0xc47d}, {0xa, 0x1, 0x4142}, {0xc, 0x2, 0x1}, {0xb, 0x1, 0x8}]}, @func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x1, 0x5}, {0x8}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x3, 0x1}}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{0x10, 0x1}, {0xc, 0x5}, {0xd}, {0xf, 0x3}, {0x5, 0x1}]}, @func={0x2, 0x0, 0x0, 0xc, 0x4}, @typedef={0xb, 0x0, 0x0, 0x8, 0x1}]}, {0x0, [0x30, 0x5f, 0x30, 0x61, 0x61, 0x0, 0x30]}}, &(0x7f0000000480)=""/84, 0x10d, 0x54, 0x1, 0x8000, 0x10000}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x8, <r6=>0x0}, 0x8)
r7 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000600)=@o_path={&(0x7f00000005c0)='\x00', 0x0, 0x8, r0}, 0x14)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{0x1, <r8=>0xffffffffffffffff}, &(0x7f0000000640), &(0x7f0000000680)}, 0x1c)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r9, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r10}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000780)={{0xffffffffffffffff, <r11=>0xffffffffffffffff}, &(0x7f0000000700), &(0x7f0000000740)='%pS    \x00'}, 0x1c)
r12 = openat$vsock(0xffffff9c, &(0x7f00000007c0), 0x400100, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x9, 0x4, &(0x7f0000000240)=@raw=[@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, @map_idx={0x18, 0x9, 0x5, 0x0, 0xb}], &(0x7f0000000280)='GPL\x00', 0x1, 0x0, 0x0, 0x1f00, 0x2, '\x00', 0x0, @fallback=0x2, r5, 0x8, &(0x7f0000000540)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, r6, r7, 0x7, &(0x7f0000000800)=[r8, r9, r10, r11, r3, r12], &(0x7f0000000840)=[{0x0, 0x2, 0xd, 0xc}, {0x1, 0x5, 0xe, 0xa}, {0x1, 0x5, 0xd, 0x3}, {0x3, 0x5, 0x1, 0x8}, {0x2, 0x2, 0x8, 0x6}, {0x3, 0x3, 0x7, 0x8}, {0x3, 0x1, 0x8, 0xa}], 0x10, 0x7}, 0x94)
syz_fuse_handle_req(r0, &(0x7f00000063c0)="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", 0x2000, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ac0)={0xb0, 0x0, 0xfffffffffffffff9, [{{0x0, 0x2, 0x6, 0xffffffff, 0x9, 0x3, {0x4, 0x1, 0x8, 0xffffffff, 0xb41, 0xffffffffffffffff, 0x200, 0x2, 0xd0f, 0xc000, 0x9, r2, 0x0, 0x8, 0x5}}, {0x1, 0x6, 0x7, 0xd4, '\x850\xf4o\xa0fd'}}]}, 0x0, 0x0, 0x0})
getdents64(r4, &(0x7f0000000100)=""/134, 0x86)

5.559854911s ago: executing program 4 (id=3570):
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
syz_open_dev$tty1(0xc, 0x4, 0x3)
userfaultfd(0x801)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
pipe(&(0x7f0000000500))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
pipe(&(0x7f00000000c0))
socket$rds(0x15, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0))
syz_usbip_server_init(0x4)
socket$can_raw(0x1d, 0x3, 0x1)
syz_usbip_server_init(0x1)
r0 = syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x5eda, 0x10100, 0x6, 0x25d}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x2004, @fd_index=0x9, 0xfff, 0x0, 0x0, 0xf, 0x0, {0x2}})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x4007, @fd_index=0x1, 0x3e63, &(0x7f0000000080)=[{&(0x7f0000000200)="5291ed62bd1aa2ec9c5078aedbf6ff77f004c820934cdf1db22792a59086482ab275aff885b31937d25eee4e8f74f8eb5a", 0x31}, {&(0x7f0000000340)="6c57feadcca8315659b496bee0ebbe2c8f6fa7793b603f94c5f0799b799ea92b84a3a4d03dca7559201b733a2c5fb07b90f17dba4a0ce5381422ac73d9195868150e38ddf553db0d29cbfaa166de8bb88865d088bff20a7c5f1e41a33a407b1ff0f9ac8367c957", 0x67}, {&(0x7f0000000540)="10d4e3a4d8920f3895fe3deec56a0f614b00a43f559ad9dca6fabb33efa62d2b7c2440225b40d84fa43cef87d1f22ad661e87f043ac7d0a5ff558dafdcf56e3f2638ff675aea027fc64fad0b008e4cb3f4ff5fca2fc5b72411aae5bc77912df2e0a4dbb5f1a24e9fd9974a18473308702ecad03bef67fa409b0351465cf7b803235f3df16d695b670ea62dd747166d672cc9bdca88694f3a53facec29966db548d93675cb94fbc0e8f5878b47b74395deb49fdb74ded65e968fe0cc857f8c75e8ba8470f", 0xc4}], 0x3, 0x11})
io_uring_enter(r0, 0x7330, 0x0, 0x0, 0x0, 0x0)

4.870423386s ago: executing program 3 (id=3571):
socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$poke(0x4, r0, &(0x7f00000011c0), 0xfffffffffffffffe)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x3, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
syz_open_dev$evdev(&(0x7f0000000640), 0x0, 0x40981)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
dup(r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x60b17f360213d71e, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x800, 0x0)
socket$key(0xf, 0x3, 0x2)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
ptrace(0x11, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001580)={{{@in6=@private1, @in=@local, 0x0, 0x0, 0x4e22, 0x0, 0x2, 0x0, 0x20, 0x11}, {0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x10, 0x9}, {}, 0x6, 0x0, 0x1}, {{@in=@rand_addr=0x64010102, 0x4d2, 0x33}, 0x0, @in=@private=0xa010100, 0x3506, 0x0, 0x2, 0xb7, 0x2, 0xfffffff9}}, 0xe8)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x1c)

4.106277785s ago: executing program 3 (id=3572):
syz_open_dev$MSR(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000300)='`', 0x2, 0x0, 0x6}, 0x50)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
gettid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$6lowpan_control(0xffffff9c, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0xd, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x11}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}]}, &(0x7f00000000c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r5, 0x0, 0xe, 0x0, &(0x7f00000004c0)="e02742e8680d85ff9782762f86dd", 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff, 0x3c, 0x0, @void}, 0x10)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000012c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000680)=ANY=[@ANYBLOB="1808000000000030e14dc05b0b0000000000000000181100001e0f87ff076c9a5eca59de0a5e81be3d94b41213deccde9fb4370e0c12872070448b7f8f87f610530e681c4f5a4de27a5afaa4dd78c012d2304ae441a74f3e", @ANYRES32=r7, @ANYBLOB="0000000000000000b70200001c000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b702000004000000632af8ff00000000b509000000000000c3aaf8fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffc40200000800000018220000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
syz_emit_ethernet(0x4e, &(0x7f0000000200)={@link_local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010448", 0x18, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @remote}}}}}}, 0x0)
r8 = syz_open_dev$video(&(0x7f0000000380), 0xfc, 0x26444)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r8, 0x4020565a, &(0x7f0000000540)={0x0, 0x3, 0x2})

3.15944118s ago: executing program 3 (id=3573):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x1, 0x4)
fchdir(r2)
mkdirat(r2, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x100)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x2, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = openat2(r2, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000280)={0x801, 0xa4}, 0x18)
ioctl$TUNSETOFFLOAD(r3, 0x400454d0, 0x0)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000480)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
ioctl$SG_GET_SCSI_ID(r3, 0x2276, &(0x7f0000000000))
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

2.849648151s ago: executing program 4 (id=3574):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x4c000}, 0x800)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000002840)=""/4096, 0x1000}], 0x1}, 0x0)

2.849220517s ago: executing program 1 (id=3575):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
syz_usb_connect$hid(0x0, 0x3f, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffd}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$cuse(0xffffff9c, &(0x7f0000000240), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000025c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_GETXATTR(r3, &(0x7f0000000300)={0x18, 0xfffffffffffffff5, r4, {0x7}}, 0x18)
connect$can_bcm(r0, 0x0, 0x0)
syz_io_uring_setup(0x835, &(0x7f00000000c0)={0x0, 0x679a, 0x400, 0x2000006, 0x3ce}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @private=0xa010100}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e20, @local}, 0x114, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xffffffff, 0x2})
r6 = openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x2)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8)
write$binfmt_aout(r6, &(0x7f00000000c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
r7 = dup3(0xffffffffffffffff, r6, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="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"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='rpc_clnt_new\x00', r9, 0x0, 0xb9b}, 0x18)
syz_usb_connect(0x1, 0x74a, &(0x7f00000008c0)={{0x12, 0x1, 0x310, 0xbf, 0x94, 0x6c, 0xff, 0xeb1a, 0x17df, 0x9086, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x738, 0x3, 0x3, 0x1, 0x20, 0x89, [{{0x9, 0x4, 0x4a, 0x80, 0xe, 0x96, 0x9, 0x68, 0x7f, [@hid_hid={0x9, 0x21, 0x7, 0x7, 0x1, {0x22, 0x87c}}], [{{0x9, 0x5, 0x1, 0x9, 0x40, 0x5f, 0x9, 0xff}}, {{0x9, 0x5, 0x5, 0x10, 0x200, 0x0, 0x9, 0x10, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x9}]}}, {{0x9, 0x5, 0x4, 0x2, 0x10, 0x28, 0x80, 0x10, [@generic={0x49, 0x11, "f9fbea8469deb377c2a50b7f7990b2089507205424516f976a7800b2d9e59a2599ff2bd81a828f55efb34e71b687422fc98188117839d2e639105410a4ba7b4f88a3862cb23e33"}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0x6, 0x7}]}}, {{0x9, 0x5, 0x5, 0x2, 0x3b7, 0xd, 0xf, 0x3}}, {{0x9, 0x5, 0x80, 0x0, 0x200, 0xa, 0x0, 0x8}}, {{0x9, 0x5, 0xd, 0x8, 0x200, 0x3, 0x4, 0xe}}, {{0x9, 0x5, 0xa, 0x2, 0x8, 0x1, 0x1, 0x5, [@generic={0x2e, 0x4, "cd60f86ce08ebef44f11f4e52fac2edfc15df3bacaf77ae43072382f9ec5ab662620c313aeb770ce5cb593ad"}]}}, {{0x9, 0x5, 0xc, 0x8, 0x8, 0xe, 0x3, 0x8}}, {{0x9, 0x5, 0xe, 0x0, 0x10, 0x1, 0x35, 0x7, [@generic={0x5c, 0xa, "ecd301146d2301b5e92d348ed8f8a6665e3062d2f6828a3897f409438937c40b2f8a03cbe88257a82f53e02435e8f0ce2aa751a161362330a9783bdc2afa5f5019dccffc9b85d19252d752162683ecfe9ecd07d148aad44739da"}]}}, {{0x9, 0x5, 0xe, 0x8, 0x8, 0x4, 0x7a, 0xe, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x39c0}]}}, {{0x9, 0x5, 0xe, 0x14, 0x28, 0xf8, 0x70, 0x10, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x35, 0xb}, @generic={0x2f, 0x3, "e16185090de15c1d9651d6bd3692406177032ad91ca23044b58970235efcf307efcb7260cd294877e9919f981b"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x200, 0x0, 0x10, 0x1c, [@generic={0x93, 0x1, "b9d30e5b74be8c76fadde685a6512da3a5f6cbd1e89cbdd86e2cc3ae634034c2a0eb28b915ba0b0dfe133e7925f01cc329324ecb3ace95097e362d69943bf58b60a03ece603fd34c1897513df9a2a918fc80fe995f6c6e78ceac9927f5c38650160d07f17c4bcc10e510c6cb85842e2e27288bda9cf346a83f60df249dc3b4f94794c02e2beda71435d6576d092c149f01"}]}}, {{0x9, 0x5, 0x2, 0x4, 0x3ff, 0xd, 0x8, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x7, 0x7}]}}, {{0x9, 0x5, 0xb, 0x1, 0x40, 0x6, 0x4, 0xa}}]}}, {{0x9, 0x4, 0x5a, 0x3, 0x4, 0xff, 0x8e, 0x3f, 0x7, [], [{{0x9, 0x5, 0xa, 0x10, 0x20, 0x8, 0x5, 0xf6, [@generic={0x6f, 0x23, "7c81c2b89350a138be862d2a8712d885adc51a2cfd848dcee6f811a9ab6f4130d265f51defd47901b1bc20693d60e534fcb029b3b73376d703ffd9c594820216ecece424df40c574b6500efdf46a39b3741cd25290385c2994bfbc87559da834acc656d82869232d75684a6bdd"}]}}, {{0x9, 0x5, 0x2, 0x8, 0x200, 0x40, 0xf8, 0x3}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0xf, 0xd, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x180, 0x1, 0x6}]}}, {{0x9, 0x5, 0xa, 0x4, 0x40, 0x8, 0x5, 0xf9, [@generic={0x6d, 0x0, "5ca38b0cb8863147f42dc2b31a4071f776eca32c60e3f0835fd3ebcb28c49f45eb7ce04b08c0e498fae0c181c89924f3fd49d9125c1d83213176de4ae67aee63a4e7152c67022adbb9d0e0ed086e675de003a32d73a98e5ee2f0510d1a328ad400337fea2abc4cf66d5858"}]}}]}}, {{0x9, 0x4, 0xe0, 0xff, 0xc, 0x4a, 0x81, 0xd3, 0x6, [@uac_as={[@as_header={0x7, 0x24, 0x1, 0x3, 0x8, 0x1002}, @format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x9, 0x3, 0x8}]}], [{{0x9, 0x5, 0x80, 0x8, 0x3ff, 0x63, 0x9, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x0, 0x2}, @uac_iso={0x7, 0x25, 0x1, 0x102, 0x5, 0x8000}]}}, {{0x9, 0x5, 0x7, 0x10, 0x200, 0x1, 0x5, 0x7, [@generic={0x9a, 0x30, "d58589db2f6aca988ecfb2f4166df1a41049433afe6d9b9ebdb6f8c14dad84daf1212ddff0c7d0b3fcf862cef3d638364f128fa21c9af7957a2f01482be2a635fc795774b7177562af7f1d1b1779c84e0d44668b478338a82e01cf55006f80e8280e09cb04ff7063757e093c8155b6b4c447d536fa372bee992659c0606d4d1cb25f9ca51fcebdfcd62af03dd7fa449af5491e716aff79cc"}]}}, {{0x9, 0x5, 0xe, 0x0, 0x10, 0x1, 0x1, 0x80, [@generic={0x80, 0x21, "b8700b2539f42782be783d2545eeb0e68317a5d3fd5d924096600cde623cca96339ff3b60563dc7012396058771337b1cc8ad5dd11d1a35b8064ee95a9ae82d0a8e92e7ff1b7be7155a33b0670c200e2001ac6e3fbbd6f69dc989f7d8fca6414d99d12a32fc6459f00afb5860e248e2176bbb4820f82fab3e25768da57a4"}, @uac_iso={0x7, 0x25, 0x1, 0x82, 0x7, 0xffff}]}}, {{0x9, 0x5, 0x2, 0x2, 0x10, 0x3, 0x4, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x0, 0xd}]}}, {{0x9, 0x5, 0x2, 0x3, 0x10, 0x7, 0x4, 0xd, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xe5, 0x800}, @generic={0x67, 0xb, "6a0a3f48113730f1df723e1c375ab22f174abc40dfb2bb59be05f6f966ac90ffc2efc7f49b1b0275c571458c358c4190064169ff71956eae8ba123a5761ebe96f699bdc2ea2be276afe47ca70c97cd66dedc93261bad95ff26d370752b2a7ea80c53d9cdc1"}]}}, {{0x9, 0x5, 0x6, 0xc, 0x40, 0x2, 0x2, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x9, 0xfff2}, @generic={0x32, 0x7, "ddb6da441cae60ca5ec07501d227953bfde7e5a78f7aa05a509ea904e82c095383afa5c9f4af58eab79b3e5271fd2e09"}]}}, {{0x9, 0x5, 0x9, 0x0, 0x10, 0x20, 0xff, 0x9, [@generic={0x6b, 0x7, "6bfaabf19a3dc24298cf2bdc0fcbe409d5cb45aa97ab5e64a4f7defe38a7e13a8dac2d790f50dd3d95049605030d53a6f387170cba762f3ccc90bebea22a404144086c91009ab5de54505e92e9c7e7226f7dbba7a2b223e21db4440384a68041da8ffedfd341241308"}]}}, {{0x9, 0x5, 0x8, 0x10, 0x464, 0x3, 0x7a, 0x9}}, {{0x9, 0x5, 0x3, 0x0, 0x3ff, 0xd, 0x2, 0x0, [@generic={0xfc, 0x22, "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"}]}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x1, 0x5, 0x2}}, {{0x9, 0x5, 0x0, 0x2, 0x20, 0x58, 0x3, 0xff}}, {{0x9, 0x5, 0xa, 0x0, 0x8, 0x7, 0x7f, 0xc1, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0xfd, 0x8}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x10, 0xffff}]}}]}}]}}]}}, &(0x7f0000000780)={0xa, &(0x7f0000000340)={0xa, 0x6, 0x110, 0x3, 0x9, 0xee, 0x8, 0x2}, 0x3b, &(0x7f00000003c0)={0x5, 0xf, 0x3b, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0x3, 0x6, 0xa}, @ss_container_id={0x14, 0x10, 0x4, 0x7e, "cb79681f60f2b9efb6fc708c90ce62ef"}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x7, 0x10, 0x20, 0x9}, @wireless={0xb, 0x10, 0x1, 0x8, 0x8c, 0x0, 0x94, 0x0, 0x9}, @ptm_cap={0x3}]}, 0x6, [{0x3d, &(0x7f0000000400)=@string={0x3d, 0x3, "501c8510d5c5b36d4e8b4bc520401c53898ea60ff8208c21ceb0cd5ff0e07ae35ca2547ac008c6129630e6eedd3c68806b9ad6c90b6c427464a932"}}, {0xd2, &(0x7f0000000440)=@string={0xd2, 0x3, "72d5976ea5c5e028ef2d51345872a1610c35bc66694be5ba4df2c5e17048cbc7adfe72479c446237be273d55bdac2574881eaa805f6685ec1f66b7502d58d56d05d5048dcc2d887a755c1b067153fc199d75a7142f4faced6b75a1451943766c56d86d10bd1a101ddad8b39f28501b5b7e8c7d70b329978f4903abb0a64610f2bdb97df1e805338672555d7e0ccf7127fddf511c35edbe4054a2a5a87f0a8f4c475f7476f565325b176e7b5bc8af62c273de13bcb3174ee0fece6a1b3c43267a61cd96a604a332a8d44a838adf0fe2fb"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x41c}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x43e}}, {0xeb, &(0x7f00000005c0)=@string={0xeb, 0x3, "925ba48b6b9c27ec2b667f5d2f23b2a7e5a2c991f46b266a0b82a3f926760e6474ee164fcfc910b1c82aeef77684d71ffcf7948aa3bd510c46bf5858c89183c9ee8700295df8689f108233ffef605e3f577c3e817c973ff2439bf6ed6df557abb9f8a51c9c1b6e37b5da94ec9a9489c42238c392e3bfe2e3ee54bf8b59f8629905e69a2ec14cdd516068e2dd073deea20b4c3e72183fe720e3c68e30246ec0d460b1a6d636cd94d9dff63a71f67e0519bfefe20d170077f74da299ae15fa0dc141fb6a666f41afe2887c56625041973ff05e84934dd05e3258393cf391d5cd4dc1c956d1ae5d6352cf"}}, {0xa9, &(0x7f00000006c0)=@string={0xa9, 0x3, "56b288119421e2b2fd5650d7cd3506d5f842bc67705bdbaf364719fcbda7fdcc0b49d6b661c602edd66872627cf3dd66006402f522d65480356e390b9f8a1e5e3487b7467f1104d73210cc3b873e13fc94ace5af65e315ee83724d6312e2e76ea17be97aa8ced92b5858808a6590a143da1e471e8ed4b262861d2eac1c618843bf6217fb6d0ac5cfcefe21f59107c132032e890261b3bf34f43b5690b5cbc0165fcbe5eaa0e720"}}]})
sendmsg$netlink(r8, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='fdinfo\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
fchdir(r10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r7}, 0x50)
ppoll(&(0x7f00000002c0)=[{r11, 0x4000}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)

2.779728642s ago: executing program 4 (id=3576):
r0 = socket(0x10, 0x3, 0x0)
syz_emit_ethernet(0x6a, &(0x7f0000000240)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}, @dev={0xac, 0x14, 0x14, 0x3f}}, {0x2000, 0x4e22, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "cf535f00279839c944c2a202e4c659ad8b6a09cf82e7cf7d", "1701b9b99c4cf05164aa3d59ceafb77f8836200192b8ef3c085cd1b451e6285b"}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x97)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000004}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r1, 0x300, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x6}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x40010)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x28, 0x68, 0x1, 0x870bd27, 0x25dfdbff, {}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x8}, @NHA_OIF={0x8, 0x5, r2}]}, 0x28}, 0x1, 0x0, 0x0, 0x84}, 0x4000090)

2.690000623s ago: executing program 4 (id=3577):
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000000000/0x3000)=nil)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x54, r1, 0x1, 0x0, 0x0, {0x2d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xff12}, {0x2}, {0xc}}]}, 0xa0}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$pptp(0x18, 0x1, 0x2)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r7, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="83", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0)
getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000140))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c900"], 0x16)

2.558172383s ago: executing program 5 (id=3578):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
r2 = memfd_create(&(0x7f0000000040)='\xaa\xaa\xaa\xaa\xaa', 0x5)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
openat$sr(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000180)={'wg2\x00'})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f00000001c0)={'tunl0\x00', &(0x7f0000000240)={'erspan0\x00', 0x0, 0x700, 0x40, 0x7, 0x33735b01, {{0xd, 0x4, 0x3, 0x6, 0x34, 0x64, 0x0, 0xfd, 0x4, 0x0, @rand_addr=0x64010100, @empty, {[@rr={0x7, 0x13, 0xf7, [@multicast1, @loopback, @local, @remote]}, @ra={0x94, 0x4}, @generic={0x89, 0x6, "e9b3f7b0"}]}}}}})
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f00000002c0)={@local}, &(0x7f0000000300)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000340)={'batadv_slave_1\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newtaction={0x1a4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x190, 0x1, [@m_sample={0x144, 0x8, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x9, 0x3, 0x4, 0x1, 0x3}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x5}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x9, 0x7, 0x7, 0x3, 0x9}}]}, {0xd7, 0x6, "9c346daffc86f409e4d81ff02d3ff6e01c55424d14a90036da299cb48ebd25d2f8215b890be4ce887fd638efc5091c0157ea523ac2900d2dc3faf02baa902f0a8e5bd01b3c82e7bdeceb6fe2b26634fffc272c0296c0bd309321082f147072d0160cd00da6762434ca3158c51572c74ae1f1ebfa1d221c97ce8103a48f4ae348805ddb87ac900afd4361c3f22c2d813d41f0ff27c158ee07a93a17989e139f04468ad52d7480ffd01d2a87f90f084f46b3870e9f909e972e78e166ab02cf8ff4e3a73aad01bc3bee0e15dda5af6665ab53233e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x24000805}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_crypto(0x10, 0x3, 0x15)

2.210000301s ago: executing program 3 (id=3579):
socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x60680, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
capset(0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000080)={0x3, 0x1, 0x9, 0x20, 0xbb, &(0x7f0000000500)})
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x4e1, &(0x7f0000000100)={0x0, 0x1ffffd, 0x10100, 0xfffffffe, 0x9}, &(0x7f0000000300)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, &(0x7f0000000340)={'sit0\x00', 0x0})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x468f, 0xc4bc, 0x2c, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x110003)

1.496889471s ago: executing program 4 (id=3580):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xe, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000cc0)={r1, 0xe0, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000000c0), 0x7, 0x4402)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x12, r2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)
socket(0xe, 0xa, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000040)=0x200, 0x4)
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040), 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, 0x0)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x602, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCGKEYCODE_V2(r4, 0x80284504, &(0x7f0000000040)=""/185)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
getdents64(r3, &(0x7f00000004c0)=""/135, 0x87)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
bind$can_raw(r6, &(0x7f00000001c0)={0x1d, r7}, 0x10)
recvmmsg(r6, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000009c0)=[{0x0}], 0x1}, 0x4}], 0x2, 0x40000002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0400000004"], 0x48)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r6, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x6, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2020)
ioctl$DRM_IOCTL_RM_MAP(r3, 0x4018641b, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f00003c4000/0x1000)=nil})

268.139008ms ago: executing program 3 (id=3581):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = signalfd4(r0, &(0x7f00000000c0)={[0x7fffffff, 0x8]}, 0x8, 0x800)
write$snddsp(r1, &(0x7f0000000240)="96f77a20d57a157db37698a0c869e53723971a63308ff41e45e4fcc8c214cd8a53a78960c542865fd52d7700ce9a7dc2c7e6cb5004c712c58d74180228edc9147e97f3f86f66ccde6284e4a45174d2fda8f7694ad64a33220f40786b4049726155691ed18e0aaf806ba2ee702c3bf0e34bec02ad661481e3b1f364f895a41fa02afde4758a813a82dbe648867fc245c654e99eb5def37de991004508ed44b4f92aafa3c72fd7a492e1b86686043c6ba65c3fdcc34b8f1c41a29319f9918ae3a983db51d04cdeebee6cbad6e578923aad38bde5164b12", 0xd6) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(r2, 0x1, 0x22, &(0x7f0000000340)=0x401, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18) (async)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

197.197548ms ago: executing program 3 (id=3582):
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
syz_open_dev$tty1(0xc, 0x4, 0x3)
userfaultfd(0x801)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
pipe(&(0x7f0000000500))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
pipe(&(0x7f00000000c0))
socket$rds(0x15, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0))
syz_usbip_server_init(0x4)
socket$can_raw(0x1d, 0x3, 0x1)
syz_usbip_server_init(0x1)
r0 = syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x5eda, 0x10100, 0x6, 0x25d}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x2, 0x2004, @fd_index=0x9, 0xfff, 0x0, 0x0, 0xf, 0x0, {0x2}})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x4007, @fd_index=0x1, 0x3e63, &(0x7f0000000080)=[{&(0x7f0000000200)="5291ed62bd1aa2ec9c5078aedbf6ff77f004c820934cdf1db22792a59086482ab275aff885b31937d25eee4e8f74f8eb5a", 0x31}, {&(0x7f0000000340)="6c57feadcca8315659b496bee0ebbe2c8f6fa7793b603f94c5f0799b799ea92b84a3a4d03dca7559201b733a2c5fb07b90f17dba4a0ce5381422ac73d9195868150e38ddf553db0d29cbfaa166de8bb88865d088bff20a7c5f1e41a33a407b1ff0f9ac8367c957", 0x67}, {&(0x7f0000000540)="10d4e3a4d8920f3895fe3deec56a0f614b00a43f559ad9dca6fabb33efa62d2b7c2440225b40d84fa43cef87d1f22ad661e87f043ac7d0a5ff558dafdcf56e3f2638ff675aea027fc64fad0b008e4cb3f4ff5fca2fc5b72411aae5bc77912df2e0a4dbb5f1a24e9fd9974a18473308702ecad03bef67fa409b0351465cf7b803235f3df16d695b670ea62dd747166d672cc9bdca88694f3a53facec29966db548d93675cb94fbc0e8f5878b47b74395deb49fdb74ded65e968fe0cc857f8c75e8ba8470f", 0xc4}], 0x3, 0x11})
io_uring_enter(r0, 0x7330, 0x0, 0x0, 0x0, 0x0)

119.494305ms ago: executing program 5 (id=3583):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
close(0x3)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
epoll_create1(0x0)
r2 = dup(r0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000180))
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000180)={0x0, 0xfc96, 0x800, 0xffffffff, 0x3f}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r2, 0x0, 0x0, 0x0, 0x80000})
write(r0, &(0x7f00000000c0)="e08af4a1382de70dea943f6461212e6532125b32613d3da6bd8b83242d16596d830910b71fc4ae6a0b3fdc4597815040d20ee3a4021fd8e4396c6ab8f486", 0x3e)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={0x24, r8, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVKEY={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000010}, 0x40048d1)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000200), &(0x7f0000000240)=0x4)
io_uring_enter(r4, 0x47f6, 0x0, 0x0, 0x0, 0x0)

116.369162ms ago: executing program 5 (id=3584):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x4c000}, 0x800)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000002840)=""/4096, 0x1000}], 0x1}, 0x0)

0s ago: executing program 5 (id=3585):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x2}, 0x6)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x47e00, 0x19) (fail_nth: 9)

kernel console output (not intermixed with test programs):

dpoint 0x82 has invalid maxpacket 1023
[  654.515204][T13864] usb 10-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  654.518231][T13864] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  654.532216][T13864] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.532240][T13864] usb 10-1: Product: ï“¿
[  654.532254][T13864] usb 10-1: Manufacturer: �
[  654.532267][T13864] usb 10-1: SerialNumber:  
[  654.763206][T18469] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3064'.
[  655.583239][T13864] cdc_ncm 10-1:1.0: bind() failure
[  655.622309][T13864] cdc_ncm 10-1:1.1: CDC Union missing and no IAD found
[  655.625181][T13864] cdc_ncm 10-1:1.1: bind() failure
[  655.631064][T13864] usb 10-1: USB disconnect, device number 12
[  655.741776][   T40] audit: type=1326 audit(655.586:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.757946][   T40] audit: type=1326 audit(655.596:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.765930][   T40] audit: type=1326 audit(655.596:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.772951][   T40] audit: type=1326 audit(655.596:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.785743][   T40] audit: type=1326 audit(655.596:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.793033][   T40] audit: type=1326 audit(655.596:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.807729][   T40] audit: type=1326 audit(655.596:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.816349][   T40] audit: type=1326 audit(655.596:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.824775][   T40] audit: type=1326 audit(655.596:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  655.833793][   T40] audit: type=1326 audit(655.596:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  656.335286][T18508] fuse: Bad value for 'fd'
[  656.705851][T13864] usb 8-1: new high-speed USB device number 33 using dummy_hcd
[  656.855913][T13864] usb 8-1: Using ep0 maxpacket: 8
[  656.862886][T13864] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  656.868190][T13864] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  656.872834][T13864] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  656.879109][T13864] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  656.883372][T13864] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.887861][T13864] usb 8-1: Product: ï“¿
[  656.889612][T13864] usb 8-1: Manufacturer: �
[  656.891588][T13864] usb 8-1: SerialNumber:  
[  656.954010][T18500] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  657.101766][T18512] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3077'.
[  657.109762][T13864] cdc_ncm 8-1:1.0: bind() failure
[  657.113694][T13864] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  657.116399][T13864] cdc_ncm 8-1:1.1: bind() failure
[  657.120001][T13864] usb 8-1: USB disconnect, device number 33
[  657.447825][T18523] netlink: 'syz.1.3080': attribute type 1 has an invalid length.
[  657.447849][T18523] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3080'.
[  657.865667][T11273] vhci_hcd: vhci_device speed not set
[  659.112725][T18567] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3093'.
[  661.111566][T18589] ip6_vti0: entered promiscuous mode
[  661.116757][T18589] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3101'.
[  661.969575][T18590] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  662.226243][T18596] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  663.745916][T18631] ip6_vti0: entered promiscuous mode
[  663.747853][T18631] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3112'.
[  663.922343][T18633] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3113'.
[  664.710306][T18636] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  665.328811][T18657] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  665.336438][T18670] FAULT_INJECTION: forcing a failure.
[  665.336438][T18670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  665.341373][T18670] CPU: 0 UID: 0 PID: 18670 Comm: syz.4.3123 Not tainted syzkaller #0 PREEMPT(full) 
[  665.341390][T18670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  665.341397][T18670] Call Trace:
[  665.341403][T18670]  <TASK>
[  665.341409][T18670]  dump_stack_lvl+0x16c/0x1f0
[  665.341433][T18670]  should_fail_ex+0x512/0x640
[  665.341455][T18670]  _copy_from_user+0x2e/0xd0
[  665.341469][T18670]  kstrtouint_from_user+0xd6/0x1d0
[  665.341486][T18670]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  665.341503][T18670]  ? __lock_acquire+0xb97/0x1ce0
[  665.341526][T18670]  proc_fail_nth_write+0x83/0x220
[  665.341541][T18670]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  665.341558][T18670]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  665.341571][T18670]  vfs_write+0x2a0/0x11d0
[  665.341589][T18670]  ? __pfx_vfs_write+0x10/0x10
[  665.341602][T18670]  ? find_held_lock+0x2b/0x80
[  665.341617][T18670]  ? __fget_files+0x20e/0x3c0
[  665.341636][T18670]  ksys_write+0x12a/0x250
[  665.341650][T18670]  ? __pfx_ksys_write+0x10/0x10
[  665.341665][T18670]  ? rcu_is_watching+0x12/0xc0
[  665.341681][T18670]  __do_fast_syscall_32+0x7c/0x300
[  665.341695][T18670]  do_fast_syscall_32+0x32/0x80
[  665.341706][T18670]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  665.341722][T18670] RIP: 0023:0xf701e579
[  665.341732][T18670] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  665.341745][T18670] RSP: 002b:00000000f540e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  665.341757][T18670] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f540e620
[  665.341766][T18670] RDX: 0000000000000001 RSI: 00000000f73b5ff4 RDI: 0000000000000000
[  665.341773][T18670] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  665.341780][T18670] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  665.341787][T18670] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  665.341802][T18670]  </TASK>
[  665.412180][T18674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3124'.
[  665.512800][T18677] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  665.516141][T18677] overlayfs: failed to set xattr on upper
[  665.519056][T18677] overlayfs: ...falling back to redirect_dir=nofollow.
[  665.522807][T18677] overlayfs: ...falling back to index=off.
[  665.525446][T18677] overlayfs: ...falling back to uuid=null.
[  665.527345][T18677] overlayfs: maximum fs stacking depth exceeded
[  666.085650][T18686] random: crng reseeded on system resumption
[  667.366841][T18716] netlink: 'syz.3.3137': attribute type 1 has an invalid length.
[  667.408156][T18716] 8021q: adding VLAN 0 to HW filter on device bond2
[  667.411907][T18716] bond1: (slave bond2): making interface the new active one
[  667.414985][T18716] bond1: (slave bond2): Enslaving as an active interface with an up link
[  667.808778][T18728] random: crng reseeded on system resumption
[  668.765684][T14873] usb 8-1: new high-speed USB device number 34 using dummy_hcd
[  668.926311][T14873] usb 8-1: Using ep0 maxpacket: 8
[  668.930544][T14873] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  668.934350][T14873] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  668.937804][T14873] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  668.942771][T14873] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  668.946146][T14873] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.949287][T14873] usb 8-1: Product: ï“¿
[  668.950555][T14873] usb 8-1: Manufacturer: �
[  668.951988][T14873] usb 8-1: SerialNumber:  
[  669.295129][T14873] cdc_ncm 8-1:1.0: bind() failure
[  669.305420][T14873] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  669.308377][T14873] cdc_ncm 8-1:1.1: bind() failure
[  669.314926][T14873] usb 8-1: USB disconnect, device number 34
[  669.636671][ T6427] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  669.785790][ T6427] usb 9-1: Using ep0 maxpacket: 8
[  669.792819][ T6427] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  669.798308][ T6427] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  669.803247][ T6427] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  669.809644][ T6427] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  669.813571][ T6427] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  669.818827][ T6427] usb 9-1: Product: ï“¿
[  669.822275][ T6427] usb 9-1: Manufacturer: �
[  669.824311][ T6427] usb 9-1: SerialNumber:  
[  670.077276][ T6427] cdc_ncm 9-1:1.0: bind() failure
[  670.081871][ T6427] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[  670.084249][ T6427] cdc_ncm 9-1:1.1: bind() failure
[  670.102506][ T6427] usb 9-1: USB disconnect, device number 15
[  670.223097][T18774] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  670.225460][T18774] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  670.230247][T18774] vhci_hcd vhci_hcd.0: Device attached
[  670.234268][T18774] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  670.237591][T18774] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  670.241865][T18774] vhci_hcd vhci_hcd.0: Device attached
[  670.256883][T18777] vhci_hcd: connection closed
[  670.257103][T18775] vhci_hcd: connection closed
[  670.257823][   T89] vhci_hcd: stop threads
[  670.262018][   T89] vhci_hcd: release socket
[  670.263532][   T89] vhci_hcd: disconnect device
[  670.265886][   T89] vhci_hcd: stop threads
[  670.268788][   T89] vhci_hcd: release socket
[  670.270810][   T89] vhci_hcd: disconnect device
[  670.659182][T18764] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  671.396993][   T40] kauditd_printk_skb: 24 callbacks suppressed
[  671.397005][   T40] audit: type=1326 audit(671.246:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.406203][   T40] audit: type=1326 audit(671.256:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.413967][   T40] audit: type=1326 audit(671.256:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.425251][   T40] audit: type=1326 audit(671.256:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.436075][   T40] audit: type=1326 audit(671.256:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.444284][   T40] audit: type=1326 audit(671.266:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.453162][   T40] audit: type=1326 audit(671.266:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.465100][   T40] audit: type=1326 audit(671.266:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.472511][   T40] audit: type=1326 audit(671.266:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.481141][   T40] audit: type=1326 audit(671.266:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18797 comm="syz.3.3161" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  671.585682][   T10] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  671.755573][   T10] usb 10-1: Using ep0 maxpacket: 8
[  671.877291][   T10] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  671.881219][   T10] usb 10-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  671.884736][   T10] usb 10-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  671.896800][   T10] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  671.899913][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  671.902395][   T10] usb 10-1: Product: ï“¿
[  671.903767][   T10] usb 10-1: Manufacturer: �
[  671.905279][   T10] usb 10-1: SerialNumber:  
[  672.006030][T18805] netlink: 'syz.1.3162': attribute type 10 has an invalid length.
[  672.105136][T18805] team0: Port device wlan1 added
[  672.137390][   T10] cdc_ncm 10-1:1.0: bind() failure
[  672.141448][   T10] cdc_ncm 10-1:1.1: CDC Union missing and no IAD found
[  672.143859][   T10] cdc_ncm 10-1:1.1: bind() failure
[  672.147971][   T10] usb 10-1: USB disconnect, device number 13
[  672.274509][T18811] ubi0: attaching mtd0
[  672.277531][T18811] ubi0: scanning is finished
[  672.337900][T18811] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  672.340418][T18811] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  672.343098][T18811] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  672.346353][T18811] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  672.348985][T18811] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  672.351144][T18811] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  672.353541][T18811] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 2365085257
[  672.356877][T18811] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  672.360212][T18814] ubi0: background thread "ubi_bgt0d" started, PID 18814
[  672.590662][T18816] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  672.602456][T18816] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3165'.
[  672.722048][T18824] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3169'.
[  672.891525][T18832] pim6reg: entered allmulticast mode
[  673.260874][T18840] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  673.263038][T18840] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  673.266368][T18840] vhci_hcd vhci_hcd.0: Device attached
[  673.274426][T18840] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  673.276550][T18840] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  673.280022][T18840] vhci_hcd vhci_hcd.0: Device attached
[  673.292514][T18843] vhci_hcd: connection closed
[  673.292823][  T170] vhci_hcd: stop threads
[  673.297178][  T170] vhci_hcd: release socket
[  673.298895][  T170] vhci_hcd: disconnect device
[  673.301919][T18841] vhci_hcd: connection closed
[  673.302185][  T170] vhci_hcd: stop threads
[  673.306363][  T170] vhci_hcd: release socket
[  673.306378][  T170] vhci_hcd: disconnect device
[  673.621326][T18825] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  673.951001][T18856] binder: 18855:18856 ioctl c018620c 80000000 returned -1
[  674.096310][   T24] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  674.246924][   T24] usb 9-1: Using ep0 maxpacket: 8
[  674.255218][   T24] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  674.260414][   T24] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  674.263899][   T24] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  674.281760][   T24] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  674.289635][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  674.292659][   T24] usb 9-1: Product: ï“¿
[  674.293963][   T24] usb 9-1: Manufacturer: �
[  674.295374][   T24] usb 9-1: SerialNumber:  
[  674.649655][   T24] cdc_ncm 9-1:1.0: bind() failure
[  674.654778][   T24] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[  674.661392][   T24] cdc_ncm 9-1:1.1: bind() failure
[  674.668016][   T24] usb 9-1: USB disconnect, device number 16
[  675.069070][T18859] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  675.824509][T18866] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  675.969724][T18881] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  675.972050][T18881] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  675.974459][T18881] vhci_hcd vhci_hcd.0: Device attached
[  675.980008][T18881] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  675.982320][T18881] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  675.985327][T18881] vhci_hcd vhci_hcd.0: Device attached
[  676.008182][T18884] vhci_hcd: connection closed
[  676.008363][ T1142] vhci_hcd: stop threads
[  676.011308][ T1142] vhci_hcd: release socket
[  676.012825][ T1142] vhci_hcd: disconnect device
[  676.014701][T18882] vhci_hcd: connection closed
[  676.014935][ T1142] vhci_hcd: stop threads
[  676.018166][ T1142] vhci_hcd: release socket
[  676.019840][ T1142] vhci_hcd: disconnect device
[  676.257946][T18889] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3187'.
[  677.395639][T18893] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  677.855733][   T10] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  677.859204][    C0] raw-gadget.0 gadget.5: ignoring, device is not running
[  677.995611][   T10] usb 10-1: device descriptor read/64, error -32
[  678.255597][   T10] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  678.533918][   T40] kauditd_printk_skb: 23 callbacks suppressed
[  678.533934][   T40] audit: type=1326 audit(678.376:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18917 comm="syz.3.3196" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0
[  678.579005][   T10] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  678.582523][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  678.585349][   T10] usb 10-1: Product: syz
[  678.588052][   T10] usb 10-1: Manufacturer: syz
[  678.589749][   T10] usb 10-1: SerialNumber: syz
[  679.017518][   T10] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  679.027914][T18893] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.044350][T18926] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  679.046689][T18926] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  679.052288][T18926] vhci_hcd vhci_hcd.0: Device attached
[  679.059153][T18926] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  679.061389][T18926] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  679.064672][T18926] vhci_hcd vhci_hcd.0: Device attached
[  679.085072][T18929] vhci_hcd: connection closed
[  679.085286][   T89] vhci_hcd: stop threads
[  679.089308][   T89] vhci_hcd: release socket
[  679.091190][   T89] vhci_hcd: disconnect device
[  679.094574][T18927] vhci_hcd: connection closed
[  679.094892][   T89] vhci_hcd: stop threads
[  679.100614][   T89] vhci_hcd: release socket
[  679.102186][   T89] vhci_hcd: disconnect device
[  679.108045][T18893] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.175856][   T10] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  679.176394][T18893] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.287910][   T89] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  679.302347][   T89] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  679.313923][T18911] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  679.342554][   T89] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  679.353482][ T1142] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  679.395103][T18233] usb 10-1: USB disconnect, device number 15
[  680.340999][   T10] ath9k_htc 10-1:1.0: ath9k_htc: Target is unresponsive
[  680.343739][   T10] ath9k_htc: Failed to initialize the device
[  680.488809][T18233] usb 10-1: ath9k_htc: USB layer deinitialized
[  680.542839][T18950] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  680.549899][T18950] tipc: Resetting bearer <eth:syzkaller0>
[  680.565900][T18949] tipc: Disabling bearer <eth:syzkaller0>
[  680.729689][T18953] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3203'.
[  681.516436][T18970] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  681.518859][T18970] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  681.525225][T18970] vhci_hcd vhci_hcd.0: Device attached
[  681.530872][T18970] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  681.533833][T18970] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  681.538009][T18970] vhci_hcd vhci_hcd.0: Device attached
[  681.557872][T18974] vhci_hcd: connection closed
[  681.558162][T18972] vhci_hcd: connection closed
[  681.558517][   T61] vhci_hcd: stop threads
[  681.566158][   T61] vhci_hcd: release socket
[  681.568272][   T61] vhci_hcd: disconnect device
[  681.570624][   T61] vhci_hcd: stop threads
[  681.572408][   T61] vhci_hcd: release socket
[  681.574316][   T61] vhci_hcd: disconnect device
[  682.776447][T18978] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  683.322779][T18996] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  683.325495][T18996] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  683.337274][T18996] vhci_hcd vhci_hcd.0: Device attached
[  683.485537][   T40] audit: type=1800 audit(683.326:952): pid=19004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3213" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  683.979578][T11273] usb 48-1: SetAddress Request (10) to port 0
[  683.979814][T11273] usb 48-1: new SuperSpeed USB device number 10 using vhci_hcd
[  684.019238][T19013] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3219'.
[  684.696235][T19016] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  684.696263][T19016] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  684.696323][T19016] vhci_hcd vhci_hcd.0: Device attached
[  684.699175][T19016] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  684.699197][T19016] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  684.699221][T19016] vhci_hcd vhci_hcd.0: Device attached
[  684.708728][T19023] vhci_hcd: connection closed
[  684.708953][ T1183] vhci_hcd: stop threads
[  684.708965][ T1183] vhci_hcd: release socket
[  684.708973][ T1183] vhci_hcd: disconnect device
[  684.709147][T19021] vhci_hcd: connection closed
[  684.709259][ T1183] vhci_hcd: stop threads
[  684.709265][ T1183] vhci_hcd: release socket
[  684.709271][ T1183] vhci_hcd: disconnect device
[  685.344642][T18997] vhci_hcd: connection reset by peer
[  685.347757][   T61] vhci_hcd: stop threads
[  685.349230][   T61] vhci_hcd: release socket
[  685.350708][   T61] vhci_hcd: disconnect device
[  686.502078][T19033] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  687.307623][T19053] 9pnet_virtio: no channels available for device syz
[  687.688540][T19048] 9pnet_virtio: no channels available for device syz
[  687.992744][T19059] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3230'.
[  689.055598][T11273] usb 48-1: device descriptor read/8, error -110
[  689.496079][T11273] usb usb48-port1: attempt power cycle
[  689.691919][T19077] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  689.694064][T19077] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  689.697511][T19077] vhci_hcd vhci_hcd.0: Device attached
[  689.770340][   T40] audit: type=1800 audit(689.606:953): pid=19077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3233" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0
[  689.965573][   T29] usb 40-1: SetAddress Request (18) to port 0
[  689.967783][   T29] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[  690.066311][T11273] usb usb48-port1: unable to enumerate USB device
[  690.108567][T19078] vhci_hcd: connection reset by peer
[  690.110950][ T1183] vhci_hcd: stop threads
[  690.112459][ T1183] vhci_hcd: release socket
[  690.113991][ T1183] vhci_hcd: disconnect device
[  690.392076][T19084] 9pnet_virtio: no channels available for device syz
[  691.323648][T19100] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3241'.
[  691.658852][T19103] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3243'.
[  691.735797][    C2] hpet: Lost 1 RTC interrupts
[  693.589856][T19135] 9pnet_virtio: no channels available for device syz
[  693.629534][T19135] overlayfs: overlapping lowerdir path
[  693.719227][T19138] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  693.722226][T19138] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  693.727209][T19138] vhci_hcd vhci_hcd.0: Device attached
[  693.731720][T19138] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  693.734264][T19138] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  693.738235][T19138] vhci_hcd vhci_hcd.0: Device attached
[  693.777441][T19141] vhci_hcd: connection closed
[  693.777813][   T41] vhci_hcd: stop threads
[  693.781307][   T41] vhci_hcd: release socket
[  693.783099][   T41] vhci_hcd: disconnect device
[  693.785539][T19139] vhci_hcd: connection closed
[  693.785931][   T41] vhci_hcd: stop threads
[  693.789054][   T41] vhci_hcd: release socket
[  693.790491][   T41] vhci_hcd: disconnect device
[  695.158909][   T29] usb 40-1: device descriptor read/8, error -110
[  695.232719][T19176] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3262'.
[  695.629292][   T29] usb usb40-port1: attempt power cycle
[  695.947979][    C2] hpet: Lost 1 RTC interrupts
[  696.056230][    C2] hpet: Lost 3 RTC interrupts
[  696.147560][    C2] hpet: Lost 1 RTC interrupts
[  696.196267][   T29] usb usb40-port1: unable to enumerate USB device
[  696.353357][T19186] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  696.356056][T19186] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  696.360587][T19186] vhci_hcd vhci_hcd.0: Device attached
[  696.366250][T19186] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  696.368685][T19186] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  696.371395][T19186] vhci_hcd vhci_hcd.0: Device attached
[  696.392877][T19189] vhci_hcd: connection closed
[  696.393174][   T12] vhci_hcd: stop threads
[  696.393371][T19187] vhci_hcd: connection closed
[  696.394777][   T12] vhci_hcd: release socket
[  696.394789][   T12] vhci_hcd: disconnect device
[  696.403542][   T12] vhci_hcd: stop threads
[  696.405158][   T12] vhci_hcd: release socket
[  696.408499][   T12] vhci_hcd: disconnect device
[  696.478208][T19196] 9pnet_virtio: no channels available for device syz
[  697.069272][T19213] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3274'.
[  697.632112][T19218] bridge_slave_0: left allmulticast mode
[  697.634279][T19218] bridge_slave_0: left promiscuous mode
[  697.638266][T19218] bridge0: port 1(bridge_slave_0) entered disabled state
[  697.650390][T19218] bridge_slave_1: left allmulticast mode
[  697.652934][T19218] bridge_slave_1: left promiscuous mode
[  697.659065][T19218] bridge0: port 2(bridge_slave_1) entered disabled state
[  697.669150][T19218] bond0: (slave bond_slave_0): Releasing backup interface
[  697.679382][T19218] bond0: (slave bond_slave_1): Releasing backup interface
[  697.694068][T19218] team0: Port device team_slave_0 removed
[  697.703191][T19218] team0: Port device team_slave_1 removed
[  697.710983][T19218] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  697.713913][T19218] batman_adv: batadv0: Removing interface: batadv_slave_0
[  697.719950][T19218] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  697.723856][T19218] batman_adv: batadv0: Removing interface: batadv_slave_1
[  697.772097][T19218] team0: Port device wlan1 removed
[  701.665995][T19295] FAULT_INJECTION: forcing a failure.
[  701.665995][T19295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  701.672316][T19295] CPU: 0 UID: 0 PID: 19295 Comm: syz.4.3299 Not tainted syzkaller #0 PREEMPT(full) 
[  701.672448][T19295] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  701.672475][T19295] Call Trace:
[  701.672487][T19295]  <TASK>
[  701.672497][T19295]  dump_stack_lvl+0x16c/0x1f0
[  701.672535][T19295]  should_fail_ex+0x512/0x640
[  701.672566][T19295]  _copy_to_user+0x32/0xd0
[  701.672588][T19295]  simple_read_from_buffer+0xcb/0x170
[  701.672609][T19295]  proc_fail_nth_read+0x197/0x240
[  701.672631][T19295]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  701.672650][T19295]  ? rw_verify_area+0xcf/0x6c0
[  701.672668][T19295]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  701.672686][T19295]  vfs_read+0x1e4/0xcf0
[  701.672710][T19295]  ? __pfx_vfs_read+0x10/0x10
[  701.672726][T19295]  ? find_held_lock+0x2b/0x80
[  701.672751][T19295]  ? __fget_files+0x20e/0x3c0
[  701.672777][T19295]  ksys_read+0x12a/0x250
[  701.672795][T19295]  ? __pfx_ksys_read+0x10/0x10
[  701.672878][T19295]  ? rcu_is_watching+0x12/0xc0
[  701.672926][T19295]  __do_fast_syscall_32+0x7c/0x300
[  701.672957][T19295]  do_fast_syscall_32+0x32/0x80
[  701.672992][T19295]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  701.673023][T19295] RIP: 0023:0xf701e579
[  701.673045][T19295] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  701.673070][T19295] RSP: 002b:00000000f540e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  701.673096][T19295] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f540e620
[  701.673112][T19295] RDX: 000000000000000f RSI: 00000000f73b5ff4 RDI: 0000000000000000
[  701.673128][T19295] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  701.673144][T19295] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  701.673159][T19295] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  701.673194][T19295]  </TASK>
[  703.815251][T19320] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3307'.
[  704.710055][T19331] tipc: Enabled bearer <eth:batadv0>, priority 27
[  705.235609][T13864] usb 8-1: new high-speed USB device number 35 using dummy_hcd
[  705.476156][T13864] usb 8-1: Using ep0 maxpacket: 8
[  705.483591][T13864] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  705.489010][T13864] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  705.492944][T13864] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  705.497781][T13864] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  705.502335][T13864] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  705.507199][T13864] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  705.525103][T13864] hub 8-1:1.0: bad descriptor, ignoring hub
[  705.529736][T13864] hub 8-1:1.0: probe with driver hub failed with error -5
[  705.533442][T13864] cdc_wdm 8-1:1.0: skipping garbage
[  705.539376][T13864] cdc_wdm 8-1:1.0: skipping garbage
[  705.545191][T13864] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  705.550767][T13864] cdc_wdm 8-1:1.0: Unknown control protocol
[  705.866414][   T24] usb 8-1: USB disconnect, device number 35
[  706.318352][T19358] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3317'.
[  709.033208][T19370] syzkaller1: entered promiscuous mode
[  709.035030][T19370] syzkaller1: entered allmulticast mode
[  709.422683][T19375] syz_tun: left allmulticast mode
[  709.425096][T19375] syz_tun: left promiscuous mode
[  709.427151][T19375] bridge0: port 3(syz_tun) entered disabled state
[  709.437131][T19375] bridge_slave_0: left allmulticast mode
[  709.439110][T19375] bridge_slave_0: left promiscuous mode
[  709.443657][T19375] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.457544][T19375] bond0: (slave bond_slave_0): Releasing backup interface
[  709.466874][T19375] bond0: (slave bond_slave_1): Releasing backup interface
[  709.470907][T19375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  709.477010][T19375] batman_adv: batadv0: Removing interface: batadv_slave_1
[  709.797606][T19380] syzkaller1: entered promiscuous mode
[  709.799995][T19380] syzkaller1: entered allmulticast mode
[  709.865703][T19382] FAULT_INJECTION: forcing a failure.
[  709.865703][T19382] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  709.896326][T19382] CPU: 1 UID: 0 PID: 19382 Comm: syz.3.3321 Not tainted syzkaller #0 PREEMPT(full) 
[  709.896354][T19382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  709.896366][T19382] Call Trace:
[  709.896373][T19382]  <TASK>
[  709.896382][T19382]  dump_stack_lvl+0x16c/0x1f0
[  709.896415][T19382]  should_fail_ex+0x512/0x640
[  709.896448][T19382]  _copy_from_user+0x2e/0xd0
[  709.896470][T19382]  kstrtouint_from_user+0xd6/0x1d0
[  709.896495][T19382]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  709.896518][T19382]  ? __lock_acquire+0xb97/0x1ce0
[  709.896585][T19382]  proc_fail_nth_write+0x83/0x220
[  709.896606][T19382]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  709.896635][T19382]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  709.896653][T19382]  vfs_write+0x2a0/0x11d0
[  709.896682][T19382]  ? __pfx_vfs_write+0x10/0x10
[  709.896701][T19382]  ? find_held_lock+0x2b/0x80
[  709.896727][T19382]  ? __fget_files+0x20e/0x3c0
[  709.896757][T19382]  ksys_write+0x12a/0x250
[  709.896779][T19382]  ? __pfx_ksys_write+0x10/0x10
[  709.896802][T19382]  ? rcu_is_watching+0x12/0xc0
[  709.896827][T19382]  __do_fast_syscall_32+0x7c/0x300
[  709.896847][T19382]  do_fast_syscall_32+0x32/0x80
[  709.896864][T19382]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  709.896887][T19382] RIP: 0023:0xf7f91579
[  709.896901][T19382] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  709.896920][T19382] RSP: 002b:00000000f5444590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  709.896938][T19382] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5444620
[  709.896955][T19382] RDX: 0000000000000001 RSI: 00000000f7425ff4 RDI: 0000000000000000
[  709.896967][T19382] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  709.896977][T19382] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  709.896989][T19382] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  709.897015][T19382]  </TASK>
[  710.294101][   T24] usb 8-1: new high-speed USB device number 36 using dummy_hcd
[  710.537396][   T24] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  710.540349][   T24] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  710.543896][   T24] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  710.549108][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  710.552769][   T24] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  710.558643][   T24] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  710.561948][   T24] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  710.565216][   T24] usb 8-1: Product: syz
[  710.568743][   T24] usb 8-1: Manufacturer: syz
[  710.574262][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  710.576810][   T24] cdc_wdm 8-1:1.0: skipping garbage
[  710.581533][   T24] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  710.584031][   T24] cdc_wdm 8-1:1.0: Unknown control protocol
[  711.151623][T19398] FAULT_INJECTION: forcing a failure.
[  711.151623][T19398] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  711.158205][T19398] CPU: 0 UID: 0 PID: 19398 Comm: syz.5.3326 Not tainted syzkaller #0 PREEMPT(full) 
[  711.158239][T19398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  711.158255][T19398] Call Trace:
[  711.158265][T19398]  <TASK>
[  711.158277][T19398]  dump_stack_lvl+0x16c/0x1f0
[  711.158320][T19398]  should_fail_ex+0x512/0x640
[  711.158364][T19398]  _copy_to_user+0x32/0xd0
[  711.158395][T19398]  bpf_test_finish.isra.0+0x53c/0x6e0
[  711.158431][T19398]  ? find_held_lock+0x2b/0x80
[  711.158457][T19398]  ? __might_fault+0xe3/0x190
[  711.158487][T19398]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  711.158528][T19398]  ? _copy_from_user+0x59/0xd0
[  711.158559][T19398]  bpf_prog_test_run_xdp+0xa0d/0x1590
[  711.158609][T19398]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  711.158647][T19398]  ? __might_fault+0xc0/0x190
[  711.158680][T19398]  ? fput+0x9b/0xd0
[  711.158716][T19398]  ? __bpf_prog_get+0x97/0x2a0
[  711.158747][T19398]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  711.158783][T19398]  __sys_bpf+0x104d/0x4de0
[  711.158824][T19398]  ? __pfx___sys_bpf+0x10/0x10
[  711.158870][T19398]  ? ksys_write+0x190/0x250
[  711.158906][T19398]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  711.158966][T19398]  ? fput+0x9b/0xd0
[  711.158999][T19398]  ? ksys_write+0x1ac/0x250
[  711.159027][T19398]  ? __pfx_ksys_write+0x10/0x10
[  711.159063][T19398]  __ia32_sys_bpf+0x76/0xe0
[  711.159087][T19398]  __do_fast_syscall_32+0x7c/0x300
[  711.159113][T19398]  do_fast_syscall_32+0x32/0x80
[  711.159134][T19398]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  711.159163][T19398] RIP: 0023:0xf709e579
[  711.159183][T19398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  711.159207][T19398] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  711.159267][T19398] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000280
[  711.159283][T19398] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  711.159297][T19398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  711.159312][T19398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  711.159327][T19398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  711.159359][T19398]  </TASK>
[  712.299861][T19422] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3332'.
[  713.024124][ T6427] usb 8-1: USB disconnect, device number 36
[  713.453987][T19437] syzkaller1: entered promiscuous mode
[  713.456654][T19437] syzkaller1: entered allmulticast mode
[  714.039898][T19442] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3336'.
[  714.127267][T19444] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.144795][T19446] openvswitch: netlink: Multiple metadata blocks provided
[  714.276032][T19444] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.365586][T19450] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  714.368925][T19450] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  714.373661][T19450] vhci_hcd vhci_hcd.0: Device attached
[  714.383130][T19450] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  714.385649][T19450] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  714.388747][T19450] vhci_hcd vhci_hcd.0: Device attached
[  714.411067][T19444] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.452555][T19454] vhci_hcd: connection closed
[  714.452809][ T1141] vhci_hcd: stop threads
[  714.453038][T19452] vhci_hcd: connection closed
[  714.454575][ T1141] vhci_hcd: release socket
[  714.462226][ T1141] vhci_hcd: disconnect device
[  714.463861][ T1141] vhci_hcd: stop threads
[  714.465263][ T1141] vhci_hcd: release socket
[  714.468419][ T1141] vhci_hcd: disconnect device
[  714.499315][T19444] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  714.644882][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  714.652158][ T1141] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  714.663110][ T1141] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  714.675539][   T12] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  715.429878][T19468] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3344'.
[  716.232545][T19480] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3346'.
[  718.123201][T19495] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3349'.
[  718.904578][T19507] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  718.906785][T19507] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  718.911085][T19507] vhci_hcd vhci_hcd.0: Device attached
[  718.915246][T19507] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  718.917711][T19507] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  718.921236][T19507] vhci_hcd vhci_hcd.0: Device attached
[  718.944930][T19510] vhci_hcd: connection closed
[  718.945066][   T89] vhci_hcd: stop threads
[  718.945095][T19508] vhci_hcd: connection closed
[  718.948982][   T89] vhci_hcd: release socket
[  718.952121][   T89] vhci_hcd: disconnect device
[  718.953775][   T89] vhci_hcd: stop threads
[  718.955188][   T89] vhci_hcd: release socket
[  718.956899][   T89] vhci_hcd: disconnect device
[  720.061520][T19517] tipc: Started in network mode
[  720.063230][T19517] tipc: Node identity b25b2d92dea9, cluster identity 4711
[  720.066703][T19517] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  720.070374][T19517] syzkaller0: entered promiscuous mode
[  720.072734][T19517] syzkaller0: entered allmulticast mode
[  720.096821][T19517] tipc: Resetting bearer <eth:syzkaller0>
[  720.480221][T19523] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3357'.
[  721.106034][T13864] tipc: Node number set to 1827810706
[  721.780608][T19541] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  721.783299][T19541] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  721.786291][T19541] vhci_hcd vhci_hcd.0: Device attached
[  721.790752][T19541] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  721.792974][T19541] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  721.795822][T19541] vhci_hcd vhci_hcd.0: Device attached
[  721.809995][T19544] vhci_hcd: connection closed
[  721.810309][   T89] vhci_hcd: stop threads
[  721.810454][T19542] vhci_hcd: connection closed
[  721.812481][   T89] vhci_hcd: release socket
[  721.812504][   T89] vhci_hcd: disconnect device
[  721.820734][   T89] vhci_hcd: stop threads
[  721.822621][   T89] vhci_hcd: release socket
[  721.824451][   T89] vhci_hcd: disconnect device
[  721.961099][T19518] tipc: Resetting bearer <eth:syzkaller0>
[  721.996701][T19518] tipc: Disabling bearer <eth:syzkaller0>
[  723.084343][T19570] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3370'.
[  724.064732][T19586] kvm: pic: non byte read
[  724.091555][T19586] kvm: pic: level sensitive irq not supported
[  724.093976][T19586] kvm: pic: non byte read
[  724.105837][T19586] kvm: pic: level sensitive irq not supported
[  724.106147][T19586] kvm: pic: non byte read
[  724.129133][T19586] kvm: pic: level sensitive irq not supported
[  724.140715][T19586] kvm: pic: non byte read
[  724.167543][T19586] kvm: pic: level sensitive irq not supported
[  724.203816][T19586] kvm: pic: non byte read
[  724.219424][T19586] kvm: pic: level sensitive irq not supported
[  724.221824][T19586] kvm: pic: non byte read
[  724.237017][T19586] kvm: pic: level sensitive irq not supported
[  724.246511][T19586] kvm: pic: non byte read
[  724.257940][T19586] kvm: pic: level sensitive irq not supported
[  724.258361][T19586] kvm: pic: non byte read
[  724.276534][T19586] kvm: pic: level sensitive irq not supported
[  724.278453][T19586] kvm: pic: non byte read
[  726.495877][T19603] overlayfs: missing 'lowerdir'
[  726.504148][T19603] netlink: 'syz.1.3378': attribute type 5 has an invalid length.
[  726.687761][T19609] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3379'.
[  726.707807][ T6427] IPVS: starting estimator thread 0...
[  726.795913][T19610] IPVS: using max 40 ests per chain, 96000 per kthread
[  727.181756][T19612] FAULT_INJECTION: forcing a failure.
[  727.181756][T19612] name failslab, interval 1, probability 0, space 0, times 0
[  727.187694][T19612] CPU: 3 UID: 0 PID: 19612 Comm: syz.4.3377 Not tainted syzkaller #0 PREEMPT(full) 
[  727.187714][T19612] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  727.187722][T19612] Call Trace:
[  727.187726][T19612]  <TASK>
[  727.187731][T19612]  dump_stack_lvl+0x16c/0x1f0
[  727.187754][T19612]  should_fail_ex+0x512/0x640
[  727.187772][T19612]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  727.187789][T19612]  should_failslab+0xc2/0x120
[  727.187805][T19612]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  727.187818][T19612]  ? security_file_alloc+0x34/0x2b0
[  727.187836][T19612]  security_file_alloc+0x34/0x2b0
[  727.187852][T19612]  init_file+0x93/0x4c0
[  727.187869][T19612]  alloc_empty_file+0x73/0x1e0
[  727.187890][T19612]  alloc_file_pseudo+0x13a/0x230
[  727.187908][T19612]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  727.187926][T19612]  ? _raw_spin_unlock+0x28/0x50
[  727.187941][T19612]  ? alloc_fd+0x471/0x7d0
[  727.187955][T19612]  __anon_inode_getfile+0xe8/0x280
[  727.187972][T19612]  anon_inode_getfd+0x52/0xb0
[  727.187986][T19612]  __ia32_sys_fsopen+0x18f/0x240
[  727.188003][T19612]  __do_fast_syscall_32+0x7c/0x300
[  727.188015][T19612]  do_fast_syscall_32+0x32/0x80
[  727.188026][T19612]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  727.188041][T19612] RIP: 0023:0xf701e579
[  727.188050][T19612] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  727.188062][T19612] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 00000000000001ae
[  727.188073][T19612] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000001
[  727.188081][T19612] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  727.188087][T19612] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  727.188094][T19612] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  727.188102][T19612] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  727.188122][T19612]  </TASK>
[  727.949321][T19634] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3387'.
[  728.205692][T19631] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3386'.
[  728.655730][ T6427] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  728.785618][ T6427] usb 6-1: device descriptor read/64, error -71
[  729.025583][ T6427] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  729.155616][ T6427] usb 6-1: device descriptor read/64, error -71
[  729.265787][ T6427] usb usb6-port1: attempt power cycle
[  729.459215][T19653] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3390'.
[  729.479014][T11273] IPVS: starting estimator thread 0...
[  729.665558][ T6427] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  729.807511][T19654] IPVS: using max 38 ests per chain, 91200 per kthread
[  729.860920][T19657] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3391'.
[  729.945572][ T6427] usb 6-1: device descriptor read/8, error -71
[  730.254533][   T40] audit: type=1800 audit(730.096:954): pid=19659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3392" name="memory.events" dev="tmpfs" ino=871 res=0 errno=0
[  730.265311][   T40] audit: type=1804 audit(730.106:955): pid=19659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3392" name="/newroot/160/memory.events" dev="tmpfs" ino=871 res=1 errno=0
[  730.325612][ T6427] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  730.652531][ T6427] usb 6-1: device descriptor read/8, error -71
[  730.697446][T19667] FAULT_INJECTION: forcing a failure.
[  730.697446][T19667] name failslab, interval 1, probability 0, space 0, times 0
[  730.701812][T19667] CPU: 0 UID: 0 PID: 19667 Comm: syz.5.3396 Not tainted syzkaller #0 PREEMPT(full) 
[  730.701831][T19667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  730.701839][T19667] Call Trace:
[  730.701846][T19667]  <TASK>
[  730.701853][T19667]  dump_stack_lvl+0x16c/0x1f0
[  730.701880][T19667]  should_fail_ex+0x512/0x640
[  730.701900][T19667]  ? fs_reclaim_acquire+0xae/0x150
[  730.701921][T19667]  ? p9_fcall_init+0x97/0x260
[  730.701939][T19667]  should_failslab+0xc2/0x120
[  730.701956][T19667]  __kmalloc_noprof+0xd2/0x510
[  730.701971][T19667]  ? rcu_is_watching+0x12/0xc0
[  730.702003][T19667]  p9_fcall_init+0x97/0x260
[  730.702022][T19667]  p9_tag_alloc+0x161/0x640
[  730.702043][T19667]  ? __pfx_p9_tag_alloc+0x10/0x10
[  730.702061][T19667]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  730.702087][T19667]  p9_client_prepare_req+0x19b/0x4d0
[  730.702108][T19667]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  730.702127][T19667]  ? filename_lookup+0x224/0x5f0
[  730.702144][T19667]  ? __lock_acquire+0xb97/0x1ce0
[  730.702164][T19667]  p9_client_rpc+0x1c4/0xc50
[  730.702186][T19667]  ? __pfx_p9_client_rpc+0x10/0x10
[  730.702207][T19667]  ? idr_alloc_u32+0x20f/0x2f0
[  730.702227][T19667]  ? find_held_lock+0x2b/0x80
[  730.702240][T19667]  ? idr_preload_end+0xc2/0x230
[  730.702263][T19667]  p9_client_attach+0x156/0x2b0
[  730.702278][T19667]  ? __pfx_p9_client_attach+0x10/0x10
[  730.702291][T19667]  ? v9fs_fid_lookup+0x4bd/0xeb0
[  730.702313][T19667]  v9fs_fid_lookup+0x97a/0xeb0
[  730.702335][T19667]  v9fs_vfs_lookup+0x1a1/0x5b0
[  730.702350][T19667]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  730.702364][T19667]  ? lockdep_init_map_type+0x5c/0x280
[  730.702382][T19667]  ? lockdep_init_map_type+0x5c/0x280
[  730.702423][T19667]  __lookup_slow+0x24e/0x460
[  730.702444][T19667]  ? __pfx___lookup_slow+0x10/0x10
[  730.702474][T19667]  ? lookup_fast+0x156/0x610
[  730.702489][T19667]  walk_component+0x353/0x5b0
[  730.702504][T19667]  path_lookupat+0x142/0x6d0
[  730.702516][T19667]  ? __lock_acquire+0xb97/0x1ce0
[  730.702535][T19667]  filename_lookup+0x224/0x5f0
[  730.702551][T19667]  ? __pfx_filename_lookup+0x10/0x10
[  730.702579][T19667]  ? getname_flags.part.0+0x1c5/0x550
[  730.702603][T19667]  do_readlinkat+0xce/0x3a0
[  730.702622][T19667]  ? __pfx_do_readlinkat+0x10/0x10
[  730.702639][T19667]  ? ksys_write+0x1ac/0x250
[  730.702655][T19667]  ? __pfx_ksys_write+0x10/0x10
[  730.702674][T19667]  __ia32_sys_readlink+0x76/0xc0
[  730.702692][T19667]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  730.702718][T19667]  __do_fast_syscall_32+0x7c/0x300
[  730.702732][T19667]  do_fast_syscall_32+0x32/0x80
[  730.702744][T19667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  730.702761][T19667] RIP: 0023:0xf709e579
[  730.702772][T19667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  730.702785][T19667] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000055
[  730.702798][T19667] RAX: ffffffffffffffda RBX: 0000000080000240 RCX: 0000000080001200
[  730.702806][T19667] RDX: 0000000000001000 RSI: 0000000000000000 RDI: 0000000000000000
[  730.702814][T19667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  730.702821][T19667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  730.702829][T19667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  730.702844][T19667]  </TASK>
[  730.772956][ T6427] usb usb6-port1: unable to enumerate USB device
[  731.295722][ T6010] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  731.496584][ T6010] usb 9-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  731.500903][ T6010] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.846782][ T6010] usb 9-1: config 0 descriptor??
[  731.850081][ T6010] gspca_main: spca508-2.14.0 probing 8086:0110
[  731.908143][T19686] wireguard0: entered promiscuous mode
[  731.910946][T19686] wireguard0: entered allmulticast mode
[  732.064593][T19672] FAULT_INJECTION: forcing a failure.
[  732.064593][T19672] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  732.071634][T19672] CPU: 2 UID: 0 PID: 19672 Comm: syz.4.3398 Not tainted syzkaller #0 PREEMPT(full) 
[  732.071653][T19672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  732.071660][T19672] Call Trace:
[  732.071666][T19672]  <TASK>
[  732.071674][T19672]  dump_stack_lvl+0x16c/0x1f0
[  732.071696][T19672]  should_fail_ex+0x512/0x640
[  732.071717][T19672]  should_fail_alloc_page+0xe7/0x130
[  732.071734][T19672]  prepare_alloc_pages+0x3c2/0x610
[  732.071753][T19672]  ? rcu_is_watching+0x12/0xc0
[  732.071770][T19672]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  732.071785][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.071829][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.071847][T19672]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  732.071866][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.071884][T19672]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  732.071903][T19672]  ? policy_nodemask+0xea/0x4e0
[  732.071920][T19672]  alloc_pages_mpol+0x1fb/0x550
[  732.071936][T19672]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  732.071952][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.071968][T19672]  folio_alloc_mpol_noprof+0x36/0x2f0
[  732.071987][T19672]  vma_alloc_folio_noprof+0xed/0x1e0
[  732.072007][T19672]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  732.072029][T19672]  do_pte_missing+0x2230/0x3ba0
[  732.072042][T19672]  ? find_held_lock+0x2b/0x80
[  732.072057][T19672]  __handle_mm_fault+0x152a/0x2a50
[  732.072074][T19672]  ? __pfx___handle_mm_fault+0x10/0x10
[  732.072087][T19672]  ? __pte_offset_map_lock+0x174/0x310
[  732.072104][T19672]  ? find_held_lock+0x2b/0x80
[  732.072125][T19672]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  732.072146][T19672]  handle_mm_fault+0x589/0xd10
[  732.072161][T19672]  __get_user_pages+0x551/0x34a0
[  732.072183][T19672]  ? down_read_killable+0x220/0x4b0
[  732.072197][T19672]  ? __pfx___get_user_pages+0x10/0x10
[  732.072213][T19672]  ? __pfx_gup_fast_fallback+0x10/0x10
[  732.072230][T19672]  ? get_user_pages_unlocked+0x26a/0x780
[  732.072247][T19672]  ? rcu_is_watching+0x12/0xc0
[  732.072260][T19672]  get_user_pages_unlocked+0x1ca/0x780
[  732.072280][T19672]  ? __pfx_get_user_pages_unlocked+0x10/0x10
[  732.072297][T19672]  ? get_user_pages_fast_only+0xae/0xf0
[  732.072315][T19672]  ? __pfx_get_user_pages_fast_only+0x10/0x10
[  732.072332][T19672]  ? __pfx___might_resched+0x10/0x10
[  732.072348][T19672]  hva_to_pfn+0x886/0xe60
[  732.072367][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.072382][T19672]  ? __pfx_hva_to_pfn+0x10/0x10
[  732.072401][T19672]  ? __lock_acquire+0x62e/0x1ce0
[  732.072427][T19672]  kvm_follow_pfn+0x2d4/0x430
[  732.072442][T19672]  __kvm_faultin_pfn+0x11c/0x1a0
[  732.072452][T19672]  ? __pfx___kvm_faultin_pfn+0x10/0x10
[  732.072467][T19672]  ? __pfx_xa_load+0x10/0x10
[  732.072485][T19672]  kvm_mmu_faultin_pfn+0x581/0x2170
[  732.072503][T19672]  ? __pfx_fast_page_fault+0x10/0x10
[  732.072517][T19672]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  732.072532][T19672]  ? __kvm_mmu_topup_memory_cache+0x332/0x600
[  732.072549][T19672]  ? __lock_acquire+0xb97/0x1ce0
[  732.072568][T19672]  kvm_tdp_page_fault+0x186/0x3f0
[  732.072588][T19672]  kvm_mmu_do_page_fault+0x588/0x6c0
[  732.072608][T19672]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  732.072630][T19672]  ? rcu_is_watching+0x12/0xc0
[  732.072641][T19672]  ? trace_sched_exit_tp+0xd1/0x120
[  732.072666][T19672]  kvm_mmu_page_fault+0x225/0x1cb0
[  732.072682][T19672]  ? rcu_qs+0x2b/0xe0
[  732.072693][T19672]  ? __pfx_kvm_mmu_page_fault+0x10/0x10
[  732.072704][T19672]  ? __lock_acquire+0xb97/0x1ce0
[  732.072721][T19672]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  732.072741][T19672]  handle_ept_violation+0x2b4/0x6e0
[  732.072756][T19672]  ? __pfx_handle_ept_violation+0x10/0x10
[  732.072768][T19672]  vmx_handle_exit+0x124f/0x1bd0
[  732.072785][T19672]  vcpu_run+0x320b/0x55a0
[  732.072807][T19672]  ? __pfx_vcpu_run+0x10/0x10
[  732.072824][T19672]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  732.072840][T19672]  ? __local_bh_enable_ip+0xa4/0x120
[  732.072858][T19672]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  732.072872][T19672]  kvm_arch_vcpu_ioctl_run+0x1023/0x1980
[  732.072892][T19672]  kvm_vcpu_ioctl+0x5eb/0x1690
[  732.072909][T19672]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  732.072927][T19672]  ? tomoyo_path_number_perm+0x18d/0x580
[  732.072943][T19672]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  732.072963][T19672]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  732.072980][T19672]  ? do_vfs_ioctl+0x128/0x14f0
[  732.072999][T19672]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  732.073023][T19672]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  732.073038][T19672]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  732.073054][T19672]  ? __fget_files+0x20e/0x3c0
[  732.073069][T19672]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  732.073085][T19672]  __ia32_compat_sys_ioctl+0x242/0x370
[  732.073105][T19672]  __do_fast_syscall_32+0x7c/0x300
[  732.073121][T19672]  do_fast_syscall_32+0x32/0x80
[  732.073134][T19672]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  732.073148][T19672] RIP: 0023:0xf701e579
[  732.073159][T19672] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  732.073171][T19672] RSP: 002b:00000000f540e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  732.073185][T19672] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  732.073192][T19672] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  732.073200][T19672] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  732.073207][T19672] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  732.073213][T19672] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  732.073228][T19672]  </TASK>
[  732.300442][    C2] hpet: Lost 14 RTC interrupts
[  732.316864][ T6010] gspca_spca508: reg_read err -71
[  732.327013][ T6010] gspca_spca508: reg_read err -71
[  732.329422][ T6010] gspca_spca508: reg_read err -71
[  732.331428][ T6010] gspca_spca508: reg_read err -71
[  732.334151][ T6010] gspca_spca508: reg_read err -71
[  732.339965][ T6010] gspca_spca508: reg write: error -71
[  732.343716][ T6010] spca508 9-1:0.0: probe with driver spca508 failed with error -71
[  732.348527][ T6010] usb 9-1: USB disconnect, device number 17
[  732.773615][T19701] FAULT_INJECTION: forcing a failure.
[  732.773615][T19701] name failslab, interval 1, probability 0, space 0, times 0
[  732.778149][T19701] CPU: 2 UID: 0 PID: 19701 Comm: syz.1.3406 Not tainted syzkaller #0 PREEMPT(full) 
[  732.778167][T19701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  732.778175][T19701] Call Trace:
[  732.778180][T19701]  <TASK>
[  732.778187][T19701]  dump_stack_lvl+0x16c/0x1f0
[  732.778212][T19701]  should_fail_ex+0x512/0x640
[  732.778235][T19701]  should_failslab+0xc2/0x120
[  732.778252][T19701]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  732.778269][T19701]  ? skb_clone+0x190/0x3f0
[  732.778291][T19701]  skb_clone+0x190/0x3f0
[  732.778311][T19701]  netlink_deliver_tap+0xabd/0xd30
[  732.778334][T19701]  netlink_unicast+0x64c/0x870
[  732.778357][T19701]  ? __pfx_netlink_unicast+0x10/0x10
[  732.778377][T19701]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  732.778407][T19701]  netlink_sendmsg+0x8d1/0xdd0
[  732.778429][T19701]  ? __pfx_netlink_sendmsg+0x10/0x10
[  732.778451][T19701]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  732.778468][T19701]  ____sys_sendmsg+0xa95/0xc70
[  732.778485][T19701]  ? __pfx_____sys_sendmsg+0x10/0x10
[  732.778499][T19701]  ? get_compat_msghdr+0x11a/0x170
[  732.778525][T19701]  ___sys_sendmsg+0x134/0x1d0
[  732.778545][T19701]  ? __pfx____sys_sendmsg+0x10/0x10
[  732.778572][T19701]  ? find_held_lock+0x2b/0x80
[  732.778596][T19701]  __sys_sendmsg+0x16d/0x220
[  732.778615][T19701]  ? __pfx___sys_sendmsg+0x10/0x10
[  732.778641][T19701]  ? rcu_is_watching+0x12/0xc0
[  732.778657][T19701]  __do_fast_syscall_32+0x7c/0x300
[  732.778673][T19701]  do_fast_syscall_32+0x32/0x80
[  732.778691][T19701]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  732.778710][T19701] RIP: 0023:0xf7f77579
[  732.778721][T19701] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  732.778736][T19701] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  732.778750][T19701] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  732.778760][T19701] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  732.778768][T19701] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  732.778777][T19701] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  732.778786][T19701] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  732.778803][T19701]  </TASK>
[  732.855534][T19703] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3407'.
[  732.856232][    C2] hpet: Lost 3 RTC interrupts
[  733.044524][T19711] gfs2: gfs2 mount does not exist
[  733.351844][   T40] audit: type=1326 audit(733.196:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.372764][   T40] audit: type=1326 audit(733.196:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.381899][   T40] audit: type=1326 audit(733.196:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.391781][   T40] audit: type=1326 audit(733.196:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.406428][   T40] audit: type=1326 audit(733.196:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.424157][   T40] audit: type=1326 audit(733.196:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19720 comm="syz.4.3412" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701e579 code=0x7ffc0000
[  733.818770][   T89] bond0: (slave bond_slave_0): interface is now down
[  733.819885][T19728] FAULT_INJECTION: forcing a failure.
[  733.819885][T19728] name failslab, interval 1, probability 0, space 0, times 0
[  733.823236][   T89] bond0: (slave bond_slave_1): interface is now down
[  733.831887][T19728] CPU: 3 UID: 0 PID: 19728 Comm: syz.3.3413 Not tainted syzkaller #0 PREEMPT(full) 
[  733.831916][T19728] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  733.831929][T19728] Call Trace:
[  733.831926][   T89] bond0: (slave wlan1): interface is now down
[  733.831938][T19728]  <TASK>
[  733.831947][T19728]  dump_stack_lvl+0x16c/0x1f0
[  733.831985][T19728]  should_fail_ex+0x512/0x640
[  733.832015][T19728]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  733.832043][T19728]  should_failslab+0xc2/0x120
[  733.832078][T19728]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  733.832102][T19728]  ? __alloc_skb+0x2b2/0x380
[  733.832135][T19728]  __alloc_skb+0x2b2/0x380
[  733.832162][T19728]  ? __pfx___alloc_skb+0x10/0x10
[  733.832194][T19728]  ? if_nlmsg_size+0x475/0xaf0
[  733.832228][T19728]  rtmsg_ifinfo_build_skb+0x81/0x280
[  733.832255][T19728]  rtmsg_ifinfo+0x9f/0x1a0
[  733.832281][T19728]  netif_state_change+0x17f/0x3b0
[  733.832309][T19728]  ? __pfx_netif_state_change+0x10/0x10
[  733.832336][T19728]  ? netif_change_flags+0x10d/0x160
[  733.832368][T19728]  do_setlink.constprop.0+0x3570/0x4380
[  733.832416][T19728]  ? irqentry_exit+0x3b/0x90
[  733.832445][T19728]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  733.832505][T19728]  ? queue_delayed_work_on+0x141/0x200
[  733.832526][T19728]  ? queue_delayed_work_on+0x14b/0x200
[  733.832546][T19728]  ? queue_delayed_work_on+0x89/0x200
[  733.832566][T19728]  ? queue_delayed_work_on+0x8e/0x200
[  733.832589][T19728]  ? bond_option_arp_interval_set+0x29c/0x510
[  733.832616][T19728]  ? __bond_opt_set+0x3c2/0x1000
[  733.832646][T19728]  ? bond_changelink+0x3a1/0x2c00
[  733.832675][T19728]  ? __mutex_lock+0x1c5/0x1060
[  733.832697][T19728]  ? __pfx_bond_changelink+0x10/0x10
[  733.832728][T19728]  ? __pfx___mutex_lock+0x10/0x10
[  733.832771][T19728]  rtnl_newlink+0x1446/0x2000
[  733.832801][T19728]  ? __pfx_rtnl_newlink+0x10/0x10
[  733.832837][T19728]  ? kmem_cache_free+0x2d1/0x4d0
[  733.832860][T19728]  ? kfree_skbmem+0x1a4/0x1f0
[  733.832900][T19728]  ? rcu_is_watching+0x12/0xc0
[  733.832934][T19728]  ? find_held_lock+0x2b/0x80
[  733.832953][T19728]  ? __pfx_rtnl_newlink+0x10/0x10
[  733.832982][T19728]  ? __pfx_rtnl_newlink+0x10/0x10
[  733.833009][T19728]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  733.833028][T19728]  ? __pfx_rtnl_newlink+0x10/0x10
[  733.833060][T19728]  rtnetlink_rcv_msg+0x95e/0xe90
[  733.833081][T19728]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  733.833111][T19728]  ? ref_tracker_free+0x37c/0x830
[  733.833136][T19728]  netlink_rcv_skb+0x155/0x420
[  733.833167][T19728]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  733.833188][T19728]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  733.833230][T19728]  ? netlink_deliver_tap+0x1ae/0xd30
[  733.833267][T19728]  netlink_unicast+0x5aa/0x870
[  733.833303][T19728]  ? __pfx_netlink_unicast+0x10/0x10
[  733.833333][T19728]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  733.833372][T19728]  netlink_sendmsg+0x8d1/0xdd0
[  733.833410][T19728]  ? __pfx_netlink_sendmsg+0x10/0x10
[  733.833441][T19728]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  733.833467][T19728]  ____sys_sendmsg+0xa95/0xc70
[  733.833492][T19728]  ? __pfx_____sys_sendmsg+0x10/0x10
[  733.833511][T19728]  ? get_compat_msghdr+0x11a/0x170
[  733.833603][T19728]  ___sys_sendmsg+0x134/0x1d0
[  733.833648][T19728]  ? __pfx____sys_sendmsg+0x10/0x10
[  733.833685][T19728]  ? find_held_lock+0x2b/0x80
[  733.833720][T19728]  __sys_sendmsg+0x16d/0x220
[  733.833744][T19728]  ? __pfx___sys_sendmsg+0x10/0x10
[  733.833780][T19728]  ? rcu_is_watching+0x12/0xc0
[  733.833861][T19728]  __do_fast_syscall_32+0x7c/0x300
[  733.833892][T19728]  do_fast_syscall_32+0x32/0x80
[  733.833910][T19728]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  733.833933][T19728] RIP: 0023:0xf7f91579
[  733.833947][T19728] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  733.833969][T19728] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  733.833987][T19728] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  733.834003][T19728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  733.834014][T19728] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  733.834024][T19728] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  733.834035][T19728] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  733.834060][T19728]  </TASK>
[  733.989065][T19730] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  733.991175][   T89] bond0: now running without any active interface!
[  733.991321][T19730] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  733.991532][T19730] vhci_hcd vhci_hcd.0: Device attached
[  734.004029][T19730] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  734.006708][T19730] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  734.009747][T19730] vhci_hcd vhci_hcd.0: Device attached
[  734.026942][T19735] vhci_hcd: connection closed
[  734.027951][   T89] vhci_hcd: stop threads
[  734.033105][T19731] vhci_hcd: connection closed
[  734.034979][   T89] vhci_hcd: release socket
[  734.039854][   T89] vhci_hcd: disconnect device
[  734.042182][   T89] vhci_hcd: stop threads
[  734.044049][   T89] vhci_hcd: release socket
[  734.045898][   T89] vhci_hcd: disconnect device
[  734.202249][T19744] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  734.207454][T19744] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  734.459354][ T1141] bond0: (slave bond_slave_0): interface is now down
[  734.461792][ T1141] bond0: (slave bond_slave_1): interface is now down
[  735.294345][T19789] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  735.296478][T19789] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  735.300770][T19789] vhci_hcd vhci_hcd.0: Device attached
[  735.304491][T19789] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  735.306604][T19789] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  735.309366][T19789] vhci_hcd vhci_hcd.0: Device attached
[  735.322309][T19790] vhci_hcd: connection closed
[  735.322562][T19792] vhci_hcd: connection closed
[  735.322598][   T12] vhci_hcd: stop threads
[  735.327511][   T12] vhci_hcd: release socket
[  735.327524][   T12] vhci_hcd: disconnect device
[  735.328543][   T12] vhci_hcd: stop threads
[  735.332447][   T12] vhci_hcd: release socket
[  735.333929][   T12] vhci_hcd: disconnect device
[  735.365014][T19795] input: syz1 as /devices/virtual/input/input42
[  735.471726][T19803] lo speed is unknown, defaulting to 1000
[  735.474036][T19803] lo speed is unknown, defaulting to 1000
[  735.479340][T19803] lo speed is unknown, defaulting to 1000
[  735.494225][T19803] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  735.556903][T19803] lo speed is unknown, defaulting to 1000
[  735.560836][T19803] lo speed is unknown, defaulting to 1000
[  735.563557][T19803] lo speed is unknown, defaulting to 1000
[  735.566619][T19803] lo speed is unknown, defaulting to 1000
[  735.785830][T13864] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[  735.965840][T13864] usb 6-1: Using ep0 maxpacket: 8
[  735.970269][T13864] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  735.974783][T13864] usb 6-1: unable to read config index 0 descriptor/start: -61
[  735.980374][T13864] usb 6-1: can't read configurations, error -61
[  736.155553][T13864] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  736.327268][T13864] usb 6-1: Using ep0 maxpacket: 8
[  736.414435][T13864] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  736.427152][T13864] usb 6-1: unable to read config index 0 descriptor/start: -61
[  736.430446][T13864] usb 6-1: can't read configurations, error -61
[  736.437701][T13864] usb usb6-port1: attempt power cycle
[  736.795974][T13864] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  736.802886][T11273] libceph: connect (1)[c::]:6789 error -97
[  736.804834][T11273] libceph: mon0 (1)[c::]:6789 connect error
[  736.817714][T13864] usb 6-1: Using ep0 maxpacket: 8
[  736.820871][T13864] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  736.845070][T19810] ceph: No mds server is up or the cluster is laggy
[  736.845901][T13864] usb 6-1: unable to read config index 0 descriptor/start: -61
[  736.850527][T13864] usb 6-1: can't read configurations, error -61
[  736.882240][T19823] netlink: 'syz.5.3440': attribute type 21 has an invalid length.
[  736.884845][T19823] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3440'.
[  736.985829][T13864] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  737.018581][T13864] usb 6-1: Using ep0 maxpacket: 8
[  737.026405][T13864] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  737.030870][T13864] usb 6-1: unable to read config index 0 descriptor/start: -61
[  737.033524][T13864] usb 6-1: can't read configurations, error -61
[  737.037845][T13864] usb usb6-port1: unable to enumerate USB device
[  737.109006][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  737.111088][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  737.122715][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.130710][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(13)
[  737.133553][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  737.140879][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.146498][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  737.148839][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  737.156931][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.161003][T19835] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  737.168786][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(19)
[  737.170889][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  737.178080][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.194634][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(22)
[  737.196696][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  737.202753][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.214074][T19835] vhci_hcd vhci_hcd.0: pdev(4) rhport(5) sockfd(24)
[  737.216261][T19835] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  737.220909][T19835] vhci_hcd vhci_hcd.0: Device attached
[  737.224790][T19835] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  737.229283][T19835] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  737.242809][T19835] vhci_hcd vhci_hcd.0: port 0 already used
[  737.307375][T19849] vhci_hcd: connection closed
[  737.307414][T19847] vhci_hcd: connection closed
[  737.307534][T19844] vhci_hcd: connection closed
[  737.309218][ T1142] vhci_hcd: stop threads
[  737.309278][T19842] vhci_hcd: connection closed
[  737.309371][T19837] vhci_hcd: connection closed
[  737.310779][T19840] vhci_hcd: connection closed
[  737.313209][ T1142] vhci_hcd: release socket
[  737.321494][ T1142] vhci_hcd: disconnect device
[  737.323593][ T1142] vhci_hcd: stop threads
[  737.325389][ T1142] vhci_hcd: release socket
[  737.327441][ T1142] vhci_hcd: disconnect device
[  737.329626][ T1142] vhci_hcd: stop threads
[  737.331486][ T1142] vhci_hcd: release socket
[  737.333365][ T1142] vhci_hcd: disconnect device
[  737.335874][ T1142] vhci_hcd: stop threads
[  737.337304][ T1142] vhci_hcd: release socket
[  737.338845][ T1142] vhci_hcd: disconnect device
[  737.340971][ T1142] vhci_hcd: stop threads
[  737.342709][ T1142] vhci_hcd: release socket
[  737.345316][ T1142] vhci_hcd: disconnect device
[  737.347482][ T1142] vhci_hcd: stop threads
[  737.348922][ T1142] vhci_hcd: release socket
[  737.350639][ T1142] vhci_hcd: disconnect device
[  737.375779][T11273] usb 45-1: new low-speed USB device number 11 using vhci_hcd
[  737.378789][T11273] usb 45-1: enqueue for inactive port 0
[  737.465695][T11273] vhci_hcd: vhci_device speed not set
[  737.872776][T19857] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  737.875757][T19857] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  737.881866][T19857] vhci_hcd vhci_hcd.0: Device attached
[  737.893829][T19857] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  737.897358][T19857] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  737.901315][T19857] vhci_hcd vhci_hcd.0: Device attached
[  737.917912][T19860] vhci_hcd: connection closed
[  737.918284][ T1141] vhci_hcd: stop threads
[  737.918671][T19858] vhci_hcd: connection closed
[  737.919991][ T1141] vhci_hcd: release socket
[  737.920059][ T1141] vhci_hcd: disconnect device
[  737.928443][ T1141] vhci_hcd: stop threads
[  737.930119][ T1141] vhci_hcd: release socket
[  737.932233][ T1141] vhci_hcd: disconnect device
[  738.155600][T13864] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  738.305572][T13864] usb 10-1: Using ep0 maxpacket: 8
[  738.308698][T13864] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  738.311437][T13864] usb 10-1: config 0 has no interface number 0
[  738.313624][T13864] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  738.317734][T13864] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  738.322146][T13864] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  738.326488][T13864] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  738.331982][T13864] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  738.335708][T13864] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  738.342157][T13864] usb 10-1: config 0 descriptor??
[  738.351970][T13864] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  738.662630][ T6427] usb 10-1: USB disconnect, device number 16
[  738.667775][ T6427] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  739.466640][T19890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3457'.
[  739.504804][T19896] netlink: 148 bytes leftover after parsing attributes in process `syz.4.3460'.
[  740.805583][T11273] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[  740.957045][T11273] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  740.960734][T11273] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  740.964548][T11273] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  740.971901][T11273] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  740.975421][T11273] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  740.978276][T11273] usb 9-1: Product: syz
[  740.979597][T11273] usb 9-1: Manufacturer: syz
[  740.981191][T11273] usb 9-1: SerialNumber: syz
[  741.129920][T19928] FAULT_INJECTION: forcing a failure.
[  741.129920][T19928] name failslab, interval 1, probability 0, space 0, times 0
[  741.134270][T19928] CPU: 3 UID: 0 PID: 19928 Comm: syz.5.3469 Not tainted syzkaller #0 PREEMPT(full) 
[  741.134289][T19928] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  741.134297][T19928] Call Trace:
[  741.134303][T19928]  <TASK>
[  741.134309][T19928]  dump_stack_lvl+0x16c/0x1f0
[  741.134381][T19928]  should_fail_ex+0x512/0x640
[  741.134423][T19928]  should_failslab+0xc2/0x120
[  741.134464][T19928]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  741.134483][T19928]  ? skb_clone+0x190/0x3f0
[  741.134506][T19928]  skb_clone+0x190/0x3f0
[  741.134525][T19928]  netlink_deliver_tap+0xabd/0xd30
[  741.134549][T19928]  netlink_unicast+0x71f/0x870
[  741.134571][T19928]  ? __pfx_netlink_unicast+0x10/0x10
[  741.134593][T19928]  ? genl_rcv_msg+0x4bb/0x800
[  741.134611][T19928]  netlink_ack+0x696/0xb80
[  741.134650][T19928]  netlink_rcv_skb+0x332/0x420
[  741.134670][T19928]  ? __pfx_genl_rcv_msg+0x10/0x10
[  741.134684][T19928]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  741.134711][T19928]  ? netlink_deliver_tap+0x1ae/0xd30
[  741.134732][T19928]  genl_rcv+0x28/0x40
[  741.134743][T19928]  netlink_unicast+0x5aa/0x870
[  741.134765][T19928]  ? __pfx_netlink_unicast+0x10/0x10
[  741.134785][T19928]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  741.134810][T19928]  netlink_sendmsg+0x8d1/0xdd0
[  741.134832][T19928]  ? __pfx_netlink_sendmsg+0x10/0x10
[  741.134854][T19928]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  741.134872][T19928]  ____sys_sendmsg+0xa95/0xc70
[  741.134889][T19928]  ? __pfx_____sys_sendmsg+0x10/0x10
[  741.134902][T19928]  ? get_compat_msghdr+0x11a/0x170
[  741.134928][T19928]  ___sys_sendmsg+0x134/0x1d0
[  741.134975][T19928]  ? __pfx____sys_sendmsg+0x10/0x10
[  741.135004][T19928]  ? find_held_lock+0x2b/0x80
[  741.135042][T19928]  __sys_sendmsg+0x16d/0x220
[  741.135075][T19928]  ? __pfx___sys_sendmsg+0x10/0x10
[  741.135117][T19928]  ? rcu_is_watching+0x12/0xc0
[  741.135145][T19928]  __do_fast_syscall_32+0x7c/0x300
[  741.135168][T19928]  do_fast_syscall_32+0x32/0x80
[  741.135188][T19928]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  741.135214][T19928] RIP: 0023:0xf709e579
[  741.135232][T19928] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  741.135255][T19928] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  741.135277][T19928] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  741.135291][T19928] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  741.135304][T19928] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  741.135317][T19928] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  741.135331][T19928] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  741.135368][T19928]  </TASK>
[  741.192048][T11273] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 18 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  741.393490][T11273] usb 9-1: USB disconnect, device number 18
[  741.397563][T11273] usblp0: removed
[  741.455773][ T6426] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  741.607101][ T6426] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  741.611392][ T6426] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  741.614870][ T6426] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  741.620073][ T6426] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  741.623303][ T6426] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  741.628459][ T6426] usb 10-1: config 0 descriptor??
[  742.117735][T19948] FAULT_INJECTION: forcing a failure.
[  742.117735][T19948] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  742.122988][T19948] CPU: 2 UID: 0 PID: 19948 Comm: syz.4.3476 Not tainted syzkaller #0 PREEMPT(full) 
[  742.123014][T19948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  742.123026][T19948] Call Trace:
[  742.123035][T19948]  <TASK>
[  742.123042][T19948]  dump_stack_lvl+0x16c/0x1f0
[  742.123073][T19948]  should_fail_ex+0x512/0x640
[  742.123122][T19948]  _copy_to_user+0x32/0xd0
[  742.123142][T19948]  do_pages_stat+0x631/0x820
[  742.123174][T19948]  ? __pfx_do_pages_stat+0x10/0x10
[  742.123216][T19948]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  742.123253][T19948]  ? lockdep_hardirqs_on+0x7c/0x110
[  742.123278][T19948]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  742.123305][T19948]  kernel_move_pages+0xfa8/0x1380
[  742.123339][T19948]  ? __pfx_kernel_move_pages+0x10/0x10
[  742.123364][T19948]  ? __fget_files+0x20e/0x3c0
[  742.123382][T19948]  ? handle_mm_fault+0x240/0xd10
[  742.123412][T19948]  ? fput+0x9b/0xd0
[  742.123437][T19948]  ? ksys_write+0x1ac/0x250
[  742.123456][T19948]  ? __pfx_ksys_write+0x10/0x10
[  742.123478][T19948]  __ia32_sys_move_pages+0xdd/0x1b0
[  742.123502][T19948]  ? lockdep_hardirqs_on+0x7c/0x110
[  742.123526][T19948]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  742.123551][T19948]  __do_fast_syscall_32+0x7c/0x300
[  742.123569][T19948]  do_fast_syscall_32+0x32/0x80
[  742.123584][T19948]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  742.123605][T19948] RIP: 0023:0xf701e579
[  742.123620][T19948] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  742.123638][T19948] RSP: 002b:00000000f540e55c EFLAGS: 00000296 ORIG_RAX: 000000000000013d
[  742.123655][T19948] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000001efe
[  742.123666][T19948] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000080000040
[  742.123677][T19948] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  742.123686][T19948] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  742.123696][T19948] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  742.123717][T19948]  </TASK>
[  742.207988][    C2] hpet_rtc_timer_reinit: 55 callbacks suppressed
[  742.207999][    C2] hpet: Lost 5 RTC interrupts
[  742.260295][ T6426] usbhid 10-1:0.0: can't add hid device: -71
[  742.262277][ T6426] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  742.265998][ T6426] usb 10-1: USB disconnect, device number 17
[  742.492892][T19956] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3478'.
[  742.654479][T19961] fuse: Unknown parameter '00000000000000000000003'
[  742.995716][T11273] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  743.034704][T19975] FAULT_INJECTION: forcing a failure.
[  743.034704][T19975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  743.039605][T19975] CPU: 2 UID: 0 PID: 19975 Comm: syz.1.3485 Not tainted syzkaller #0 PREEMPT(full) 
[  743.039628][T19975] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  743.039639][T19975] Call Trace:
[  743.039646][T19975]  <TASK>
[  743.039653][T19975]  dump_stack_lvl+0x16c/0x1f0
[  743.039684][T19975]  should_fail_ex+0x512/0x640
[  743.039713][T19975]  _copy_to_user+0x32/0xd0
[  743.039734][T19975]  simple_read_from_buffer+0xcb/0x170
[  743.039755][T19975]  proc_fail_nth_read+0x197/0x240
[  743.039776][T19975]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  743.039796][T19975]  ? rw_verify_area+0xcf/0x6c0
[  743.039813][T19975]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  743.039831][T19975]  vfs_read+0x1e4/0xcf0
[  743.039855][T19975]  ? __pfx_vfs_read+0x10/0x10
[  743.039871][T19975]  ? find_held_lock+0x2b/0x80
[  743.039895][T19975]  ? __fget_files+0x20e/0x3c0
[  743.039920][T19975]  ksys_read+0x12a/0x250
[  743.039940][T19975]  ? __pfx_ksys_read+0x10/0x10
[  743.039961][T19975]  ? rcu_is_watching+0x12/0xc0
[  743.039981][T19975]  __do_fast_syscall_32+0x7c/0x300
[  743.039999][T19975]  do_fast_syscall_32+0x32/0x80
[  743.040016][T19975]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  743.040037][T19975] RIP: 0023:0xf7f77579
[  743.040051][T19975] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  743.040067][T19975] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  743.040085][T19975] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5466620
[  743.040096][T19975] RDX: 000000000000000f RSI: 00000000f7405ff4 RDI: 0000000000000000
[  743.040106][T19975] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  743.040116][T19975] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  743.040126][T19975] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  743.040148][T19975]  </TASK>
[  743.110448][    C2] hpet: Lost 4 RTC interrupts
[  743.135979][ T1141] bond0: (slave bond_slave_0): interface is now down
[  743.138174][ T1141] bond0: (slave bond_slave_1): interface is now down
[  743.143519][ T1141] bond0: now running without any active interface!
[  743.186802][T11273] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  743.190154][T11273] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  743.193479][T11273] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  743.200378][T11273] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  743.203380][T11273] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  743.206124][T11273] usb 9-1: Product: syz
[  743.207510][T11273] usb 9-1: Manufacturer: syz
[  743.209200][T11273] usb 9-1: SerialNumber: syz
[  743.417624][T19960] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  743.421186][T19960] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  743.437198][T11273] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  743.647248][T13864] usb 9-1: USB disconnect, device number 19
[  743.651396][T13864] usblp0: removed
[  744.783373][T20006] fuse: Bad value for 'fd'
[  745.161037][T20010] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3495'.
[  746.466483][T20038] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  746.469727][T20038] block device autoloading is deprecated and will be removed.
[  746.482093][T20036] md: md2 stopped.
[  746.487265][T20036] md: md2 stopped.
[  747.244374][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  747.247212][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  747.316471][T20053] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  747.318697][T20053] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  747.321297][T20053] vhci_hcd vhci_hcd.0: Device attached
[  747.329582][T20053] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  747.331662][T20053] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  747.333925][T20053] vhci_hcd vhci_hcd.0: Device attached
[  747.358638][T20057] vhci_hcd: connection closed
[  747.358941][T20055] vhci_hcd: connection closed
[  747.362537][ T1183] vhci_hcd: stop threads
[  747.366551][ T1183] vhci_hcd: release socket
[  747.368262][ T1183] vhci_hcd: disconnect device
[  747.370067][ T1183] vhci_hcd: stop threads
[  747.371564][ T1183] vhci_hcd: release socket
[  747.373050][ T1183] vhci_hcd: disconnect device
[  747.832167][T20065] syzkaller0: entered promiscuous mode
[  747.834593][T20065] syzkaller0: entered allmulticast mode
[  748.869216][T20079] MPI: mpi too large (130952 bits)
[  749.775602][T20089] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3517'.
[  749.861504][T20093] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  749.864129][T20093] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  749.868317][T20093] vhci_hcd vhci_hcd.0: Device attached
[  749.871933][T20093] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  749.874111][T20093] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  749.876823][T20093] vhci_hcd vhci_hcd.0: Device attached
[  749.889366][T20100] vhci_hcd: connection closed
[  749.889736][   T61] vhci_hcd: stop threads
[  749.892880][   T61] vhci_hcd: release socket
[  749.894331][   T61] vhci_hcd: disconnect device
[  750.055653][T13864] vhci_hcd: vhci_device speed not set
[  750.125591][T13864] usb 39-1: new full-speed USB device number 14 using vhci_hcd
[  750.907018][T20106] lo speed is unknown, defaulting to 1000
[  750.907937][T20097] vhci_hcd: connection reset by peer
[  750.909446][T20106] lo speed is unknown, defaulting to 1000
[  750.911438][   T12] vhci_hcd: stop threads
[  750.913370][T20106] lo speed is unknown, defaulting to 1000
[  750.914737][   T12] vhci_hcd: release socket
[  750.919184][   T12] vhci_hcd: disconnect device
[  750.924412][T20106] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  750.936783][T20106] lo speed is unknown, defaulting to 1000
[  750.940615][T20106] lo speed is unknown, defaulting to 1000
[  750.943849][T20106] lo speed is unknown, defaulting to 1000
[  750.950125][T20106] lo speed is unknown, defaulting to 1000
[  751.033761][T20114] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3524'.
[  751.327509][T20122] trusted_key: encrypted_key: key user:syz not found
[  752.085750][ T6426] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  752.417524][ T6426] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  752.421593][ T6426] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  752.425907][ T6426] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  752.429651][ T6426] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  752.434197][ T6426] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  752.441340][ T6426] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  752.445182][ T6426] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  752.449416][ T6426] usb 10-1: Product: syz
[  752.451334][ T6426] usb 10-1: Manufacturer: syz
[  752.459061][ T6426] cdc_wdm 10-1:1.0: skipping garbage
[  752.461326][ T6426] cdc_wdm 10-1:1.0: skipping garbage
[  752.464800][ T6426] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  752.467717][ T6426] cdc_wdm 10-1:1.0: Unknown control protocol
[  753.270359][T20149] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(16)
[  753.272909][T20149] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  753.276169][T20149] vhci_hcd vhci_hcd.0: Device attached
[  753.280965][T20149] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(19)
[  753.283719][T20149] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  753.287271][T20149] vhci_hcd vhci_hcd.0: Device attached
[  753.305963][T20152] vhci_hcd: connection closed
[  753.306189][T20150] vhci_hcd: connection closed
[  753.306224][ T1183] vhci_hcd: stop threads
[  753.312091][ T1183] vhci_hcd: release socket
[  753.314368][ T1183] vhci_hcd: disconnect device
[  753.316855][ T1183] vhci_hcd: stop threads
[  753.318781][ T1183] vhci_hcd: release socket
[  753.320882][ T1183] vhci_hcd: disconnect device
[  753.867266][T20155] syzkaller0: entered promiscuous mode
[  753.869509][T20155] syzkaller0: entered allmulticast mode
[  753.874249][T20155] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  754.412794][T17795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  754.420939][T17795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  754.425800][T17795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  754.431875][T17795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  754.435244][T17795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  754.479841][T20168] lo speed is unknown, defaulting to 1000
[  754.483013][T20168] lo speed is unknown, defaulting to 1000
[  754.485702][   T10] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[  754.637366][   T10] usb 6-1: Using ep0 maxpacket: 8
[  754.641982][   T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  754.645138][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  754.648776][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  754.652754][   T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  754.657329][   T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  754.660825][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  754.680420][T20168] chnl_net:caif_netlink_parms(): no params data found
[  754.795879][T20168] bridge0: port 1(bridge_slave_0) entered blocking state
[  754.799195][T20168] bridge0: port 1(bridge_slave_0) entered disabled state
[  754.801765][T20168] bridge_slave_0: entered allmulticast mode
[  754.804558][T20168] bridge_slave_0: entered promiscuous mode
[  754.807930][T20168] bridge0: port 2(bridge_slave_1) entered blocking state
[  754.810319][T20168] bridge0: port 2(bridge_slave_1) entered disabled state
[  754.812733][T20168] bridge_slave_1: entered allmulticast mode
[  754.816894][T20168] bridge_slave_1: entered promiscuous mode
[  754.869242][   T10] usb 6-1: GET_CAPABILITIES returned 0
[  754.869267][ T6426] usb 10-1: USB disconnect, device number 18
[  754.871779][   T10] usbtmc 6-1:16.0: can't read capabilities
[  754.929332][T20168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  754.939374][T20168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  754.985036][T20168] team0: Port device team_slave_0 added
[  754.995439][T20168] team0: Port device team_slave_1 added
[  755.036668][T20168] batman_adv: batadv0: Adding interface: batadv_slave_0
[  755.039097][T20168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.047264][T20168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  755.052118][T20168] batman_adv: batadv0: Adding interface: batadv_slave_1
[  755.054340][T20168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.063093][T20168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  755.109223][T20168] hsr_slave_0: entered promiscuous mode
[  755.111962][T20168] hsr_slave_1: entered promiscuous mode
[  755.114886][T20168] debugfs: 'hsr0' already exists in 'hsr'
[  755.116992][T20168] Cannot create hsr debugfs directory
[  755.205689][T13864] vhci_hcd: vhci_device speed not set
[  756.410269][ T1183] bond0 (unregistering): Released all slaves
[  756.506760][ T5984] Bluetooth: hci3: command tx timeout
[  756.530034][ T1183] tipc: Disabling bearer <eth:syzkaller0>
[  756.533093][ T1183] tipc: Disabling bearer <eth:batadv0>
[  756.535227][ T1183] tipc: Left network mode
[  756.821404][T20196] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  756.824071][T20196] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  756.830278][T20196] vhci_hcd vhci_hcd.0: Device attached
[  756.834610][T20196] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  756.837096][T20196] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  756.840768][T20196] vhci_hcd vhci_hcd.0: Device attached
[  756.858253][T20199] vhci_hcd: connection closed
[  756.858537][   T41] vhci_hcd: stop threads
[  756.861652][   T41] vhci_hcd: release socket
[  756.863117][   T41] vhci_hcd: disconnect device
[  756.864758][T20197] vhci_hcd: connection closed
[  756.865075][   T41] vhci_hcd: stop threads
[  756.869666][   T41] vhci_hcd: release socket
[  756.869681][   T41] vhci_hcd: disconnect device
[  756.906731][T20202] FAULT_INJECTION: forcing a failure.
[  756.906731][T20202] name failslab, interval 1, probability 0, space 0, times 0
[  756.911065][T20202] CPU: 1 UID: 0 PID: 20202 Comm: syz.5.3547 Not tainted syzkaller #0 PREEMPT(full) 
[  756.911082][T20202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  756.911090][T20202] Call Trace:
[  756.911095][T20202]  <TASK>
[  756.911100][T20202]  dump_stack_lvl+0x16c/0x1f0
[  756.911122][T20202]  should_fail_ex+0x512/0x640
[  756.911140][T20202]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  756.911156][T20202]  should_failslab+0xc2/0x120
[  756.911172][T20202]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  756.911186][T20202]  ? __pmd_alloc+0xbf/0x930
[  756.911205][T20202]  __pmd_alloc+0xbf/0x930
[  756.911224][T20202]  __handle_mm_fault+0xa06/0x2a50
[  756.911238][T20202]  ? mt_find+0x3ef/0xa30
[  756.911250][T20202]  ? __pfx___handle_mm_fault+0x10/0x10
[  756.911262][T20202]  ? __pfx_mt_find+0x10/0x10
[  756.911280][T20202]  ? find_vma+0xbf/0x140
[  756.911295][T20202]  ? __pfx_find_vma+0x10/0x10
[  756.911312][T20202]  handle_mm_fault+0x589/0xd10
[  756.911324][T20202]  ? trace_raw_output_exceptions+0x131/0x150
[  756.911344][T20202]  do_user_addr_fault+0x7a6/0x1370
[  756.911363][T20202]  ? rcu_is_watching+0x12/0xc0
[  756.911377][T20202]  exc_page_fault+0x5c/0xb0
[  756.911395][T20202]  asm_exc_page_fault+0x26/0x30
[  756.911406][T20202] RIP: 0010:_copy_from_user+0x93/0xd0
[  756.911419][T20202] Code: d9 d9 fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 c9 4f 3f fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 95 d4
[  756.911431][T20202] RSP: 0018:ffffc90006537bd0 EFLAGS: 00050246
[  756.911441][T20202] RAX: 0000000000000001 RBX: 0000000080000840 RCX: 000000000000008c
[  756.911448][T20202] RDX: ffffed100887bbb2 RSI: 0000000080000840 RDI: ffff8880443ddd04
[  756.911456][T20202] RBP: 000000000000008c R08: 0000000000000001 R09: ffffed100887bbb1
[  756.911463][T20202] R10: ffff8880443ddd8f R11: 0000000000000000 R12: 0000000000000000
[  756.911470][T20202] R13: ffff8880443ddd04 R14: 0000000080000840 R15: 0000000000000000
[  756.911486][T20202]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[  756.911501][T20202]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  756.911520][T20202]  ? trace_kmalloc+0x2b/0xd0
[  756.911536][T20202]  ? __local_bh_enable_ip+0xa4/0x120
[  756.911554][T20202]  do_ip_setsockopt+0x1a86/0x3130
[  756.911569][T20202]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  756.911583][T20202]  ? aa_sk_perm+0x2f4/0xb10
[  756.911599][T20202]  ? ksys_write+0x190/0x250
[  756.911613][T20202]  ? __pfx_aa_sk_perm+0x10/0x10
[  756.911630][T20202]  ip_setsockopt+0x59/0xf0
[  756.911644][T20202]  udp_setsockopt+0x7d/0xd0
[  756.911657][T20202]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  756.911671][T20202]  do_sock_setsockopt+0xf3/0x1d0
[  756.911685][T20202]  __sys_setsockopt+0x120/0x1a0
[  756.911705][T20202]  __ia32_sys_setsockopt+0xbc/0x160
[  756.911720][T20202]  ? lockdep_hardirqs_on+0x7c/0x110
[  756.911736][T20202]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  756.911754][T20202]  __do_fast_syscall_32+0x7c/0x300
[  756.911766][T20202]  do_fast_syscall_32+0x32/0x80
[  756.911777][T20202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  756.911791][T20202] RIP: 0023:0xf709e579
[  756.911800][T20202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  756.911811][T20202] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  756.911821][T20202] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  756.911828][T20202] RDX: 0000000000000030 RSI: 0000000080000840 RDI: 000000000000008c
[  756.911835][T20202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  756.911842][T20202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  756.911848][T20202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  756.911862][T20202]  </TASK>
[  757.140861][T20168] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  757.159621][T20168] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  757.175743][T20168] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  757.189982][ T1183] hsr_slave_0: left promiscuous mode
[  757.192297][ T1183] hsr_slave_1: left promiscuous mode
[  757.205932][ T1183] pim6reg (unregistering): left allmulticast mode
[  757.234912][T20212] FAULT_INJECTION: forcing a failure.
[  757.234912][T20212] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  757.242775][T20212] CPU: 0 UID: 0 PID: 20212 Comm: syz.5.3550 Not tainted syzkaller #0 PREEMPT(full) 
[  757.242824][T20212] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  757.242836][T20212] Call Trace:
[  757.242844][T20212]  <TASK>
[  757.242852][T20212]  dump_stack_lvl+0x16c/0x1f0
[  757.242887][T20212]  should_fail_ex+0x512/0x640
[  757.242917][T20212]  _copy_to_user+0x32/0xd0
[  757.242941][T20212]  simple_read_from_buffer+0xcb/0x170
[  757.242962][T20212]  proc_fail_nth_read+0x197/0x240
[  757.242980][T20212]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  757.242998][T20212]  ? rw_verify_area+0xcf/0x6c0
[  757.243018][T20212]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  757.243037][T20212]  vfs_read+0x1e4/0xcf0
[  757.243063][T20212]  ? __pfx_vfs_read+0x10/0x10
[  757.243081][T20212]  ? find_held_lock+0x2b/0x80
[  757.243106][T20212]  ? __fget_files+0x20e/0x3c0
[  757.243136][T20212]  ksys_read+0x12a/0x250
[  757.243156][T20212]  ? __pfx_ksys_read+0x10/0x10
[  757.243178][T20212]  ? fput+0x9b/0xd0
[  757.243203][T20212]  ? rcu_is_watching+0x12/0xc0
[  757.243226][T20212]  __do_fast_syscall_32+0x7c/0x300
[  757.243248][T20212]  do_fast_syscall_32+0x32/0x80
[  757.243265][T20212]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  757.243286][T20212] RIP: 0023:0xf709e579
[  757.243302][T20212] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  757.243320][T20212] RSP: 002b:00000000f546d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  757.243337][T20212] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f546d620
[  757.243350][T20212] RDX: 000000000000000f RSI: 00000000f7435ff4 RDI: 0000000000000000
[  757.243360][T20212] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  757.243370][T20212] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  757.243380][T20212] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  757.243412][T20212]  </TASK>
[  757.491216][   T10] usb 6-1: USB disconnect, device number 52
[  758.537470][T20233] netlink: 9 bytes leftover after parsing attributes in process `syz.3.3554'.
[  758.576017][ T5984] Bluetooth: hci3: command tx timeout
[  759.072168][T20168] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  759.079706][T20230] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3555'.
[  759.089228][T20233] 0·: renamed from hsr_slave_1 (while UP)
[  759.102417][T20233] 0·: entered allmulticast mode
[  759.107326][T20233] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  759.193703][T20168] 8021q: adding VLAN 0 to HW filter on device bond0
[  759.231038][T20168] 8021q: adding VLAN 0 to HW filter on device team0
[  759.246826][   T89] bridge0: port 1(bridge_slave_0) entered blocking state
[  759.248984][   T89] bridge0: port 1(bridge_slave_0) entered forwarding state
[  759.255132][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  759.257924][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  759.453881][T20249] netlink: 256 bytes leftover after parsing attributes in process `syz.5.3557'.
[  759.459190][T20168] 8021q: adding VLAN 0 to HW filter on device batadv0
[  759.484946][T20257] FAULT_INJECTION: forcing a failure.
[  759.484946][T20257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  759.490731][T20257] CPU: 1 UID: 0 PID: 20257 Comm: syz.3.3558 Not tainted syzkaller #0 PREEMPT(full) 
[  759.490748][T20257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.490756][T20257] Call Trace:
[  759.490760][T20257]  <TASK>
[  759.490785][T20257]  dump_stack_lvl+0x16c/0x1f0
[  759.490807][T20257]  should_fail_ex+0x512/0x640
[  759.490828][T20257]  _copy_from_user+0x2e/0xd0
[  759.490841][T20257]  bpf_test_init.isra.0+0xe2/0x140
[  759.490858][T20257]  bpf_prog_test_run_skb+0x245/0x2280
[  759.490876][T20257]  ? __fget_files+0x204/0x3c0
[  759.490891][T20257]  ? __fget_files+0x20e/0x3c0
[  759.490903][T20257]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  759.490922][T20257]  ? fput+0x9b/0xd0
[  759.490939][T20257]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  759.490956][T20257]  __sys_bpf+0x104d/0x4de0
[  759.490975][T20257]  ? __pfx___sys_bpf+0x10/0x10
[  759.490992][T20257]  ? ksys_write+0x190/0x250
[  759.491007][T20257]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  759.491033][T20257]  ? fput+0x9b/0xd0
[  759.491048][T20257]  ? ksys_write+0x1ac/0x250
[  759.491061][T20257]  ? __pfx_ksys_write+0x10/0x10
[  759.491076][T20257]  __ia32_sys_bpf+0x76/0xe0
[  759.491087][T20257]  __do_fast_syscall_32+0x7c/0x300
[  759.491099][T20257]  do_fast_syscall_32+0x32/0x80
[  759.491110][T20257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.491125][T20257] RIP: 0023:0xf7f91579
[  759.491135][T20257] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.491147][T20257] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  759.491158][T20257] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  759.491165][T20257] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  759.491172][T20257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  759.491179][T20257] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  759.491185][T20257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.491199][T20257]  </TASK>
[  759.622372][T20264] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  759.624763][T20264] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  759.625681][T20168] veth0_vlan: entered promiscuous mode
[  759.628438][T20264] vhci_hcd vhci_hcd.0: Device attached
[  759.634589][T20168] veth1_vlan: entered promiscuous mode
[  759.635251][T20264] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  759.638625][T20264] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  759.641946][T20264] vhci_hcd vhci_hcd.0: Device attached
[  759.655904][T20168] veth0_macvtap: entered promiscuous mode
[  759.656028][T20267] vhci_hcd: connection closed
[  759.656563][T20265] vhci_hcd: connection closed
[  759.657845][   T41] vhci_hcd: stop threads
[  759.657858][   T41] vhci_hcd: release socket
[  759.657867][   T41] vhci_hcd: disconnect device
[  759.660774][T20168] veth1_macvtap: entered promiscuous mode
[  759.663022][ T1141] vhci_hcd: stop threads
[  759.670338][ T1141] vhci_hcd: release socket
[  759.672028][ T1141] vhci_hcd: disconnect device
[  759.672130][T20168] batman_adv: batadv0: Interface activated: batadv_slave_0
[  759.683074][T20168] batman_adv: batadv0: Interface activated: batadv_slave_1
[  759.691007][   T61] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  759.695243][   T61] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  759.700408][   T61] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  759.704696][   T61] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  759.754954][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.758903][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.774758][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.777377][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  760.689192][ T5984] Bluetooth: hci3: command tx timeout
[  760.723630][T20287] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3564'.
[  760.779489][T20288] syzkaller1: entered promiscuous mode
[  760.781258][T20288] syzkaller1: entered allmulticast mode
[  761.115962][ T5984] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  761.119543][ T5984] CPU: 3 UID: 0 PID: 5984 Comm: kworker/u33:4 Not tainted syzkaller #0 PREEMPT(full) 
[  761.119560][ T5984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  761.119569][ T5984] Workqueue: hci3 hci_rx_work
[  761.119603][ T5984] Call Trace:
[  761.119608][ T5984]  <TASK>
[  761.119614][ T5984]  dump_stack_lvl+0x16c/0x1f0
[  761.119635][ T5984]  sysfs_warn_dup+0x7f/0xa0
[  761.119688][ T5984]  sysfs_create_dir_ns+0x24b/0x2b0
[  761.119704][ T5984]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  761.119718][ T5984]  ? find_held_lock+0x2b/0x80
[  761.119734][ T5984]  ? do_raw_spin_unlock+0x172/0x230
[  761.119755][ T5984]  kobject_add_internal+0x2c4/0x9b0
[  761.119771][ T5984]  kobject_add+0x16e/0x240
[  761.119783][ T5984]  ? __pfx_kobject_add+0x10/0x10
[  761.119796][ T5984]  ? do_raw_spin_unlock+0x172/0x230
[  761.119816][ T5984]  ? kobject_put+0xab/0x5a0
[  761.119833][ T5984]  device_add+0x288/0x1aa0
[  761.119846][ T5984]  ? __pfx_dev_set_name+0x10/0x10
[  761.119861][ T5984]  ? __pfx_device_add+0x10/0x10
[  761.119873][ T5984]  ? mgmt_send_event_skb+0x2fb/0x460
[  761.119893][ T5984]  hci_conn_add_sysfs+0x17e/0x230
[  761.119910][ T5984]  le_conn_complete_evt+0x1260/0x2150
[  761.119929][ T5984]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  761.119942][ T5984]  ? hci_event_packet+0x459/0x11c0
[  761.119961][ T5984]  hci_le_conn_complete_evt+0x23c/0x370
[  761.119979][ T5984]  hci_le_meta_evt+0x357/0x5e0
[  761.119995][ T5984]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  761.120011][ T5984]  hci_event_packet+0x682/0x11c0
[  761.120026][ T5984]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  761.120042][ T5984]  ? __pfx_hci_event_packet+0x10/0x10
[  761.120060][ T5984]  ? kcov_remote_start+0x3d9/0x6d0
[  761.120080][ T5984]  hci_rx_work+0x2c5/0x16b0
[  761.120097][ T5984]  ? rcu_is_watching+0x12/0xc0
[  761.120111][ T5984]  process_one_work+0x9cc/0x1b70
[  761.120128][ T5984]  ? __pfx_process_one_work+0x10/0x10
[  761.120143][ T5984]  ? assign_work+0x1a0/0x250
[  761.120162][ T5984]  worker_thread+0x6c8/0xf10
[  761.120179][ T5984]  ? __pfx_worker_thread+0x10/0x10
[  761.120190][ T5984]  kthread+0x3c2/0x780
[  761.120207][ T5984]  ? __pfx_kthread+0x10/0x10
[  761.120224][ T5984]  ? rcu_is_watching+0x12/0xc0
[  761.120236][ T5984]  ? __pfx_kthread+0x10/0x10
[  761.120253][ T5984]  ret_from_fork+0x56d/0x730
[  761.120271][ T5984]  ? __pfx_kthread+0x10/0x10
[  761.120288][ T5984]  ret_from_fork_asm+0x1a/0x30
[  761.120310][ T5984]  </TASK>
[  761.120345][ T5984] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  761.205919][ T5984] Bluetooth: hci3: failed to register connection device
[  761.919751][ T6060] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  762.074650][T20310] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(16)
[  762.077215][T20310] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  762.081300][T20310] vhci_hcd vhci_hcd.0: Device attached
[  762.090430][T20310] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(19)
[  762.092623][T20310] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  762.095371][T20310] vhci_hcd vhci_hcd.0: Device attached
[  762.141611][T20313] vhci_hcd: connection closed
[  762.141841][  T170] vhci_hcd: stop threads
[  762.145004][  T170] vhci_hcd: release socket
[  762.148147][  T170] vhci_hcd: disconnect device
[  762.160546][ T6060] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  762.164225][ T6060] usb 6-1: config 0 has no interfaces?
[  762.167131][ T6060] usb 6-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  762.171876][ T6060] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  762.179755][ T6060] usb 6-1: config 0 descriptor??
[  762.255660][ T6196] vhci_hcd: vhci_device speed not set
[  762.315585][ T6196] usb 45-1: new full-speed USB device number 12 using vhci_hcd
[  762.735800][ T5984] Bluetooth: hci3: command tx timeout
[  764.130600][T20311] vhci_hcd: connection reset by peer
[  764.133912][   T41] vhci_hcd: stop threads
[  764.136244][   T41] vhci_hcd: release socket
[  764.138016][   T41] vhci_hcd: disconnect device
[  764.138260][T14873] usb 6-1: USB disconnect, device number 53
[  764.818042][ T5984] Bluetooth: hci3: command tx timeout
[  764.832620][T20337] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3577'.
[  764.959656][T20340] syz_tun: entered allmulticast mode
[  765.005753][  T841] usb 6-1: new low-speed USB device number 54 using dummy_hcd
[  765.113594][ T5984] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  765.118000][ T5984] CPU: 3 UID: 0 PID: 5984 Comm: kworker/u33:4 Not tainted syzkaller #0 PREEMPT(full) 
[  765.118027][ T5984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  765.118042][ T5984] Workqueue: hci3 hci_rx_work
[  765.118073][ T5984] Call Trace:
[  765.118081][ T5984]  <TASK>
[  765.118090][ T5984]  dump_stack_lvl+0x16c/0x1f0
[  765.118121][ T5984]  sysfs_warn_dup+0x7f/0xa0
[  765.118144][ T5984]  sysfs_create_dir_ns+0x24b/0x2b0
[  765.118166][ T5984]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  765.118186][ T5984]  ? find_held_lock+0x2b/0x80
[  765.118212][ T5984]  ? do_raw_spin_unlock+0x172/0x230
[  765.118243][ T5984]  kobject_add_internal+0x2c4/0x9b0
[  765.118269][ T5984]  kobject_add+0x16e/0x240
[  765.118288][ T5984]  ? __pfx_kobject_add+0x10/0x10
[  765.118309][ T5984]  ? do_raw_spin_unlock+0x172/0x230
[  765.118337][ T5984]  ? kobject_put+0xab/0x5a0
[  765.118364][ T5984]  device_add+0x288/0x1aa0
[  765.118390][ T5984]  ? __pfx_dev_set_name+0x10/0x10
[  765.118413][ T5984]  ? __pfx_device_add+0x10/0x10
[  765.118434][ T5984]  ? mgmt_send_event_skb+0x2fb/0x460
[  765.118481][ T5984]  hci_conn_add_sysfs+0x17e/0x230
[  765.118511][ T5984]  le_conn_complete_evt+0x1260/0x2150
[  765.118541][ T5984]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  765.118564][ T5984]  ? hci_event_packet+0x459/0x11c0
[  765.118596][ T5984]  hci_le_conn_complete_evt+0x23c/0x370
[  765.118628][ T5984]  hci_le_meta_evt+0x357/0x5e0
[  765.118654][ T5984]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  765.118682][ T5984]  hci_event_packet+0x682/0x11c0
[  765.118705][ T5984]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  765.118754][ T5984]  ? __pfx_hci_event_packet+0x10/0x10
[  765.118782][ T5984]  ? kcov_remote_start+0x3c9/0x6d0
[  765.118805][ T5984]  ? lockdep_hardirqs_on+0x7c/0x110
[  765.118833][ T5984]  hci_rx_work+0x2c5/0x16b0
[  765.118850][ T5984]  ? rcu_is_watching+0x12/0xc0
[  765.118864][ T5984]  process_one_work+0x9cc/0x1b70
[  765.118882][ T5984]  ? __pfx_process_one_work+0x10/0x10
[  765.118896][ T5984]  ? assign_work+0x1a0/0x250
[  765.118914][ T5984]  worker_thread+0x6c8/0xf10
[  765.118931][ T5984]  ? __pfx_worker_thread+0x10/0x10
[  765.118942][ T5984]  kthread+0x3c2/0x780
[  765.118959][ T5984]  ? __pfx_kthread+0x10/0x10
[  765.118976][ T5984]  ? rcu_is_watching+0x12/0xc0
[  765.118987][ T5984]  ? __pfx_kthread+0x10/0x10
[  765.119005][ T5984]  ret_from_fork+0x56d/0x730
[  765.119022][ T5984]  ? __pfx_kthread+0x10/0x10
[  765.119039][ T5984]  ret_from_fork_asm+0x1a/0x30
[  765.119061][ T5984]  </TASK>
[  765.119107][ T5984] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  765.207381][ T5984] Bluetooth: hci3: failed to register connection device
[  765.210281][  T841] usb 6-1: device descriptor read/64, error -71
[  765.465734][  T841] usb 6-1: new low-speed USB device number 55 using dummy_hcd
[  765.615950][  T841] usb 6-1: device descriptor read/64, error -71
[  765.735900][  T841] usb usb6-port1: attempt power cycle
[  765.862286][T20339] syz_tun: left allmulticast mode
[  766.105839][  T841] usb 6-1: new low-speed USB device number 56 using dummy_hcd
[  766.128350][  T841] usb 6-1: device descriptor read/8, error -71
[  766.391145][  T841] usb 6-1: new low-speed USB device number 57 using dummy_hcd
[  766.416635][  T841] usb 6-1: device descriptor read/8, error -71
[  766.527959][  T841] usb usb6-port1: unable to enumerate USB device
[  767.216082][T17795] Bluetooth: hci3: command tx timeout
[  767.339443][T20357] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  767.341644][T20357] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  767.344928][T20357] vhci_hcd vhci_hcd.0: Device attached
[  767.349272][T20357] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(19)
[  767.351762][T20357] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  767.354281][T20357] vhci_hcd vhci_hcd.0: Device attached
[  767.364925][T20360] vhci_hcd: connection closed
[  767.364998][T20358] vhci_hcd: connection closed
[  767.368077][  T170] vhci_hcd: stop threads
[  767.368096][  T170] vhci_hcd: release socket
[  767.372480][  T170] vhci_hcd: disconnect device
[  767.374266][  T170] vhci_hcd: stop threads
[  767.376251][  T170] vhci_hcd: release socket
[  767.378687][  T170] vhci_hcd: disconnect device
[  767.455729][ T6196] vhci_hcd: vhci_device speed not set
[  767.480287][T20367] FAULT_INJECTION: forcing a failure.
[  767.480287][T20367] name failslab, interval 1, probability 0, space 0, times 0
[  767.484924][T20367] CPU: 3 UID: 0 PID: 20367 Comm: syz.5.3585 Not tainted syzkaller #0 PREEMPT(full) 
[  767.484941][T20367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  767.484949][T20367] Call Trace:
[  767.484954][T20367]  <TASK>
[  767.484960][T20367]  dump_stack_lvl+0x16c/0x1f0
[  767.484983][T20367]  should_fail_ex+0x512/0x640
[  767.485004][T20367]  should_failslab+0xc2/0x120
[  767.485020][T20367]  __kmalloc_cache_noprof+0x6a/0x3e0
[  767.485032][T20367]  ? do_raw_spin_lock+0x12c/0x2b0
[  767.485049][T20367]  ? find_held_lock+0x2b/0x80
[  767.485065][T20367]  ? async_schedule_node_domain+0x54/0x120
[  767.485081][T20367]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  767.485098][T20367]  async_schedule_node_domain+0x54/0x120
[  767.485114][T20367]  dev_cache_fw_image+0x38e/0x490
[  767.485130][T20367]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  767.485148][T20367]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  767.485163][T20367]  dpm_for_each_dev+0x5d/0xb0
[  767.485177][T20367]  fw_pm_notify+0x81/0x150
[  767.485191][T20367]  notifier_call_chain+0xb9/0x410
[  767.485205][T20367]  ? __pfx_fw_pm_notify+0x10/0x10
[  767.485222][T20367]  blocking_notifier_call_chain_robust+0xc8/0x160
[  767.485238][T20367]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  767.485255][T20367]  ? do_raw_spin_unlock+0x172/0x230
[  767.485276][T20367]  pm_notifier_call_chain_robust+0x27/0x60
[  767.485292][T20367]  snapshot_open+0x189/0x2b0
[  767.485305][T20367]  ? __pfx_snapshot_open+0x10/0x10
[  767.485319][T20367]  misc_open+0x35d/0x420
[  767.485334][T20367]  ? __pfx_misc_open+0x10/0x10
[  767.485347][T20367]  chrdev_open+0x234/0x6a0
[  767.485363][T20367]  ? __pfx_apparmor_file_open+0x10/0x10
[  767.485376][T20367]  ? __pfx_chrdev_open+0x10/0x10
[  767.485392][T20367]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  767.485409][T20367]  do_dentry_open+0x982/0x1530
[  767.485423][T20367]  ? __pfx_chrdev_open+0x10/0x10
[  767.485441][T20367]  vfs_open+0x82/0x3f0
[  767.485475][T20367]  path_openat+0x1de4/0x2cb0
[  767.485495][T20367]  ? __pfx_path_openat+0x10/0x10
[  767.485510][T20367]  ? __lock_acquire+0xb97/0x1ce0
[  767.485527][T20367]  do_filp_open+0x20b/0x470
[  767.485540][T20367]  ? __pfx_do_filp_open+0x10/0x10
[  767.485565][T20367]  ? _raw_spin_unlock+0x28/0x50
[  767.485580][T20367]  ? alloc_fd+0x471/0x7d0
[  767.485597][T20367]  do_sys_openat2+0x11b/0x1d0
[  767.485614][T20367]  ? __pfx_do_sys_openat2+0x10/0x10
[  767.485633][T20367]  ? __fget_files+0x20e/0x3c0
[  767.485645][T20367]  ? handle_mm_fault+0x240/0xd10
[  767.485659][T20367]  __ia32_compat_sys_openat+0x16d/0x210
[  767.485672][T20367]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  767.485690][T20367]  ? ksys_write+0x1ac/0x250
[  767.485713][T20367]  ? rcu_is_watching+0x12/0xc0
[  767.485732][T20367]  __do_fast_syscall_32+0x7c/0x300
[  767.485751][T20367]  do_fast_syscall_32+0x32/0x80
[  767.485765][T20367]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  767.485780][T20367] RIP: 0023:0xf709e579
[  767.485790][T20367] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  767.485807][T20367] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  767.485824][T20367] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000680
[  767.485835][T20367] RDX: 0000000000047e00 RSI: 0000000000000019 RDI: 0000000000000000
[  767.485841][T20367] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  767.485848][T20367] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  767.485854][T20367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  767.485870][T20367]  </TASK>
[  767.545711][T14873] usb 9-1: new full-speed USB device number 20 using dummy_hcd
[  767.554357][T20367] 
[  767.610073][T20367] ============================================
[  767.612116][T20367] WARNING: possible recursive locking detected
[  767.614094][T20367] syzkaller #0 Not tainted
[  767.615855][T20367] --------------------------------------------
[  767.619465][T20367] syz.5.3585/20367 is trying to acquire lock:
[  767.621367][T20367] ffffffff8f51dc28 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x4e/0x640
[  767.624402][T20367] 
[  767.624402][T20367] but task is already holding lock:
[  767.627293][T20367] ffffffff8f51dc28 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  767.630105][T20367] 
[  767.630105][T20367] other info that might help us debug this:
[  767.632578][T20367]  Possible unsafe locking scenario:
[  767.632578][T20367] 
[  767.634831][T20367]        CPU0
[  767.635844][T20367]        ----
[  767.636875][T20367]   lock(fw_lock);
[  767.638088][T20367]   lock(fw_lock);
[  767.639333][T20367] 
[  767.639333][T20367]  *** DEADLOCK ***
[  767.639333][T20367] 
[  767.641787][T20367]  May be due to missing lock nesting notation
[  767.641787][T20367] 
[  767.644500][T20367] 5 locks held by syz.5.3585/20367:
[  767.646336][T20367]  #0: ffffffff8f3080a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  767.649392][T20367]  #1: ffffffff8e484c88 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0
[  767.652597][T20367]  #2: ffffffff8e4c50f0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[  767.656185][T20367]  #3: ffffffff8f51dc28 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  767.658959][T20367]  #4: ffffffff8f518628 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[  767.661779][T20367] 
[  767.661779][T20367] stack backtrace:
[  767.663640][T20367] CPU: 3 UID: 0 PID: 20367 Comm: syz.5.3585 Not tainted syzkaller #0 PREEMPT(full) 
[  767.663654][T20367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  767.663661][T20367] Call Trace:
[  767.663668][T20367]  <TASK>
[  767.663675][T20367]  dump_stack_lvl+0x116/0x1f0
[  767.663695][T20367]  print_deadlock_bug+0x1e9/0x240
[  767.663710][T20367]  __lock_acquire+0x1133/0x1ce0
[  767.663726][T20367]  ? kasan_save_track+0x14/0x30
[  767.663740][T20367]  lock_acquire+0x179/0x350
[  767.663754][T20367]  ? assign_fw+0x4e/0x640
[  767.663769][T20367]  ? __pfx___might_resched+0x10/0x10
[  767.663780][T20367]  ? path_openat+0x1de4/0x2cb0
[  767.663793][T20367]  ? do_filp_open+0x20b/0x470
[  767.663805][T20367]  ? do_sys_openat2+0x11b/0x1d0
[  767.663822][T20367]  ? assign_fw+0x4e/0x640
[  767.663836][T20367]  __mutex_lock+0x193/0x1060
[  767.663846][T20367]  ? assign_fw+0x4e/0x640
[  767.663861][T20367]  ? __pfx___mutex_lock+0x10/0x10
[  767.663873][T20367]  ? kasan_quarantine_put+0x10a/0x240
[  767.663885][T20367]  ? lockdep_hardirqs_on+0x7c/0x110
[  767.663902][T20367]  ? assign_fw+0x4e/0x640
[  767.663916][T20367]  assign_fw+0x4e/0x640
[  767.663929][T20367]  ? _request_firmware+0x957/0x1470
[  767.663945][T20367]  _request_firmware+0x988/0x1470
[  767.663962][T20367]  ? __pfx__request_firmware+0x10/0x10
[  767.663977][T20367]  ? dump_stack_lvl+0x197/0x1f0
[  767.663994][T20367]  ? dump_stack_lvl+0x1a3/0x1f0
[  767.664011][T20367]  __async_dev_cache_fw_image+0xb1/0x340
[  767.664027][T20367]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  767.664043][T20367]  ? mark_held_locks+0x49/0x80
[  767.664057][T20367]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  767.664073][T20367]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  767.664089][T20367]  async_schedule_node_domain+0xd4/0x120
[  767.664104][T20367]  dev_cache_fw_image+0x38e/0x490
[  767.664119][T20367]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  767.664138][T20367]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  767.664153][T20367]  dpm_for_each_dev+0x5d/0xb0
[  767.664166][T20367]  fw_pm_notify+0x81/0x150
[  767.664179][T20367]  notifier_call_chain+0xb9/0x410
[  767.664193][T20367]  ? __pfx_fw_pm_notify+0x10/0x10
[  767.664207][T20367]  blocking_notifier_call_chain_robust+0xc8/0x160
[  767.664222][T20367]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  767.664238][T20367]  ? do_raw_spin_unlock+0x172/0x230
[  767.664257][T20367]  pm_notifier_call_chain_robust+0x27/0x60
[  767.664272][T20367]  snapshot_open+0x189/0x2b0
[  767.664285][T20367]  ? __pfx_snapshot_open+0x10/0x10
[  767.664299][T20367]  misc_open+0x35d/0x420
[  767.664313][T20367]  ? __pfx_misc_open+0x10/0x10
[  767.664326][T20367]  chrdev_open+0x234/0x6a0
[  767.664340][T20367]  ? __pfx_apparmor_file_open+0x10/0x10
[  767.664354][T20367]  ? __pfx_chrdev_open+0x10/0x10
[  767.664368][T20367]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  767.664383][T20367]  do_dentry_open+0x982/0x1530
[  767.664396][T20367]  ? __pfx_chrdev_open+0x10/0x10
[  767.664411][T20367]  vfs_open+0x82/0x3f0
[  767.664428][T20367]  path_openat+0x1de4/0x2cb0
[  767.664443][T20367]  ? __pfx_path_openat+0x10/0x10
[  767.664456][T20367]  ? __lock_acquire+0xb97/0x1ce0
[  767.664471][T20367]  do_filp_open+0x20b/0x470
[  767.664484][T20367]  ? __pfx_do_filp_open+0x10/0x10
[  767.664501][T20367]  ? _raw_spin_unlock+0x28/0x50
[  767.664515][T20367]  ? alloc_fd+0x471/0x7d0
[  767.664528][T20367]  do_sys_openat2+0x11b/0x1d0
[  767.664544][T20367]  ? __pfx_do_sys_openat2+0x10/0x10
[  767.664562][T20367]  ? __fget_files+0x20e/0x3c0
[  767.664573][T20367]  ? handle_mm_fault+0x240/0xd10
[  767.664586][T20367]  __ia32_compat_sys_openat+0x16d/0x210
[  767.664597][T20367]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  767.664607][T20367]  ? ksys_write+0x1ac/0x250
[  767.664620][T20367]  ? rcu_is_watching+0x12/0xc0
[  767.664633][T20367]  __do_fast_syscall_32+0x7c/0x300
[  767.664645][T20367]  do_fast_syscall_32+0x32/0x80
[  767.664655][T20367]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  767.664670][T20367] RIP: 0023:0xf709e579
[  767.664680][T20367] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  767.664692][T20367] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  767.664702][T20367] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000680
[  767.664710][T20367] RDX: 0000000000047e00 RSI: 0000000000000019 RDI: 0000000000000000
[  767.664716][T20367] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  767.664723][T20367] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  767.664729][T20367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  767.664739][T20367]  </TASK>
[  767.747769][T14873] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  767.821733][T14873] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[  767.824673][T14873] usb 9-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  767.827865][T14873] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0

VM DIAGNOSIS:
02:42:36  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000c0d7fc RBX=0000000000000000 RCX=ffffffff8b91db29 RDX=ffffed1005646656
RSI=ffffffff8c163700 RDI=ffffffff8190cb71 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90abad90 R15=0000000000000000
RIP=ffffffff8b91c66f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f722a3e0 CR3=00000000786d5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000013e64e4 RBX=0000000000000001 RCX=ffffffff8b91db29 RDX=ffffed1005666656
RSI=ffffffff8c163700 RDI=ffffffff8190cb71 RBP=ffffed1003bdb488 RSP=ffffc9000046fdf8
R8 =0000000000000000 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=ffffffff9b010e78
R12=0000000000000001 R13=ffff88801deda440 R14=ffffffff90abad90 R15=0000000000000000
RIP=ffffffff8b91c66f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880975b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7456288 CR3=0000000064826000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b541d00 RCX=ffffffff81af1051 RDX=ffff8880252a0000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90002be7518
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=ffffed10056a83a1 R14=0000000000000001 R15=0000000000000003
RIP=ffffffff81bb017b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fae2ad4d300 ffffffff 00c00000
GS =0000 ffff8880976b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080000040 CR3=000000004bd9b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 020599fec0020008 00060176b6000000 0408060599fed803 4080808080808808
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 da8008000a980300 08000a900309c4da 8008000a88030008 000a80030bdefff8
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 88030fffffffff02 0480030fffffffff 020a800200080000 0800080176d209c4
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a003020800049803 408008000f880301 a180020f80030f80 0204900300080004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000001000800 0480020100000208 06060156d8000800 04b00300080004a8
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030fffffffff0204 a003020800049803 408008000f880301 a180020f80030f80
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0204900300080004 88030fffffffff02 0480030fffffffff 020a800200080000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800080176d209c4 da8008000a980300 08000a900309c4da 8008000a88030008
ZMM25=41b729c641b729c6 41b729c641b729c6 41b729c641b729c6 41b729c641b729c6 41b729c641b729c6 41b729c641b729c6 41b729c641b729c6 41b729c641b729c6
ZMM26=7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0 7c3705b07c3705b0
ZMM27=bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20 bc639f20bc639f20
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=611a0000611a0000 611a0000611a0000 611a0000611a0000 611a0000611a0000 611a0000611a0000 611a0000611a0000 611a0000611a0000 611a0000611a0000
info registers vcpu 3

CPU#3
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561ebe5 RDI=ffffffff9b103780 RBP=ffffffff9b103740 RSP=ffffc90007006ce8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff9b103740 R15=ffffffff8561eb80
RIP=ffffffff8561ec0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f548dfac CR3=0000000061d2c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000