last executing test programs:

2m53.49370893s ago: executing program 0 (id=6915):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
write$char_usb(r1, &(0x7f0000000100)="05", 0x1)
write$char_usb(r1, &(0x7f0000000bc0)="be", 0x1)
syz_usb_disconnect(0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$SOUND_MIXER_WRITE_RECSRC(0xffffffffffffffff, 0xc0044dff, &(0x7f0000000100)=0x9)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x10001, 0x0, 0x0)

2m53.417472452s ago: executing program 0 (id=6916):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000340)="1c0000001d005f0214fffffffffffff8070000000d00000000000700", 0x1c)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=@newsa={0x138, 0x1a, 0x7, 0xfffffffd, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, @in=@multicast1, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@loopback, 0x0, 0x2b}, @in6=@private0, {0x0, 0xb400, 0x2, 0xfeffff7f00000000}, {0x0, 0x200000, 0x7, 0xfffffffffffffffd}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c800}, 0x0)
r3 = openat$cuse(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000c40)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r3, &(0x7f0000000180)={0x10, 0x0, r4}, 0x10)
r5 = openat(0xffffffffffffff9c, 0x0, 0x24c01, 0xe2)
lseek(r5, 0x1, 0x1)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xcc, 0xcc, 0x2, [@enum64={0xa, 0x7, 0x0, 0x13, 0x1, 0x1, [{0xa, 0x8001, 0xffffffff}, {0x1, 0x81, 0x9}, {0xb, 0xb0, 0x4}, {0x4, 0x7fffffff, 0x5}, {0x1, 0x6, 0x10000}, {0xe, 0xffff, 0x4}, {0x4, 0x2, 0xe7e0}]}, @float={0x7, 0x0, 0x0, 0x10, 0x4}, @func={0x5, 0x0, 0x0, 0xc, 0x4}, @type_tag={0xf, 0x0, 0x0, 0x12, 0x4}, @float={0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x5}}, @enum64={0x7, 0x2, 0x0, 0x13, 0x0, 0x1, [{0x8, 0xe4, 0x2}, {0x8, 0x40, 0x9}]}]}}, &(0x7f0000002c80)=""/4096, 0xe6, 0x1000, 0x0, 0x1ff, 0x10000, @value=r5}, 0x28)
mount$9p_virtio(&(0x7f00000002c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ftruncate(r6, 0x5)

2m52.418996407s ago: executing program 0 (id=6920):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x800000}, 0x18)
r4 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r5=>0x0})
futex(&(0x7f0000000300)=0x1, 0x8, 0x1, &(0x7f0000000500), &(0x7f0000000540)=0x1, 0x2)
bind$can_j1939(r4, &(0x7f0000000040)={0x1d, r5, 0x8000000000000003}, 0x18)
prlimit64(r0, 0x4, &(0x7f00000001c0)={0x6, 0x6400}, &(0x7f0000000280))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x1ff)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
clock_gettime(0xfffffffffffffff1, &(0x7f0000000000))
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r6, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a74000000060a0b04000000000000000002000003480004802800018007000100637400001c0002800500030001000000080001400000001708000240000000011c0001800a00010072656469720000000c00028008090040000000170900010073797a30000000000900020073797a32"], 0x9c}, 0x1, 0x0, 0x0, 0x24004050}, 0x4010)

2m51.13351231s ago: executing program 0 (id=6923):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x9)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000280)={0x1, 0x0, [{0x215, 0x0, 0x7}]})
fchdir(r2)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r2)
syz_open_dev$video4linux(&(0x7f00000002c0), 0x10000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, 0x2a, 0x107, 0xfffffffd, 0x0, {0x1, 0x7c}, [@nested={0x8, 0x17, 0x0, 0x1, [@generic="6b54e1a6"]}]}, 0x1c}}, 0x8010)
r7 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x20, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}, [@ldst={0x1, 0x3, 0x3, 0x0, 0x1}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r9 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r9, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r9, 0x0)
syz_usb_control_io$cdc_ncm(r7, 0x0, &(0x7f0000000400)={0x24, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x20, 0x80, 0x1c, {0x1, 0x3ff, 0x2, 0x2, 0xfffa, 0x3, 0x6, 0x1, 0x101, 0x3, 0xe, 0xfe1}}, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

2m49.212134971s ago: executing program 0 (id=6927):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$dsp(r2, 0x0, 0x0)
ioctl$SNDCTL_DSP_STEREO(r2, 0xc0045003, &(0x7f0000000080)=0x1)
sched_setattr(0x0, &(0x7f0000000300)={0x38, 0x0, 0x2, 0x9dec, 0x0, 0xd, 0x9, 0xc, 0x0, 0x6}, 0x0)
socket$kcm(0x2d, 0x2, 0x0)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TRIM(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x200400c0}, 0x4000010)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000080))
ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000040)=0xdfe5)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36)

2m45.996524661s ago: executing program 0 (id=6936):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff}) (async, rerun: 64)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async, rerun: 64)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='b'])
lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)=@random={'system.', '(\x00'}) (async)
syz_fuse_handle_req(r1, &(0x7f0000006400)="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", 0x2000, &(0x7f0000000440)={&(0x7f0000000200)={0x50, 0xffffffffffffffda, 0xffff, {0x7, 0x29, 0x7, 0x1021900, 0x5c9, 0x1, 0x8001, 0x5, 0x0, 0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
getdents64(r3, &(0x7f0000000100)=""/179, 0xb3) (async)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x7ffc, 0x8, '9P2000.u'}, 0x15)

2m30.346816598s ago: executing program 32 (id=6936):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff}) (async, rerun: 64)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async, rerun: 64)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='b'])
lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)=@random={'system.', '(\x00'}) (async)
syz_fuse_handle_req(r1, &(0x7f0000006400)="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", 0x2000, &(0x7f0000000440)={&(0x7f0000000200)={0x50, 0xffffffffffffffda, 0xffff, {0x7, 0x29, 0x7, 0x1021900, 0x5c9, 0x1, 0x8001, 0x5, 0x0, 0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
getdents64(r3, &(0x7f0000000100)=""/179, 0xb3) (async)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x7ffc, 0x8, '9P2000.u'}, 0x15)

18.038393845s ago: executing program 3 (id=7368):
unshare(0x22020600)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xe8)

17.931867029s ago: executing program 3 (id=7369):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
syz_emit_ethernet(0x3e, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000002380)=[@text32={0x20, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f00000002c0)="0f108fbe0b260f01ca642667363e36660f38cf0d008000000f01c266b9800000c00f326635004000000f30db17b803008ee0ba2000b018ee0f19cd66b93103000066b80e00000066ba000000000f30", 0x4f}], 0x1, 0x2f83396e2139f78a, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0xd1, 0x0, 0x0)
syz_usb_connect(0x3, 0xf5, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000280))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mlock(&(0x7f0000fe8000/0x1000)=nil, 0x1000)
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(0xffffffffffffffff, 0x3b70, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
io_uring_setup(0xf8c, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000002c0)=@x86={0x3, 0x0, 0x0, 0x0, 0xffffffff, 0xe, 0x8, 0xf2, 0xd5, 0x5, 0x6, 0x9, 0x0, 0x6adc01cd, 0x1, 0x8, 0x7, 0xa, 0x19, '\x00', 0x9, 0x7})

17.292296684s ago: executing program 3 (id=7374):
unshare(0x28000600)
unshare(0x8000280)

17.292049321s ago: executing program 3 (id=7375):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000340)={0x8, 0x8169, 0x6})
syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000280), 0x0, 0x149000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_LIST(r1, 0x0, 0x20000004)
setpgid(r2, 0x0)
setpgid(0x0, r2)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x7, &(0x7f0000000700)=ANY=[@ANYBLOB="180000000000000000000000000000008510fffffeffffffffff0000c8decb60969b2822e29f9e2f16091143fae0d1c0cd418dd2728131a6328849b71eeb0f834513756e7f50b9ed92e2490453a180972ccb8882bdd576d82e08927cc982d6738e1bda16fc914ce7303f63c3487cec718bcdf518c7f3e2062a8b987837028e7b24a3e8069d0f43af0410c465", @ANYRES32, @ANYBLOB], &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x94)
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
copy_file_range(r4, &(0x7f0000000000)=0x9, r1, &(0x7f0000000100)=0x5, 0x10001, 0x0)
ioctl$AUTOFS_IOC_READY(r4, 0x9360, 0x800000000000001)

17.152322023s ago: executing program 3 (id=7376):
r0 = syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xcfca, 0x1042, 0x6, 0x354}, &(0x7f00000001c0), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000200), 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0x0)

16.602222873s ago: executing program 3 (id=7379):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000240)={0x0, 0x401, 0xc, 0xffffffc7}, 0x10)

16.522998547s ago: executing program 33 (id=7379):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000240)={0x0, 0x401, 0xc, 0xffffffc7}, 0x10)

2.180286972s ago: executing program 4 (id=7489):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "001a00", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)

2.10208387s ago: executing program 4 (id=7490):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10100c0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESOCT, @ANYRESDEC])

2.101908674s ago: executing program 4 (id=7492):
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f0000000980)={{0xfffffffffffffff5, 0x401}, {0xfffffffffffffffc, 0x1}, 0x400006, 0x6})
r0 = io_uring_setup(0x115c, &(0x7f0000000440)={0x0, 0x8270, 0x40, 0x3, 0x117})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000640)=[{0x0}], 0x178)

2.041262008s ago: executing program 4 (id=7494):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x20)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@arm64={0x8, 0x2, 0x2, '\x00', 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.791996488s ago: executing program 4 (id=7500):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x3, 0x3ffdcf, 0x7ff}, 0x48)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

1.791830388s ago: executing program 4 (id=7501):
socket$kcm(0xa, 0x3, 0x3a)
r0 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)=0x7)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x1000000000000, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_RESET(r2, 0x4141, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0xb00000000065808, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r5)
signalfd(r3, 0x0, 0x0)
getsockopt$inet6_mreq(r3, 0x29, 0x1c, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)

682.092126ms ago: executing program 1 (id=7517):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x20)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@arm64={0x8, 0x2, 0x2, '\x00', 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

681.918908ms ago: executing program 5 (id=7519):
syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f00000005c0)={0x0, 0x3, 0x10100, 0x0, 0x204}, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

612.373379ms ago: executing program 5 (id=7520):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000340)={0x3, {{0x2, 0x0, @multicast1}}, {{0x2, 0x400, @loopback}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000480)={0x3, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @multicast2=0x7f000001}}}, 0x108)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc}, [@jmp={0x6, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffe, 0x1}, @printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r2)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="40010000", @ANYRES16=r3, @ANYBLOB="010028bd7000fbdbdf250f0000000c0009800800010005000000040003803c00078008000100400000000c001a0081000000"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r1}, 0x10)

522.214716ms ago: executing program 5 (id=7521):
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000480), 0x80002, 0x0)
r1 = syz_io_uring_setup(0x106, &(0x7f0000000140)={0x0, 0x5883, 0x0, 0x0, 0xfffffdfc}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000080), &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000200)="d82f3b3f57", 0x5, r0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x40810}, 0x4084)
keyctl$revoke(0x3, r0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a2c000000080a050000000000000000000200000000000900010073797a300000000014000000110001000000000000000000030000"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

521.627183ms ago: executing program 1 (id=7522):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x3a0, 0xffffffff, 0xf0, 0x0, 0x0, 0xfeffffff, 0xffffffff, 0x318, 0x318, 0x318, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x1, 0x35, {0x3}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x3d, {0x6}}}}, {{@ipv6={@private0, @loopback, [0xff, 0x0, 0xff000000, 0xff000000], [0x0, 0xff, 0xff000000, 0xffffff00], 'team0\x00', 'batadv_slave_0\x00', {0xff}, {}, 0xff, 0xe7, 0x4, 0x44}, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x0, 0x2, {0x7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a54000000030a0fdb00000000000000000a0060050900030073797a30000000000900010073797a310000000014000480080002403cb140bb08000140000000030a000700726f757465000000080005400000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000500)={0xa, 0x4e23, 0x3, @empty, 0x5}, 0x1c)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)

441.584761ms ago: executing program 1 (id=7523):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="160000000000000004000000ffff000000000000", @ANYRES32=0x1, @ANYBLOB="00000000000000000000ca140000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r0}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2, r1, 0x4}, 0x38)

441.300226ms ago: executing program 5 (id=7525):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0, 0x1a, 0x0, 0x1}, 0x28)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',', @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf251000000001000000", @ANYRES32=0x0, @ANYBLOB="06001100"], 0x2c}, 0x1, 0x0, 0x0, 0x40850}, 0x40000080)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_TIMEOUT(r2, 0x2201, &(0x7f0000000080)=0xd)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r3, 0xc0105500, &(0x7f0000000040)={0x0, 0x3, 0x1, 0x0, 0x0, 0x7, 0x0})
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB="101300002d00090036bd70000100000004000000cb011180c708605db77f3d26f671ad21be30dd7313f3b3cefa172a8aae2f295c3c294bca6d5ac23ec72b4790117e2a87b7eb9a6241d13ce67109590f5b19a8135990302dc161"], 0x1310}, 0x1, 0x0, 0x0, 0x20000004}, 0x8000)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x24, 0x3d, 0x107, 0x70bd27, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @pid}]}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x40084)

381.706376ms ago: executing program 5 (id=7526):
pipe(&(0x7f0000000400))
socket$inet(0xa, 0x3, 0xc)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x2}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

381.483327ms ago: executing program 1 (id=7528):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)

381.444005ms ago: executing program 2 (id=7529):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xb, 0x2, &(0x7f0000006680))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)

321.839669ms ago: executing program 5 (id=7530):
syz_open_procfs$pagemap(0x0, &(0x7f00000000c0))
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x28a400)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x42, 0x0)
socket$inet(0x2, 0x3, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r1, @ANYRES16=r0, @ANYRESHEX], 0x0)

320.907305ms ago: executing program 1 (id=7531):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x20)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@arm64={0x8, 0x2, 0x2, '\x00', 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

320.807476ms ago: executing program 2 (id=7532):
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r0, &(0x7f0000000000)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, 0x1, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x40)

261.709727ms ago: executing program 2 (id=7533):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x6c, r2, 0xb7a006d1969b963b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x4d, 0x33, @probe_request={{{}, {0x3}, @broadcast, @device_b}, @val={0x0, 0x6, @default_ibss_ssid}, @val, @val={0x3, 0x1, 0xb3}, @val={0x2d, 0x1a, {0x8802, 0x3, 0x6, 0x0, {0x6, 0xd, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x400, 0x95ce, 0xe9}}, @val={0x72, 0x6}}}]}, 0x6c}}, 0x14)

261.548436ms ago: executing program 2 (id=7534):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$P9_RLERRORu(r0, &(0x7f0000000240)=ANY=[], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x20, 0x10012, r0, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

839.086µs ago: executing program 2 (id=7535):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@ifindex, 0xffffffffffffffff, 0x1b, 0x2008}, 0x20)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000007b080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000500)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x9}, 0x94)

111.51µs ago: executing program 1 (id=7536):
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000100), 0x2)
r2 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2)
ftruncate(r2, 0xffff)
fcntl$addseals(r2, 0x409, 0x7)
r3 = ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000140)={r2, 0x1, 0x8000, 0x4000})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000007, 0x11, r3, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

0s ago: executing program 2 (id=7537):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}, @IFLA_GENEVE_TOS={0x5, 0x4, 0x2}]}}}]}, 0x40}}, 0x0)

kernel console output (not intermixed with test programs):

ing ep0 maxpacket: 32
[ 1806.894659][T31590] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[ 1806.898360][T31590] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1806.904012][T31590] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1806.908942][T31590] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1806.916775][T31590] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1806.923348][T31590] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1806.927813][T31590] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1806.932388][T31590] usb 9-1: Product: syz
[ 1806.934323][T31590] usb 9-1: Manufacturer: syz
[ 1806.936420][T31590] usb 9-1: SerialNumber: syz
[ 1806.948528][T31590] usb 9-1: config 0 descriptor??
[ 1806.954529][T31590] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1806.969522][T31590] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1807.074626][T23891] usb 40-1: SetAddress Request (79) to port 0
[ 1807.077940][T23891] usb 40-1: new SuperSpeed USB device number 79 using vhci_hcd
[ 1807.674157][T31608] vhci_hcd: connection reset by peer
[ 1807.676646][ T6356] vhci_hcd vhci_hcd.1: stop threads
[ 1807.684643][ T6356] vhci_hcd vhci_hcd.1: release socket
[ 1807.687136][ T6356] vhci_hcd vhci_hcd.1: disconnect device
[ 1807.770261][ T5955] Bluetooth: hci3: command tx timeout
[ 1808.800146][ T6012] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[ 1808.833769][T22970] usb 9-1: USB disconnect, device number 2
[ 1808.833877][    C1] ldusb 9-1:0.0: usb_submit_urb failed (-19)
[ 1808.839104][T31601] ldusb 9-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[ 1808.842820][T22970] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[ 1808.850137][T31638] ldusb: No device or device unplugged -19
[ 1808.950567][ T6012] usb 6-1: Using ep0 maxpacket: 32
[ 1808.954334][ T6012] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[ 1808.957670][ T6012] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1808.963088][ T6012] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1808.966845][ T6012] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1808.971905][ T6012] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1808.976505][ T6012] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1808.980456][ T6012] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1808.986590][ T6012] usb 6-1: Product: syz
[ 1808.988447][ T6012] usb 6-1: Manufacturer: syz
[ 1808.991019][ T6012] usb 6-1: SerialNumber: syz
[ 1808.997728][ T6012] usb 6-1: config 0 descriptor??
[ 1809.003536][ T6012] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1809.009510][ T6012] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1809.222970][T31643] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6993'.
[ 1809.860807][ T5955] Bluetooth: hci3: command tx timeout
[ 1811.928993][T31677] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1811.940451][ T5955] Bluetooth: hci3: command tx timeout
[ 1812.170335][T23891] usb 40-1: device descriptor read/8, error -110
[ 1812.560964][T23891] usb usb40-port1: attempt power cycle
[ 1813.131051][T23891] usb usb40-port1: unable to enumerate USB device
[ 1813.179866][T31681] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1813.182568][T31681] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1813.186771][T31681] vhci_hcd vhci_hcd.0: Device attached
[ 1813.203308][T31681] Invalid option length (1047552) for dns_resolver key
[ 1813.480145][T28980] usb 46-1: SetAddress Request (2) to port 0
[ 1813.482517][T28980] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1813.804193][T31682] vhci_hcd: connection reset by peer
[ 1813.806342][T27057] vhci_hcd vhci_hcd.4: stop threads
[ 1813.808272][T27057] vhci_hcd vhci_hcd.4: release socket
[ 1813.810340][T27057] vhci_hcd vhci_hcd.4: disconnect device
[ 1814.476003][T31690] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7004'.
[ 1814.650605][T31637] ldusb 6-1:0.0: Couldn't submit HID_REQ_SET_REPORT -110
[ 1814.700930][   T29] usb 6-1: USB disconnect, device number 67
[ 1814.707146][   T29] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1814.846461][T31698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7006'.
[ 1815.908517][   T40] audit: type=1326 audit(2000001122.979:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1815.916942][   T40] audit: type=1326 audit(2000001122.989:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.933265][   T40] audit: type=1326 audit(2000001122.989:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.940697][   T40] audit: type=1326 audit(2000001122.989:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.949704][   T40] audit: type=1326 audit(2000001122.989:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.956774][   T40] audit: type=1326 audit(2000001122.989:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.965701][   T40] audit: type=1326 audit(2000001122.989:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.974813][   T40] audit: type=1326 audit(2000001122.989:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70cd598 code=0x7ffc0000
[ 1815.983934][   T40] audit: type=1326 audit(2000001122.989:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1815.992763][   T40] audit: type=1326 audit(2000001122.989:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31700 comm="syz.2.7007" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1816.160203][ T6012] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[ 1816.311457][ T6012] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1816.315281][ T6012] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1816.341568][ T6012] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1816.346563][ T6012] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1816.360438][ T6012] usb 6-1: Product: syz
[ 1816.362338][ T6012] usb 6-1: Manufacturer: syz
[ 1816.364396][ T6012] usb 6-1: SerialNumber: syz
[ 1816.379970][ T6012] usb 6-1: config 0 descriptor??
[ 1816.391589][ T6012] usb 6-1: selecting invalid altsetting 0
[ 1816.538835][T31717] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1816.586721][T31708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1816.590456][T31708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1816.710420][T31719] siw: device registration error -23
[ 1818.211733][   T55] usb 6-1: USB disconnect, device number 68
[ 1818.996716][T28980] usb 46-1: device descriptor read/8, error -110
[ 1819.280187][ T6012] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[ 1819.412223][T28980] usb usb46-port1: attempt power cycle
[ 1819.460926][ T6012] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1819.471957][ T6012] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 1819.474785][ T6012] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1819.478658][ T6012] usb 6-1: Product: syz
[ 1819.480164][ T6012] usb 6-1: Manufacturer: syz
[ 1819.481883][ T6012] usb 6-1: SerialNumber: syz
[ 1819.484497][T31734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7017'.
[ 1819.718584][ T6012] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 69 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 1819.765141][T31739] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7018'.
[ 1819.996282][T28980] usb usb46-port1: unable to enumerate USB device
[ 1820.068526][T31748] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7019'.
[ 1820.741592][T31752] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[ 1820.744106][T31752] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1820.747993][T31752] vhci_hcd vhci_hcd.0: Device attached
[ 1820.964046][T31759] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7021'.
[ 1821.010385][   T29] usb 46-1: SetAddress Request (6) to port 0
[ 1821.012724][   T29] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1821.562015][T31753] vhci_hcd: connection reset by peer
[ 1821.564678][T27057] vhci_hcd vhci_hcd.4: stop threads
[ 1821.567316][T27057] vhci_hcd vhci_hcd.4: release socket
[ 1821.569331][T27057] vhci_hcd vhci_hcd.4: disconnect device
[ 1821.689611][T31763] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7022'.
[ 1821.850225][T20804] Bluetooth: hci3: command 0x0405 tx timeout
[ 1822.054993][ T6044] usb 6-1: USB disconnect, device number 69
[ 1822.065419][ T6044] usblp0: removed
[ 1822.148064][T31770] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7026'.
[ 1822.508601][T31779] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7028'.
[ 1823.771157][T31785] FAULT_INJECTION: forcing a failure.
[ 1823.771157][T31785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1823.776245][T31785] CPU: 1 UID: 0 PID: 31785 Comm: syz.4.7031 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1823.776275][T31785] Tainted: [L]=SOFTLOCKUP
[ 1823.776280][T31785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1823.776287][T31785] Call Trace:
[ 1823.776291][T31785]  <TASK>
[ 1823.776296][T31785]  dump_stack_lvl+0x16c/0x1f0
[ 1823.776316][T31785]  should_fail_ex+0x512/0x640
[ 1823.776332][T31785]  _copy_from_user+0x2e/0xd0
[ 1823.776345][T31785]  vmci_host_unlocked_ioctl+0x789/0x2040
[ 1823.776360][T31785]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[ 1823.776376][T31785]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1823.776394][T31785]  ? do_vfs_ioctl+0x128/0x14f0
[ 1823.776408][T31785]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1823.776426][T31785]  ? find_held_lock+0x2b/0x80
[ 1823.776441][T31785]  ? hook_file_ioctl_common+0x144/0x410
[ 1823.776457][T31785]  ? __fget_files+0x20e/0x3c0
[ 1823.776472][T31785]  ? fput+0x70/0xf0
[ 1823.776484][T31785]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[ 1823.776497][T31785]  compat_ptr_ioctl+0x6e/0xa0
[ 1823.776510][T31785]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 1823.776523][T31785]  __ia32_compat_sys_ioctl+0x242/0x370
[ 1823.776538][T31785]  __do_fast_syscall_32+0xe8/0x680
[ 1823.776557][T31785]  do_fast_syscall_32+0x32/0x80
[ 1823.776575][T31785]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1823.776589][T31785] RIP: 0023:0xf705d579
[ 1823.776598][T31785] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1823.776610][T31785] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1823.776621][T31785] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000007b0
[ 1823.776628][T31785] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1823.776635][T31785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1823.776641][T31785] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1823.776647][T31785] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1823.776661][T31785]  </TASK>
[ 1824.014809][T31790] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[ 1824.017220][T31790] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1824.021199][T31790] vhci_hcd vhci_hcd.0: Device attached
[ 1824.855493][T31791] vhci_hcd: connection closed
[ 1824.940205][T26247] vhci_hcd vhci_hcd.4: stop threads
[ 1824.944245][T26247] vhci_hcd vhci_hcd.4: release socket
[ 1824.946840][T26247] vhci_hcd vhci_hcd.4: disconnect device
[ 1824.951221][T31802] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7035'.
[ 1826.090259][   T29] usb 46-1: device descriptor read/8, error -110
[ 1826.591010][   T29] usb usb46-port1: attempt power cycle
[ 1826.710359][ T5946] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1826.840176][ T5946] usb 9-1: device descriptor read/64, error -71
[ 1827.090273][ T5946] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1827.170628][   T29] usb usb46-port1: unable to enumerate USB device
[ 1827.220312][ T5946] usb 9-1: device descriptor read/64, error -71
[ 1827.341338][ T5946] usb usb9-port1: attempt power cycle
[ 1827.680137][ T5946] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1827.700130][T23891] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[ 1827.701568][ T5946] usb 9-1: device descriptor read/8, error -71
[ 1827.861694][T23891] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1827.865503][T23891] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1827.870655][T23891] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1827.874197][T23891] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1827.877303][T23891] usb 6-1: Product: syz
[ 1827.879256][T23891] usb 6-1: Manufacturer: syz
[ 1827.881278][T23891] usb 6-1: SerialNumber: syz
[ 1827.885816][T23891] usb 6-1: config 0 descriptor??
[ 1827.892036][T23891] usb 6-1: selecting invalid altsetting 0
[ 1827.960232][ T5946] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1827.990788][ T5946] usb 9-1: device descriptor read/8, error -71
[ 1828.105535][ T5946] usb usb9-port1: unable to enumerate USB device
[ 1828.126481][T31829] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1828.131109][T31829] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1828.249637][T31829] siw: device registration error -23
[ 1828.609514][ T9487] usb 6-1: USB disconnect, device number 70
[ 1829.568934][T31845] FAT-fs (nbd4): unable to read boot sector
[ 1829.766093][T31847] random: crng reseeded on system resumption
[ 1832.434111][T31867] FAULT_INJECTION: forcing a failure.
[ 1832.434111][T31867] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1832.438460][T31867] CPU: 3 UID: 0 PID: 31867 Comm: syz.1.7055 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1832.438478][T31867] Tainted: [L]=SOFTLOCKUP
[ 1832.438482][T31867] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1832.438489][T31867] Call Trace:
[ 1832.438494][T31867]  <TASK>
[ 1832.438499][T31867]  dump_stack_lvl+0x16c/0x1f0
[ 1832.438519][T31867]  should_fail_ex+0x512/0x640
[ 1832.438535][T31867]  _copy_to_iter+0x463/0x1710
[ 1832.438550][T31867]  ? __pfx__copy_to_iter+0x10/0x10
[ 1832.438562][T31867]  ? trace_kmalloc+0x2b/0xb0
[ 1832.438579][T31867]  ? __kvmalloc_node_noprof+0x3c9/0xa40
[ 1832.438596][T31867]  ? seq_read_iter+0x830/0x12d0
[ 1832.438610][T31867]  ? find_held_lock+0x11/0x80
[ 1832.438635][T31867]  seq_read_iter+0xd02/0x12d0
[ 1832.438663][T31867]  seq_read+0x3a3/0x570
[ 1832.438684][T31867]  ? __pfx_seq_read+0x10/0x10
[ 1832.438705][T31867]  ? lock_acquire+0x179/0x330
[ 1832.438720][T31867]  ? __pfx_seq_read+0x10/0x10
[ 1832.438735][T31867]  proc_reg_read+0x240/0x330
[ 1832.438749][T31867]  ? __pfx_proc_reg_read+0x10/0x10
[ 1832.438763][T31867]  vfs_read+0x1e4/0xcf0
[ 1832.438780][T31867]  ? __pfx___mutex_lock+0x10/0x10
[ 1832.438799][T31867]  ? __pfx_vfs_read+0x10/0x10
[ 1832.438813][T31867]  ? find_held_lock+0x2b/0x80
[ 1832.438830][T31867]  ? __fget_files+0x20e/0x3c0
[ 1832.438850][T31867]  ksys_read+0x12a/0x250
[ 1832.438865][T31867]  ? __pfx_ksys_read+0x10/0x10
[ 1832.438885][T31867]  __do_fast_syscall_32+0xe8/0x680
[ 1832.438905][T31867]  do_fast_syscall_32+0x32/0x80
[ 1832.438922][T31867]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1832.438943][T31867] RIP: 0023:0xf702d579
[ 1832.438952][T31867] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1832.438963][T31867] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[ 1832.438974][T31867] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[ 1832.438981][T31867] RDX: 0000000000000e90 RSI: 0000000000000000 RDI: 0000000000000000
[ 1832.438987][T31867] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1832.438994][T31867] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1832.439000][T31867] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1832.439014][T31867]  </TASK>
[ 1832.942806][T31875] FAULT_INJECTION: forcing a failure.
[ 1832.942806][T31875] name failslab, interval 1, probability 0, space 0, times 0
[ 1832.947881][T31875] CPU: 1 UID: 0 PID: 31875 Comm: syz.1.7058 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1832.947911][T31875] Tainted: [L]=SOFTLOCKUP
[ 1832.947918][T31875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1832.947930][T31875] Call Trace:
[ 1832.947937][T31875]  <TASK>
[ 1832.947944][T31875]  dump_stack_lvl+0x16c/0x1f0
[ 1832.947975][T31875]  should_fail_ex+0x512/0x640
[ 1832.948000][T31875]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[ 1832.948027][T31875]  should_failslab+0xc2/0x120
[ 1832.948052][T31875]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1832.948069][T31875]  ? __alloc_skb+0x156/0x410
[ 1832.948093][T31875]  ? __alloc_skb+0x156/0x410
[ 1832.948109][T31875]  __alloc_skb+0x156/0x410
[ 1832.948124][T31875]  ? __alloc_skb+0x35d/0x410
[ 1832.948141][T31875]  ? __pfx___alloc_skb+0x10/0x10
[ 1832.948157][T31875]  ? is_bpf_text_address+0x8a/0x1a0
[ 1832.948179][T31875]  ? bpf_ksym_find+0x124/0x1c0
[ 1832.948196][T31875]  ? aa_label_sk_perm+0x194/0x5f0
[ 1832.948221][T31875]  alloc_skb_with_frags+0xe0/0x860
[ 1832.948252][T31875]  sock_alloc_send_pskb+0x7f9/0x980
[ 1832.948272][T31875]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1832.948300][T31875]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1832.948320][T31875]  ? find_held_lock+0x2b/0x80
[ 1832.948345][T31875]  ? dev_getfirstbyhwtype+0x1d2/0x340
[ 1832.948377][T31875]  dgram_sendmsg+0x5ad/0xf40
[ 1832.948407][T31875]  ? __pfx_dgram_sendmsg+0x10/0x10
[ 1832.948437][T31875]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1832.948470][T31875]  __sys_sendto+0x4a3/0x520
[ 1832.948492][T31875]  ? __pfx___sys_sendto+0x10/0x10
[ 1832.948509][T31875]  ? __lock_acquire+0x436/0x2890
[ 1832.948549][T31875]  __ia32_compat_sys_socketcall+0x62a/0x780
[ 1832.948577][T31875]  ? __fget_files+0x20e/0x3c0
[ 1832.948601][T31875]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[ 1832.948629][T31875]  ? fput+0x70/0xf0
[ 1832.948650][T31875]  ? do_user_addr_fault+0x843/0x1370
[ 1832.948677][T31875]  __do_fast_syscall_32+0xe8/0x680
[ 1832.948707][T31875]  do_fast_syscall_32+0x32/0x80
[ 1832.948733][T31875]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1832.948755][T31875] RIP: 0023:0xf702d579
[ 1832.948771][T31875] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1832.948787][T31875] RSP: 002b:00000000f541c430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[ 1832.948803][T31875] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f541c444
[ 1832.948813][T31875] RDX: 0000000000000000 RSI: 00000000f541c560 RDI: 00000000f73c6ff4
[ 1832.948825][T31875] RBP: 00000000f541c560 R08: 0000000000000000 R09: 0000000000000000
[ 1832.948836][T31875] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1832.948847][T31875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1832.948870][T31875]  </TASK>
[ 1833.340167][ T5946] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[ 1833.374522][T31884] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7061'.
[ 1833.490986][ T5946] usb 6-1: Using ep0 maxpacket: 32
[ 1833.497006][ T5946] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[ 1833.501481][ T5946] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1833.506388][ T5946] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1833.513000][ T5946] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1833.518525][ T5946] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1833.523854][ T5946] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1833.527833][ T5946] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1833.531821][ T5946] usb 6-1: Product: syz
[ 1833.533784][ T5946] usb 6-1: Manufacturer: syz
[ 1833.535791][ T5946] usb 6-1: SerialNumber: syz
[ 1833.539594][ T5946] usb 6-1: config 0 descriptor??
[ 1833.544448][ T5946] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1833.550267][ T5946] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1833.832641][T26206] udevd[26206]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1833.963790][   T29] usb 6-1: USB disconnect, device number 71
[ 1833.967518][   T29] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1834.710201][T23891] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1834.860203][T23891] usb 9-1: Using ep0 maxpacket: 32
[ 1834.864217][T23891] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[ 1834.867236][T23891] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1834.871242][T23891] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1834.876482][T23891] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1834.881013][T23891] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1834.884630][T23891] usb 9-1: Product: syz
[ 1834.886486][T23891] usb 9-1: Manufacturer: syz
[ 1834.888443][T23891] usb 9-1: SerialNumber: syz
[ 1834.912087][T23891] usb 9-1: config 0 descriptor??
[ 1834.918047][T23891] ldusb 9-1:0.0: Interrupt in endpoint not found
[ 1835.127139][ T6044] usb 9-1: USB disconnect, device number 7
[ 1835.315876][T31906] fuse: Bad value for 'fd'
[ 1835.620181][T31909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7066'.
[ 1836.267116][T31923] fuse: Bad value for 'fd'
[ 1836.738922][   T40] kauditd_printk_skb: 381 callbacks suppressed
[ 1836.739036][   T40] audit: type=1326 audit(2000001143.809:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31921 comm="syz.3.7070" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fb6579 code=0x0
[ 1836.834887][T31931] openvswitch: netlink: IPv4 tun info is not correct
[ 1852.248547][T31967] fuse: Bad value for 'fd'
[ 1853.010465][T31978] FAULT_INJECTION: forcing a failure.
[ 1853.010465][T31978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1853.015036][T31978] CPU: 3 UID: 0 PID: 31978 Comm: syz.3.7083 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1853.015056][T31978] Tainted: [L]=SOFTLOCKUP
[ 1853.015060][T31978] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1853.015067][T31978] Call Trace:
[ 1853.015072][T31978]  <TASK>
[ 1853.015077][T31978]  dump_stack_lvl+0x16c/0x1f0
[ 1853.015097][T31978]  should_fail_ex+0x512/0x640
[ 1853.015113][T31978]  _copy_from_user+0x2e/0xd0
[ 1853.015126][T31978]  drm_ioctl+0x4fb/0xc30
[ 1853.015141][T31978]  ? __pfx_drm_set_client_name+0x10/0x10
[ 1853.015153][T31978]  ? __pfx_drm_ioctl+0x10/0x10
[ 1853.015173][T31978]  drm_compat_ioctl+0x327/0x460
[ 1853.015190][T31978]  ? __pfx_drm_compat_ioctl+0x10/0x10
[ 1853.015205][T31978]  __ia32_compat_sys_ioctl+0x242/0x370
[ 1853.015222][T31978]  __do_fast_syscall_32+0xe8/0x680
[ 1853.015242][T31978]  do_fast_syscall_32+0x32/0x80
[ 1853.015259][T31978]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1853.015274][T31978] RIP: 0023:0xf7fb6579
[ 1853.015283][T31978] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1853.015294][T31978] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1853.015305][T31978] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01064d1
[ 1853.015313][T31978] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1853.015319][T31978] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1853.015326][T31978] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1853.015332][T31978] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1853.015346][T31978]  </TASK>
[ 1854.311856][   T40] audit: type=1326 audit(2000001161.389:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31994 comm="syz.1.7088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1854.966153][   T40] audit: type=1326 audit(2000001162.039:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31994 comm="syz.1.7088" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1855.235732][T32009] overlayfs: overlapping lowerdir path
[ 1856.781350][T32020] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[ 1856.783669][T32020] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1856.786496][T32020] vhci_hcd vhci_hcd.0: Device attached
[ 1856.888199][T32028] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7096'.
[ 1856.955270][T32031] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[ 1856.958213][T32031] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1856.978615][T32031] vhci_hcd vhci_hcd.0: Device attached
[ 1857.050254][ T6044] usb 44-1: SetAddress Request (67) to port 0
[ 1857.054880][ T6044] usb 44-1: new SuperSpeed USB device number 67 using vhci_hcd
[ 1857.370092][ T9487] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[ 1857.588430][T32022] vhci_hcd: connection reset by peer
[ 1857.650280][T25198] vhci_hcd vhci_hcd.3: stop threads
[ 1857.652562][T25198] vhci_hcd vhci_hcd.3: release socket
[ 1857.655801][T25198] vhci_hcd vhci_hcd.3: disconnect device
[ 1857.700934][T32032] vhci_hcd: connection reset by peer
[ 1857.703799][T25198] vhci_hcd vhci_hcd.1: stop threads
[ 1857.706293][T25198] vhci_hcd vhci_hcd.1: release socket
[ 1857.708868][T25198] vhci_hcd vhci_hcd.1: disconnect device
[ 1857.852320][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[ 1857.894027][T32037] 9p: Bad value for 'source'
[ 1858.031874][T32042] netlink: 'syz.2.7097': attribute type 17 has an invalid length.
[ 1858.035245][T32042] netlink: 5 bytes leftover after parsing attributes in process `syz.2.7097'.
[ 1858.650364][ T6032] usb 8-1: new high-speed USB device number 83 using dummy_hcd
[ 1858.812900][ T6032] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1858.817370][ T6032] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1858.822786][ T6032] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1858.826265][ T6032] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1858.830451][ T6032] usb 8-1: Product: syz
[ 1858.832280][ T6032] usb 8-1: Manufacturer: syz
[ 1858.834409][ T6032] usb 8-1: SerialNumber: syz
[ 1858.838825][ T6032] usb 8-1: config 0 descriptor??
[ 1858.849295][ T6032] usb 8-1: selecting invalid altsetting 0
[ 1859.058280][T32047] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1859.063918][T32047] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1859.228803][T32054] siw: device registration error -23
[ 1860.879467][T32061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7102'.
[ 1861.406296][T22235] usb 8-1: USB disconnect, device number 83
[ 1861.884801][T32070] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1862.090167][ T6044] usb 44-1: device descriptor read/8, error -110
[ 1862.336732][T32079] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[ 1862.339609][T32079] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1862.363149][T32079] vhci_hcd vhci_hcd.0: Device attached
[ 1862.480159][ T9487] vhci_hcd vhci_hcd.1: vhci_device speed not set
[ 1862.640474][   T29] usb 46-1: SetAddress Request (10) to port 0
[ 1862.642562][   T29] usb 46-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1862.815708][ T6044] usb usb44-port1: attempt power cycle
[ 1863.290685][T32080] vhci_hcd: connection reset by peer
[ 1863.293274][T14508] vhci_hcd vhci_hcd.4: stop threads
[ 1863.295075][T14508] vhci_hcd vhci_hcd.4: release socket
[ 1863.296917][T14508] vhci_hcd vhci_hcd.4: disconnect device
[ 1863.673662][T32090] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1863.690090][T20804] Bluetooth: hci3: command 0x0405 tx timeout
[ 1863.690234][T22235] usb 8-1: new high-speed USB device number 84 using dummy_hcd
[ 1863.832948][ T6044] usb usb44-port1: unable to enumerate USB device
[ 1863.850161][T22235] usb 8-1: Using ep0 maxpacket: 32
[ 1863.854659][T22235] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[ 1863.857622][T22235] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1863.861603][T22235] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1863.865298][T22235] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1863.870112][T22235] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1863.874025][T22235] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1863.877355][T22235] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1863.880436][T22235] usb 8-1: Product: syz
[ 1863.881948][T22235] usb 8-1: Manufacturer: syz
[ 1863.883647][T22235] usb 8-1: SerialNumber: syz
[ 1863.887787][T22235] usb 8-1: config 0 descriptor??
[ 1863.892293][T22235] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1863.905048][T22235] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1864.155857][T32085] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[ 1864.156511][ T9487] usb 8-1: USB disconnect, device number 84
[ 1864.158265][    C0] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[ 1864.167100][ T9487] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[ 1864.481560][T32095] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7108'.
[ 1865.547365][T32110] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1866.150696][T32113] binder: 32111:32113 ioctl 0 80000040 returned -22
[ 1867.603861][T32126] syz1: rxe_newlink: already configured on syz_tun
[ 1867.690309][   T29] usb 46-1: device descriptor read/8, error -110
[ 1867.701732][T32126] FAULT_INJECTION: forcing a failure.
[ 1867.701732][T32126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1867.706175][T32126] CPU: 0 UID: 0 PID: 32126 Comm: syz.3.7119 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1867.706195][T32126] Tainted: [L]=SOFTLOCKUP
[ 1867.706199][T32126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1867.706206][T32126] Call Trace:
[ 1867.706211][T32126]  <TASK>
[ 1867.706216][T32126]  dump_stack_lvl+0x16c/0x1f0
[ 1867.706237][T32126]  should_fail_ex+0x512/0x640
[ 1867.706253][T32126]  _copy_to_user+0x32/0xd0
[ 1867.706267][T32126]  simple_read_from_buffer+0xcb/0x170
[ 1867.706285][T32126]  proc_fail_nth_read+0x197/0x240
[ 1867.706304][T32126]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1867.706323][T32126]  ? rw_verify_area+0xcf/0x6c0
[ 1867.706338][T32126]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1867.706356][T32126]  vfs_read+0x1e4/0xcf0
[ 1867.706372][T32126]  ? __pfx___mutex_lock+0x10/0x10
[ 1867.706391][T32126]  ? __pfx_vfs_read+0x10/0x10
[ 1867.706405][T32126]  ? find_held_lock+0x2b/0x80
[ 1867.706423][T32126]  ? __fget_files+0x20e/0x3c0
[ 1867.706448][T32126]  ksys_read+0x12a/0x250
[ 1867.706463][T32126]  ? __pfx_ksys_read+0x10/0x10
[ 1867.706479][T32126]  ? do_user_addr_fault+0x843/0x1370
[ 1867.706497][T32126]  __do_fast_syscall_32+0xe8/0x680
[ 1867.706517][T32126]  do_fast_syscall_32+0x32/0x80
[ 1867.706534][T32126]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1867.706548][T32126] RIP: 0023:0xf7fb6579
[ 1867.706557][T32126] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1867.706568][T32126] RSP: 002b:00000000f54a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1867.706579][T32126] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f54a6620
[ 1867.706586][T32126] RDX: 000000000000000f RSI: 00000000f7446ff4 RDI: 0000000000000000
[ 1867.706593][T32126] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1867.706599][T32126] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1867.706605][T32126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1867.706620][T32126]  </TASK>
[ 1867.856679][T32131] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[ 1867.859543][T32131] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1867.865815][T32131] vhci_hcd vhci_hcd.0: Device attached
[ 1867.939253][T32139] nbd: must specify at least one socket
[ 1868.090922][   T29] usb usb46-port1: attempt power cycle
[ 1868.130231][T28980] usb 42-1: SetAddress Request (74) to port 0
[ 1868.132358][T28980] usb 42-1: new SuperSpeed USB device number 74 using vhci_hcd
[ 1868.148879][T32141] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1868.190097][ T9487] usb 8-1: new high-speed USB device number 85 using dummy_hcd
[ 1868.342129][ T9487] usb 8-1: Using ep0 maxpacket: 8
[ 1868.346246][ T9487] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[ 1868.350207][ T9487] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1868.365616][ T9487] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1868.371091][ T9487] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1868.379914][ T9487] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1868.392221][ T9487] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1868.398509][ T9487] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1868.476691][T32143] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7123'.
[ 1868.617683][ T9487] usb 8-1: usb_control_msg returned -32
[ 1868.619559][ T9487] usbtmc 8-1:16.0: can't read capabilities
[ 1868.670698][   T29] usb usb46-port1: unable to enumerate USB device
[ 1868.696759][T32132] vhci_hcd: connection reset by peer
[ 1868.699905][T14508] vhci_hcd vhci_hcd.2: stop threads
[ 1868.701235][T22235] usb 8-1: USB disconnect, device number 85
[ 1868.704364][T14508] vhci_hcd vhci_hcd.2: release socket
[ 1868.708508][T14508] vhci_hcd vhci_hcd.2: disconnect device
[ 1869.312686][T32148] netlink: 64 bytes leftover after parsing attributes in process `syz.2.7124'.
[ 1869.743338][T32157] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7126'.
[ 1870.929893][   T40] audit: type=1326 audit(2000001177.999:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.944623][   T40] audit: type=1326 audit(2000001178.019:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.954721][   T40] audit: type=1326 audit(2000001178.019:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.963163][   T40] audit: type=1326 audit(2000001178.019:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.970691][   T40] audit: type=1326 audit(2000001178.019:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.977596][   T40] audit: type=1326 audit(2000001178.019:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.984768][   T40] audit: type=1326 audit(2000001178.019:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1870.992012][   T40] audit: type=1326 audit(2000001178.019:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=45 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1871.010080][   T40] audit: type=1326 audit(2000001178.019:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1871.017008][   T40] audit: type=1326 audit(2000001178.019:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32162 comm="syz.2.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[ 1871.167766][T32176] rdma_rxe: rxe_newlink: failed to add syz_tun
[ 1872.474982][T32185] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[ 1872.477771][T32185] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1872.483294][T32185] vhci_hcd vhci_hcd.0: Device attached
[ 1872.770619][T22970] usb 44-1: SetAddress Request (71) to port 0
[ 1872.772905][T22970] usb 44-1: new SuperSpeed USB device number 71 using vhci_hcd
[ 1873.210562][T28980] usb 42-1: device descriptor read/8, error -110
[ 1873.410343][T32186] vhci_hcd: connection reset by peer
[ 1873.412491][T32083] vhci_hcd vhci_hcd.3: stop threads
[ 1873.414450][T32083] vhci_hcd vhci_hcd.3: release socket
[ 1873.416452][T32083] vhci_hcd vhci_hcd.3: disconnect device
[ 1873.752857][T28980] usb usb42-port1: attempt power cycle
[ 1873.984881][T32196] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1874.004137][T32196] syzkaller0: entered promiscuous mode
[ 1874.006264][T32196] syzkaller0: entered allmulticast mode
[ 1874.060502][T32199] 9p: Bad value for 'wfdno'
[ 1874.115279][T32202] FAULT_INJECTION: forcing a failure.
[ 1874.115279][T32202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1874.121024][T32202] CPU: 3 UID: 0 PID: 32202 Comm: syz.3.7135 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1874.121053][T32202] Tainted: [L]=SOFTLOCKUP
[ 1874.121059][T32202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1874.121071][T32202] Call Trace:
[ 1874.121077][T32202]  <TASK>
[ 1874.121084][T32202]  dump_stack_lvl+0x16c/0x1f0
[ 1874.121114][T32202]  should_fail_ex+0x512/0x640
[ 1874.121139][T32202]  _copy_from_user+0x2e/0xd0
[ 1874.121160][T32202]  get_user_ifreq+0x116/0x1c0
[ 1874.121186][T32202]  sock_do_ioctl+0x16b/0x280
[ 1874.121212][T32202]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1874.121236][T32202]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1874.121267][T32202]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1874.121295][T32202]  ? unix_ioctl+0x9f/0x580
[ 1874.121349][T32202]  compat_sock_ioctl+0x301/0x730
[ 1874.121370][T32202]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1874.121386][T32202]  ? hook_file_ioctl_common+0x144/0x410
[ 1874.121415][T32202]  ? __fget_files+0x20e/0x3c0
[ 1874.121439][T32202]  ? __pfx___might_fault+0x10/0x10
[ 1874.121469][T32202]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1874.121485][T32202]  __ia32_compat_sys_ioctl+0x242/0x370
[ 1874.121511][T32202]  __do_fast_syscall_32+0xe8/0x680
[ 1874.121542][T32202]  do_fast_syscall_32+0x32/0x80
[ 1874.121574][T32202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1874.121596][T32202] RIP: 0023:0xf7fb6579
[ 1874.121609][T32202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1874.121626][T32202] RSP: 002b:00000000f546455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1874.121643][T32202] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008922
[ 1874.121655][T32202] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[ 1874.121666][T32202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1874.121676][T32202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1874.121687][T32202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1874.121710][T32202]  </TASK>
[ 1874.320864][T28980] usb usb42-port1: unable to enumerate USB device
[ 1874.390758][T32204] FAULT_INJECTION: forcing a failure.
[ 1874.390758][T32204] name failslab, interval 1, probability 0, space 0, times 0
[ 1874.396242][T32204] CPU: 2 UID: 0 PID: 32204 Comm: syz.4.7137 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1874.396271][T32204] Tainted: [L]=SOFTLOCKUP
[ 1874.396278][T32204] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1874.396290][T32204] Call Trace:
[ 1874.396299][T32204]  <TASK>
[ 1874.396307][T32204]  dump_stack_lvl+0x16c/0x1f0
[ 1874.396340][T32204]  should_fail_ex+0x512/0x640
[ 1874.396360][T32204]  ? __kmalloc_cache_noprof+0x5f/0x800
[ 1874.396392][T32204]  should_failslab+0xc2/0x120
[ 1874.396418][T32204]  __kmalloc_cache_noprof+0x80/0x800
[ 1874.396439][T32204]  ? fl_create+0x104/0xd30
[ 1874.396467][T32204]  ? fl_create+0x104/0xd30
[ 1874.396488][T32204]  fl_create+0x104/0xd30
[ 1874.396516][T32204]  ? __pfx_fl_create+0x10/0x10
[ 1874.396543][T32204]  ? __lock_acquire+0x436/0x2890
[ 1874.396564][T32204]  ? __alloc_frozen_pages_noprof+0x292/0x2430
[ 1874.396595][T32204]  ? find_held_lock+0x2b/0x80
[ 1874.396617][T32204]  ? __might_fault+0xe3/0x190
[ 1874.396637][T32204]  ? __might_fault+0xe3/0x190
[ 1874.396656][T32204]  ? __might_fault+0x13b/0x190
[ 1874.396685][T32204]  ipv6_flowlabel_opt+0x964/0x2e50
[ 1874.396709][T32204]  ? __lock_acquire+0x436/0x2890
[ 1874.396730][T32204]  ? __pfx_ipv6_flowlabel_opt+0x10/0x10
[ 1874.396754][T32204]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1874.396784][T32204]  ? __local_bh_enable_ip+0xa4/0x120
[ 1874.396814][T32204]  ? do_ipv6_setsockopt+0x2009/0x4570
[ 1874.396832][T32204]  do_ipv6_setsockopt+0x2009/0x4570
[ 1874.396856][T32204]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1874.396873][T32204]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1874.396902][T32204]  ? find_held_lock+0x2b/0x80
[ 1874.396922][T32204]  ? get_pid_task+0xfc/0x250
[ 1874.396944][T32204]  ? __pfx___might_resched+0x10/0x10
[ 1874.396965][T32204]  ? __lock_acquire+0x436/0x2890
[ 1874.396981][T32204]  ? aa_sk_perm+0x2f2/0xae0
[ 1874.396997][T32204]  ? ksys_write+0x190/0x250
[ 1874.397020][T32204]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1874.397040][T32204]  ? ipv6_setsockopt+0xcb/0x170
[ 1874.397054][T32204]  ipv6_setsockopt+0xcb/0x170
[ 1874.397071][T32204]  tcp_setsockopt+0xa7/0x100
[ 1874.397090][T32204]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1874.397115][T32204]  do_sock_setsockopt+0xf3/0x1d0
[ 1874.397140][T32204]  __sys_setsockopt+0x120/0x1a0
[ 1874.397162][T32204]  __ia32_sys_setsockopt+0xbc/0x160
[ 1874.397179][T32204]  ? __do_fast_syscall_32+0x9a/0x680
[ 1874.397202][T32204]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1874.397224][T32204]  __do_fast_syscall_32+0xe8/0x680
[ 1874.397249][T32204]  do_fast_syscall_32+0x32/0x80
[ 1874.397272][T32204]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1874.397292][T32204] RIP: 0023:0xf705d579
[ 1874.397327][T32204] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1874.397345][T32204] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1874.397361][T32204] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[ 1874.397371][T32204] RDX: 0000000000000020 RSI: 00000000800005c0 RDI: 0000000000000030
[ 1874.397386][T32204] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1874.397396][T32204] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1874.397405][T32204] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1874.397426][T32204]  </TASK>
[ 1874.530474][T32195] tipc: Resetting bearer <eth:syzkaller0>
[ 1874.631958][T32195] tipc: Disabling bearer <eth:syzkaller0>
[ 1874.810336][   T55] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1874.860245][   T29] usb 6-1: new high-speed USB device number 72 using dummy_hcd
[ 1874.906631][T32215] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[ 1874.908804][T32215] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1874.911717][T32215] vhci_hcd vhci_hcd.0: Device attached
[ 1874.980251][   T55] usb 9-1: Using ep0 maxpacket: 16
[ 1874.983490][   T55] usb 9-1: config 0 has no interfaces?
[ 1875.011518][   T29] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1875.014888][   T29] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1875.019350][   T29] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1875.022471][   T29] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1875.025226][   T29] usb 6-1: Product: syz
[ 1875.026942][   T29] usb 6-1: Manufacturer: syz
[ 1875.028472][   T29] usb 6-1: SerialNumber: syz
[ 1875.031592][   T29] usb 6-1: config 0 descriptor??
[ 1875.039491][   T29] usb 6-1: selecting invalid altsetting 0
[ 1875.240377][T32209] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1875.243738][T32209] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1875.319916][T32219] siw: device registration error -23
[ 1875.419207][   T55] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1875.760359][T32216] vhci_hcd: connection closed
[ 1875.761439][T26247] vhci_hcd vhci_hcd.3: stop threads
[ 1875.764997][T26247] vhci_hcd vhci_hcd.3: release socket
[ 1875.766876][T26247] vhci_hcd vhci_hcd.3: disconnect device
[ 1875.845284][   T55] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1875.847875][   T55] usb 9-1: Product: syz
[ 1875.849216][   T55] usb 9-1: Manufacturer: syz
[ 1875.850861][   T55] usb 9-1: SerialNumber: syz
[ 1875.853744][   T55] usb 9-1: config 0 descriptor??
[ 1876.032185][T28980] usb 6-1: USB disconnect, device number 72
[ 1876.893445][T32234] random: crng reseeded on system resumption
[ 1877.147978][T32237] siw: device registration error -23
[ 1877.581715][ T6044] usb 9-1: USB disconnect, device number 8
[ 1877.698173][T32243] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7147'.
[ 1877.861022][T22970] usb 44-1: device descriptor read/8, error -110
[ 1878.272552][T22970] usb usb44-port1: attempt power cycle
[ 1878.858210][T22970] usb usb44-port1: unable to enumerate USB device
[ 1880.020212][ T6032] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1880.172073][ T6032] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1880.176435][ T6032] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1880.180738][ T6032] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1880.183693][ T6032] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1880.186382][ T6032] usb 9-1: Product: syz
[ 1880.187953][ T6032] usb 9-1: Manufacturer: syz
[ 1880.189527][ T6032] usb 9-1: SerialNumber: syz
[ 1880.192359][ T6032] usb 9-1: config 0 descriptor??
[ 1880.198884][ T6032] usb 9-1: selecting invalid altsetting 0
[ 1880.310190][T22235] usb 8-1: new high-speed USB device number 86 using dummy_hcd
[ 1880.361033][T32277] nbd: must specify at least one socket
[ 1880.401041][T32270] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1880.404170][T32270] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1880.480401][T22235] usb 8-1: Using ep0 maxpacket: 32
[ 1880.483500][T32278] siw: device registration error -23
[ 1880.490785][T22235] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[ 1880.502238][T22235] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1880.523825][T22235] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1880.529135][T22235] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1880.535694][T22235] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1880.550863][T22235] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1880.553890][T22235] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1880.556789][T22235] usb 8-1: Product: syz
[ 1880.558264][T22235] usb 8-1: Manufacturer: syz
[ 1880.559862][T22235] usb 8-1: SerialNumber: syz
[ 1880.573403][T22235] usb 8-1: config 0 descriptor??
[ 1880.600141][ T6032] usb 6-1: new high-speed USB device number 73 using dummy_hcd
[ 1880.603190][T22235] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1880.612066][T22235] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1880.770653][ T6032] usb 6-1: Using ep0 maxpacket: 8
[ 1880.774919][ T6032] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 1880.778364][ T6032] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1880.782146][ T6032] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1880.786489][ T6032] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1880.790243][ T6032] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1880.794581][ T6032] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1880.797700][ T6032] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1880.896787][T32275] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[ 1880.897003][ T6044] usb 8-1: USB disconnect, device number 86
[ 1880.899880][    C3] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[ 1880.909117][T32279] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -19
[ 1880.912511][ T6044] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[ 1881.036680][ T6032] usb 6-1: usb_control_msg returned -32
[ 1881.041692][ T6032] usbtmc 6-1:16.0: can't read capabilities
[ 1881.111381][ T6044] usb 6-1: USB disconnect, device number 73
[ 1881.392174][T22235] usb 9-1: USB disconnect, device number 9
[ 1881.687219][T32285] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7159'.
[ 1882.029515][T32293] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1882.036344][T32293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7163'.
[ 1882.145532][T32293] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1882.210185][T22235] usb 9-1: new full-speed USB device number 10 using dummy_hcd
[ 1882.256392][T32302] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7165'.
[ 1882.554327][T22235] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1882.563435][T22235] usb 9-1: unable to read config index 0 descriptor/start: -71
[ 1882.567380][T22235] usb 9-1: can't read configurations, error -71
[ 1883.190489][T32319] FAULT_INJECTION: forcing a failure.
[ 1883.190489][T32319] name failslab, interval 1, probability 0, space 0, times 0
[ 1883.196104][T32319] CPU: 2 UID: 0 PID: 32319 Comm: syz.4.7169 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1883.196131][T32319] Tainted: [L]=SOFTLOCKUP
[ 1883.196139][T32319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1883.196149][T32319] Call Trace:
[ 1883.196157][T32319]  <TASK>
[ 1883.196165][T32319]  dump_stack_lvl+0x16c/0x1f0
[ 1883.196195][T32319]  should_fail_ex+0x512/0x640
[ 1883.196215][T32319]  ? kmem_cache_alloc_noprof+0x62/0x770
[ 1883.196238][T32319]  should_failslab+0xc2/0x120
[ 1883.196264][T32319]  kmem_cache_alloc_noprof+0x83/0x770
[ 1883.196285][T32319]  ? io_submit_one+0x122/0x1e70
[ 1883.196313][T32319]  ? io_submit_one+0x122/0x1e70
[ 1883.196328][T32319]  io_submit_one+0x122/0x1e70
[ 1883.196346][T32319]  ? __lock_acquire+0x436/0x2890
[ 1883.196364][T32319]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1883.196390][T32319]  ? __pfx_io_submit_one+0x10/0x10
[ 1883.196415][T32319]  ? __might_fault+0xe3/0x190
[ 1883.196433][T32319]  ? __might_fault+0x13b/0x190
[ 1883.196457][T32319]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1883.196474][T32319]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1883.196495][T32319]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 1883.196519][T32319]  ? do_user_addr_fault+0x843/0x1370
[ 1883.196541][T32319]  ? rcu_is_watching+0x12/0xc0
[ 1883.196566][T32319]  __do_fast_syscall_32+0xe8/0x680
[ 1883.196594][T32319]  do_fast_syscall_32+0x32/0x80
[ 1883.196620][T32319]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1883.196640][T32319] RIP: 0023:0xf705d579
[ 1883.196654][T32319] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1883.196669][T32319] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 1883.196685][T32319] RAX: ffffffffffffffda RBX: 00000000f5404000 RCX: 0000000000000002
[ 1883.196697][T32319] RDX: 0000000080000780 RSI: 0000000000000000 RDI: 0000000000000000
[ 1883.196707][T32319] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1883.196716][T32319] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1883.196726][T32319] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1883.196749][T32319]  </TASK>
[ 1883.455726][T32323] FAULT_INJECTION: forcing a failure.
[ 1883.455726][T32323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1883.461438][T32323] CPU: 2 UID: 0 PID: 32323 Comm: syz.4.7170 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1883.461465][T32323] Tainted: [L]=SOFTLOCKUP
[ 1883.461472][T32323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1883.461482][T32323] Call Trace:
[ 1883.461490][T32323]  <TASK>
[ 1883.461497][T32323]  dump_stack_lvl+0x16c/0x1f0
[ 1883.461528][T32323]  should_fail_ex+0x512/0x640
[ 1883.461558][T32323]  _copy_from_iter+0x2a4/0x16c0
[ 1883.461582][T32323]  ? __alloc_skb+0x220/0x410
[ 1883.461600][T32323]  ? __alloc_skb+0x35d/0x410
[ 1883.461620][T32323]  ? __pfx__copy_from_iter+0x10/0x10
[ 1883.461638][T32323]  ? unwind_get_return_address+0x59/0xa0
[ 1883.461663][T32323]  ? __pfx___might_resched+0x10/0x10
[ 1883.461696][T32323]  netlink_sendmsg+0x820/0xdd0
[ 1883.461726][T32323]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1883.461754][T32323]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1883.461788][T32323]  ____sys_sendmsg+0xa5d/0xc30
[ 1883.461817][T32323]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1883.461843][T32323]  ? get_compat_msghdr+0x11a/0x170
[ 1883.461875][T32323]  ___sys_sendmsg+0x134/0x1d0
[ 1883.461900][T32323]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1883.461933][T32323]  ? find_held_lock+0x2b/0x80
[ 1883.461973][T32323]  __sys_sendmsg+0x16d/0x220
[ 1883.461995][T32323]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1883.462027][T32323]  ? do_user_addr_fault+0x843/0x1370
[ 1883.462053][T32323]  __do_fast_syscall_32+0xe8/0x680
[ 1883.462083][T32323]  do_fast_syscall_32+0x32/0x80
[ 1883.462110][T32323]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1883.462132][T32323] RIP: 0023:0xf705d579
[ 1883.462145][T32323] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1883.462164][T32323] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1883.462181][T32323] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 1883.462193][T32323] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1883.462203][T32323] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1883.462213][T32323] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1883.462225][T32323] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1883.462249][T32323]  </TASK>
[ 1884.040546][T32329] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7172'.
[ 1884.137901][T32334] tipc: Started in network mode
[ 1884.147267][T32334] tipc: Node identity 9abeae940c6, cluster identity 4711
[ 1884.150623][T32334] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1884.159191][T32334] syzkaller0: entered promiscuous mode
[ 1884.164013][T32334] syzkaller0: entered allmulticast mode
[ 1884.502558][T32338] tipc: Resetting bearer <eth:syzkaller0>
[ 1884.509627][T32340] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7176'.
[ 1884.562146][T32333] tipc: Resetting bearer <eth:syzkaller0>
[ 1884.921064][T32333] tipc: Disabling bearer <eth:syzkaller0>
[ 1884.944613][T32347] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7177'.
[ 1886.104092][T32362] Invalid option length (1047552) for dns_resolver key
[ 1887.043134][T32376] nbd: must specify at least one socket
[ 1887.206891][T32374] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1887.209909][T32374] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1887.214410][T32374] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1887.217385][T32374] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1887.221048][T32374] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1887.280846][T22235] usb 8-1: new high-speed USB device number 87 using dummy_hcd
[ 1887.300859][T32374] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1887.384131][T32374] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1887.388052][T32374] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1887.440216][T22235] usb 8-1: Using ep0 maxpacket: 8
[ 1887.443388][T22235] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[ 1887.446140][T22235] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1887.453748][T22235] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1887.457041][T22235] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1887.461646][T32374] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1887.465646][T22235] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1887.469981][T22235] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1887.473064][T22235] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1887.697961][T22235] usb 8-1: usb_control_msg returned -32
[ 1887.702782][T22235] usbtmc 8-1:16.0: can't read capabilities
[ 1887.773665][T22235] usb 8-1: USB disconnect, device number 87
[ 1888.340164][T32386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7186'.
[ 1889.210183][ T5955] Bluetooth: hci0: command 0x0406 tx timeout
[ 1889.210939][T32402] Bluetooth: hci4: command 0x0406 tx timeout
[ 1889.290221][ T5955] Bluetooth: hci1: command 0x0406 tx timeout
[ 1889.292310][T32402] Bluetooth: hci2: command 0x0405 tx timeout
[ 1889.353619][T32404] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7191'.
[ 1889.360306][T32404] netlink: 52 bytes leftover after parsing attributes in process `syz.2.7191'.
[ 1889.450283][T32402] Bluetooth: hci3: command 0x0405 tx timeout
[ 1889.783930][   T40] kauditd_printk_skb: 3 callbacks suppressed
[ 1889.783941][   T40] audit: type=1326 audit(2000001196.859:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32405 comm="syz.2.7192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7fc00000
[ 1889.894589][T32410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7193'.
[ 1890.440051][   T40] audit: type=1326 audit(2000001197.509:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32405 comm="syz.2.7192" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70cd579 code=0x7fc00000
[ 1891.079954][T32427] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7197'.
[ 1891.370213][T32402] Bluetooth: hci2: command 0x0405 tx timeout
[ 1891.530316][T32402] Bluetooth: hci3: command 0x0405 tx timeout
[ 1892.422090][ T9487] libceph: connect (1)[c::]:6789 error -101
[ 1892.424584][ T9487] libceph: mon0 (1)[c::]:6789 connect error
[ 1892.458610][T32434] ceph: No mds server is up or the cluster is laggy
[ 1892.692244][ T9487] libceph: connect (1)[c::]:6789 error -101
[ 1892.695091][ T9487] libceph: mon0 (1)[c::]:6789 connect error
[ 1892.903015][T14508] smc: removing ib device syz1
[ 1892.903404][ T5955] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1892.911545][ T5955] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1892.916566][ T5955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1892.933488][ T5955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1892.939392][ T5955] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1893.107317][T32441] lo speed is unknown, defaulting to 1000
[ 1893.127410][T32446] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7201'.
[ 1893.203398][T32444] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[ 1893.203427][T32444] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1893.205175][T32444] vhci_hcd vhci_hcd.0: Device attached
[ 1893.450104][T20804] Bluetooth: hci2: command 0x0405 tx timeout
[ 1893.490109][   T29] usb 42-1: SetAddress Request (78) to port 0
[ 1893.492656][   T29] usb 42-1: new SuperSpeed USB device number 78 using vhci_hcd
[ 1893.574394][T32441] chnl_net:caif_netlink_parms(): no params data found
[ 1893.610186][T20804] Bluetooth: hci3: command 0x0405 tx timeout
[ 1893.886686][T32449] vhci_hcd: connection reset by peer
[ 1893.888846][T16435] vhci_hcd vhci_hcd.2: stop threads
[ 1893.890736][T16435] vhci_hcd vhci_hcd.2: release socket
[ 1893.892811][T16435] vhci_hcd vhci_hcd.2: disconnect device
[ 1893.981777][T32441] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1893.988693][T32441] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1893.998958][T32441] bridge_slave_0: entered allmulticast mode
[ 1894.040860][T32441] bridge_slave_0: entered promiscuous mode
[ 1894.052639][T32441] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1894.055668][T32441] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1894.068792][T32441] bridge_slave_1: entered allmulticast mode
[ 1894.076953][T32441] bridge_slave_1: entered promiscuous mode
[ 1894.093597][T32462] fuse: Unknown parameter 'group_i00000000000000000000'
[ 1894.162336][T32441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1894.167063][T32441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1894.227282][T32441] team0: Port device team_slave_0 added
[ 1894.232062][T32441] team0: Port device team_slave_1 added
[ 1894.259842][T32441] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1894.270030][T32441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1894.290616][T32441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1894.335861][T32441] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1894.338293][T32441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1894.347189][T32441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1894.416625][T32441] hsr_slave_0: entered promiscuous mode
[ 1894.419060][T32441] hsr_slave_1: entered promiscuous mode
[ 1894.430069][T28980] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[ 1894.441000][T32441] debugfs: 'hsr0' already exists in 'hsr'
[ 1894.443645][T32441] Cannot create hsr debugfs directory
[ 1894.582042][T28980] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1894.585617][T28980] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1894.589703][T28980] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1894.600078][T28980] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1894.603768][T28980] usb 9-1: Product: syz
[ 1894.605582][T28980] usb 9-1: Manufacturer: syz
[ 1894.606236][T22970] usb 6-1: new low-speed USB device number 74 using dummy_hcd
[ 1894.607565][T28980] usb 9-1: SerialNumber: syz
[ 1894.622445][T28980] usb 9-1: config 0 descriptor??
[ 1894.633058][T28980] usb 9-1: selecting invalid altsetting 0
[ 1894.851640][T32464] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1894.855682][T32464] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1894.970565][T32477] siw: device registration error -23
[ 1895.130174][T32402] Bluetooth: hci0: command tx timeout
[ 1895.600692][T32441] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1895.643762][T32441] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1895.690290][T32402] Bluetooth: hci3: command 0x0405 tx timeout
[ 1895.695380][T32441] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1895.755467][T32441] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1895.793759][T22235] usb 9-1: USB disconnect, device number 12
[ 1895.885683][T32441] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1895.902605][T32441] 8021q: adding VLAN 0 to HW filter on device team0
[ 1895.909543][T16435] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1895.911985][T16435] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1895.919742][T25198] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1895.922696][T25198] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1896.121205][T32441] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1896.143425][T32441] veth0_vlan: entered promiscuous mode
[ 1896.148694][T32441] veth1_vlan: entered promiscuous mode
[ 1896.164808][T32441] veth0_macvtap: entered promiscuous mode
[ 1896.169186][T32441] veth1_macvtap: entered promiscuous mode
[ 1896.180787][T32441] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1896.187708][T32441] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1896.195174][T32205] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1896.198376][T32205] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1896.202982][T32205] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1896.206895][T32205] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1896.371480][T14508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1896.374759][T14508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1896.395798][T14508] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1896.398775][T14508] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1896.651421][T32495] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[ 1896.654159][T32495] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1896.668908][T32495] vhci_hcd vhci_hcd.0: Device attached
[ 1896.775195][T32501] Bluetooth: MGMT ver 1.23
[ 1896.821389][T32495] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[ 1896.838589][T32502] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7200'.
[ 1896.930227][T27874] usb 46-1: SetAddress Request (14) to port 0
[ 1896.933672][T27874] usb 46-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1897.210240][T32402] Bluetooth: hci0: command tx timeout
[ 1897.332086][T22970] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1897.335538][T22970] usb 6-1: no configurations
[ 1897.339629][T22970] usb 6-1: can't read configurations, error -22
[ 1897.415073][T32496] vhci_hcd: connection reset by peer
[ 1897.418967][T26247] vhci_hcd vhci_hcd.4: stop threads
[ 1897.421714][T26247] vhci_hcd vhci_hcd.4: release socket
[ 1897.424355][T26247] vhci_hcd vhci_hcd.4: disconnect device
[ 1897.770221][T32402] Bluetooth: hci3: command 0x0405 tx timeout
[ 1898.375325][T32512] FAULT_INJECTION: forcing a failure.
[ 1898.375325][T32512] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1898.380831][T32512] CPU: 3 UID: 0 PID: 32512 Comm: syz.4.7212 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1898.380863][T32512] Tainted: [L]=SOFTLOCKUP
[ 1898.380872][T32512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1898.380884][T32512] Call Trace:
[ 1898.380894][T32512]  <TASK>
[ 1898.380903][T32512]  dump_stack_lvl+0x16c/0x1f0
[ 1898.380935][T32512]  should_fail_ex+0x512/0x640
[ 1898.380961][T32512]  _copy_to_user+0x32/0xd0
[ 1898.380980][T32512]  simple_read_from_buffer+0xcb/0x170
[ 1898.381007][T32512]  proc_fail_nth_read+0x197/0x240
[ 1898.381041][T32512]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1898.381072][T32512]  ? rw_verify_area+0xcf/0x6c0
[ 1898.381118][T32512]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1898.381147][T32512]  vfs_read+0x1e4/0xcf0
[ 1898.381175][T32512]  ? __pfx___mutex_lock+0x10/0x10
[ 1898.381206][T32512]  ? __pfx_vfs_read+0x10/0x10
[ 1898.381230][T32512]  ? find_held_lock+0x2b/0x80
[ 1898.381263][T32512]  ? __fget_files+0x20e/0x3c0
[ 1898.381297][T32512]  ksys_read+0x12a/0x250
[ 1898.381324][T32512]  ? __pfx_ksys_read+0x10/0x10
[ 1898.381350][T32512]  ? do_user_addr_fault+0x843/0x1370
[ 1898.381379][T32512]  __do_fast_syscall_32+0xe8/0x680
[ 1898.381415][T32512]  do_fast_syscall_32+0x32/0x80
[ 1898.381444][T32512]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1898.381468][T32512] RIP: 0023:0xf705d579
[ 1898.381483][T32512] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1898.381503][T32512] RSP: 002b:00000000f544d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1898.381523][T32512] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f544d620
[ 1898.381535][T32512] RDX: 000000000000000f RSI: 00000000f73f6ff4 RDI: 0000000000000000
[ 1898.381548][T32512] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1898.381560][T32512] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1898.381571][T32512] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1898.381597][T32512]  </TASK>
[ 1898.580694][   T29] usb 42-1: device descriptor read/8, error -110
[ 1898.991720][   T29] usb usb42-port1: attempt power cycle
[ 1899.290133][T32402] Bluetooth: hci0: command tx timeout
[ 1899.550778][   T29] usb usb42-port1: unable to enumerate USB device
[ 1899.568611][T32536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7219'.
[ 1899.790816][T32543] fuse: Unknown parameter 'grou00000000000000000000'
[ 1899.820156][T22970] usb 8-1: new high-speed USB device number 88 using dummy_hcd
[ 1899.848586][T32545] FAULT_INJECTION: forcing a failure.
[ 1899.848586][T32545] name failslab, interval 1, probability 0, space 0, times 0
[ 1899.855437][T32545] CPU: 3 UID: 0 PID: 32545 Comm: syz.1.7222 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1899.855466][T32545] Tainted: [L]=SOFTLOCKUP
[ 1899.855472][T32545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1899.855482][T32545] Call Trace:
[ 1899.855487][T32545]  <TASK>
[ 1899.855492][T32545]  dump_stack_lvl+0x16c/0x1f0
[ 1899.855521][T32545]  should_fail_ex+0x512/0x640
[ 1899.855541][T32545]  ? fs_reclaim_acquire+0xae/0x150
[ 1899.855569][T32545]  should_failslab+0xc2/0x120
[ 1899.855594][T32545]  __kmalloc_noprof+0xeb/0x910
[ 1899.855610][T32545]  ? tomoyo_encode2+0x100/0x3e0
[ 1899.855636][T32545]  ? tomoyo_encode2+0x100/0x3e0
[ 1899.855656][T32545]  tomoyo_encode2+0x100/0x3e0
[ 1899.855681][T32545]  tomoyo_encode+0x29/0x50
[ 1899.855698][T32545]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1899.855727][T32545]  tomoyo_path_number_perm+0x245/0x580
[ 1899.855746][T32545]  ? tomoyo_path_number_perm+0x237/0x580
[ 1899.855767][T32545]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1899.855826][T32545]  ? find_held_lock+0x2b/0x80
[ 1899.855850][T32545]  ? hook_file_ioctl_common+0x144/0x410
[ 1899.855872][T32545]  ? __fget_files+0x20e/0x3c0
[ 1899.855893][T32545]  ? fput+0x70/0xf0
[ 1899.855913][T32545]  security_file_ioctl_compat+0x9b/0x240
[ 1899.855935][T32545]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1899.855957][T32545]  __do_fast_syscall_32+0xe8/0x680
[ 1899.855984][T32545]  do_fast_syscall_32+0x32/0x80
[ 1899.856010][T32545]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1899.856030][T32545] RIP: 0023:0xf702d579
[ 1899.856044][T32545] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1899.856060][T32545] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1899.856074][T32545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c1105517
[ 1899.856083][T32545] RDX: 0000000080000480 RSI: 0000000000000000 RDI: 0000000000000000
[ 1899.856093][T32545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1899.856103][T32545] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1899.856112][T32545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1899.856136][T32545]  </TASK>
[ 1899.856172][T32545] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1900.031456][T22970] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1900.035086][T22970] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1900.039119][T22970] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1900.042664][T22970] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1900.043080][T32548] xt_policy: too many policy elements
[ 1900.045426][T22970] usb 8-1: Product: syz
[ 1900.045437][T22970] usb 8-1: Manufacturer: syz
[ 1900.045446][T22970] usb 8-1: SerialNumber: syz
[ 1900.050395][T22970] usb 8-1: config 0 descriptor??
[ 1900.062247][T22970] usb 8-1: selecting invalid altsetting 0
[ 1900.274764][T32540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1900.278653][T32540] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1900.416140][T32551] siw: device registration error -23
[ 1901.370199][T32402] Bluetooth: hci0: command tx timeout
[ 1901.484525][   T29] usb 8-1: USB disconnect, device number 88
[ 1902.006739][   T40] audit: type=1326 audit(2000001209.079:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32567 comm="syz.4.7228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7fc00000
[ 1902.020885][T27874] usb 46-1: device descriptor read/8, error -110
[ 1902.086647][T32574] fuse: Unknown parameter 'grou00000000000000000000'
[ 1902.412048][T27874] usb usb46-port1: attempt power cycle
[ 1902.662348][   T40] audit: type=1326 audit(2000001209.739:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32567 comm="syz.4.7228" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf705d579 code=0x7fc00000
[ 1902.673371][   T40] audit: type=1326 audit(2000001209.739:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32567 comm="syz.4.7228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7fc00000
[ 1902.980645][T27874] usb usb46-port1: unable to enumerate USB device
[ 1903.609146][T32588] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7234'.
[ 1904.109146][T32596] delete_channel: no stack
[ 1905.294608][T32625] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7240'.
[ 1906.060147][T28980] usb 8-1: new high-speed USB device number 89 using dummy_hcd
[ 1906.210229][T28980] usb 8-1: Using ep0 maxpacket: 32
[ 1906.213481][T28980] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[ 1906.216929][T28980] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1906.221593][T28980] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1906.226079][T28980] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1906.230566][T28980] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1906.234531][T28980] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1906.237442][T28980] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1906.240190][T28980] usb 8-1: Product: syz
[ 1906.241684][T28980] usb 8-1: Manufacturer: syz
[ 1906.243418][T28980] usb 8-1: SerialNumber: syz
[ 1906.246321][T28980] usb 8-1: config 0 descriptor??
[ 1906.249777][T28980] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1906.254448][T28980] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1906.307346][   T40] audit: type=1326 audit(2000001213.379:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32633 comm="syz.1.7243" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1906.557170][T32628] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[ 1906.558496][T31590] usb 8-1: USB disconnect, device number 89
[ 1906.560277][    C0] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[ 1906.567098][T32639] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -19
[ 1906.600450][T31590] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[ 1906.688461][T32643] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1906.969269][   T40] audit: type=1326 audit(2000001214.039:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32633 comm="syz.1.7243" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1907.367817][T32653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7248'.
[ 1908.253671][T32665] Invalid option length (1047552) for dns_resolver key
[ 1908.911766][T32674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7254'.
[ 1910.060293][T32685] FAULT_INJECTION: forcing a failure.
[ 1910.060293][T32685] name failslab, interval 1, probability 0, space 0, times 0
[ 1910.066064][T32685] CPU: 2 UID: 0 PID: 32685 Comm: syz.1.7257 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1910.066095][T32685] Tainted: [L]=SOFTLOCKUP
[ 1910.066102][T32685] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1910.066115][T32685] Call Trace:
[ 1910.066124][T32685]  <TASK>
[ 1910.066133][T32685]  dump_stack_lvl+0x16c/0x1f0
[ 1910.066165][T32685]  should_fail_ex+0x512/0x640
[ 1910.066188][T32685]  ? __kmalloc_noprof+0xca/0x910
[ 1910.066211][T32685]  should_failslab+0xc2/0x120
[ 1910.066240][T32685]  __kmalloc_noprof+0xeb/0x910
[ 1910.066260][T32685]  ? kernfs_fop_write_iter+0x237/0x570
[ 1910.066292][T32685]  ? kernfs_fop_write_iter+0x237/0x570
[ 1910.066318][T32685]  kernfs_fop_write_iter+0x237/0x570
[ 1910.066349][T32685]  aio_write+0x3b9/0x910
[ 1910.066380][T32685]  ? __pfx_aio_write+0x10/0x10
[ 1910.066408][T32685]  ? __lock_acquire+0x436/0x2890
[ 1910.066442][T32685]  ? __might_fault+0xe3/0x190
[ 1910.066463][T32685]  ? __might_fault+0x13b/0x190
[ 1910.066490][T32685]  ? io_submit_one+0x1243/0x1e70
[ 1910.066508][T32685]  io_submit_one+0x1243/0x1e70
[ 1910.066528][T32685]  ? __lock_acquire+0x436/0x2890
[ 1910.066549][T32685]  ? __pfx_io_submit_one+0x10/0x10
[ 1910.066576][T32685]  ? __might_fault+0xe3/0x190
[ 1910.066597][T32685]  ? __might_fault+0x13b/0x190
[ 1910.066622][T32685]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1910.066643][T32685]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[ 1910.066666][T32685]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 1910.066692][T32685]  ? do_user_addr_fault+0x843/0x1370
[ 1910.066718][T32685]  ? rcu_is_watching+0x12/0xc0
[ 1910.066748][T32685]  __do_fast_syscall_32+0xe8/0x680
[ 1910.066781][T32685]  do_fast_syscall_32+0x32/0x80
[ 1910.066810][T32685]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1910.066834][T32685] RIP: 0023:0xf702d579
[ 1910.066849][T32685] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1910.066868][T32685] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 1910.066886][T32685] RAX: ffffffffffffffda RBX: 00000000f7f2d000 RCX: 0000000000000001
[ 1910.066898][T32685] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[ 1910.066908][T32685] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1910.066919][T32685] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1910.066929][T32685] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1910.066953][T32685]  </TASK>
[ 1910.358311][T32687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7258'.
[ 1910.731731][T32694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7260'.
[ 1910.957598][T32696] netlink: 48 bytes leftover after parsing attributes in process `syz.3.7259'.
[ 1911.073730][T32695] 9pnet_virtio: no channels available for device syz
[ 1911.620204][T32702] Invalid option length (1047552) for dns_resolver key
[ 1912.343850][T32710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7265'.
[ 1913.152144][T32718] FAULT_INJECTION: forcing a failure.
[ 1913.152144][T32718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1913.157985][T32718] CPU: 3 UID: 0 PID: 32718 Comm: syz.4.7268 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1913.158030][T32718] Tainted: [L]=SOFTLOCKUP
[ 1913.158037][T32718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1913.158049][T32718] Call Trace:
[ 1913.158058][T32718]  <TASK>
[ 1913.158066][T32718]  dump_stack_lvl+0x16c/0x1f0
[ 1913.158099][T32718]  should_fail_ex+0x512/0x640
[ 1913.158130][T32718]  _copy_from_iter+0x2a4/0x16c0
[ 1913.158158][T32718]  ? __pfx__copy_from_iter+0x10/0x10
[ 1913.158178][T32718]  ? rcu_is_watching+0x12/0xc0
[ 1913.158206][T32718]  ? trace_kmalloc+0x2b/0xb0
[ 1913.158233][T32718]  ? __kmalloc_noprof+0x35d/0x910
[ 1913.158255][T32718]  ? kernfs_fop_write_iter+0x237/0x570
[ 1913.158287][T32718]  kernfs_fop_write_iter+0x19a/0x570
[ 1913.158318][T32718]  vfs_write+0x7d3/0x11d0
[ 1913.158365][T32718]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1913.158398][T32718]  ? __pfx_vfs_write+0x10/0x10
[ 1913.158422][T32718]  ? find_held_lock+0x2b/0x80
[ 1913.158464][T32718]  ksys_write+0x12a/0x250
[ 1913.158491][T32718]  ? __pfx_ksys_write+0x10/0x10
[ 1913.158524][T32718]  __do_fast_syscall_32+0xe8/0x680
[ 1913.158555][T32718]  do_fast_syscall_32+0x32/0x80
[ 1913.158584][T32718]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1913.158608][T32718] RIP: 0023:0xf705d579
[ 1913.158624][T32718] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1913.158642][T32718] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[ 1913.158659][T32718] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000080000040
[ 1913.158671][T32718] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[ 1913.158681][T32718] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1913.158691][T32718] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1913.158702][T32718] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1913.158728][T32718]  </TASK>
[ 1914.864073][   T40] audit: type=1326 audit(2000001221.939:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.875110][   T40] audit: type=1326 audit(2000001221.939:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.889254][   T40] audit: type=1326 audit(2000001221.939:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.898261][   T40] audit: type=1326 audit(2000001221.939:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.906184][   T40] audit: type=1326 audit(2000001221.949:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.913722][   T40] audit: type=1326 audit(2000001221.949:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.926761][   T40] audit: type=1326 audit(2000001221.949:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.934480][   T40] audit: type=1326 audit(2000001221.949:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1914.965570][T32743] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1915.037417][   T40] audit: type=1326 audit(2000001222.109:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1915.048495][   T40] audit: type=1326 audit(2000001222.109:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32735 comm="syz.3.7273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000
[ 1915.270509][T32748] Invalid option length (1047552) for dns_resolver key
[ 1915.297429][T32739] sp0: Synchronizing with TNC
[ 1915.309768][T32739] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[ 1915.309768][T32739]    program syz.3.7273 not setting count and/or reply_len properly
[ 1915.414741][T32754] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7279'.
[ 1916.245381][T32758] sch_fq: defrate 0 ignored.
[ 1916.484108][ T6032] libceph: connect (1)[c::]:6789 error -101
[ 1916.487038][ T6032] libceph: mon0 (1)[c::]:6789 connect error
[ 1916.583895][T32760] ceph: No mds server is up or the cluster is laggy
[ 1916.951860][  T303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7284'.
[ 1917.180238][T31590] usb 6-1: new high-speed USB device number 76 using dummy_hcd
[ 1917.352162][T31590] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1917.356410][T31590] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1917.362241][T31590] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1917.365249][T31590] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1917.368067][T31590] usb 6-1: Product: syz
[ 1917.369735][T31590] usb 6-1: Manufacturer: syz
[ 1917.372046][T31590] usb 6-1: SerialNumber: syz
[ 1917.376702][T31590] usb 6-1: config 0 descriptor??
[ 1917.382160][T31590] usb 6-1: selecting invalid altsetting 0
[ 1917.585837][  T302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1917.591296][  T302] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1917.669712][  T310] siw: device registration error -23
[ 1918.613196][  T321] tipc: Started in network mode
[ 1918.616519][  T321] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[ 1918.629320][  T321] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1918.735388][T31590] usb 6-1: USB disconnect, device number 76
[ 1918.864349][  T319] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1919.292477][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[ 1919.334518][  T334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7293'.
[ 1920.021788][T22235] tipc: Node number set to 1
[ 1920.276772][   T40] kauditd_printk_skb: 10 callbacks suppressed
[ 1920.276783][   T40] audit: type=1326 audit(2000001227.349:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=343 comm="syz.1.7296" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1920.521849][  T356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7300'.
[ 1920.604204][  T357] FAULT_INJECTION: forcing a failure.
[ 1920.604204][  T357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1920.608713][  T357] CPU: 0 UID: 0 PID: 357 Comm: syz.2.7298 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1920.608731][  T357] Tainted: [L]=SOFTLOCKUP
[ 1920.608735][  T357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1920.608742][  T357] Call Trace:
[ 1920.608747][  T357]  <TASK>
[ 1920.608752][  T357]  dump_stack_lvl+0x16c/0x1f0
[ 1920.608773][  T357]  should_fail_ex+0x512/0x640
[ 1920.608788][  T357]  _copy_to_user+0x32/0xd0
[ 1920.608813][  T357]  simple_read_from_buffer+0xcb/0x170
[ 1920.608833][  T357]  proc_fail_nth_read+0x197/0x240
[ 1920.608853][  T357]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1920.608872][  T357]  ? rw_verify_area+0xcf/0x6c0
[ 1920.608886][  T357]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1920.608925][  T357]  vfs_read+0x1e4/0xcf0
[ 1920.608942][  T357]  ? __pfx___mutex_lock+0x10/0x10
[ 1920.608961][  T357]  ? __pfx_vfs_read+0x10/0x10
[ 1920.608975][  T357]  ? find_held_lock+0x2b/0x80
[ 1920.608994][  T357]  ? __fget_files+0x20e/0x3c0
[ 1920.609014][  T357]  ksys_read+0x12a/0x250
[ 1920.609030][  T357]  ? __pfx_ksys_read+0x10/0x10
[ 1920.609058][  T357]  ? do_user_addr_fault+0x843/0x1370
[ 1920.609076][  T357]  __do_fast_syscall_32+0xe8/0x680
[ 1920.609095][  T357]  do_fast_syscall_32+0x32/0x80
[ 1920.609112][  T357]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1920.609126][  T357] RIP: 0023:0xf70cd579
[ 1920.609141][  T357] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1920.609152][  T357] RSP: 002b:00000000f547b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1920.609163][  T357] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f547b620
[ 1920.609173][  T357] RDX: 000000000000000f RSI: 00000000f7466ff4 RDI: 0000000000000000
[ 1920.609179][  T357] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1920.609186][  T357] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1920.609192][  T357] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1920.609207][  T357]  </TASK>
[ 1920.943414][   T40] audit: type=1326 audit(2000001228.019:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=343 comm="syz.1.7296" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf702d579 code=0x7fc00000
[ 1921.350338][T31590] usb 6-1: new high-speed USB device number 77 using dummy_hcd
[ 1921.510760][  T364] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1921.734972][T31590] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1921.739303][T31590] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1921.745138][T31590] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1921.749070][T31590] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1921.752817][T31590] usb 6-1: Product: syz
[ 1921.754871][T31590] usb 6-1: Manufacturer: syz
[ 1921.756960][T31590] usb 6-1: SerialNumber: syz
[ 1921.761938][T31590] usb 6-1: config 0 descriptor??
[ 1921.772692][T31590] usb 6-1: selecting invalid altsetting 0
[ 1921.973043][  T363] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1921.979980][  T363] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1922.079263][  T373] siw: device registration error -23
[ 1923.054629][T22235] usb 6-1: USB disconnect, device number 77
[ 1923.368446][  T379] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1923.653092][  T387] FAULT_INJECTION: forcing a failure.
[ 1923.653092][  T387] name fail_futex, interval 1, probability 0, space 0, times 1
[ 1923.677627][  T387] CPU: 0 UID: 0 PID: 387 Comm: syz.1.7308 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1923.677651][  T387] Tainted: [L]=SOFTLOCKUP
[ 1923.677655][  T387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1923.677663][  T387] Call Trace:
[ 1923.677668][  T387]  <TASK>
[ 1923.677673][  T387]  dump_stack_lvl+0x16c/0x1f0
[ 1923.677701][  T387]  should_fail_ex+0x512/0x640
[ 1923.677719][  T387]  get_futex_key+0x1d0/0x15f0
[ 1923.677781][  T387]  ? __pfx_get_futex_key+0x10/0x10
[ 1923.677815][  T387]  ? kasan_save_track+0x14/0x30
[ 1923.677832][  T387]  ? __kasan_kmalloc+0xaa/0xb0
[ 1923.677848][  T387]  futex_lock_pi+0x1cc/0x7c0
[ 1923.677901][  T387]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1923.677916][  T387]  ? __lock_acquire+0x436/0x2890
[ 1923.677941][  T387]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1923.677959][  T387]  ? find_held_lock+0x2b/0x80
[ 1923.677973][  T387]  ? ksys_write+0x190/0x250
[ 1923.677992][  T387]  do_futex+0x11a/0x350
[ 1923.678005][  T387]  ? __pfx_do_futex+0x10/0x10
[ 1923.678021][  T387]  __ia32_sys_futex_time32+0x1d9/0x460
[ 1923.678037][  T387]  ? fput+0x70/0xf0
[ 1923.678058][  T387]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[ 1923.678074][  T387]  ? ksys_write+0x1ac/0x250
[ 1923.678090][  T387]  ? __pfx_ksys_write+0x10/0x10
[ 1923.678105][  T387]  ? __do_compat_sys_rt_sigreturn+0x1ba/0x270
[ 1923.678119][  T387]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[ 1923.678134][  T387]  __do_fast_syscall_32+0xe8/0x680
[ 1923.678156][  T387]  do_fast_syscall_32+0x32/0x80
[ 1923.678174][  T387]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1923.678189][  T387] RIP: 0023:0xf702d579
[ 1923.678199][  T387] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1923.678211][  T387] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[ 1923.678222][  T387] RAX: ffffffffffffffda RBX: 000000008000cffc RCX: 0000000000000086
[ 1923.678229][  T387] RDX: 00000000fffffffe RSI: 0000000000000000 RDI: 0000000000000000
[ 1923.678236][  T387] RBP: 00000000fffffffc R08: 0000000000000000 R09: 0000000000000000
[ 1923.678242][  T387] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1923.678249][  T387] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1923.678263][  T387]  </TASK>
[ 1923.812118][  T386] syz_tun: refused to change device tx_queue_len
[ 1925.815016][  T413] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[ 1925.817924][  T413] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1925.821411][  T413] vhci_hcd vhci_hcd.0: Device attached
[ 1925.911098][  T413] bridge0: entered promiscuous mode
[ 1925.924472][  T413] macvlan2: entered promiscuous mode
[ 1926.110599][T22970] usb 44-1: SetAddress Request (75) to port 0
[ 1926.120067][T22970] usb 44-1: new SuperSpeed USB device number 75 using vhci_hcd
[ 1926.261205][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[ 1926.264271][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1926.268787][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.277140][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(14)
[ 1926.280074][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1926.283753][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.288091][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(16)
[ 1926.290413][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1926.295073][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.298487][  T419] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1926.306445][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(20)
[ 1926.309325][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1926.312964][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.324491][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(22)
[ 1926.327420][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1926.332385][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.340593][  T419] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1926.350932][  T419] vhci_hcd vhci_hcd.0: pdev(2) rhport(6) sockfd(26)
[ 1926.353870][  T419] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1926.359516][  T419] vhci_hcd vhci_hcd.0: Device attached
[ 1926.368502][  T419] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1926.382041][  T430] vhci_hcd: connection closed
[ 1926.382289][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.385587][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.387704][  T428] vhci_hcd: connection closed
[ 1926.387842][  T424] vhci_hcd: connection closed
[ 1926.388514][  T426] vhci_hcd: connection closed
[ 1926.389717][  T422] vhci_hcd: connection closed
[ 1926.393149][  T420] vhci_hcd: connection closed
[ 1926.393775][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.398283][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.400426][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.402199][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.404251][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.405986][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.407734][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.409842][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.413719][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.416215][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.418797][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.424273][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.426157][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.428167][T23624] vhci_hcd vhci_hcd.2: stop threads
[ 1926.429954][T23624] vhci_hcd vhci_hcd.2: release socket
[ 1926.432547][T23624] vhci_hcd vhci_hcd.2: disconnect device
[ 1926.440471][ T6032] vhci_hcd vhci_hcd.2: vhci_device speed not set
[ 1926.682514][  T414] vhci_hcd: connection reset by peer
[ 1926.684797][T25198] vhci_hcd vhci_hcd.3: stop threads
[ 1926.686640][T25198] vhci_hcd vhci_hcd.3: release socket
[ 1926.688640][T25198] vhci_hcd vhci_hcd.3: disconnect device
[ 1926.714463][  T434] FAULT_INJECTION: forcing a failure.
[ 1926.714463][  T434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1926.718876][  T434] CPU: 3 UID: 0 PID: 434 Comm: syz.4.7317 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1926.718900][  T434] Tainted: [L]=SOFTLOCKUP
[ 1926.718904][  T434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1926.718912][  T434] Call Trace:
[ 1926.718918][  T434]  <TASK>
[ 1926.718923][  T434]  dump_stack_lvl+0x16c/0x1f0
[ 1926.718946][  T434]  should_fail_ex+0x512/0x640
[ 1926.718961][  T434]  _copy_from_user+0x2e/0xd0
[ 1926.718974][  T434]  do_bnep_sock_ioctl.constprop.0+0x383/0x5c0
[ 1926.718989][  T434]  ? __pfx_do_bnep_sock_ioctl.constprop.0+0x10/0x10
[ 1926.719004][  T434]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1926.719026][  T434]  bnep_sock_compat_ioctl+0x87/0x1d0
[ 1926.719038][  T434]  ? __pfx_bnep_sock_compat_ioctl+0x10/0x10
[ 1926.719051][  T434]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1926.719067][  T434]  ? __pfx_bnep_sock_compat_ioctl+0x10/0x10
[ 1926.719080][  T434]  compat_sock_ioctl+0x176/0x730
[ 1926.719093][  T434]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1926.719103][  T434]  ? hook_file_ioctl_common+0x144/0x410
[ 1926.719119][  T434]  ? __fget_files+0x20e/0x3c0
[ 1926.719136][  T434]  ? fput+0x70/0xf0
[ 1926.719149][  T434]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1926.719159][  T434]  __ia32_compat_sys_ioctl+0x242/0x370
[ 1926.719175][  T434]  __do_fast_syscall_32+0xe8/0x680
[ 1926.719198][  T434]  do_fast_syscall_32+0x32/0x80
[ 1926.719215][  T434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1926.719229][  T434] RIP: 0023:0xf705d579
[ 1926.719238][  T434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1926.719249][  T434] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1926.719261][  T434] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000400442c8
[ 1926.719268][  T434] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1926.719274][  T434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1926.719281][  T434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1926.719288][  T434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1926.719305][  T434]  </TASK>
[ 1927.260885][  T445] fuse: Bad value for 'rootmode'
[ 1927.269885][  T448] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7324'.
[ 1927.801062][  T460] FAULT_INJECTION: forcing a failure.
[ 1927.801062][  T460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1927.806167][  T460] CPU: 0 UID: 0 PID: 460 Comm: syz.3.7326 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1927.806187][  T460] Tainted: [L]=SOFTLOCKUP
[ 1927.806191][  T460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1927.806198][  T460] Call Trace:
[ 1927.806203][  T460]  <TASK>
[ 1927.806230][  T460]  dump_stack_lvl+0x16c/0x1f0
[ 1927.806255][  T460]  should_fail_ex+0x512/0x640
[ 1927.806270][  T460]  _copy_to_user+0x32/0xd0
[ 1927.806284][  T460]  simple_read_from_buffer+0xcb/0x170
[ 1927.806301][  T460]  proc_fail_nth_read+0x197/0x240
[ 1927.806320][  T460]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1927.806339][  T460]  ? rw_verify_area+0xcf/0x6c0
[ 1927.806353][  T460]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1927.806371][  T460]  vfs_read+0x1e4/0xcf0
[ 1927.806388][  T460]  ? __pfx___mutex_lock+0x10/0x10
[ 1927.806406][  T460]  ? __pfx_vfs_read+0x10/0x10
[ 1927.806420][  T460]  ? find_held_lock+0x2b/0x80
[ 1927.806439][  T460]  ? __fget_files+0x20e/0x3c0
[ 1927.806459][  T460]  ksys_read+0x12a/0x250
[ 1927.806475][  T460]  ? __pfx_ksys_read+0x10/0x10
[ 1927.806490][  T460]  ? fput+0x70/0xf0
[ 1927.806504][  T460]  __do_fast_syscall_32+0xe8/0x680
[ 1927.806523][  T460]  do_fast_syscall_32+0x32/0x80
[ 1927.806541][  T460]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1927.806555][  T460] RIP: 0023:0xf701d579
[ 1927.806564][  T460] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1927.806576][  T460] RSP: 002b:00000000f540d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1927.806587][  T460] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f540d620
[ 1927.806594][  T460] RDX: 000000000000000f RSI: 00000000f73b6ff4 RDI: 0000000000000000
[ 1927.806601][  T460] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1927.806607][  T460] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1927.806614][  T460] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1927.806628][  T460]  </TASK>
[ 1927.911352][  T462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7327'.
[ 1929.141391][  T470] Invalid option length (1047552) for dns_resolver key
[ 1929.482909][  T480] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1929.488218][  T480] FAULT_INJECTION: forcing a failure.
[ 1929.488218][  T480] name failslab, interval 1, probability 0, space 0, times 0
[ 1929.493278][  T480] CPU: 2 UID: 0 PID: 480 Comm: syz.3.7332 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1929.493297][  T480] Tainted: [L]=SOFTLOCKUP
[ 1929.493301][  T480] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1929.493308][  T480] Call Trace:
[ 1929.493312][  T480]  <TASK>
[ 1929.493317][  T480]  dump_stack_lvl+0x16c/0x1f0
[ 1929.493339][  T480]  should_fail_ex+0x512/0x640
[ 1929.493353][  T480]  ? kmem_cache_alloc_noprof+0x62/0x770
[ 1929.493368][  T480]  should_failslab+0xc2/0x120
[ 1929.493386][  T480]  kmem_cache_alloc_noprof+0x83/0x770
[ 1929.493400][  T480]  ? getname_flags.part.0+0x4c/0x550
[ 1929.493415][  T480]  ? getname_flags.part.0+0x4c/0x550
[ 1929.493426][  T480]  getname_flags.part.0+0x4c/0x550
[ 1929.493440][  T480]  getname_flags+0x93/0xf0
[ 1929.493455][  T480]  __ia32_sys_renameat2+0xd4/0x130
[ 1929.493468][  T480]  __do_fast_syscall_32+0xe8/0x680
[ 1929.493487][  T480]  do_fast_syscall_32+0x32/0x80
[ 1929.493505][  T480]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1929.493520][  T480] RIP: 0023:0xf701d579
[ 1929.493529][  T480] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1929.493540][  T480] RSP: 002b:00000000f53ec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000161
[ 1929.493551][  T480] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000a00
[ 1929.493558][  T480] RDX: 00000000ffffff9c RSI: 0000000080000600 RDI: 0000000000000002
[ 1929.493565][  T480] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1929.493571][  T480] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1929.493577][  T480] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1929.493591][  T480]  </TASK>
[ 1931.090426][  T497] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7337'.
[ 1931.220299][T22970] usb 44-1: device descriptor read/8, error -110
[ 1931.611812][T22970] usb usb44-port1: attempt power cycle
[ 1932.180596][T22970] usb usb44-port1: unable to enumerate USB device
[ 1933.392683][  T525] overlay: Unknown parameter '/'
[ 1934.452010][  T534] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1934.962521][  T547] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7352'.
[ 1934.966433][  T547] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7352'.
[ 1934.971252][  T547] netlink: 30 bytes leftover after parsing attributes in process `syz.1.7352'.
[ 1935.225975][  T554] CUSE: unknown device info "�KJ�H+��ۤ2Lh��nL�1�`�Cc��n�����8���0���(�3նi��>f���_ٮ,��
�<�_e�F��"
[ 1935.230365][  T554] CUSE: unknown device info "3�ܟ�,��̘�"
[ 1935.232380][  T554] CUSE: unknown device info "J���2SZ�� !e/��������J�+-n��a4����D�|G$��5O~�q	��
[ 1935.232380][  T554] f����z��X�SA�x��j��T�ǔ��w���xR�ɐQ��(hҏj	p�VdY0��|M?2J��I�v�^
R�@��"
[ 1935.239024][  T554] CUSE: unknown device info "!To�}ݝ&|L+U��o��ϲ���"��FstV�:׌E�gJ�����<@c�����4�T�M�M|�����"
[ 1935.242787][  T554] CUSE: DEVNAME unspecified
[ 1935.753719][  T585] ieee802154 phy1 wpan1: encryption failed: -22
[ 1935.800208][ T6028] usb 6-1: new high-speed USB device number 78 using dummy_hcd
[ 1935.970160][ T6028] usb 6-1: Using ep0 maxpacket: 8
[ 1935.973428][ T6028] usb 6-1: config 0 has an invalid interface number: 254 but max is 0
[ 1935.976165][ T6028] usb 6-1: config 0 has no interface number 0
[ 1935.978244][ T6028] usb 6-1: config 0 interface 254 has no altsetting 0
[ 1935.982548][ T6028] usb 6-1: New USB device found, idVendor=0c45, idProduct=8003, bcdDevice=f9.64
[ 1935.985566][ T6028] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1935.988174][ T6028] usb 6-1: Product: syz
[ 1935.989573][ T6028] usb 6-1: Manufacturer: syz
[ 1935.991479][ T6028] usb 6-1: SerialNumber: syz
[ 1935.994797][ T6028] usb 6-1: config 0 descriptor??
[ 1935.999525][ T6028] gspca_main: sn9c2028-2.14.0 probing 0c45:8003
[ 1936.203892][ T6028] gspca_sn9c2028: read1 error -71
[ 1936.213636][ T6028] gspca_sn9c2028: read1 error -71
[ 1936.216625][ T6028] gspca_sn9c2028: read1 error -71
[ 1936.219159][ T6028] sn9c2028 6-1:0.254: probe with driver sn9c2028 failed with error -71
[ 1936.224830][ T6028] usb 6-1: USB disconnect, device number 78
[ 1936.445810][  T598] comedi comedi3: comedi_test: 6 microvolt, 2047 microsecond waveform attached
[ 1937.377366][T32402] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1937.384629][T32402] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1937.388420][T32402] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1937.408905][T32402] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1937.417704][T32402] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1937.486179][  T618] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7383'.
[ 1937.613336][ T6356] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1937.711815][  T613] lo speed is unknown, defaulting to 1000
[ 1937.913605][ T6356] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1938.120198][T22970] usb 6-1: new full-speed USB device number 79 using dummy_hcd
[ 1938.160354][ T6028] usb 9-1: new full-speed USB device number 13 using dummy_hcd
[ 1938.181770][ T6356] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1938.230573][  T613] chnl_net:caif_netlink_parms(): no params data found
[ 1938.271776][T22970] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1938.275269][T22970] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1938.282106][T22970] usb 6-1: config 0 descriptor??
[ 1938.291069][  T613] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1938.294264][  T613] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1938.297668][  T613] bridge_slave_0: entered allmulticast mode
[ 1938.303151][  T613] bridge_slave_0: entered promiscuous mode
[ 1938.322215][ T6028] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1938.325612][ T6028] usb 9-1: New USB device found, idVendor=055d, idProduct=9001, bcdDevice=31.44
[ 1938.328630][ T6028] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1938.333374][ T6028] usb 9-1: config 0 descriptor??
[ 1938.336923][ T6028] pwc: Samsung MPC-C30 USB webcam detected.
[ 1938.483558][ T6356] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1938.541315][ T6028] pwc: send_video_command error -71
[ 1938.543268][ T6028] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1938.546015][ T6028] Philips webcam 9-1:0.0: probe with driver Philips webcam failed with error -71
[ 1938.551083][  T613] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1938.551668][ T6028] usb 9-1: USB disconnect, device number 13
[ 1938.553770][  T613] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1938.558117][  T613] bridge_slave_1: entered allmulticast mode
[ 1938.561285][  T613] bridge_slave_1: entered promiscuous mode
[ 1938.581477][  T613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1938.587957][  T613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1938.616500][  T613] team0: Port device team_slave_0 added
[ 1938.621682][  T613] team0: Port device team_slave_1 added
[ 1938.645487][  T613] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1938.648468][  T613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1938.659818][  T613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1938.666390][  T613] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1938.669241][  T613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1938.682008][  T613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1938.711000][  T647] input: syz0 as /devices/virtual/input/input52
[ 1938.716409][  T613] hsr_slave_0: entered promiscuous mode
[ 1938.718743][  T613] hsr_slave_1: entered promiscuous mode
[ 1938.722488][  T613] debugfs: 'hsr0' already exists in 'hsr'
[ 1938.724420][  T613] Cannot create hsr debugfs directory
[ 1938.863103][ T6356] bridge_slave_1: left allmulticast mode
[ 1938.865636][ T6356] bridge_slave_1: left promiscuous mode
[ 1938.870877][ T6356] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1938.960910][ T6356] bridge_slave_0: left allmulticast mode
[ 1938.962825][ T6356] bridge_slave_0: left promiscuous mode
[ 1938.964816][ T6356] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1939.197279][  T659] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7400'.
[ 1939.301135][T22970] pegasus 6-1:0.0: probe with driver pegasus failed with error -121
[ 1939.450643][T20804] Bluetooth: hci0: command tx timeout
[ 1939.480251][T22970] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[ 1939.505169][ T6028] usb 6-1: USB disconnect, device number 79
[ 1939.631608][T22970] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1939.636708][T22970] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1939.641790][T22970] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1939.645407][T22970] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1939.648821][T22970] usb 9-1: SerialNumber: syz
[ 1939.863390][T22970] usb 9-1: 0:2 : does not exist
[ 1939.872122][T22970] usb 9-1: USB disconnect, device number 14
[ 1939.902667][T32611] udevd[32611]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1940.680578][ T6356] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1940.760750][ T6356] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1940.821333][ T6356] bond0 (unregistering): Released all slaves
[ 1941.531766][T20804] Bluetooth: hci0: command tx timeout
[ 1941.698048][  T613] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1941.763521][  T682] netlink: 'syz.4.7410': attribute type 1 has an invalid length.
[ 1942.011469][  T613] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1942.043106][  T682] bond1: entered promiscuous mode
[ 1942.045072][  T682] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1942.118078][  T684] bond1: (slave bridge1): making interface the new active one
[ 1942.120901][  T684] bridge1: entered promiscuous mode
[ 1942.140429][  T684] bridge1: left promiscuous mode
[ 1942.369055][  T613] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1942.403632][  T613] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1942.581947][ T6356] hsr_slave_0: left promiscuous mode
[ 1942.592182][ T6356] hsr_slave_1: left promiscuous mode
[ 1942.598004][ T6356] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1942.609966][ T6356] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1942.650704][ T6356] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1942.653247][ T6356] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1942.737384][ T6356] veth1_vlan: left promiscuous mode
[ 1942.739478][ T6356] veth0_vlan: left promiscuous mode
[ 1943.620187][T20804] Bluetooth: hci0: command tx timeout
[ 1944.641058][ T6356] team0 (unregistering): Port device team_slave_1 removed
[ 1944.850914][ T6356] team0 (unregistering): Port device team_slave_0 removed
[ 1945.693691][T20804] Bluetooth: hci0: command tx timeout
[ 1947.153211][  T613] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1947.163332][  T613] 8021q: adding VLAN 0 to HW filter on device team0
[ 1947.169477][T23624] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1947.171951][T23624] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1947.179952][ T6063] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1947.182616][ T6063] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1947.326540][  T613] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1947.433674][  T740] lo speed is unknown, defaulting to 1000
[ 1947.557831][  T613] veth0_vlan: entered promiscuous mode
[ 1947.563855][  T613] veth1_vlan: entered promiscuous mode
[ 1947.579190][  T613] veth0_macvtap: entered promiscuous mode
[ 1947.584744][  T613] veth1_macvtap: entered promiscuous mode
[ 1947.595216][  T613] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1947.603906][  T613] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1947.611013][ T6063] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1947.613989][ T6063] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1947.618073][ T6063] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1947.623270][ T6063] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1947.767997][T24455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1947.775221][T24455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1947.877413][T23624] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1947.881456][T23624] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1948.280321][ T6045] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1948.454018][ T6045] usb 10-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1948.457494][ T6045] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1948.461333][ T6045] usb 10-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1948.465575][ T6045] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1948.468555][ T6045] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1948.478692][ T6045] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[ 1948.481849][ T6045] usb 10-1: invalid MIDI out EP 0
[ 1948.498111][ T6045] snd-usb-audio 10-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1948.573207][  T782] syzkaller1: entered promiscuous mode
[ 1948.575131][  T782] syzkaller1: entered allmulticast mode
[ 1948.681478][ T6032] usb 10-1: USB disconnect, device number 2
[ 1949.310328][  T796] netlink: 128 bytes leftover after parsing attributes in process `syz.1.7443'.
[ 1949.314341][  T796] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7443'.
[ 1950.320120][   T29] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[ 1950.400130][ T6012] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[ 1950.420576][  T838] random: crng reseeded on system resumption
[ 1950.428249][  T838] Restarting kernel threads ...
[ 1950.432016][  T838] Done restarting kernel threads.
[ 1950.472557][   T29] usb 9-1: config 0 has an invalid interface number: 2 but max is 0
[ 1950.475672][   T29] usb 9-1: config 0 has no interface number 0
[ 1950.477886][   T29] usb 9-1: too many endpoints for config 0 interface 2 altsetting 1: 65, using maximum allowed: 30
[ 1950.483121][   T29] usb 9-1: config 0 interface 2 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1950.487084][   T29] usb 9-1: config 0 interface 2 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1950.490967][   T29] usb 9-1: config 0 interface 2 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[ 1950.495112][   T29] usb 9-1: config 0 interface 2 has no altsetting 0
[ 1950.497186][   T29] usb 9-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[ 1950.499943][   T29] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1950.503952][   T29] usb 9-1: config 0 descriptor??
[ 1950.570517][ T6012] usb 6-1: Using ep0 maxpacket: 32
[ 1950.573561][ T6012] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1950.577062][ T6012] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1950.580424][ T6012] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1950.584710][ T6012] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[ 1950.587561][ T6012] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1950.593258][ T6012] usb 6-1: config 0 descriptor??
[ 1950.671165][  T854] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7469'.
[ 1950.914007][  T870] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7477'.
[ 1950.922790][   T29] hid-multitouch 0003:1FD2:6007.0024: hidraw1: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.4-1/input2
[ 1950.947905][  T875] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7479'.
[ 1951.019534][ T6012] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0025/input/input54
[ 1951.027359][ T6012] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0025/input/input55
[ 1951.038186][ T6012] kye 0003:0458:5011.0025: input,hiddev0,hidraw2: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0
[ 1951.110986][ T6012] usb 9-1: USB disconnect, device number 15
[ 1951.207445][  T884] Bluetooth: MGMT ver 1.23
[ 1951.608889][  T892] netlink: 48 bytes leftover after parsing attributes in process `syz.5.7487'.
[ 1951.691785][  T898] fuse: Bad value for 'fd'
[ 1952.070996][    C1] kye 0003:0458:5011.0025: usb_submit_urb(ctrl) failed: -1
[ 1952.150170][ T9487] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[ 1952.321588][ T9487] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1952.325091][ T9487] usb 10-1: New USB device found, idVendor=06cd, idProduct=012a, bcdDevice=d5.1b
[ 1952.328460][ T9487] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1952.333229][ T9487] usb 10-1: config 0 descriptor??
[ 1952.337344][ T9487] keyspan 10-1:0.0: Keyspan 4 port adapter converter detected
[ 1952.340544][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 87
[ 1952.343450][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 7
[ 1952.346766][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 81
[ 1952.349666][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 1
[ 1952.353274][ T9487] usb 10-1: Keyspan 4 port adapter converter now attached to ttyUSB0
[ 1952.356810][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 82
[ 1952.359449][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 2
[ 1952.362677][ T9487] usb 10-1: Keyspan 4 port adapter converter now attached to ttyUSB1
[ 1952.365774][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 83
[ 1952.368272][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 3
[ 1952.371523][ T9487] usb 10-1: Keyspan 4 port adapter converter now attached to ttyUSB2
[ 1952.374630][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 84
[ 1952.377121][ T9487] keyspan 10-1:0.0: found no endpoint descriptor for endpoint 4
[ 1952.380361][ T9487] usb 10-1: Keyspan 4 port adapter converter now attached to ttyUSB3
[ 1952.490246][T20804] Bluetooth: hci0: command tx timeout
[ 1952.542885][T22235] usb 10-1: USB disconnect, device number 3
[ 1952.546546][T22235] keyspan_4 ttyUSB0: Keyspan 4 port adapter converter now disconnected from ttyUSB0
[ 1952.550805][T22235] keyspan_4 ttyUSB1: Keyspan 4 port adapter converter now disconnected from ttyUSB1
[ 1952.554851][T22235] keyspan_4 ttyUSB2: Keyspan 4 port adapter converter now disconnected from ttyUSB2
[ 1952.558906][T22235] keyspan_4 ttyUSB3: Keyspan 4 port adapter converter now disconnected from ttyUSB3
[ 1952.562523][T22235] keyspan 10-1:0.0: device disconnected
[ 1952.841184][ T6012] usb 6-1: USB disconnect, device number 80
[ 1953.227023][  T973] netlink: 224 bytes leftover after parsing attributes in process `syz.5.7520'.
[ 1953.229901][  T973] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7520'.
[ 1953.276544][  T976] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7521'.
[ 1953.700174][  T532] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1953.823301][ T1016] ------------[ cut here ]------------
[ 1953.825240][ T1016] WARNING: fs/exec.c:118 at path_noexec+0x1ca/0x230, CPU#3: syz.1.7536/1016
[ 1953.828171][ T1016] Modules linked in:
[ 1953.830180][ T1016] CPU: 3 UID: 0 PID: 1016 Comm: syz.1.7536 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1953.834492][ T1016] Tainted: [L]=SOFTLOCKUP
[ 1953.835864][ T1016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1953.839210][ T1016] RIP: 0010:path_noexec+0x1ca/0x230
[ 1953.841033][ T1016] Code: ff 83 e3 02 48 89 de e8 24 36 82 ff 48 85 db 41 0f 95 c4 e8 48 3b 82 ff 44 89 e0 5b 5d 41 5c c3 cc cc cc cc e8 37 3b 82 ff 90 <0f> 0b 90 e9 47 ff ff ff e8 c9 18 eb ff e9 a8 fe ff ff e8 bf 18 eb
[ 1953.847379][ T1016] RSP: 0018:ffffc9000ca07c88 EFLAGS: 00010287
[ 1953.849269][ T1016] RAX: 00000000000000b2 RBX: ffff8880422ea1e0 RCX: ffffc9002739a000
[ 1953.851959][ T1016] RDX: 0000000000080000 RSI: ffffffff823c2fb9 RDI: 0000000000000007
[ 1953.854653][ T1016] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 1953.857353][ T1016] R10: 0000000000000000 R11: ffff888021740b30 R12: 0000000080000000
[ 1953.860107][ T1016] R13: 0000000000000001 R14: 0000000000000002 R15: 0000000000000000
[ 1953.860213][  T532] usb 10-1: Using ep0 maxpacket: 16
[ 1953.862719][ T1016] FS:  0000000000000000(0000) GS:ffff8880979fc000(0063) knlGS:00000000f541db40
[ 1953.866873][  T532] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1953.868321][ T1016] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1953.872195][  T532] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1953.874075][ T1016] CR2: 000000000c33b6de CR3: 0000000058637000 CR4: 0000000000352ef0
[ 1953.880264][ T1016] Call Trace:
[ 1953.881436][ T1016]  <TASK>
[ 1953.882450][ T1016]  do_mmap+0xd23/0x1210
[ 1953.883868][ T1016]  ? __pfx_do_mmap+0x10/0x10
[ 1953.885628][ T1016]  ? __pfx_down_write_killable+0x10/0x10
[ 1953.887711][ T1016]  vm_mmap_pgoff+0x29e/0x470
[ 1953.889332][ T1016]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1953.891115][ T1016]  ? __fget_files+0x20e/0x3c0
[ 1953.892854][ T1016]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1953.894419][ T1016]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[ 1953.896205][ T1016]  __do_fast_syscall_32+0xe8/0x680
[ 1953.897917][ T1016]  do_fast_syscall_32+0x32/0x80
[ 1953.899522][ T1016]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1953.901776][ T1016] RIP: 0023:0xf702d579
[ 1953.903155][  T532] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1953.903172][ T1016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1953.906906][  T532] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1953.913168][ T1016] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 1953.913187][ T1016] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000003000
[ 1953.913196][ T1016] RDX: 0000000003000007 RSI: 0000000000000011 RDI: 0000000000000006
[ 1953.913204][ T1016] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1953.913211][ T1016] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1953.913220][ T1016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1953.913236][ T1016]  </TASK>
[ 1953.930097][  T532] usb 10-1: Product: syz
[ 1953.932697][ T1016] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1953.932710][ T1016] CPU: 3 UID: 0 PID: 1016 Comm: syz.1.7536 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1953.932727][ T1016] Tainted: [L]=SOFTLOCKUP
[ 1953.932732][ T1016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1953.932740][ T1016] Call Trace:
[ 1953.932744][ T1016]  <TASK>
[ 1953.932749][ T1016]  dump_stack_lvl+0x3d/0x1f0
[ 1953.932772][ T1016]  vpanic+0x640/0x6f0
[ 1953.932793][ T1016]  ? path_noexec+0x1ca/0x230
[ 1953.932817][ T1016]  panic+0xca/0xd0
[ 1953.932836][ T1016]  ? __pfx_panic+0x10/0x10
[ 1953.932867][ T1016]  check_panic_on_warn+0xab/0xb0
[ 1953.932898][ T1016]  __warn+0x108/0x3c0
[ 1953.932914][ T1016]  __report_bug+0x2a0/0x520
[ 1953.932929][ T1016]  ? path_noexec+0x1ca/0x230
[ 1953.932944][ T1016]  ? __pfx___report_bug+0x10/0x10
[ 1953.932963][ T1016]  ? arch_get_unmapped_area_topdown+0x494/0x8f0
[ 1953.932980][ T1016]  ? path_noexec+0x1ca/0x230
[ 1953.932994][ T1016]  report_bug+0xb2/0x220
[ 1953.933009][ T1016]  ? path_noexec+0x1ca/0x230
[ 1953.933024][ T1016]  handle_bug+0x127/0x260
[ 1953.933036][ T1016]  exc_invalid_op+0x17/0x50
[ 1953.933048][ T1016]  asm_exc_invalid_op+0x1a/0x20
[ 1953.933059][ T1016] RIP: 0010:path_noexec+0x1ca/0x230
[ 1953.933075][ T1016] Code: ff 83 e3 02 48 89 de e8 24 36 82 ff 48 85 db 41 0f 95 c4 e8 48 3b 82 ff 44 89 e0 5b 5d 41 5c c3 cc cc cc cc e8 37 3b 82 ff 90 <0f> 0b 90 e9 47 ff ff ff e8 c9 18 eb ff e9 a8 fe ff ff e8 bf 18 eb
[ 1953.933087][ T1016] RSP: 0018:ffffc9000ca07c88 EFLAGS: 00010287
[ 1953.933098][ T1016] RAX: 00000000000000b2 RBX: ffff8880422ea1e0 RCX: ffffc9002739a000
[ 1953.933105][ T1016] RDX: 0000000000080000 RSI: ffffffff823c2fb9 RDI: 0000000000000007
[ 1953.933113][ T1016] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 1953.933120][ T1016] R10: 0000000000000000 R11: ffff888021740b30 R12: 0000000080000000
[ 1953.933128][ T1016] R13: 0000000000000001 R14: 0000000000000002 R15: 0000000000000000
[ 1953.933139][ T1016]  ? path_noexec+0x1c9/0x230
[ 1953.933156][ T1016]  ? path_noexec+0x1c9/0x230
[ 1953.933171][ T1016]  do_mmap+0xd23/0x1210
[ 1953.933191][ T1016]  ? __pfx_do_mmap+0x10/0x10
[ 1953.933208][ T1016]  ? __pfx_down_write_killable+0x10/0x10
[ 1953.933223][ T1016]  vm_mmap_pgoff+0x29e/0x470
[ 1953.933243][ T1016]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1953.933262][ T1016]  ? __fget_files+0x20e/0x3c0
[ 1953.933281][ T1016]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1953.933298][ T1016]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[ 1953.933316][ T1016]  __do_fast_syscall_32+0xe8/0x680
[ 1953.933336][ T1016]  do_fast_syscall_32+0x32/0x80
[ 1953.933355][ T1016]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1953.933369][ T1016] RIP: 0023:0xf702d579
[ 1953.933379][ T1016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1953.933391][ T1016] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 1953.933402][ T1016] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000003000
[ 1953.933409][ T1016] RDX: 0000000003000007 RSI: 0000000000000011 RDI: 0000000000000006
[ 1953.933417][ T1016] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1953.933424][ T1016] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1953.933431][ T1016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1953.933445][ T1016]  </TASK>
[ 1953.934428][ T1016] Kernel Offset: disabled