last executing test programs:

8.876243883s ago: executing program 1 (id=1682):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f0000000080))
sendmsg$IEEE802154_LLSEC_LIST_DEV(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x321}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{}, 0x0, 0x0, @unused=[0x3, 0xfffffffffffffffe, 0x8001, 0x9], @devid})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000002090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
readv(r4, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r6, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

8.609991744s ago: executing program 1 (id=1683):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
fcntl$dupfd(r4, 0x0, r4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r5}, 0x10)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r7 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r8, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000440)={r9, 0x0, 0x0, 0x0, 0x0, [<r10=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000080)={r10, 0x0, <r11=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000200)={r9})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r11})

7.859892794s ago: executing program 1 (id=1688):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect(0x0, 0x36, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r3, 0x0, 0x0)
read$char_usb(r3, 0x0, 0x0)
syz_usb_disconnect(r2)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000))
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "dadd1000b1df022dace17a32d21100"})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r5, r4, 0x0, 0x34)

6.153864055s ago: executing program 1 (id=1694):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@bloom_filter={0x1e, 0x1, 0x2, 0x2, 0x1901, 0x1, 0x1adf, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x2, 0x3}, 0x48)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETLINK(r1, 0x400454cd, 0x324)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_WRITEPROTECT(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000400)={&(0x7f0000b36000/0x12000)=nil, &(0x7f0000841000/0x4000)=nil, 0x12000})
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$UFFDIO_CONTINUE(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1})
syz_io_uring_setup(0x6866, &(0x7f00000003c0)={0x0, 0x0, 0x2000}, &(0x7f0000000080), &(0x7f0000000140))
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
syz_open_procfs$userns(0x0, &(0x7f00000002c0))
userfaultfd(0x80001)

5.839820946s ago: executing program 0 (id=1698):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x101)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@rand_addr, @private}, &(0x7f0000000100)=0xc)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000007000000070000000002000700000000010000000000000a030000000000615f612e00"], &(0x7f0000000340)=""/153, 0x37, 0x99, 0x0, 0x7}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x2, 0x0, r0, 0xcbb, '\x00', 0x0, r1, 0x4, 0x5, 0x5}, 0x48)
pipe2(&(0x7f0000000140), 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000680001"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x0, 0x56}, 0x20)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000040000000000000000000085000000500000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x90)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000080)={'wg2\x00', <r6=>0x0})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)={0x24, r4, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r6}]}, 0x24}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r7, 0x8933, &(0x7f0000000200)={'wg2\x00', <r9=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="0600000000000000c7c89d42033955f9b092651e5d27b65c9f4b12ce3104d371232339c098df35", @ANYRES16=r8, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB], 0x248}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04160eaaaaaaaaaa12"], 0x9)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f00000000c0))
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
close(r10)

5.699999149s ago: executing program 0 (id=1699):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80201, 0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="d3cb00e31744b4", 0x7}], 0x1)
r1 = socket$igmp(0x2, 0x3, 0x2)
close_range(r1, 0xffffffffffffffff, 0x2)
openat$uinput(0xffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000040)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000140)='syzkaller\x00', 0x4}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
open_by_handle_at(r1, 0x0, 0x0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r3, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0x1002, 0x4, 0x3d0, 0x0, 0x0, 0x0, 0x2f0, 0x2f0, 0x2f0, 0x4, 0x0, {[{{@uncond, 0xbc, 0x104}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@arp={@dev, @multicast2, 0x0, 0x0, 0x0, 0x0, {@mac=@multicast}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netdevsim0\x00', 'ip6tnl0\x00'}, 0xbc, 0xe0}, @unspec=@STANDARD={0x24, '\x00', 0x0, 0xdc}}, {{@arp={@loopback, @private, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'team_slave_1\x00', 'syz_tun\x00'}, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev, @mac=@dev, @multicast1, @dev}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x41c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r4, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r5, 0x5421, &(0x7f0000000240)=0x2)
connect$vsock_stream(r5, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
epoll_create1(0x80000)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000780), 0x2082, 0x0)
ioctl$DVD_AUTH(r7, 0x5390, &(0x7f00000007c0)=@type=0x3)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[], 0x31)

5.508588478s ago: executing program 0 (id=1703):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff}, 0x2}}, 0x20)
r3 = landlock_create_ruleset(0x0, 0x0, 0x0)
process_vm_readv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200))
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setsig(r4, 0xa, 0x21)
fcntl$setlease(r4, 0x400, 0x0)
io_setup(0x401, &(0x7f00000004c0)=<r5=>0x0)
r6 = timerfd_create(0x0, 0x0)
io_submit(r5, 0x4, &(0x7f0000000240)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000840)="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", 0x1000, 0x5, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="e982", 0x2, 0x3f, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)="8d5deea6fee55c0e6cadc87aee0e7011ca6e4cf4c17c01c7a8c4508a7330886f33a7e25d082ead6f7ac99aa662b61987570a1171057bcb2888d411fd2a7c869847f830bc98437fffc84873e7d0e65c0cf7014748eb920ba5d50be661aa42b1f3b0229def38997ba0d41d835e54c48d409f68f35737d979ed8dbba9c1adf39482c65c71a761820277d3353104e000557663842307b0fad32da6daac31aec673e0c2524d537efac90fae0e1302765b0e39e908ec667e57bb05fe336e063a9270cc9465e4064dc3857cda0fa1941d39f57054c2", 0xd2, 0xffffffff, 0x0, 0x2}])
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x161842, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r8, 0x0, 0x482, &(0x7f0000000000)={0x11, @multicast1, 0x15, 0x0, 'lblcr\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r8, 0x0, 0x485, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
socket$kcm(0x10, 0x2, 0x4)
write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r1}}, 0x18)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000400)="64af7c36d8c6c6dccabc38276f4390715b31021baca5aba04d49628707164e907885553bcd8dcd02e356b50097380d9b7def87087485b06c6714d5c5f6aca3e82415594004166767fadaa62d4ed0d4a69d8421854b9cca1d0fa69ace577f3c60d0813dadb0a777f835bbcbb9d802a3dabaae38af9fc15be5d79bf837593ab7a708177dd1737550f682638050143081091e5192660feec5846b", 0x99}, {&(0x7f0000000200)="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", 0x189}, {&(0x7f00000024c0)="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", 0x1070}], 0x3)

4.06018966s ago: executing program 3 (id=1707):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x101)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@rand_addr, @private}, &(0x7f0000000100)=0xc)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000007000000070000000002000700000000010000000000000a030000000000615f612e00"], &(0x7f0000000340)=""/153, 0x37, 0x99, 0x0, 0x7}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x2, 0x0, r0, 0xcbb, '\x00', 0x0, r1, 0x4, 0x5, 0x5}, 0x48)
pipe2(&(0x7f0000000140), 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000680001"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x0, 0x56}, 0x20)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000040000000000000000000085000000500000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x90)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000080)={'wg2\x00', <r6=>0x0})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)={0x24, r4, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r6}]}, 0x24}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r7, 0x8933, &(0x7f0000000200)={'wg2\x00', <r9=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="0600000000000000c7c89d42033955f9b092651e5d27b65c9f4b12ce3104d371232339c098df35", @ANYRES16=r8, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB], 0x248}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04160eaaaaaaaaaa12"], 0x9)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f00000000c0))
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
close(r10)

4.020626291s ago: executing program 1 (id=1708):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(0xffffffffffffffff, 0x0, 0x0)
read$char_usb(r3, 0x0, 0x0)
syz_usb_disconnect(r2)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000))
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "dadd1000b1df022dace17a32d21100"})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r5, r4, 0x0, 0x34)

3.957675724s ago: executing program 3 (id=1709):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect(0x0, 0x36, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r3, 0x0, 0x0)
read$char_usb(r3, 0x0, 0x0)
syz_usb_disconnect(r2)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000))
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "dadd1000b1df022dace17a32d21100"})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r5, r4, 0x0, 0x34)

3.859810507s ago: executing program 0 (id=1710):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f0000000080))
sendmsg$IEEE802154_LLSEC_LIST_DEV(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x321}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{}, 0x0, 0x0, @unused=[0x3, 0xfffffffffffffffe, 0x8001, 0x9], @devid})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000002090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.769732058s ago: executing program 0 (id=1711):
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_emit_ethernet(0x46, &(0x7f0000000600)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
lseek(r5, 0x0, 0x2)
utimes(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)={{}, {0x77359400}})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@newlink={0x4c, 0x10, 0xc09, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GTP_LOCAL6={0x14, 0x8, @empty}, @IFLA_GTP_CREATE_SOCKETS={0x5}]}}}]}, 0x4c}}, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000004a00000400000000000000000a00", @ANYRES32=0x0, @ANYBLOB="ff13000100ed8000000000000000312f6f0457c4a84465009a00003d1b54"], 0x30}}, 0x0)
r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r7, 0x4c80, 0xb)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$LOOP_CTL_GET_FREE(r8, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
ioctl$LOOP_CTL_REMOVE(r8, 0x4c81, r9)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c82, r9)

2.650033019s ago: executing program 2 (id=1715):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000140))
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x1e)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', '', [{}, {0x20, '[+%'}, {0x20, 'TIPC\x00'}], 0xa, "510d3e0b6de9834bd3b1052c854acb502c90473123502f"}, 0x26)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

2.64955203s ago: executing program 2 (id=1716):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r1}, 0x10)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
fcntl$dupfd(r5, 0x0, r5)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r6}, 0x10)
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r9=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r9, <r10=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000440)={r10, 0x0, 0x0, 0x0, 0x0, [<r11=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5, 0x0, <r12=>0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r7, 0xc00c642d, &(0x7f0000000080)={r11, 0x0, <r13=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000200)={r10})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r8, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r13})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r8, 0xc00464b4, &(0x7f0000000180)={r12})
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000140)={0x80003})
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @empty, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "fca33f", 0x0, 0x73, 0x0, @dev, @local}}}}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x1c)

2.42691436s ago: executing program 2 (id=1717):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@rand_addr, @private}, &(0x7f0000000100)=0xc)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000007000000070000000002000700000000010000000000000a030000000000615f612e00"], &(0x7f0000000340)=""/153, 0x37, 0x99, 0x0, 0x7}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0xcbb, '\x00', 0x0, r0, 0x4, 0x5, 0x5}, 0x48)
pipe2(&(0x7f0000000140), 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000680001"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x0, 0x56}, 0x20)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000040000000000000000000085000000500000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000080)={'wg2\x00', <r5=>0x0})
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)={0x24, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r5}]}, 0x24}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f0000000200)={'wg2\x00', <r8=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="0600000000000000c7c89d42033955f9b092651e5d27b65c9f4b12ce3104d371232339c098df35", @ANYRES16=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB], 0x248}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04160eaaaaaaaaaa12"], 0x9)
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f00000000c0))
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
close(r9)

2.349499589s ago: executing program 2 (id=1718):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff}, 0x2}}, 0x20)
r3 = landlock_create_ruleset(0x0, 0x0, 0x0)
process_vm_readv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200))
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setsig(r4, 0xa, 0x21)
fcntl$setlease(r4, 0x400, 0x0)
io_setup(0x401, &(0x7f00000004c0)=<r5=>0x0)
r6 = timerfd_create(0x0, 0x0)
io_submit(r5, 0x4, &(0x7f0000000240)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000840)="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", 0x1000, 0x5, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="e982", 0x2, 0x3f, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000100)="8d5deea6fee55c0e6cadc87aee0e7011ca6e4cf4c17c01c7a8c4508a7330886f33a7e25d082ead6f7ac99aa662b61987570a1171057bcb2888d411fd2a7c869847f830bc98437fffc84873e7d0e65c0cf7014748eb920ba5d50be661aa42b1f3b0229def38997ba0d41d835e54c48d409f68f35737d979ed8dbba9c1adf39482c65c71a761820277d3353104e000557663842307b0fad32da6daac31aec673e0c2524d537efac90fae0e1302765b0e39e908ec667e57bb05fe336e063a9270cc9465e4064dc3857cda0fa1941d39f57054c2", 0xd2, 0xffffffff, 0x0, 0x2}])
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x161842, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r8, 0x0, 0x482, &(0x7f0000000000)={0x11, @multicast1, 0x15, 0x0, 'lblcr\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r8, 0x0, 0x485, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
socket$kcm(0x10, 0x2, 0x4)
write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r1}}, 0x18)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000400)="64af7c36d8c6c6dccabc38276f4390715b31021baca5aba04d49628707164e907885553bcd8dcd02e356b50097380d9b7def87087485b06c6714d5c5f6aca3e82415594004166767fadaa62d4ed0d4a69d8421854b9cca1d0fa69ace577f3c60d0813dadb0a777f835bbcbb9d802a3dabaae38af9fc15be5d79bf837593ab7a708177dd1737550f682638050143081091e5192660feec5846b", 0x99}, {&(0x7f0000000200)="0d000000246804003199aee6fdb9291b3091ec1a2d41d2270a00d8ec030f5919f397867997f9c0efa980805fdd3231c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec5ff48d6186e7d8409e35306221caf67b370d91932728e5ab6c9a3acf6ccee3e352c898f5744abaedfb53f92c37acb193282b1926bd143f3e9cdfcf25a8d6129fcc3a161c3f5ab6db772f87c787817a9b699dd60732d952716b1022f03697833bc1e91ac5b1ed92f35389580994bb0df9bce07e7a80921888f984139f488d256a67fec0cbb5c4e93d5c151d97f676ab93b1efbd46f600dc964231e3257bf358448fddf894c0cdfa9115adbe5b19bc912fcbc8aac7719b649b1ff1267491da8a5f68439dbc3774c74ee893aa5b21b627f2f378f97edb4031d72c838fc0d1653c5447f77679351127087f3739a91634ed5ca10467b3afd90de16f03a40ca73ad543cc1b7709824764405bb04832475a52f6010cb1f548088606fa1bac589b5b5d5860999007cc076a41851ea4a9f5e5f44d28bc98669293ee8037ca877144", 0x189}, {&(0x7f00000024c0)="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", 0x1070}], 0x3)

2.288444278s ago: executing program 3 (id=1719):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f0000000080))
sendmsg$IEEE802154_LLSEC_LIST_DEV(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x321}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{}, 0x0, 0x0, @unused=[0x3, 0xfffffffffffffffe, 0x8001, 0x9], @devid})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000002090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

2.19011926s ago: executing program 3 (id=1720):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f0000000180), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000000280)={0x0, 0x3938700}, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0xa}, 0x8)
connect$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000004000)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_CH_SWITCH_COUNT={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x2c}}, 0x0)

1.539147145s ago: executing program 2 (id=1721):
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000040))
socket$caif_stream(0x25, 0x1, 0x1)
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x30}, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0)
r2 = gettid()
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
timer_create(0x5, &(0x7f0000533fa0)={0x0, 0x21, 0x6, @thr={&(0x7f0000000200)="5e01f47582ce455ea6a21aa468c7d197c5d270466dfed463ac329dc95ff6e3debd4260875cdd5a6077982b9c262a09", &(0x7f0000000380)="efae41b1115f1d5141aff3cf2e44a5d55e0191075da0154f0c6e11576d5e4e74481cb6613ed7a45d4474b6096e70ce3b20c0b6b9d3d67619b5000094f4c339405a6c44d6d526e134218912787826b73cf3814815db3eeb48f9d4d368abb9bfac1d6135aac62404b9aa52c243222af91f22943c95616fd5335b5db98188"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0xffffffff, 0x4}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xb, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='percpu_alloc_percpu_fail\x00'}, 0x10)
r5 = add_key$keyring(&(0x7f0000001240), &(0x7f0000001280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, 0x0, 0x0)

1.386093033s ago: executing program 1 (id=1722):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@bloom_filter={0x1e, 0x1, 0x2, 0x2, 0x1901, 0x1, 0x1adf, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x2, 0x3}, 0x48)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETLINK(r1, 0x400454cd, 0x324)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_WRITEPROTECT(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000400)={&(0x7f0000b36000/0x12000)=nil, &(0x7f0000841000/0x4000)=nil, 0x12000})
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$UFFDIO_CONTINUE(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1})
syz_io_uring_setup(0x6866, &(0x7f00000003c0)={0x0, 0x0, 0x2000}, &(0x7f0000000080), &(0x7f0000000140))
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
syz_open_procfs$userns(0x0, &(0x7f00000002c0))
userfaultfd(0x0)

559.244952ms ago: executing program 0 (id=1723):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
fcntl$dupfd(r4, 0x0, r4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r5}, 0x10)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r7 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r8, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000440)={r9, 0x0, 0x0, 0x0, 0x0, [<r10=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000080)={r10, 0x0, <r11=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000200)={r9})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r11})

139.953601ms ago: executing program 3 (id=1724):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000140))
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x1e)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', '', [{}, {0x20, '[+%'}, {0x20, 'TIPC\x00'}], 0xa, "510d3e0b6de9834bd3b1052c854acb502c90473123502f"}, 0x26)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

320.1µs ago: executing program 2 (id=1725):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='ext4_begin_ordered_truncate\x00'}, 0x10)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="cc0000000000000085"])
syz_io_uring_submit(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000300)=""/102400, 0x19000)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
r2 = socket(0x840000000002, 0x3, 0xfa)
write$sequencer(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="8105"], 0x8)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r2, &(0x7f0000005240), 0x4000095, 0x810)

0s ago: executing program 3 (id=1726):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000140))
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x1e)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

kernel console output (not intermixed with test programs):

sim3 netdevsim0: renamed from eth0
[  359.900073][T10036] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  359.914894][T10036] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  359.921432][T10036] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  359.943211][T10156] No control pipe specified
[  360.052517][T10036] 8021q: adding VLAN 0 to HW filter on device bond0
[  360.085867][T10036] 8021q: adding VLAN 0 to HW filter on device team0
[  360.097772][ T4859] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.100859][ T4859] bridge0: port 1(bridge_slave_0) entered forwarding state
[  360.124740][ T4859] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.127663][ T4859] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.358321][T10036] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.406440][T10036] veth0_vlan: entered promiscuous mode
[  360.415738][T10036] veth1_vlan: entered promiscuous mode
[  360.457490][T10036] veth0_macvtap: entered promiscuous mode
[  360.481660][T10036] veth1_macvtap: entered promiscuous mode
[  360.529917][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.539908][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.549807][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.559285][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.566069][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.571831][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.582742][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.587391][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.591729][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.596609][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.601017][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.605610][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.612509][T10036] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.634696][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.638446][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.643131][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.647261][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.660109][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.666446][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.670363][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.676184][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.683617][T10036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.695590][T10036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.702357][T10036] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.726357][T10036] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  360.730164][T10036] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  360.735294][T10036] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  360.739108][T10036] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.911735][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.916171][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.950573][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.957159][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.949768][   T45] bridge_slave_1: left allmulticast mode
[  363.952303][   T45] bridge_slave_1: left promiscuous mode
[  363.955075][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.965702][   T45] bridge_slave_0: left allmulticast mode
[  363.968213][   T45] bridge_slave_0: left promiscuous mode
[  363.970826][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.717531][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  364.741202][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  364.764954][   T45] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  364.790237][   T45] bond0 (unregistering): Released all slaves
[  365.506214][   T45] hsr_slave_0: left promiscuous mode
[  365.510740][   T45] hsr_slave_1: left promiscuous mode
[  365.583101][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  365.602806][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  365.606942][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  365.613187][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  365.707324][   T45] veth0_macvtap: left promiscuous mode
[  365.709873][   T45] veth1_vlan: left promiscuous mode
[  365.712159][   T45] veth0_vlan: left promiscuous mode
[  366.126259][T10267] FAULT_INJECTION: forcing a failure.
[  366.126259][T10267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.132122][T10267] CPU: 1 UID: 0 PID: 10267 Comm: syz.2.1278 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  366.136814][T10267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.141545][T10267] Call Trace:
[  366.143082][T10267]  <TASK>
[  366.144434][T10267]  dump_stack_lvl+0x16c/0x1f0
[  366.146513][T10267]  should_fail_ex+0x497/0x5b0
[  366.148623][T10267]  _copy_from_user+0x30/0xf0
[  366.150901][T10267]  packet_setsockopt+0x1447/0x4000
[  366.153176][T10267]  ? __pfx_packet_setsockopt+0x10/0x10
[  366.155576][T10267]  ? __pfx___might_resched+0x10/0x10
[  366.157985][T10267]  ? __pfx___lock_acquire+0x10/0x10
[  366.160333][T10267]  ? __pfx_lock_release+0x10/0x10
[  366.162625][T10267]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  366.165267][T10267]  ? __pfx_aa_sk_perm+0x10/0x10
[  366.167461][T10267]  ? security_socket_setsockopt+0x8c/0xc0
[  366.169993][T10267]  ? __pfx_packet_setsockopt+0x10/0x10
[  366.172464][T10267]  do_sock_setsockopt+0x222/0x480
[  366.174631][T10267]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  366.177312][T10267]  ? __fget_light+0x173/0x210
[  366.179408][T10267]  __sys_setsockopt+0x1a4/0x270
[  366.181541][T10267]  ? __pfx___sys_setsockopt+0x10/0x10
[  366.183909][T10267]  ? fput+0x32/0x390
[  366.185656][T10267]  ? ksys_write+0x1ab/0x260
[  366.187631][T10267]  ? __pfx_ksys_write+0x10/0x10
[  366.189786][T10267]  __ia32_sys_setsockopt+0xbc/0x160
[  366.192027][T10267]  ? lockdep_hardirqs_on+0x7c/0x110
[  366.194353][T10267]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  366.197003][T10267]  __do_fast_syscall_32+0x73/0x120
[  366.199048][T10267]  do_fast_syscall_32+0x32/0x80
[  366.201033][T10267]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.203549][T10267] RIP: 0023:0xf7f6f579
[  366.205242][T10267] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  366.213802][T10267] RSP: 002b:00000000f570557c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  366.218454][T10267] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000107
[  366.221897][T10267] RDX: 000000000000000c RSI: 0000000020000100 RDI: 0000000000000004
[  366.225635][T10267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  366.228960][T10267] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  366.232347][T10267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  366.236516][T10267]  </TASK>
[  366.238023][    C1] vkms_vblank_simulate: vblank timer overrun
[  368.218663][   T45] team0 (unregistering): Port device team_slave_1 removed
[  368.567346][   T45] team0 (unregistering): Port device team_slave_0 removed
[  369.492748][T10315] FAULT_INJECTION: forcing a failure.
[  369.492748][T10315] name failslab, interval 1, probability 0, space 0, times 0
[  369.498079][T10315] CPU: 1 UID: 0 PID: 10315 Comm: syz.3.1293 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  369.502629][T10315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.506970][T10315] Call Trace:
[  369.508253][T10315]  <TASK>
[  369.509353][T10315]  dump_stack_lvl+0x16c/0x1f0
[  369.511168][T10315]  should_fail_ex+0x497/0x5b0
[  369.512988][T10315]  ? fs_reclaim_acquire+0xae/0x160
[  369.514784][T10315]  should_failslab+0xc2/0x120
[  369.516737][T10315]  __kmalloc_noprof+0xcb/0x410
[  369.518568][T10315]  ? __pfx_lock_acquire+0x10/0x10
[  369.520673][T10315]  tomoyo_realpath_from_path+0xbf/0x710
[  369.522791][T10315]  ? tomoyo_profile+0x47/0x60
[  369.524446][T10315]  tomoyo_path_number_perm+0x245/0x5b0
[  369.527100][T10315]  ? tomoyo_path_number_perm+0x232/0x5b0
[  369.529622][T10315]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  369.532127][T10315]  ? __pfx_lock_release+0x10/0x10
[  369.534328][T10315]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  369.537194][T10315]  ? __fget_files+0x256/0x400
[  369.539147][T10315]  security_file_ioctl_compat+0x75/0xc0
[  369.541414][T10315]  __do_compat_sys_ioctl+0x5d/0x330
[  369.543483][T10315]  __do_fast_syscall_32+0x73/0x120
[  369.545643][T10315]  do_fast_syscall_32+0x32/0x80
[  369.547780][T10315]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  369.550035][T10315] RIP: 0023:0xf7f32579
[  369.551718][T10315] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  369.559937][T10315] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  369.563400][T10315] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008915
[  369.566710][T10315] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  369.569808][T10315] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  369.573180][T10315] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  369.576614][T10315] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  369.580031][T10315]  </TASK>
[  369.581499][    C1] vkms_vblank_simulate: vblank timer overrun
[  369.592886][T10315] ERROR: Out of memory at tomoyo_realpath_from_path.
[  370.559312][   T45] IPVS: stop unused estimator thread 0...
[  370.792679][   T57] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  370.813356][ T5380] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  370.978786][   T57] usb 6-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b
[  370.982807][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.988219][   T57] usb 6-1: config 0 descriptor??
[  370.994631][   T57] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input10
[  370.995503][ T5380] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  371.002684][ T5380] usb 5-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config
[  371.011320][ T5380] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  371.015817][ T5380] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  371.024309][ T5380] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  371.028670][ T5380] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  371.032090][ T5380] usb 5-1: Product: syz
[  371.034182][ T5380] usb 5-1: Manufacturer: syz
[  371.046663][ T5380] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  371.210604][ T5380] usb 6-1: USB disconnect, device number 18
[  371.259511][ T5384] usb 5-1: USB disconnect, device number 28
[  371.863433][ T5384] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  372.056179][ T5384] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  372.059833][ T5384] usb 5-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config
[  372.066376][ T5384] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  372.070483][ T5384] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  372.081457][ T5384] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  372.086586][ T5384] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  372.090083][ T5384] usb 5-1: Product: syz
[  372.091973][ T5384] usb 5-1: Manufacturer: syz
[  372.098314][ T5384] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  372.330218][ T5384] usb 5-1: USB disconnect, device number 29
[  372.785638][T10355] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1304'.
[  372.789605][T10355] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[  372.796546][T10355] syzkaller0: entered promiscuous mode
[  372.798916][T10355] syzkaller0: entered allmulticast mode
[  373.034189][ T5384] IPVS: starting estimator thread 0...
[  373.122843][T10359] IPVS: using max 34 ests per chain, 81600 per kthread
[  373.426960][T10366] FAULT_INJECTION: forcing a failure.
[  373.426960][T10366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.432400][T10366] CPU: 2 UID: 0 PID: 10366 Comm: syz.2.1307 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  373.436837][T10366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.441496][T10366] Call Trace:
[  373.442963][T10366]  <TASK>
[  373.444251][T10366]  dump_stack_lvl+0x16c/0x1f0
[  373.446326][T10366]  should_fail_ex+0x497/0x5b0
[  373.448372][T10366]  _copy_from_user+0x30/0xf0
[  373.450374][T10366]  __sys_bpf+0x239/0x5600
[  373.452262][T10366]  ? __pfx___sys_bpf+0x10/0x10
[  373.454328][T10366]  ? ksys_write+0x12f/0x260
[  373.456255][T10366]  ? find_held_lock+0x2d/0x110
[  373.458297][T10366]  ? ksys_write+0x21c/0x260
[  373.460209][T10366]  ? __pfx_lock_release+0x10/0x10
[  373.462318][T10366]  ? vfs_write+0x14d/0x1140
[  373.464044][T10366]  ? __mutex_unlock_slowpath+0x164/0x650
[  373.466362][T10366]  ? fput+0x32/0x390
[  373.467829][T10366]  ? ksys_write+0x1ab/0x260
[  373.469831][T10366]  ? __pfx_ksys_write+0x10/0x10
[  373.471942][T10366]  __ia32_sys_bpf+0x76/0xe0
[  373.473909][T10366]  __do_fast_syscall_32+0x73/0x120
[  373.475874][T10366]  do_fast_syscall_32+0x32/0x80
[  373.478122][T10366]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.480825][T10366] RIP: 0023:0xf7f6f579
[  373.482623][T10366] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  373.490504][T10366] RSP: 002b:00000000f572657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  373.494157][T10366] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00000000200001c0
[  373.497345][T10366] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  373.500732][T10366] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  373.504097][T10366] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  373.507388][T10366] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.510746][T10366]  </TASK>
[  373.571294][T10375] FAULT_INJECTION: forcing a failure.
[  373.571294][T10375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.581490][T10375] CPU: 1 UID: 0 PID: 10375 Comm: syz.2.1310 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  373.586759][T10375] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.591556][T10375] Call Trace:
[  373.594492][T10375]  <TASK>
[  373.595709][T10375]  dump_stack_lvl+0x16c/0x1f0
[  373.597853][T10375]  should_fail_ex+0x497/0x5b0
[  373.600139][T10375]  _copy_to_user+0x30/0xc0
[  373.601881][T10375]  simple_read_from_buffer+0xd0/0x160
[  373.603992][T10375]  proc_fail_nth_read+0x1b0/0x290
[  373.606056][T10375]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.608580][T10375]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.611330][T10375]  vfs_read+0x1d4/0xbd0
[  373.613979][T10375]  ? __pfx___mutex_lock+0x10/0x10
[  373.617057][T10375]  ? __fdget_pos+0xeb/0x180
[  373.619256][T10375]  ? __pfx_vfs_read+0x10/0x10
[  373.621358][T10375]  ? __pfx___mutex_lock+0x10/0x10
[  373.623688][T10375]  ? __fget_files+0x256/0x400
[  373.625786][T10375]  ksys_read+0x12f/0x260
[  373.627628][T10375]  ? __pfx_ksys_read+0x10/0x10
[  373.629739][T10375]  __do_fast_syscall_32+0x73/0x120
[  373.632558][T10375]  do_fast_syscall_32+0x32/0x80
[  373.634928][T10375]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.637760][T10375] RIP: 0023:0xf7f6f579
[  373.639823][T10375] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  373.647441][T10375] RSP: 002b:00000000f57265b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  373.650641][T10375] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5726630
[  373.653864][T10375] RDX: 000000000000000f RSI: 00000000f73fbff4 RDI: 0000000000000000
[  373.657101][T10375] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  373.660609][T10375] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  373.663588][T10375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.666663][T10375]  </TASK>
[  373.667933][    C1] vkms_vblank_simulate: vblank timer overrun
[  378.098837][T10435] FAULT_INJECTION: forcing a failure.
[  378.098837][T10435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.104393][T10435] CPU: 3 UID: 0 PID: 10435 Comm: syz.2.1327 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  378.108690][T10435] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.113118][T10435] Call Trace:
[  378.114531][T10435]  <TASK>
[  378.115780][T10435]  dump_stack_lvl+0x16c/0x1f0
[  378.117735][T10435]  should_fail_ex+0x497/0x5b0
[  378.119707][T10435]  _copy_from_user+0x30/0xf0
[  378.121666][T10435]  get_compat_msghdr+0xa8/0x170
[  378.123693][T10435]  ? __pfx_get_compat_msghdr+0x10/0x10
[  378.125952][T10435]  ? find_held_lock+0x2d/0x110
[  378.127952][T10435]  ___sys_recvmsg+0x193/0x1a0
[  378.129944][T10435]  ? __pfx____sys_recvmsg+0x10/0x10
[  378.132130][T10435]  ? __fget_light+0x173/0x210
[  378.134027][T10435]  do_recvmmsg+0x51a/0x750
[  378.135900][T10435]  ? __pfx_do_recvmmsg+0x10/0x10
[  378.137988][T10435]  ? __pfx_lock_release+0x10/0x10
[  378.140149][T10435]  ? vfs_write+0x14d/0x1140
[  378.142088][T10435]  __sys_recvmmsg+0x21e/0x280
[  378.144058][T10435]  ? __pfx___sys_recvmmsg+0x10/0x10
[  378.146231][T10435]  ? __pfx_ksys_write+0x10/0x10
[  378.148282][T10435]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  378.150900][T10435]  ? lockdep_hardirqs_on+0x7c/0x110
[  378.153083][T10435]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  378.155888][T10435]  __do_fast_syscall_32+0x73/0x120
[  378.158071][T10435]  do_fast_syscall_32+0x32/0x80
[  378.160055][T10435]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  378.162689][T10435] RIP: 0023:0xf7f6f579
[  378.164403][T10435] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  378.171835][T10435] RSP: 002b:00000000f570557c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  378.175246][T10435] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020004580
[  378.178515][T10435] RDX: 0000000000000300 RSI: 0000000000010062 RDI: 0000000000000000
[  378.181786][T10435] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  378.184903][T10435] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  378.188152][T10435] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  378.191438][T10435]  </TASK>
[  378.626619][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  378.629322][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  379.485235][   T39] audit: type=1326 audit(1722153295.964:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10455 comm="syz.3.1335" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x0
[  379.590790][T10460] FAULT_INJECTION: forcing a failure.
[  379.590790][T10460] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  379.597728][T10460] CPU: 0 UID: 0 PID: 10460 Comm: syz.3.1335 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  379.601609][T10460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  379.606032][T10460] Call Trace:
[  379.607492][T10460]  <TASK>
[  379.608799][T10460]  dump_stack_lvl+0x16c/0x1f0
[  379.610877][T10460]  should_fail_ex+0x497/0x5b0
[  379.613101][T10460]  ? fs_reclaim_acquire+0xae/0x160
[  379.615362][T10460]  should_fail_alloc_page+0xe7/0x130
[  379.617662][T10460]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  379.620218][T10460]  ? hlock_class+0x4e/0x130
[  379.622164][T10460]  __alloc_pages_noprof+0x194/0x2460
[  379.624113][T10460]  ? mark_lock+0xb5/0xc60
[  379.625724][T10460]  ? __kernel_text_address+0xd/0x40
[  379.627625][T10460]  ? hlock_class+0x4e/0x130
[  379.629308][T10460]  ? __lock_acquire+0xbdd/0x3cb0
[  379.631118][T10460]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  379.633212][T10460]  ? __pfx___lock_acquire+0x10/0x10
[  379.635183][T10460]  ? __pfx_mark_lock+0x10/0x10
[  379.637442][T10460]  ? hlock_class+0x4e/0x130
[  379.639733][T10460]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.642235][T10460]  ? policy_nodemask+0xea/0x4e0
[  379.644379][T10460]  alloc_pages_mpol_noprof+0x275/0x610
[  379.646450][T10460]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  379.648573][T10460]  ? find_held_lock+0x2d/0x110
[  379.650737][T10460]  folio_alloc_mpol_noprof+0x36/0xd0
[  379.652940][T10460]  vma_alloc_folio_noprof+0xee/0x1b0
[  379.655201][T10460]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  379.658527][T10460]  __handle_mm_fault+0x2d18/0x5360
[  379.660691][T10460]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  379.662885][T10460]  ? __pfx___handle_mm_fault+0x10/0x10
[  379.665288][T10460]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  379.667746][T10460]  handle_mm_fault+0x44e/0x7b0
[  379.669857][T10460]  ? __pkru_allows_pkey+0x52/0xb0
[  379.672014][T10460]  do_user_addr_fault+0x60d/0x13f0
[  379.674285][T10460]  exc_page_fault+0x5c/0xc0
[  379.676463][T10460]  asm_exc_page_fault+0x26/0x30
[  379.678414][T10460] RIP: 0023:0xf7202a70
[  379.680005][T10460] Code: 20 00 00 65 8b 15 14 00 00 00 89 94 24 cc 20 00 00 8b 56 68 85 d2 0f 85 46 01 00 00 c7 46 68 ff ff ff ff 8d 94 24 cc 00 00 00 <89> b4 24 bc 00 00 00 89 54 24 38 89 54 24 34 8d 94 24 cc 20 00 00
[  379.688130][T10460] RSP: 002b:00000000f56c34b0 EFLAGS: 00010246
[  379.690737][T10460] RAX: 00000000f72ab174 RBX: 00000000f73bbff4 RCX: 00000000f56c55e4
[  379.694358][T10460] RDX: 00000000f56c357c RSI: 00000000f73c2240 RDI: 0000000000000009
[  379.697715][T10460] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  379.701045][T10460] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  379.704828][T10460] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  379.708575][T10460]  </TASK>
[  379.711036][T10460] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  380.604391][T10479] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.600205][T10487] FAULT_INJECTION: forcing a failure.
[  381.600205][T10487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.607207][T10487] CPU: 0 UID: 0 PID: 10487 Comm: syz.2.1343 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  381.611759][T10487] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  381.616592][T10487] Call Trace:
[  381.617937][T10487]  <TASK>
[  381.619552][T10487]  dump_stack_lvl+0x16c/0x1f0
[  381.621186][T10487]  should_fail_ex+0x497/0x5b0
[  381.623231][T10487]  _copy_from_user+0x30/0xf0
[  381.625415][T10487]  get_compat_msghdr+0xa8/0x170
[  381.627461][T10487]  ? __pfx_get_compat_msghdr+0x10/0x10
[  381.627480][T10487]  ? __pfx___lock_acquire+0x10/0x10
[  381.627497][T10487]  ___sys_sendmsg+0x1b0/0x1e0
[  381.634058][T10487]  ? __pfx____sys_sendmsg+0x10/0x10
[  381.636093][T10487]  ? ksys_write+0x21c/0x260
[  381.637960][T10487]  ? __fget_light+0x173/0x210
[  381.639801][T10487]  __sys_sendmsg+0x117/0x1f0
[  381.641840][T10487]  ? __pfx___sys_sendmsg+0x10/0x10
[  381.643908][T10487]  __do_fast_syscall_32+0x73/0x120
[  381.646035][T10487]  do_fast_syscall_32+0x32/0x80
[  381.648083][T10487]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  381.650837][T10487] RIP: 0023:0xf7f6f579
[  381.652649][T10487] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  381.660616][T10487] RSP: 002b:00000000f572657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  381.664101][T10487] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000900
[  381.667425][T10487] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  381.670735][T10487] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  381.674196][T10487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  381.678115][T10487] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  381.681487][T10487]  </TASK>
[  381.904856][   T35] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  382.094284][   T35] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  382.097602][   T35] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  382.100959][   T35] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  382.107796][   T35] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  382.111759][   T35] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  382.115370][   T35] usb 6-1: Product: syz
[  382.116990][   T35] usb 6-1: Manufacturer: syz
[  382.128647][   T35] cdc_wdm 6-1:1.0: skipping garbage
[  382.131187][   T35] cdc_wdm 6-1:1.0: skipping garbage
[  382.137498][   T35] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  382.330558][   T25] usb 6-1: USB disconnect, device number 19
[  382.422734][   T57] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  382.616884][   T57] usb 7-1: Using ep0 maxpacket: 16
[  382.625863][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  382.630834][   T57] usb 7-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  382.635186][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.643584][   T57] usb 7-1: config 0 descriptor??
[  382.850175][T10503] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  382.854446][T10503] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  382.862319][   T39] audit: type=1400 audit(1722153299.334:33): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=10501 comm="syz.2.1348"
[  382.902739][   T25] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  383.005364][T10515] fuse: Bad value for 'user_id'
[  383.007596][T10515] fuse: Bad value for 'user_id'
[  383.012097][T10515] syz.2.1352[10515] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.012832][T10515] syz.2.1352[10515] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.050485][   T57] usbhid 7-1:0.0: can't add hid device: -71
[  383.058855][   T57] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  383.065838][   T57] usb 7-1: USB disconnect, device number 13
[  383.095761][   T25] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  383.099353][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  383.103997][   T25] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  383.111165][   T25] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  383.115441][   T25] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  383.118874][   T25] usb 6-1: Product: syz
[  383.120651][   T25] usb 6-1: Manufacturer: syz
[  383.128505][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  383.130828][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  383.133592][   T25] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  383.331021][   T25] usb 6-1: USB disconnect, device number 20
[  383.720907][T10523] FAULT_INJECTION: forcing a failure.
[  383.720907][T10523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  383.733819][T10523] CPU: 0 UID: 0 PID: 10523 Comm: syz.3.1355 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  383.738646][T10523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.743706][T10523] Call Trace:
[  383.745380][T10523]  <TASK>
[  383.746681][T10523]  dump_stack_lvl+0x16c/0x1f0
[  383.748803][T10523]  should_fail_ex+0x497/0x5b0
[  383.749405][T10525] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1354'.
[  383.750927][T10523]  strncpy_from_user+0x38/0x320
[  383.757412][T10523]  setxattr_copy+0x8a/0x200
[  383.759729][T10523]  path_setxattr+0xfc/0x280
[  383.761733][T10523]  ? __pfx_path_setxattr+0x10/0x10
[  383.764289][T10523]  ? __pfx_lock_release+0x10/0x10
[  383.766688][T10523]  ? fput+0x32/0x390
[  383.768452][T10523]  ? ksys_write+0x1ab/0x260
[  383.770989][T10523]  ? __pfx_ksys_write+0x10/0x10
[  383.773125][T10523]  __ia32_sys_lsetxattr+0xbd/0x160
[  383.774722][T10525] IPv6: Can't replace route, no match found
[  383.775350][T10523]  ? lockdep_hardirqs_on+0x7c/0x110
[  383.780255][T10523]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  383.783439][T10523]  __do_fast_syscall_32+0x73/0x120
[  383.785942][T10523]  do_fast_syscall_32+0x32/0x80
[  383.788012][T10523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  383.790845][T10523] RIP: 0023:0xf7f32579
[  383.792736][T10523] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  383.801520][T10523] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 00000000000000e3
[  383.805467][T10523] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000020000040
[  383.809234][T10523] RDX: 0000000020000280 RSI: 0000000000000004 RDI: 0000000000000000
[  383.812726][T10523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  383.816184][T10523] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  383.819756][T10523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  383.823415][T10523]  </TASK>
[  384.137950][T10540] FAULT_INJECTION: forcing a failure.
[  384.137950][T10540] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  384.150480][T10540] CPU: 3 UID: 0 PID: 10540 Comm: syz.1.1362 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  384.155112][T10540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  384.160378][T10540] Call Trace:
[  384.161803][T10540]  <TASK>
[  384.163760][T10540]  dump_stack_lvl+0x16c/0x1f0
[  384.166119][T10540]  should_fail_ex+0x497/0x5b0
[  384.167820][T10540]  ? fs_reclaim_acquire+0xae/0x160
[  384.169865][T10540]  should_fail_alloc_page+0xe7/0x130
[  384.171869][T10540]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  384.174291][T10540]  ? hlock_class+0x4e/0x130
[  384.176247][T10540]  __alloc_pages_noprof+0x194/0x2460
[  384.178505][T10540]  ? __pfx_mark_lock+0x10/0x10
[  384.180708][T10540]  ? __pfx_mark_lock+0x10/0x10
[  384.183649][T10540]  ? __pfx___lock_acquire+0x10/0x10
[  384.186215][T10540]  ? hlock_class+0x4e/0x130
[  384.188156][T10540]  ? __lock_acquire+0xbdd/0x3cb0
[  384.190022][T10540]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  384.192123][T10540]  ? __pfx___lock_acquire+0x10/0x10
[  384.194182][T10540]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  384.196698][T10540]  ? policy_nodemask+0xea/0x4e0
[  384.198349][T10540]  alloc_pages_mpol_noprof+0x275/0x610
[  384.200618][T10540]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  384.203348][T10540]  ? lock_acquire+0x1b1/0x560
[  384.205081][T10540]  ? find_held_lock+0x2d/0x110
[  384.206485][T10540]  folio_alloc_mpol_noprof+0x36/0xd0
[  384.208337][T10540]  vma_alloc_folio_noprof+0xee/0x1b0
[  384.210300][T10540]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  384.212505][T10540]  __handle_mm_fault+0x2d18/0x5360
[  384.214399][T10540]  ? no_page_table+0xc7/0x230
[  384.216158][T10540]  ? __pfx___handle_mm_fault+0x10/0x10
[  384.218004][T10540]  ? follow_page_pte+0x3dc/0x1cf0
[  384.220130][T10540]  ? vma_pgtable_walk_end+0x3d/0x70
[  384.222113][T10540]  handle_mm_fault+0x44e/0x7b0
[  384.223982][T10540]  __get_user_pages+0x475/0x15c0
[  384.226003][T10540]  ? __pfx___get_user_pages+0x10/0x10
[  384.228140][T10540]  ? down_read_killable+0xcc/0x380
[  384.230146][T10540]  ? __pfx_down_read_killable+0x10/0x10
[  384.232748][T10540]  __gup_longterm_locked+0x22e/0x1b30
[  384.234840][T10540]  ? __pfx_lock_release+0x10/0x10
[  384.236845][T10540]  ? __pfx___gup_longterm_locked+0x10/0x10
[  384.239221][T10540]  ? const_folio_flags.constprop.0+0x56/0x150
[  384.241579][T10540]  ? sanity_check_pinned_pages+0x384/0x1220
[  384.243873][T10540]  gup_fast_fallback+0x153d/0x24e0
[  384.245772][T10540]  ? __pfx_gup_fast_fallback+0x10/0x10
[  384.247768][T10540]  pin_user_pages_fast+0xa8/0x100
[  384.249707][T10540]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  384.251950][T10540]  ? __kmalloc_noprof+0x207/0x410
[  384.253712][T10540]  ? __might_fault+0xe3/0x190
[  384.255180][T10540]  rds_info_getsockopt+0x39a/0x4f0
[  384.256886][T10540]  ? __might_fault+0x13b/0x190
[  384.258453][T10540]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  384.259957][T10540]  ? __pfx_aa_sk_perm+0x10/0x10
[  384.261394][T10540]  ? find_held_lock+0x2d/0x110
[  384.263158][T10540]  ? __might_fault+0xe3/0x190
[  384.264981][T10540]  rds_getsockopt+0x173/0x2d0
[  384.266796][T10540]  ? __pfx_rds_getsockopt+0x10/0x10
[  384.268756][T10540]  do_sock_getsockopt+0x2e5/0x7c0
[  384.270672][T10540]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  384.272638][T10540]  ? __fget_files+0x256/0x400
[  384.274409][T10540]  ? __fget_light+0x173/0x210
[  384.276184][T10540]  __sys_getsockopt+0x1a1/0x270
[  384.278044][T10540]  ? __pfx___sys_getsockopt+0x10/0x10
[  384.280692][T10540]  ? fput+0x32/0x390
[  384.282587][T10540]  ? ksys_write+0x1ab/0x260
[  384.284430][T10540]  ? __pfx_ksys_write+0x10/0x10
[  384.286721][T10540]  __ia32_sys_getsockopt+0xbc/0x160
[  384.288966][T10540]  ? lockdep_hardirqs_on+0x7c/0x110
[  384.290961][T10540]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  384.293737][T10540]  __do_fast_syscall_32+0x73/0x120
[  384.295677][T10540]  do_fast_syscall_32+0x32/0x80
[  384.297471][T10540]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  384.299816][T10540] RIP: 0023:0xf73ce579
[  384.301274][T10540] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  384.307816][T10540] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 000000000000016d
[  384.311216][T10540] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114
[  384.314218][T10540] RDX: 0000000000002712 RSI: 0000000020000580 RDI: 0000000020000000
[  384.317103][T10540] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  384.319962][T10540] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  384.323375][T10540] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  384.326339][T10540]  </TASK>
[  384.522076][T10551] fuse: Bad value for 'user_id'
[  384.530564][T10551] fuse: Bad value for 'user_id'
[  384.541034][T10551] syz.0.1366[10551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.541185][T10551] syz.0.1366[10551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.730847][T10562] syz.3.1370[10562] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.738607][T10562] syz.3.1370[10562] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.788277][   T39] audit: type=1326 audit(1722153301.264:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10561 comm="syz.3.1370" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x0
[  384.851836][T10565] syz.3.1370[10565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.851993][T10565] syz.3.1370[10565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  385.053088][ T5380] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  385.255974][ T5380] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  385.260268][ T5380] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  385.264556][ T5380] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  385.272926][ T5380] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  385.277330][ T5380] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  385.281047][ T5380] usb 6-1: Product: syz
[  385.283134][ T5380] usb 6-1: Manufacturer: syz
[  385.289157][ T5380] cdc_wdm 6-1:1.0: skipping garbage
[  385.291281][ T5380] cdc_wdm 6-1:1.0: skipping garbage
[  385.293821][ T5380] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  385.412263][T10571] FAULT_INJECTION: forcing a failure.
[  385.412263][T10571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.418409][T10571] CPU: 1 UID: 0 PID: 10571 Comm: syz.0.1373 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  385.424142][T10571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  385.429858][T10571] Call Trace:
[  385.431611][T10571]  <TASK>
[  385.433183][T10571]  dump_stack_lvl+0x16c/0x1f0
[  385.435436][T10571]  should_fail_ex+0x497/0x5b0
[  385.437540][T10571]  _copy_from_user+0x30/0xf0
[  385.439988][T10571]  get_compat_msghdr+0xa8/0x170
[  385.443339][T10571]  ? __pfx_get_compat_msghdr+0x10/0x10
[  385.445935][T10571]  ? __pfx___lock_acquire+0x10/0x10
[  385.448891][T10571]  ___sys_sendmsg+0x1b0/0x1e0
[  385.451174][T10571]  ? __pfx____sys_sendmsg+0x10/0x10
[  385.453586][T10571]  ? ksys_write+0x21c/0x260
[  385.455932][T10571]  ? __fget_light+0x173/0x210
[  385.458348][T10571]  __sys_sendmsg+0x117/0x1f0
[  385.460463][T10571]  ? __pfx___sys_sendmsg+0x10/0x10
[  385.463327][T10571]  __do_fast_syscall_32+0x73/0x120
[  385.466353][T10571]  do_fast_syscall_32+0x32/0x80
[  385.468598][T10571]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  385.471377][T10571] RIP: 0023:0xf7f02579
[  385.473277][T10571] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  385.481954][T10571] RSP: 002b:00000000f56b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  385.486083][T10571] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200
[  385.489725][T10571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  385.493328][T10571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  385.496861][T10571] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  385.500386][T10571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  385.503931][T10571]  </TASK>
[  385.519770][    T8] usb 6-1: USB disconnect, device number 21
[  385.779577][T10579] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  385.892700][ T5384] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  386.072802][ T5384] usb 8-1: Using ep0 maxpacket: 16
[  386.077802][ T5384] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  386.082883][    T8] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  386.085118][ T5384] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  386.090154][ T5384] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.094292][ T5384] usb 8-1: Product: syz
[  386.096149][ T5384] usb 8-1: Manufacturer: syz
[  386.098226][ T5384] usb 8-1: SerialNumber: syz
[  386.102383][ T5384] usb 8-1: config 0 descriptor??
[  386.115167][ T5384] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input11
[  386.278436][    T8] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  386.282370][    T8] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  386.286737][    T8] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  386.295578][    T8] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  386.299557][    T8] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  386.305214][    T8] usb 6-1: Product: syz
[  386.307121][    T8] usb 6-1: Manufacturer: syz
[  386.316642][    T8] cdc_wdm 6-1:1.0: skipping garbage
[  386.320277][    T8] cdc_wdm 6-1:1.0: skipping garbage
[  386.323015][    T8] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  386.503912][   T25] usb 8-1: USB disconnect, device number 23
[  386.527666][   T58] usb 6-1: USB disconnect, device number 22
[  387.908392][    C0] vkms_vblank_simulate: vblank timer overrun
[  387.971049][T10605] FAULT_INJECTION: forcing a failure.
[  387.971049][T10605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.977744][T10605] CPU: 3 UID: 0 PID: 10605 Comm: syz.2.1383 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  387.986503][T10605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  387.991642][T10605] Call Trace:
[  387.993204][T10605]  <TASK>
[  387.994553][T10605]  dump_stack_lvl+0x16c/0x1f0
[  387.996754][T10605]  should_fail_ex+0x497/0x5b0
[  387.998903][T10605]  _copy_to_user+0x30/0xc0
[  388.000948][T10605]  simple_read_from_buffer+0xd0/0x160
[  388.003353][T10605]  proc_fail_nth_read+0x1b0/0x290
[  388.004367][T10608] fuse: Bad value for 'group_id'
[  388.005630][T10605]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.008045][T10608] fuse: Bad value for 'group_id'
[  388.010393][T10605]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.010424][T10605]  vfs_read+0x1d4/0xbd0
[  388.017428][T10605]  ? __fdget_pos+0xeb/0x180
[  388.019474][T10605]  ? __pfx_vfs_read+0x10/0x10
[  388.021931][T10605]  ? __pfx___mutex_lock+0x10/0x10
[  388.024167][T10605]  ? __fget_files+0x256/0x400
[  388.026305][T10605]  ksys_read+0x12f/0x260
[  388.028225][T10605]  ? __pfx_ksys_read+0x10/0x10
[  388.030402][T10605]  __do_fast_syscall_32+0x73/0x120
[  388.032552][T10605]  do_fast_syscall_32+0x32/0x80
[  388.034707][T10605]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  388.037180][T10605] RIP: 0023:0xf7f6f579
[  388.038946][T10605] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  388.046371][T10605] RSP: 002b:00000000f57265b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  388.049671][T10605] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5726630
[  388.053172][T10605] RDX: 000000000000000f RSI: 00000000f73fbff4 RDI: 0000000000000000
[  388.057640][T10605] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  388.062157][T10605] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  388.066287][T10605] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  388.070489][T10605]  </TASK>
[  388.418627][   T25] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  388.618556][   T25] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  388.621774][   T25] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  388.626387][   T25] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  388.636995][   T25] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  388.640800][   T25] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  388.659148][   T25] usb 7-1: Product: syz
[  388.660998][   T25] usb 7-1: Manufacturer: syz
[  388.667880][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  388.670146][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  388.672296][   T25] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  388.852764][   T35] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  388.879158][   T25] usb 7-1: USB disconnect, device number 14
[  389.069450][   T35] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  389.073310][   T35] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  389.081839][   T35] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  389.085501][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  389.092253][   T35] usb 6-1: SerialNumber: syz
[  389.345580][   T35] usb 6-1: 0:2 : does not exist
[  389.360442][   T35] usb 6-1: USB disconnect, device number 23
[  389.492722][   T25] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  389.593770][ T7188] udevd[7188]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  389.700968][   T25] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  389.704839][   T25] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  389.708800][   T25] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  389.719539][   T25] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  389.723608][   T25] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  389.727086][   T25] usb 7-1: Product: syz
[  389.728962][   T25] usb 7-1: Manufacturer: syz
[  389.737767][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  389.740216][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  389.743524][   T25] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  389.957535][   T35] usb 7-1: USB disconnect, device number 15
[  390.700504][T10666] FAULT_INJECTION: forcing a failure.
[  390.700504][T10666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.727273][T10666] CPU: 3 UID: 0 PID: 10666 Comm: syz.3.1398 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  390.731586][T10666] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  390.735762][T10666] Call Trace:
[  390.736917][T10666]  <TASK>
[  390.738124][T10666]  dump_stack_lvl+0x16c/0x1f0
[  390.740213][T10666]  should_fail_ex+0x497/0x5b0
[  390.742311][T10666]  _copy_from_user+0x30/0xf0
[  390.744418][T10666]  get_compat_msghdr+0xa8/0x170
[  390.746301][T10666]  ? __pfx_get_compat_msghdr+0x10/0x10
[  390.748557][T10666]  ? __pfx___lock_acquire+0x10/0x10
[  390.750642][T10666]  ___sys_sendmsg+0x1b0/0x1e0
[  390.752352][T10666]  ? __pfx____sys_sendmsg+0x10/0x10
[  390.754523][T10666]  ? ksys_write+0x21c/0x260
[  390.756655][T10666]  ? __fget_light+0x173/0x210
[  390.758638][T10666]  __sys_sendmsg+0x117/0x1f0
[  390.760652][T10666]  ? __pfx___sys_sendmsg+0x10/0x10
[  390.762731][T10666]  __do_fast_syscall_32+0x73/0x120
[  390.765050][T10666]  do_fast_syscall_32+0x32/0x80
[  390.767073][T10666]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  390.769816][T10666] RIP: 0023:0xf7f32579
[  390.771591][T10666] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  390.779624][T10666] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  390.782956][T10666] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200
[  390.786916][T10666] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  390.789879][T10666] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  390.793107][T10666] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  390.796640][T10666] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  390.799911][T10666]  </TASK>
[  390.942793][ T5350] Bluetooth: hci1: command 0x0406 tx timeout
[  391.211562][T10687] pim6reg1: entered promiscuous mode
[  391.214851][T10687] pim6reg1: entered allmulticast mode
[  391.572841][   T25] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  391.736347][T10697] FAULT_INJECTION: forcing a failure.
[  391.736347][T10697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.741885][T10697] CPU: 2 UID: 0 PID: 10697 Comm: syz.1.1409 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  391.746353][T10697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  391.751025][T10697] Call Trace:
[  391.752536][T10697]  <TASK>
[  391.753883][T10697]  dump_stack_lvl+0x16c/0x1f0
[  391.755996][T10697]  should_fail_ex+0x497/0x5b0
[  391.758140][T10697]  _copy_from_iter+0x411/0xfc0
[  391.760304][T10697]  ? __pfx__copy_from_iter+0x10/0x10
[  391.762683][T10697]  ? __virt_addr_valid+0x5e/0x590
[  391.764941][T10697]  ? __phys_addr_symbol+0x30/0x80
[  391.767162][T10697]  ? __check_object_size+0x497/0x720
[  391.769423][T10697]  skb_copy_datagram_from_iter+0x121/0x6c0
[  391.771996][T10697]  packet_sendmsg+0x2136/0x5390
[  391.774275][T10697]  ? __pfx___might_resched+0x10/0x10
[  391.776618][T10697]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  391.779258][T10697]  ? aa_sk_perm+0x2f5/0xb40
[  391.781310][T10697]  ? __pfx_packet_sendmsg+0x10/0x10
[  391.783624][T10697]  ? __pfx_aa_sk_perm+0x10/0x10
[  391.785793][T10697]  ? __import_iovec+0x1fd/0x6e0
[  391.787926][T10697]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  391.790244][T10697]  ____sys_sendmsg+0x9b4/0xb50
[  391.792341][T10697]  ? __pfx_____sys_sendmsg+0x10/0x10
[  391.794688][T10697]  ? get_compat_msghdr+0x11b/0x170
[  391.797024][T10697]  ? __pfx___lock_acquire+0x10/0x10
[  391.799354][T10697]  ___sys_sendmsg+0x135/0x1e0
[  391.801452][T10697]  ? __pfx____sys_sendmsg+0x10/0x10
[  391.803769][T10697]  ? ksys_write+0x21c/0x260
[  391.805790][T10697]  ? __fget_light+0x173/0x210
[  391.807886][T10697]  __sys_sendmsg+0x117/0x1f0
[  391.810047][T10697]  ? __pfx___sys_sendmsg+0x10/0x10
[  391.812396][T10697]  __do_fast_syscall_32+0x73/0x120
[  391.814673][T10697]  do_fast_syscall_32+0x32/0x80
[  391.816788][T10697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  391.819564][T10697] RIP: 0023:0xf73ce579
[  391.821406][T10697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  391.829909][T10697] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  391.833559][T10697] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  391.836932][T10697] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  391.840396][T10697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  391.843733][T10697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  391.847144][T10697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  391.850592][T10697]  </TASK>
[  391.858158][   T25] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  391.864015][   T25] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  391.868735][   T25] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  391.873040][   T25] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  391.881566][   T25] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  391.886917][   T25] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  391.890606][   T25] usb 5-1: Product: syz
[  391.892771][   T25] usb 5-1: Manufacturer: syz
[  391.900099][   T25] cdc_wdm 5-1:1.0: skipping garbage
[  391.903014][   T25] cdc_wdm 5-1:1.0: skipping garbage
[  391.905337][   T25] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  392.105127][   T35] usb 5-1: USB disconnect, device number 30
[  392.595541][   T35] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  392.794309][   T35] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  392.797493][   T35] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  392.801783][   T35] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  392.828218][   T35] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  392.840961][   T35] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  392.846583][   T35] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  392.850241][   T35] usb 5-1: Product: syz
[  392.855698][   T35] usb 5-1: Manufacturer: syz
[  392.864396][   T35] cdc_wdm 5-1:1.0: skipping garbage
[  392.879201][   T35] cdc_wdm 5-1:1.0: skipping garbage
[  392.881737][   T35] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  393.067429][   T35] usb 5-1: USB disconnect, device number 31
[  393.500117][T10722] FAULT_INJECTION: forcing a failure.
[  393.500117][T10722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  393.505946][T10722] CPU: 3 UID: 0 PID: 10722 Comm: syz.1.1418 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  393.510347][T10722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  393.514916][T10722] Call Trace:
[  393.516377][T10722]  <TASK>
[  393.517660][T10722]  dump_stack_lvl+0x16c/0x1f0
[  393.519850][T10722]  should_fail_ex+0x497/0x5b0
[  393.521891][T10722]  _copy_from_user+0x30/0xf0
[  393.523900][T10722]  get_sg_io_hdr+0x1d3/0x8e0
[  393.525950][T10722]  ? sg_add_request+0x2c8/0x380
[  393.528025][T10722]  ? __pfx_lock_release+0x10/0x10
[  393.530169][T10722]  ? __pfx_get_sg_io_hdr+0x10/0x10
[  393.532379][T10722]  ? _raw_write_unlock_irqrestore+0x3b/0x80
[  393.534800][T10722]  ? sg_add_request+0x2cd/0x380
[  393.536903][T10722]  sg_new_write.isra.0+0x15a/0xaa0
[  393.538946][T10722]  ? __pfx_sg_new_write.isra.0+0x10/0x10
[  393.541348][T10722]  ? do_vfs_ioctl+0x515/0x1a90
[  393.543388][T10722]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  393.545436][T10722]  ? __pfx_lock_release+0x10/0x10
[  393.547339][T10722]  sg_ioctl+0x17ac/0x26c0
[  393.549315][T10722]  ? __pfx_sg_ioctl+0x10/0x10
[  393.551274][T10722]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  393.553711][T10722]  ? __fget_files+0x256/0x400
[  393.555573][T10722]  ? __pfx_sg_ioctl+0x10/0x10
[  393.557724][T10722]  compat_ptr_ioctl+0x71/0xb0
[  393.559744][T10722]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  393.562029][T10722]  __do_compat_sys_ioctl+0x2c3/0x330
[  393.564275][T10722]  __do_fast_syscall_32+0x73/0x120
[  393.566604][T10722]  do_fast_syscall_32+0x32/0x80
[  393.568467][T10722]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  393.570967][T10722] RIP: 0023:0xf73ce579
[  393.572686][T10722] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  393.580541][T10722] RSP: 002b:00000000f56e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  393.583944][T10722] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000002285
[  393.587253][T10722] RDX: 0000000020000740 RSI: 0000000000000000 RDI: 0000000000000000
[  393.590587][T10722] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  393.593953][T10722] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  393.596723][T10722] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  393.599129][T10722]  </TASK>
[  393.910906][T10726] FAULT_INJECTION: forcing a failure.
[  393.910906][T10726] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  393.916717][T10726] CPU: 1 UID: 0 PID: 10726 Comm: syz.0.1420 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  393.920704][T10726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  393.925196][T10726] Call Trace:
[  393.926353][T10726]  <TASK>
[  393.927649][T10726]  dump_stack_lvl+0x16c/0x1f0
[  393.929790][T10726]  should_fail_ex+0x497/0x5b0
[  393.932027][T10726]  _copy_to_user+0x30/0xc0
[  393.934117][T10726]  snd_seq_ioctl+0x344/0x3f0
[  393.936184][T10726]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  393.938375][T10726]  ? __fget_files+0x256/0x400
[  393.940440][T10726]  snd_seq_ioctl_compat+0xf0/0x310
[  393.942634][T10726]  ? __pfx_snd_seq_ioctl_compat+0x10/0x10
[  393.944965][T10726]  __do_compat_sys_ioctl+0x2c3/0x330
[  393.946977][T10726]  __do_fast_syscall_32+0x73/0x120
[  393.948934][T10726]  do_fast_syscall_32+0x32/0x80
[  393.950761][T10726]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  393.953263][T10726] RIP: 0023:0xf7f02579
[  393.955023][T10726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  393.963217][T10726] RSP: 002b:00000000f56b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  393.966642][T10726] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c02c5341
[  393.969656][T10726] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000000000000
[  393.972967][T10726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  393.976345][T10726] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  393.979670][T10726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  393.983231][T10726]  </TASK>
[  394.014877][T10727] misc userio: Can't change port type on an already running userio instance
[  394.059955][T10724] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  394.072333][T10724] netlink: 9 bytes leftover after parsing attributes in process `syz.1.1419'.
[  394.081285][T10724] 0·X: renamed from hsr0 (while UP)
[  394.110440][T10724] 0·X: entered allmulticast mode
[  394.114748][T10724] hsr_slave_0: entered allmulticast mode
[  394.117871][T10724] hsr_slave_1: entered allmulticast mode
[  394.121460][T10724] A link change request failed with some changes committed already. Interface 
c0·X may have been left with an inconsistent configuration, please check.
[  394.515599][T10748] IPVS: set_ctl: invalid protocol: 0 127.0.0.1:0
[  394.521868][T10748] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  394.531111][T10748] xt_TPROXY: Can be used only with -p tcp or -p udp
[  395.343042][ T1297] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  395.508342][T10757] syz.1.1429 (10757): drop_caches: 2
[  395.554890][ T1297] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  395.561209][ T1297] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  395.571259][ T1297] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  395.579562][ T1297] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  395.594181][ T1297] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  395.599793][ T1297] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  395.606927][ T1297] usb 5-1: Product: syz
[  395.611028][ T1297] usb 5-1: Manufacturer: syz
[  395.624195][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  395.626549][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  395.628848][ T1297] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  395.837120][ T1297] usb 5-1: USB disconnect, device number 32
[  396.422749][ T1297] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  396.547438][   T35] IPVS: starting estimator thread 0...
[  396.615229][ T1297] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  396.618791][ T1297] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  396.632770][T10766] IPVS: using max 20 ests per chain, 48000 per kthread
[  396.642367][ T1297] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  396.652204][ T1297] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  396.675493][ T1297] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  396.679488][ T1297] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  396.692530][ T1297] usb 5-1: Product: syz
[  396.694502][ T1297] usb 5-1: Manufacturer: syz
[  396.702515][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  396.706680][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  396.709211][ T1297] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  396.908583][ T1297] usb 5-1: USB disconnect, device number 33
[  397.906594][   T39] audit: type=1326 audit(1722153314.384:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  397.925605][   T39] audit: type=1326 audit(1722153314.384:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  397.943520][   T39] audit: type=1326 audit(1722153314.414:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=398 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  397.962661][   T39] audit: type=1326 audit(1722153314.414:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  397.988452][   T39] audit: type=1326 audit(1722153314.414:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.002780][   T39] audit: type=1326 audit(1722153314.414:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.013730][   T39] audit: type=1326 audit(1722153314.424:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.032798][   T39] audit: type=1326 audit(1722153314.424:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.053017][   T39] audit: type=1326 audit(1722153314.424:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.062195][   T39] audit: type=1326 audit(1722153314.424:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10779 comm="syz.0.1436" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  398.554429][T10788] IPVS: set_ctl: invalid protocol: 0 127.0.0.1:0
[  398.557889][T10788] xt_TPROXY: Can be used only with -p tcp or -p udp
[  398.735964][T10792] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1439'.
[  398.746848][T10792] ax25_connect(): syz.3.1439 uses autobind, please contact jreuter@yaina.de
[  400.322861][T10825] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1449'.
[  400.344084][T10825] ax25_connect(): syz.2.1449 uses autobind, please contact jreuter@yaina.de
[  401.192730][ T5350] Bluetooth: hci0: command 0x0406 tx timeout
[  401.488708][T10842] FAULT_INJECTION: forcing a failure.
[  401.488708][T10842] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  401.494787][T10842] CPU: 1 UID: 0 PID: 10842 Comm: syz.0.1455 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  401.499194][T10842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  401.503776][T10842] Call Trace:
[  401.505227][T10842]  <TASK>
[  401.506529][T10842]  dump_stack_lvl+0x16c/0x1f0
[  401.511309][T10842]  should_fail_ex+0x497/0x5b0
[  401.513509][T10842]  _copy_from_user+0x30/0xf0
[  401.515543][T10842]  get_compat_msghdr+0xa8/0x170
[  401.517756][T10842]  ? __pfx_get_compat_msghdr+0x10/0x10
[  401.520475][T10842]  ? kfree+0x245/0x3b0
[  401.522623][T10842]  ___sys_sendmsg+0x1b0/0x1e0
[  401.525081][T10842]  ? __pfx____sys_sendmsg+0x10/0x10
[  401.528369][T10842]  ? __pfx_lock_release+0x10/0x10
[  401.530549][T10842]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  401.532954][T10842]  ? __pfx___might_resched+0x10/0x10
[  401.535376][T10842]  ? __fget_light+0x173/0x210
[  401.537111][T10842]  __sys_sendmmsg+0x2a5/0x450
[  401.539044][T10842]  ? __pfx___sys_sendmmsg+0x10/0x10
[  401.541291][T10842]  ? vfs_write+0x14d/0x1140
[  401.543256][T10842]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  401.545803][T10842]  ? fput+0x32/0x390
[  401.547494][T10842]  ? ksys_write+0x1ab/0x260
[  401.549417][T10842]  ? __pfx_ksys_write+0x10/0x10
[  401.551524][T10842]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  401.554291][T10842]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  401.557277][T10842]  __do_fast_syscall_32+0x73/0x120
[  401.559791][T10842]  do_fast_syscall_32+0x32/0x80
[  401.562121][T10842]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  401.564987][T10842] RIP: 0023:0xf7f02579
[  401.566801][T10842] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  401.573703][T10842] RSP: 002b:00000000f56b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  401.577819][T10842] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000740
[  401.581229][T10842] RDX: 0000000000000300 RSI: 0000000000000000 RDI: 0000000000000000
[  401.584556][T10842] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  401.587892][T10842] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  401.591187][T10842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  401.594476][T10842]  </TASK>
[  401.904476][T10852] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1459'.
[  401.913605][T10852] ax25_connect(): syz.3.1459 uses autobind, please contact jreuter@yaina.de
[  402.191525][T10859] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  403.132844][   T25] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  403.316715][   T25] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  403.320915][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  403.331016][   T25] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  403.339593][   T25] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  403.344589][   T25] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  403.348314][   T25] usb 6-1: Product: syz
[  403.350184][   T25] usb 6-1: Manufacturer: syz
[  403.361044][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  403.363837][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  403.366111][   T25] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  403.592907][   T25] usb 6-1: USB disconnect, device number 24
[  404.142770][ T5350] Bluetooth: hci2: command 0x0405 tx timeout
[  404.195958][   T25] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  404.385888][   T25] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  404.392105][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  404.396397][   T25] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  404.418162][   T25] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  404.422168][   T25] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  404.431904][   T25] usb 6-1: Product: syz
[  404.434116][   T25] usb 6-1: Manufacturer: syz
[  404.445776][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  404.449301][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  404.451849][   T25] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  404.666768][ T5381] usb 6-1: USB disconnect, device number 25
[  404.773716][T10891] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1474'.
[  406.826808][T10923] netlink: 'syz.0.1484': attribute type 1 has an invalid length.
[  407.373764][T10941] Bluetooth: MGMT ver 1.23
[  407.395168][   T66] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  407.642774][   T35] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  407.832795][   T35] usb 6-1: Using ep0 maxpacket: 32
[  407.839893][   T35] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[  407.847717][   T35] usb 6-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  407.851528][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.859807][   T35] usb 6-1: Product: syz
[  407.864900][   T35] usb 6-1: Manufacturer: syz
[  407.868349][   T35] usb 6-1: SerialNumber: syz
[  407.881875][   T35] usb 6-1: config 0 descriptor??
[  407.893200][T10945] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  407.900387][   T35] hub 6-1:0.0: bad descriptor, ignoring hub
[  407.908709][   T35] hub 6-1:0.0: probe with driver hub failed with error -5
[  407.915673][   T35] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input13
[  408.136202][   T39] kauditd_printk_skb: 13 callbacks suppressed
[  408.136300][   T39] audit: type=1326 audit(1722153324.614:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.1.1493" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x0
[  408.350517][T10955] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3293184000 (421527552000 ns) > initial count (144451829760 ns). Using initial count to start timer.
[  408.362346][T10955] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1493'.
[  408.482774][   T35] usb 6-1: USB disconnect, device number 26
[  408.482838][    C3] usbtouchscreen 6-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  408.570780][T10961] netlink: 'syz.2.1498': attribute type 13 has an invalid length.
[  409.716424][T10976] ipt_ECN: cannot use operation on non-tcp rule
[  409.923938][ T5378] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  410.112677][ T5378] usb 5-1: Using ep0 maxpacket: 8
[  410.116742][ T5378] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  410.120174][ T5378] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  410.124686][ T5378] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  410.128166][ T5378] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  410.131435][ T5378] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  410.136650][ T5378] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  410.140302][ T5378] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.366798][ T5378] usb 5-1: usb_control_msg returned -32
[  410.368957][ T5378] usbtmc 5-1:16.0: can't read capabilities
[  410.740077][T10996] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1501'.
[  410.932632][    T8] usb 5-1: USB disconnect, device number 34
[  412.598132][T11012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1513'.
[  412.676454][T11014] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1514'.
[  413.343003][   T10] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  413.532663][   T10] usb 5-1: Using ep0 maxpacket: 8
[  413.547341][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  413.551258][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  413.560121][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  413.567024][    T8] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  413.576116][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  413.585547][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  413.593491][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  413.600846][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  413.610791][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  413.615248][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  413.618435][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  413.622146][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  413.632957][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  413.637571][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  413.641944][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  413.649855][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  413.657127][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  413.659978][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  413.667319][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  413.679221][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  413.683684][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  413.688402][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  413.703178][   T10] usb 5-1: string descriptor 0 read error: -22
[  413.706050][   T10] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  413.711333][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  413.722166][   T10] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  413.762712][    T8] usb 8-1: Using ep0 maxpacket: 8
[  413.770183][    T8] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  413.772759][   T25] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  413.781032][    T8] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  413.785675][    T8] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 255
[  413.790059][    T8] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  413.797410][    T8] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  413.804493][    T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.962704][   T25] usb 6-1: Using ep0 maxpacket: 8
[  413.966678][   T25] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  413.969629][   T25] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  413.973802][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  413.977614][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  413.981706][   T25] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  413.987066][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  413.990723][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  414.031452][    T8] usb 8-1: GET_CAPABILITIES returned 0
[  414.034154][    T8] usbtmc 8-1:16.0: can't read capabilities
[  414.214248][   T25] usb 6-1: usb_control_msg returned -32
[  414.216866][   T25] usbtmc 6-1:16.0: can't read capabilities
[  414.639474][T11037] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1519'.
[  415.994365][   T25] usb 5-1: USB disconnect, device number 35
[  416.219520][T11043] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  416.224688][T11043] FAULT_INJECTION: forcing a failure.
[  416.224688][T11043] name failslab, interval 1, probability 0, space 0, times 0
[  416.229775][T11043] CPU: 1 UID: 0 PID: 11043 Comm: syz.2.1522 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  416.233872][T11043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  416.238101][T11043] Call Trace:
[  416.239449][T11043]  <TASK>
[  416.240642][T11043]  dump_stack_lvl+0x16c/0x1f0
[  416.242530][T11043]  should_fail_ex+0x497/0x5b0
[  416.244664][T11043]  should_failslab+0xc2/0x120
[  416.246536][T11043]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  416.248435][T11043]  ? __pfx_mark_lock+0x10/0x10
[  416.250037][T11043]  ? skb_clone+0x190/0x3f0
[  416.251534][T11043]  skb_clone+0x190/0x3f0
[  416.253004][T11043]  dev_queue_xmit_nit+0x38f/0xba0
[  416.254876][T11043]  dev_hard_start_xmit+0x56/0x790
[  416.256594][T11043]  __dev_queue_xmit+0x7c7/0x4300
[  416.258319][T11043]  ? __lock_acquire+0x20f2/0x3cb0
[  416.260034][T11043]  ? __pfx___dev_queue_xmit+0x10/0x10
[  416.261831][T11043]  ? __pfx___lock_acquire+0x10/0x10
[  416.263613][T11043]  ? lock_acquire+0x1b1/0x560
[  416.265220][T11043]  ? find_held_lock+0x2d/0x110
[  416.266823][T11043]  ? ip6_finish_output2+0x673/0x1890
[  416.268668][T11043]  ? __pfx_lock_release+0x10/0x10
[  416.270748][T11043]  ? do_raw_write_lock+0x11d/0x3a0
[  416.272952][T11043]  ? neigh_resolve_output+0x70d/0x950
[  416.275174][T11043]  ? skb_push+0x9a/0xf0
[  416.277016][T11043]  ? eth_header+0x16a/0x1f0
[  416.279022][T11043]  neigh_resolve_output+0x5bc/0x950
[  416.281274][T11043]  ip6_finish_output2+0x673/0x1890
[  416.283503][T11043]  ip6_finish_output+0x3f9/0x1300
[  416.285709][T11043]  ip6_output+0x1f8/0x540
[  416.287607][T11043]  ? __pfx_ip6_output+0x10/0x10
[  416.289778][T11043]  ip6_xmit+0x125f/0x2040
[  416.291670][T11043]  ? __pfx___lock_acquire+0x10/0x10
[  416.293979][T11043]  ? __pfx_ip6_xmit+0x10/0x10
[  416.296064][T11043]  ? __pfx_lock_acquire+0x10/0x10
[  416.298232][T11043]  tcp_v6_send_synack+0x6bf/0xf30
[  416.300401][T11043]  ? __pfx_tcp_v6_send_synack+0x10/0x10
[  416.302776][T11043]  ? lockdep_hardirqs_on+0x7c/0x110
[  416.305040][T11043]  tcp_conn_request+0x1af5/0x38f0
[  416.307252][T11043]  ? __lock_acquire+0xbdd/0x3cb0
[  416.309469][T11043]  ? __pfx_tcp_conn_request+0x10/0x10
[  416.311805][T11043]  ? hlock_class+0x4e/0x130
[  416.313842][T11043]  ? __pfx___lock_acquire+0x10/0x10
[  416.316103][T11043]  ? __pfx_mark_lock+0x10/0x10
[  416.317994][T11043]  ? hlock_class+0x4e/0x130
[  416.319991][T11043]  ? tcp_v6_conn_request+0x1eb/0x470
[  416.322007][T11043]  tcp_v6_conn_request+0x1eb/0x470
[  416.324023][T11043]  tcp_rcv_state_process+0x2363/0x4f30
[  416.326152][T11043]  ? sk_filter_trim_cap+0x50b/0xb90
[  416.328194][T11043]  ? __pfx_lock_release+0x10/0x10
[  416.330158][T11043]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  416.332436][T11043]  ? tcp_do_parse_auth_options+0x137/0x2e0
[  416.334504][T11043]  ? sk_filter_trim_cap+0xec/0xb90
[  416.336223][T11043]  ? __pfx_tcp_inbound_hash+0x10/0x10
[  416.338115][T11043]  ? __pfx_sk_filter_trim_cap+0x10/0x10
[  416.340041][T11043]  ? tcp_v6_do_rcv+0x435/0x16f0
[  416.341838][T11043]  tcp_v6_do_rcv+0x435/0x16f0
[  416.343531][T11043]  tcp_v6_rcv+0x3a72/0x4150
[  416.345146][T11043]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  416.346838][T11043]  ? __pfx_lock_release+0x10/0x10
[  416.348616][T11043]  ? __pfx_raw6_local_deliver+0x10/0x10
[  416.350548][T11043]  ? do_csum+0x280/0x2e0
[  416.352013][T11043]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  416.354057][T11043]  ip6_protocol_deliver_rcu+0x188/0x1530
[  416.356551][T11043]  ip6_input_finish+0x14f/0x2f0
[  416.358527][T11043]  ip6_input+0xa1/0xd0
[  416.359994][T11043]  ? __pfx_ip6_input+0x10/0x10
[  416.361866][T11043]  ipv6_rcv+0x265/0x680
[  416.363288][T11043]  ? __pfx_ipv6_rcv+0x10/0x10
[  416.364952][T11043]  __netif_receive_skb_one_core+0x12e/0x1e0
[  416.366992][T11043]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  416.369209][T11043]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  416.371173][T11043]  __netif_receive_skb+0x1d/0x160
[  416.372995][T11043]  netif_receive_skb+0x13f/0x7b0
[  416.374936][T11043]  ? __pfx_netif_receive_skb+0x10/0x10
[  416.376995][T11043]  ? __pfx___lock_acquire+0x10/0x10
[  416.378812][T11043]  tun_rx_batched+0x429/0x780
[  416.380439][T11043]  ? __pfx_tun_rx_batched+0x10/0x10
[  416.382159][T11043]  ? tun_get_user+0x1d66/0x3c20
[  416.383818][T11043]  tun_get_user+0x2a4b/0x3c20
[  416.385619][T11043]  ? __pfx_tun_get_user+0x10/0x10
[  416.387477][T11043]  ? find_held_lock+0x2d/0x110
[  416.389148][T11043]  ? __pfx_lock_release+0x10/0x10
[  416.390953][T11043]  tun_chr_write_iter+0xe8/0x210
[  416.392674][T11043]  vfs_write+0x6b6/0x1140
[  416.394206][T11043]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  416.396170][T11043]  ? __pfx_vfs_write+0x10/0x10
[  416.397971][T11043]  ? __fget_files+0x256/0x400
[  416.399645][T11043]  ? __fget_light+0x173/0x210
[  416.401624][T11043]  ksys_write+0x12f/0x260
[  416.403564][T11043]  ? __pfx_ksys_write+0x10/0x10
[  416.405761][T11043]  __do_fast_syscall_32+0x73/0x120
[  416.407780][T11043]  do_fast_syscall_32+0x32/0x80
[  416.409514][T11043]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  416.411888][T11043] RIP: 0023:0xf7f6f579
[  416.413303][T11043] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  416.420762][T11043] RSP: 002b:00000000f5726540 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  416.424437][T11043] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000200004c0
[  416.427692][T11043] RDX: 000000000000008a RSI: 00000000f73fbff4 RDI: 0000000000000000
[  416.430978][T11043] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  416.433785][T11043] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  416.436954][T11043] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  416.439910][T11043]  </TASK>
[  416.503077][   T25] usb 8-1: USB disconnect, device number 24
[  417.009000][ T5381] usb 6-1: USB disconnect, device number 27
[  418.519943][T11068] netlink: 'syz.0.1531': attribute type 1 has an invalid length.
[  418.523143][T11068] netlink: 9324 bytes leftover after parsing attributes in process `syz.0.1531'.
[  418.528939][T11068] netlink: 'syz.0.1531': attribute type 1 has an invalid length.
[  418.912756][   T25] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  419.093286][   T25] usb 5-1: Using ep0 maxpacket: 8
[  419.098112][   T25] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  419.102397][   T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  419.107005][   T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 255
[  419.111270][   T25] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  419.122223][   T25] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  419.129905][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  419.370699][   T25] usb 5-1: GET_CAPABILITIES returned 0
[  419.373324][   T25] usbtmc 5-1:16.0: can't read capabilities
[  419.503212][ T5381] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  419.692793][ T5381] usb 6-1: Using ep0 maxpacket: 8
[  419.697511][ T5381] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.701185][ T5381] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.705670][ T5381] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.709653][ T5381] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.716264][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  419.721068][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  419.726224][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.732960][ T5381] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.737352][ T5381] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.740679][ T5381] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.744677][ T5381] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.749513][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  419.754423][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  419.759245][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.767887][ T5381] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.771485][ T5381] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.774706][ T5381] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.778749][ T5381] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.783757][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  419.788385][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  419.802683][ T5381] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.818404][ T5381] usb 6-1: string descriptor 0 read error: -22
[  419.821116][ T5381] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  419.828212][ T5381] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.842918][ T5381] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux1
[  419.878446][T11082] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1535'.
[  420.173440][ T5384] usb 5-1: USB disconnect, device number 36
[  420.494274][ T5384] usb 6-1: USB disconnect, device number 28
[  420.552753][ T5378] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  420.765177][ T5378] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  420.768686][ T5378] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  420.772058][ T5378] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  420.775744][ T5378] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  420.780249][ T5378] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  420.788646][ T5378] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  420.792349][ T5378] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  420.796013][ T5378] usb 7-1: Product: syz
[  420.797960][ T5378] usb 7-1: Manufacturer: syz
[  420.805967][ T5378] cdc_wdm 7-1:1.0: skipping garbage
[  420.808278][ T5378] cdc_wdm 7-1:1.0: skipping garbage
[  420.810508][ T5378] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  421.010932][   T58] usb 7-1: USB disconnect, device number 16
[  421.592804][   T58] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  421.844071][   T58] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  421.847583][   T58] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  421.857560][   T58] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  421.864541][   T58] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  421.869562][   T58] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  421.881350][   T58] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  421.887933][   T58] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  421.899675][   T58] usb 7-1: Product: syz
[  421.901736][   T58] usb 7-1: Manufacturer: syz
[  421.913186][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  421.919354][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  421.928257][   T58] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  422.121470][   T58] usb 7-1: USB disconnect, device number 17
[  422.535675][T11116] 9pnet_virtio: no channels available for device 
[  422.546129][T11116] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1544'.
[  422.636309][T11119] netlink: 'syz.1.1546': attribute type 3 has an invalid length.
[  422.640485][T11119] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1546'.
[  422.651014][T11119] netlink: 'syz.1.1546': attribute type 10 has an invalid length.
[  422.669625][T11119] wlan1: mtu less than device minimum
[  422.689514][T11119] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1546'.
[  422.853601][ T5378] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  423.052659][ T5378] usb 8-1: Using ep0 maxpacket: 8
[  423.057125][ T5378] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  423.061203][ T5378] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  423.065465][ T5378] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 255
[  423.069692][ T5378] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  423.078360][ T5378] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  423.086181][ T5378] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.146339][   T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.280655][   T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.336642][ T5378] usb 8-1: GET_CAPABILITIES returned 0
[  423.343471][ T5378] usbtmc 8-1:16.0: can't read capabilities
[  423.387032][   T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.484934][   T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.618590][ T5350] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  423.626122][ T5350] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  423.631923][ T5350] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  423.637229][ T5350] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  423.640909][ T5350] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  423.644551][ T5350] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  423.695621][   T64] bridge_slave_1: left allmulticast mode
[  423.698056][   T64] bridge_slave_1: left promiscuous mode
[  423.738412][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  423.786828][   T64] bridge_slave_0: left allmulticast mode
[  423.788942][   T64] bridge_slave_0: left promiscuous mode
[  423.791497][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  424.133802][ T9621] usb 8-1: USB disconnect, device number 25
[  424.345202][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  424.387049][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  424.409377][   T64] bond0 (unregistering): Released all slaves
[  424.609512][T11131] chnl_net:caif_netlink_parms(): no params data found
[  424.859572][T11131] bridge0: port 1(bridge_slave_0) entered blocking state
[  424.862151][T11131] bridge0: port 1(bridge_slave_0) entered disabled state
[  424.864855][T11131] bridge_slave_0: entered allmulticast mode
[  424.867691][T11131] bridge_slave_0: entered promiscuous mode
[  424.871650][T11131] bridge0: port 2(bridge_slave_1) entered blocking state
[  424.874621][T11131] bridge0: port 2(bridge_slave_1) entered disabled state
[  424.877326][T11131] bridge_slave_1: entered allmulticast mode
[  424.881281][T11131] bridge_slave_1: entered promiscuous mode
[  424.952509][   T64] hsr_slave_0: left promiscuous mode
[  424.974735][   T64] hsr_slave_1: left promiscuous mode
[  424.978041][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  424.981125][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  424.985256][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  424.988290][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  425.028913][   T64] veth1_macvtap: left promiscuous mode
[  425.031318][   T64] veth0_macvtap: left promiscuous mode
[  425.034192][   T64] veth1_vlan: left promiscuous mode
[  425.036542][   T64] veth0_vlan: left promiscuous mode
[  425.652659][ T1297] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  425.667132][ T5350] Bluetooth: hci3: command tx timeout
[  425.834777][ T1297] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  425.838447][ T1297] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  425.842516][ T1297] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  425.846835][ T1297] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  425.853626][ T1297] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  425.860843][ T1297] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  425.865096][ T1297] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  425.868761][ T1297] usb 5-1: Product: syz
[  425.870722][ T1297] usb 5-1: Manufacturer: syz
[  425.878976][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  425.882334][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  425.884883][ T1297] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  426.024465][   T64] team0 (unregistering): Port device team_slave_1 removed
[  426.083426][ T1297] usb 5-1: USB disconnect, device number 37
[  426.176599][   T64] team0 (unregistering): Port device team_slave_0 removed
[  426.642662][ T1297] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  426.829882][ T1297] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  426.833080][ T1297] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  426.836684][ T1297] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  426.840268][ T1297] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  426.844865][ T1297] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  426.856851][ T1297] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  426.860431][ T1297] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  426.865793][ T1297] usb 5-1: Product: syz
[  426.868013][T11131] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  426.868774][ T1297] usb 5-1: Manufacturer: syz
[  426.874523][T11131] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  426.891523][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  426.899180][ T1297] cdc_wdm 5-1:1.0: skipping garbage
[  426.901596][ T1297] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[  426.963491][T11131] team0: Port device team_slave_0 added
[  426.971055][T11131] team0: Port device team_slave_1 added
[  427.046642][T11131] batman_adv: batadv0: Adding interface: batadv_slave_0
[  427.051307][T11131] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  427.062051][T11131] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  427.069225][T11131] batman_adv: batadv0: Adding interface: batadv_slave_1
[  427.077586][T11131] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  427.089025][T11131] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  427.114697][ T5378] usb 5-1: USB disconnect, device number 38
[  427.210294][T11131] hsr_slave_0: entered promiscuous mode
[  427.216365][T11131] hsr_slave_1: entered promiscuous mode
[  427.742754][ T5350] Bluetooth: hci3: command tx timeout
[  428.077104][T11131] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  428.107824][T11131] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  428.126258][T11131] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  428.141794][T11206] tipc: Started in network mode
[  428.145186][T11206] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  428.155818][T11206] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  428.160056][T11206] tipc: Enabled bearer <udp:syz1>, priority 10
[  428.169777][T11131] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  428.391733][T11131] 8021q: adding VLAN 0 to HW filter on device bond0
[  428.435600][T11131] 8021q: adding VLAN 0 to HW filter on device team0
[  428.460267][ T4859] bridge0: port 1(bridge_slave_0) entered blocking state
[  428.463323][ T4859] bridge0: port 1(bridge_slave_0) entered forwarding state
[  428.496058][ T4859] bridge0: port 2(bridge_slave_1) entered blocking state
[  428.499345][ T4859] bridge0: port 2(bridge_slave_1) entered forwarding state
[  428.825232][T11131] 8021q: adding VLAN 0 to HW filter on device batadv0
[  428.885339][T11131] veth0_vlan: entered promiscuous mode
[  428.899212][T11131] veth1_vlan: entered promiscuous mode
[  428.940481][T11131] veth0_macvtap: entered promiscuous mode
[  428.947379][T11131] veth1_macvtap: entered promiscuous mode
[  428.966765][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.971228][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.977016][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.981318][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.985659][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.989978][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.994508][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.998811][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.002865][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  429.007069][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.013865][T11131] batman_adv: batadv0: Interface activated: batadv_slave_0
[  429.033027][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  429.037274][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.041115][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  429.049329][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.054974][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  429.059368][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.063640][T11131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  429.067341][T11131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  429.075671][T11131] batman_adv: batadv0: Interface activated: batadv_slave_1
[  429.086860][   T64] IPVS: stop unused estimator thread 0...
[  429.094767][T11131] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.098306][T11131] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  429.101387][T11131] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  429.105439][T11131] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  429.175013][ T5384] tipc: Node number set to 1
[  429.244522][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  429.247514][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  429.281243][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  429.289365][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  429.832501][ T5350] Bluetooth: hci3: command tx timeout
[  430.609824][T11280] Illegal XDP return value 2902944600 on prog  (id 626) dev N/A, expect packet loss!
[  431.902975][ T5353] Bluetooth: hci3: command tx timeout
[  431.905230][ T5353] Bluetooth: hci4: command 0x0406 tx timeout
[  434.840950][   T25] IPVS: starting estimator thread 0...
[  434.932810][T11340] IPVS: using max 34 ests per chain, 81600 per kthread
[  435.266380][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  436.142693][   T57] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  436.149842][   T66] Bluetooth: hci2: unexpected event for opcode 0x1003
[  436.330303][   T57] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  436.338246][   T57] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  436.347386][   T57] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  436.351424][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  436.357502][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  436.366741][   T57] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  436.370643][   T57] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  436.374953][   T57] usb 6-1: Product: syz
[  436.376877][   T57] usb 6-1: Manufacturer: syz
[  436.386757][   T57] cdc_wdm 6-1:1.0: skipping garbage
[  436.389286][   T57] cdc_wdm 6-1:1.0: skipping garbage
[  436.397421][   T57] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  436.400467][   T57] cdc_wdm 6-1:1.0: Unknown control protocol
[  436.732834][ T5378] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  436.794891][T11354] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.798755][T11354] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.912646][ T5378] usb 8-1: Using ep0 maxpacket: 8
[  436.916971][ T5378] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  436.919992][ T5378] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  436.923843][ T5378] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  436.928227][ T5378] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  436.932334][ T5378] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  436.939317][ T5378] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  436.945142][ T5378] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.166507][ T5378] usb 8-1: usb_control_msg returned -32
[  437.168834][ T5378] usbtmc 8-1:16.0: can't read capabilities
[  437.535347][T11382] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1598'.
[  438.853212][    C3] wdm_int_callback: 49 callbacks suppressed
[  438.853232][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  438.853611][   T25] usb 6-1: USB disconnect, device number 29
[  438.855544][    C3] wdm_int_callback: 49 callbacks suppressed
[  438.855555][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  438.864510][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  439.455889][T11414] tipc: Started in network mode
[  439.464825][T11414] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  439.471936][T11414] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  439.486458][T11414] tipc: Enabled bearer <udp:syz1>, priority 10
[  439.535229][ T4859] usb 8-1: USB disconnect, device number 26
[  440.077156][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  440.080911][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  440.613376][ T4859] tipc: Node number set to 1
[  441.075223][ T5381] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  441.262192][ T5381] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  441.273040][ T5381] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  441.276742][ T5381] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  441.280530][ T5381] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  441.286675][ T5381] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  441.305223][ T5381] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  441.309049][ T5381] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  441.312526][ T5381] usb 6-1: Product: syz
[  441.314971][ T5381] usb 6-1: Manufacturer: syz
[  441.328851][ T5381] cdc_wdm 6-1:1.0: skipping garbage
[  441.331085][ T5381] cdc_wdm 6-1:1.0: skipping garbage
[  441.350682][ T5381] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  441.356826][ T5381] cdc_wdm 6-1:1.0: Unknown control protocol
[  441.760175][T11431] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  441.764525][T11431] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  443.432916][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  443.472735][ T5381] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  443.489646][T11454] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  443.654110][ T5381] usb 5-1: Using ep0 maxpacket: 8
[  443.658611][ T5381] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  443.662290][ T5381] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  443.666661][ T5381] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  443.671218][ T5381] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  443.675800][ T5381] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  443.681275][ T5381] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  443.684968][ T5381] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.797597][   T10] usb 6-1: USB disconnect, device number 30
[  443.899409][ T5381] usb 5-1: usb_control_msg returned -32
[  443.903650][ T5381] usbtmc 5-1:16.0: can't read capabilities
[  444.262253][T11466] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1619'.
[  444.460725][ T5381] usb 5-1: USB disconnect, device number 39
[  446.382794][   T10] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  446.567368][   T10] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  446.571006][   T10] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  446.576291][   T10] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  446.580454][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  446.584569][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  446.591242][   T10] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  446.595129][   T10] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  446.598452][   T10] usb 8-1: Product: syz
[  446.600338][   T10] usb 8-1: Manufacturer: syz
[  446.613451][   T10] cdc_wdm 8-1:1.0: skipping garbage
[  446.616522][   T10] cdc_wdm 8-1:1.0: skipping garbage
[  446.620909][   T10] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  446.623094][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  446.625428][   T10] cdc_wdm 8-1:1.0: Unknown control protocol
[  446.836596][   T25] usb 8-1: USB disconnect, device number 27
[  448.062788][ T4859] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  448.242967][ T4859] usb 6-1: Using ep0 maxpacket: 8
[  448.254372][ T4859] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  448.264617][ T4859] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  448.275573][ T4859] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  448.287309][ T4859] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  448.300794][ T4859] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  448.307363][ T4859] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  448.313466][ T4859] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.529430][ T4859] usb 6-1: usb_control_msg returned -32
[  448.533088][ T4859] usbtmc 6-1:16.0: can't read capabilities
[  448.886380][T11503] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1635'.
[  449.091306][   T25] usb 6-1: USB disconnect, device number 31
[  451.362743][ T5378] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  451.571081][ T5378] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  451.575042][ T5378] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  451.579436][ T5378] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  451.585757][ T5378] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  451.590549][ T5378] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  451.596398][ T5378] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  451.599965][ T5378] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  451.603493][ T5378] usb 7-1: Product: syz
[  451.605367][ T5378] usb 7-1: Manufacturer: syz
[  451.613733][ T5378] cdc_wdm 7-1:1.0: skipping garbage
[  451.616072][ T5378] cdc_wdm 7-1:1.0: skipping garbage
[  451.619665][ T5378] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  451.622275][ T5378] cdc_wdm 7-1:1.0: Unknown control protocol
[  451.841980][ T5378] usb 7-1: USB disconnect, device number 18
[  451.984219][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  454.252851][T11566] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  455.342955][ T5381] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  455.525005][ T5381] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  455.528824][ T5381] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  455.533889][ T5381] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  455.537835][ T5381] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  455.543448][ T5381] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  455.563646][ T5381] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  455.567602][ T5381] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  455.571107][ T5381] usb 5-1: Product: syz
[  455.573373][ T5381] usb 5-1: Manufacturer: syz
[  455.580879][ T5381] cdc_wdm 5-1:1.0: skipping garbage
[  455.584301][ T5381] cdc_wdm 5-1:1.0: skipping garbage
[  455.588266][ T5381] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  455.591235][ T5381] cdc_wdm 5-1:1.0: Unknown control protocol
[  455.787168][   T57] usb 5-1: USB disconnect, device number 40
[  457.813056][ T5378] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  458.028050][ T5378] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  458.031879][ T5378] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  458.038153][ T5378] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  458.041182][ T5378] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  458.046573][ T5378] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  458.065311][ T5378] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  458.068741][ T5378] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  458.072175][ T5378] usb 8-1: Product: syz
[  458.074158][ T5378] usb 8-1: Manufacturer: syz
[  458.079772][ T5378] cdc_wdm 8-1:1.0: skipping garbage
[  458.081884][ T5378] cdc_wdm 8-1:1.0: skipping garbage
[  458.087903][ T5378] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  458.089912][ T5378] cdc_wdm 8-1:1.0: Unknown control protocol
[  458.283796][ T5378] usb 8-1: USB disconnect, device number 28
[  458.782909][ T5378] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  458.984692][ T5378] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  458.988672][ T5378] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  458.993778][ T5378] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  458.998005][ T5378] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  459.003442][ T5378] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  459.011269][ T5378] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  459.015928][ T5378] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  459.019592][ T5378] usb 8-1: Product: syz
[  459.021427][ T5378] usb 8-1: Manufacturer: syz
[  459.033199][ T5378] cdc_wdm 8-1:1.0: skipping garbage
[  459.035072][ T5378] cdc_wdm 8-1:1.0: skipping garbage
[  459.062884][ T5378] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  459.065428][ T5378] cdc_wdm 8-1:1.0: Unknown control protocol
[  459.305351][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.307852][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.310465][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.313271][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.315991][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.318674][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.321504][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.324296][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.327063][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.329866][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.332421][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.335079][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.337479][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.340224][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.342793][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.345415][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.348070][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.350818][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.353586][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  459.356370][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  459.373278][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  459.377016][ T5378] usb 8-1: USB disconnect, device number 29
[  459.537652][T11631] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  460.382691][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  462.182680][   T57] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  462.375777][   T57] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  462.379161][   T57] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  462.383635][   T57] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  462.387306][   T57] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  462.391878][   T57] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  462.398840][   T57] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  462.402353][   T57] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  462.406121][   T57] usb 8-1: Product: syz
[  462.407606][   T57] usb 8-1: Manufacturer: syz
[  462.422354][   T57] cdc_wdm 8-1:1.0: skipping garbage
[  462.424907][   T57] cdc_wdm 8-1:1.0: skipping garbage
[  462.431947][   T57] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  462.434352][   T57] cdc_wdm 8-1:1.0: Unknown control protocol
[  462.612724][   T56] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  462.635253][ T4859] usb 8-1: USB disconnect, device number 30
[  462.803294][   T56] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  462.807062][   T56] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  462.811401][   T56] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  462.816223][   T56] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  462.820781][   T56] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  462.826353][   T56] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  462.830129][   T56] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  462.833162][   T56] usb 6-1: Product: syz
[  462.834599][   T56] usb 6-1: Manufacturer: syz
[  462.844561][   T56] cdc_wdm 6-1:1.0: skipping garbage
[  462.847559][   T56] cdc_wdm 6-1:1.0: skipping garbage
[  462.850757][   T56] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  462.853132][   T56] cdc_wdm 6-1:1.0: Unknown control protocol
[  463.061535][   T10] usb 6-1: USB disconnect, device number 32
[  463.212978][ T4859] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  463.412065][ T4859] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  463.416020][ T4859] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  463.419433][ T4859] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  463.422821][ T4859] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  463.426713][ T4859] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  463.434802][ T4859] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  463.439693][ T4859] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  463.443621][ T4859] usb 8-1: Product: syz
[  463.445309][ T4859] usb 8-1: Manufacturer: syz
[  463.456101][ T4859] cdc_wdm 8-1:1.0: skipping garbage
[  463.458454][ T4859] cdc_wdm 8-1:1.0: skipping garbage
[  463.462482][ T4859] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  463.465071][ T4859] cdc_wdm 8-1:1.0: Unknown control protocol
[  463.735935][   T57] usb 8-1: USB disconnect, device number 31
[  463.736103][    C0] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  466.432740][ T5378] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  466.452855][   T56] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  466.615718][ T5378] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  466.618880][ T5378] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  466.622959][ T5378] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  466.626843][ T5378] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  466.631468][ T5378] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  466.640510][   T56] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  466.644089][ T5378] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  466.647892][ T5378] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  466.651248][ T5378] usb 6-1: Product: syz
[  466.653336][   T56] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  466.657628][   T56] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  466.661308][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  466.665795][ T5378] usb 6-1: Manufacturer: syz
[  466.668729][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  466.680896][ T5378] cdc_wdm 6-1:1.0: skipping garbage
[  466.683456][ T5378] cdc_wdm 6-1:1.0: skipping garbage
[  466.686200][   T56] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  466.690193][   T56] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  466.694291][   T56] usb 8-1: Product: syz
[  466.696389][ T5378] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  466.698911][ T5378] cdc_wdm 6-1:1.0: Unknown control protocol
[  466.702948][   T56] usb 8-1: Manufacturer: syz
[  466.710598][   T56] cdc_wdm 8-1:1.0: skipping garbage
[  466.713041][   T56] cdc_wdm 8-1:1.0: skipping garbage
[  466.721049][   T56] cdc_wdm 8-1:1.0: cdc-wdm1: USB WDM device
[  466.723685][   T56] cdc_wdm 8-1:1.0: Unknown control protocol
[  466.882280][ T4859] usb 6-1: USB disconnect, device number 33
[  466.928109][   T25] usb 8-1: USB disconnect, device number 32
[  467.492758][ T4859] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  467.674490][ T4859] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  467.678264][ T4859] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  467.682940][ T4859] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  467.686621][ T4859] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  467.691080][ T4859] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  467.699206][ T4859] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  467.703271][ T4859] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  467.706768][ T4859] usb 6-1: Product: syz
[  467.708580][ T4859] usb 6-1: Manufacturer: syz
[  467.715227][ T4859] cdc_wdm 6-1:1.0: skipping garbage
[  467.717804][ T4859] cdc_wdm 6-1:1.0: skipping garbage
[  467.721195][ T4859] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  467.724245][ T4859] cdc_wdm 6-1:1.0: Unknown control protocol
[  467.987638][    C0] wdm_int_callback: 82 callbacks suppressed
[  467.987656][    C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  467.988018][ T5384] usb 6-1: USB disconnect, device number 34
[  467.990329][    C0] wdm_int_callback: 82 callbacks suppressed
[  467.990343][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  467.990356][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  470.153719][ T5353] Bluetooth: hci3: command 0x0405 tx timeout
[  470.403154][T11767] ------------[ cut here ]------------
[  470.405834][T11767] WARNING: CPU: 1 PID: 11767 at mm/page_table_check.c:207 __page_table_check_ptes_set+0x2fa/0x3e0
[  470.409885][T11767] Modules linked in:
[  470.411542][T11767] CPU: 1 UID: 0 PID: 11767 Comm: syz.1.1722 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  470.417587][T11767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.422395][T11767] RIP: 0010:__page_table_check_ptes_set+0x2fa/0x3e0
[  470.426251][T11767] Code: e9 91 fe ff ff e8 46 48 97 ff 48 8b 2c 24 31 ff 83 e5 02 48 89 ee e8 65 43 97 ff 48 85 ed 0f 84 85 00 00 00 e8 27 48 97 ff 90 <0f> 0b 90 e9 e9 fd ff ff e8 19 48 97 ff eb 69 cc cc cc e8 0f 48 97
[  470.436376][T11767] RSP: 0000:ffffc90002ddfa28 EFLAGS: 00010293
[  470.439102][T11767] RAX: 0000000000000000 RBX: ffff888000aab000 RCX: ffffffff81f3ddfb
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  470.442739][T11767] RDX: ffff888021b2a440 RSI: ffffffff81f3de09 RDI: 0000000000000007
[  470.446388][T11767] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000000000
[  470.449824][T11767] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000001
[  470.453238][T11767] R13: ffff888025cc0000 R14: 0000000000000001 R15: 1ffff920005bbf47
[  470.456389][T11767] FS:  0000000000000000(0000) GS:ffff88802c100000(0063) knlGS:0000000058335440
[  470.459911][T11767] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  470.462207][T11767] CR2: 00000000200002c0 CR3: 0000000012f60000 CR4: 0000000000352ef0
[  470.464915][T11767] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  470.467628][T11767] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  470.470479][T11767] Call Trace:
[  470.471976][T11767]  <TASK>
[  470.473362][T11767]  ? show_regs+0x8c/0xa0
[  470.475384][T11767]  ? __warn+0xe5/0x3c0
[  470.477130][T11767]  ? __page_table_check_ptes_set+0x2fa/0x3e0
[  470.479775][T11767]  ? report_bug+0x3c0/0x580
[  470.481816][T11767]  ? handle_bug+0x3d/0x70
[  470.483803][T11767]  ? exc_invalid_op+0x17/0x50
[  470.485433][T11767]  ? asm_exc_invalid_op+0x1a/0x20
[  470.487553][T11767]  ? __page_table_check_ptes_set+0x2eb/0x3e0
[  470.490128][T11767]  ? __page_table_check_ptes_set+0x2f9/0x3e0
[  470.492953][T11767]  ? __page_table_check_ptes_set+0x2fa/0x3e0
[  470.495565][T11767]  ? __page_table_check_ptes_set+0x2f9/0x3e0
[  470.498068][T11767]  ? find_held_lock+0x2d/0x110
[  470.500136][T11767]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  470.502855][T11767]  ? rcu_read_unlock+0x17/0x60
[  470.504499][T11767]  set_ptes.constprop.0+0x193/0x1d0
[  470.506391][T11767]  ? __pfx_set_ptes.constprop.0+0x10/0x10
[  470.508587][T11767]  do_swap_page+0x1214/0x3dc0
[  470.510699][T11767]  ? __pfx_do_swap_page+0x10/0x10
[  470.513106][T11767]  ? pte_offset_map_nolock+0xfe/0x1c0
[  470.515011][T11767]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[  470.516983][T11767]  __handle_mm_fault+0x146b/0x5360
[  470.518735][T11767]  ? down_read_trylock+0x1ed/0x3f0
[  470.521039][T11767]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  470.523436][T11767]  ? __pfx___handle_mm_fault+0x10/0x10
[  470.526631][T11767]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  470.529147][T11767]  handle_mm_fault+0x44e/0x7b0
[  470.531468][T11767]  ? __pkru_allows_pkey+0x52/0xb0
[  470.533937][T11767]  do_user_addr_fault+0x60d/0x13f0
[  470.535580][T11767]  exc_page_fault+0x5c/0xc0
[  470.537131][T11767]  asm_exc_page_fault+0x26/0x30
[  470.538619][T11767] RIP: 0023:0xf72cf7f1
[  470.539916][T11767] Code: 00 00 74 02 a4 49 50 89 c8 c1 e9 02 83 e0 03 f3 a5 89 c1 f3 a4 58 89 c7 89 d6 8b 44 24 04 c3 d1 e9 73 01 a4 d1 e9 73 02 66 a5 <f3> a5 eb e8 66 90 66 90 66 90 66 90 66 90 90 8b 44 24 0c 39 44 24
[  470.546768][T11767] RSP: 002b:00000000ffdbfcac EFLAGS: 00010202
[  470.548941][T11767] RAX: 0000000000000000 RBX: 00000000f745bff4 RCX: 0000000000000002
[  470.552206][T11767] RDX: 0000000000000008 RSI: 00000000f6d903ae RDI: 00000000200002c0
[  470.555778][T11767] RBP: 00000000ffdbff38 R08: 0000000000000000 R09: 0000000000000000
[  470.559282][T11767] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  470.562146][T11767] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.565243][T11767]  </TASK>
[  470.566597][T11767] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  470.569568][T11767] CPU: 1 UID: 0 PID: 11767 Comm: syz.1.1722 Not tainted 6.10.0-syzkaller-12881-g6342649c33d2 #0
[  470.574243][T11767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.578112][T11767] Call Trace:
[  470.579274][T11767]  <TASK>
[  470.580382][T11767]  dump_stack_lvl+0x3d/0x1f0
[  470.582219][T11767]  panic+0x6f5/0x7a0
[  470.584041][T11767]  ? __pfx_panic+0x10/0x10
[  470.585984][T11767]  ? show_trace_log_lvl+0x363/0x500
[  470.587890][T11767]  ? check_panic_on_warn+0x1f/0xb0
[  470.589743][T11767]  ? __page_table_check_ptes_set+0x2fa/0x3e0
[  470.592070][T11767]  check_panic_on_warn+0xab/0xb0
[  470.594201][T11767]  __warn+0xf1/0x3c0
[  470.595818][T11767]  ? __page_table_check_ptes_set+0x2fa/0x3e0
[  470.597888][T11767]  report_bug+0x3c0/0x580
[  470.599501][T11767]  handle_bug+0x3d/0x70
[  470.600932][T11767]  exc_invalid_op+0x17/0x50
[  470.602626][T11767]  asm_exc_invalid_op+0x1a/0x20
[  470.604413][T11767] RIP: 0010:__page_table_check_ptes_set+0x2fa/0x3e0
[  470.607156][T11767] Code: e9 91 fe ff ff e8 46 48 97 ff 48 8b 2c 24 31 ff 83 e5 02 48 89 ee e8 65 43 97 ff 48 85 ed 0f 84 85 00 00 00 e8 27 48 97 ff 90 <0f> 0b 90 e9 e9 fd ff ff e8 19 48 97 ff eb 69 cc cc cc e8 0f 48 97
[  470.615519][T11767] RSP: 0000:ffffc90002ddfa28 EFLAGS: 00010293
[  470.617467][T11767] RAX: 0000000000000000 RBX: ffff888000aab000 RCX: ffffffff81f3ddfb
[  470.620311][T11767] RDX: ffff888021b2a440 RSI: ffffffff81f3de09 RDI: 0000000000000007
[  470.623228][T11767] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000000000
[  470.626550][T11767] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000001
[  470.629919][T11767] R13: ffff888025cc0000 R14: 0000000000000001 R15: 1ffff920005bbf47
[  470.632856][T11767]  ? __page_table_check_ptes_set+0x2eb/0x3e0
[  470.634996][T11767]  ? __page_table_check_ptes_set+0x2f9/0x3e0
[  470.637243][T11767]  ? __page_table_check_ptes_set+0x2f9/0x3e0
[  470.639707][T11767]  ? find_held_lock+0x2d/0x110
[  470.641320][T11767]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  470.643597][T11767]  ? rcu_read_unlock+0x17/0x60
[  470.645661][T11767]  set_ptes.constprop.0+0x193/0x1d0
[  470.647886][T11767]  ? __pfx_set_ptes.constprop.0+0x10/0x10
[  470.650336][T11767]  do_swap_page+0x1214/0x3dc0
[  470.652358][T11767]  ? __pfx_do_swap_page+0x10/0x10
[  470.654532][T11767]  ? pte_offset_map_nolock+0xfe/0x1c0
[  470.656793][T11767]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[  470.659268][T11767]  __handle_mm_fault+0x146b/0x5360
[  470.661444][T11767]  ? down_read_trylock+0x1ed/0x3f0
[  470.663612][T11767]  ? lock_vma_under_rcu+0x1e2/0x8f0
[  470.665797][T11767]  ? __pfx___handle_mm_fault+0x10/0x10
[  470.668076][T11767]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  470.670393][T11767]  handle_mm_fault+0x44e/0x7b0
[  470.672423][T11767]  ? __pkru_allows_pkey+0x52/0xb0
[  470.674562][T11767]  do_user_addr_fault+0x60d/0x13f0
[  470.676492][T11767]  exc_page_fault+0x5c/0xc0
[  470.678261][T11767]  asm_exc_page_fault+0x26/0x30
[  470.680393][T11767] RIP: 0023:0xf72cf7f1
[  470.682120][T11767] Code: 00 00 74 02 a4 49 50 89 c8 c1 e9 02 83 e0 03 f3 a5 89 c1 f3 a4 58 89 c7 89 d6 8b 44 24 04 c3 d1 e9 73 01 a4 d1 e9 73 02 66 a5 <f3> a5 eb e8 66 90 66 90 66 90 66 90 66 90 90 8b 44 24 0c 39 44 24
[  470.689597][T11767] RSP: 002b:00000000ffdbfcac EFLAGS: 00010202
[  470.691670][T11767] RAX: 0000000000000000 RBX: 00000000f745bff4 RCX: 0000000000000002
[  470.694372][T11767] RDX: 0000000000000008 RSI: 00000000f6d903ae RDI: 00000000200002c0
[  470.697165][T11767] RBP: 00000000ffdbff38 R08: 0000000000000000 R09: 0000000000000000
[  470.699819][T11767] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  470.702662][T11767] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.705976][T11767]  </TASK>
[  470.707979][T11767] Kernel Offset: disabled
[  470.710335][T11767] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:56:27  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000a5bddd RBX=0000000000000000 RCX=ffffffff8b05aa19 RDX=0000000000000000
RSI=ffffffff8b4ccfe0 RDI=ffffffff8bb04860 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005806fe1 R10=ffff88802c037f0b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff9010e058 R15=0000000000000000
RIP=ffffffff8b05be0f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f118b237440 CR3=0000000012f60000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84f9e6d5 RDI=ffffffff951153c0 RBP=ffffffff95115380 RSP=ffffc90002ddf400
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000031 R14=ffffffff84f9e670 R15=0000000000000000
RIP=ffffffff84f9e6ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802c100000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000200002c0 CR3=0000000012f60000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000046 RBX=ffff88802499d388 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8b4cd2e0 RDI=ffffffff8bb04860 RBP=ffff8880219ae018 RSP=ffffc90003c1f558
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffff88802499c880 R13=0000000000000001 R14=00000000ffffffff R15=0000000000000001
RIP=ffffffff8b059c48 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f16547a8d00 ffffffff 00c00000
GS =0000 ffff88802c200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000563810441000 CR3=0000000024bd2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=b068db89b068db89 b068db89b068db89 b068db89b068db89 b068db89b068db89 b068db89b068db89 b068db89b068db89 b068db89b068db89 b068db89b068db89
ZMM22=7360c1067360c106 7360c1067360c106 7360c1067360c106 7360c1067360c106 7360c1067360c106 7360c1067360c106 7360c1067360c106 7360c1067360c106
ZMM23=eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4 eadecfb4eadecfb4
ZMM24=e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77 e703fa77e703fa77
ZMM25=34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f 34570a3f34570a3f
ZMM26=bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263 bb7c3263bb7c3263
ZMM27=7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6 7b2716e67b2716e6
ZMM28=000000d0000000cf 000000ce000000cd 000000cc000000cb 000000ca000000c9 000000c8000000c7 000000c6000000c5 000000c4000000c3 000000c2000000c1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=4118000041180000 4118000041180000 4118000041180000 4118000041180000 4118000041180000 4118000041180000 4118000041180000 4118000041180000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=4875d9bd3131d153 RCX=ffffffff816901e8 RDX=0000000000000000
RSI=0000000000000008 RDI=00000000875d9bd4 RBP=0000000000000000 RSP=ffffc90000dff4e0
R8 =0000000000000000 R9 =fffffbfff28b5cd8 R10=ffffffff945ae6c7 R11=0000000000000002
R12=dffffc0000000000 R13=ffff88801a7b5388 R14=0000000000000004 R15=ffff88801a7b4880
RIP=ffffffff8168ff32 RFL=00000803 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f255b8 CR3=0000000000e62000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003e800000000 0000000800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000