last executing test programs:

9.385991311s ago: executing program 1 (id=869):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x15, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000440))
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f000001b080)=""/102400, 0x19000)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x24004080)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)

8.681400297s ago: executing program 1 (id=874):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x800002, 0x100010, r1, 0x70cdd000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x803, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x0)
ioctl$VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000080)={0x4, 0x1, 0x0, "6cfef8b4b9fdcfc8bf98040c2599e8a8e9f887975c3cc41e122a623eb7c37334", 0x34343459})
syz_usbip_server_init(0x6)
socket$netlink(0x10, 0x3, 0x15)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x44, 0x10, 0x403, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x74, 0x0, 0x1810, 0x55007}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @sit={{}, {0x0, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_SPORT={0x0, 0x11, 0x4e24}, @IFLA_IPTUN_ENCAP_TYPE={0x0, 0xf, 0x3}, @IFLA_IPTUN_LOCAL={0x0, 0x2, @multicast2}, @IFLA_IPTUN_FLAGS={0x0, 0x8, 0x1f}, @IFLA_IPTUN_LOCAL={0x0, 0x2, @rand_addr=0x64010100}]}}}]}, 0x2a}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
r8 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000002580), 0x1a1140, 0x0)
ioctl$TCXONC(r8, 0x540a, 0x3)

6.36212987s ago: executing program 1 (id=883):
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000400)=""/64, 0x33)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000100)=0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=r0, @ANYRESHEX=r0, @ANYBLOB="22c4abbb6e122de183596175beddca5dbca013b491cc138db0ecaccbc110c105306e0aaf1a1ba0892131862eeb63bac652f8b066eaace155f38410bd387b06220d9877c2d2e0070e842def386198aa17b182a1ac9c0dd80cab71ba7d74f271f8555bd99c062449955c3b147eea5e70c6c6bd279d4d3c7a89843c260c3ca62dbf0416607f723881500142cddcf61a1b719df31ead18b9a7040ee9d6bd980fcff45642e9f92a8dce1322872c0fa85a47c06bc3acedccf8f7970a292e1198d710d89c5c81dfd1df29a093e153d77adb7e2a9307139dad5b6624b97d51dc29a0ab84297f9a4bde52e0", @ANYBLOB="f914c685a329d3108889f4af78d665042d7dbff1f25e85c8acae31d1fb0ac9443cb97ccd30e43e4675e34c0ebac203cd24f59002bbdc52fb8d9db8eaab884c7b390298fd14bf502ff3116ad1ab5de6fde571a1270adccc7a188618bc37a0711a52e3ca056c29730cce", @ANYRESDEC=r1], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1000000002)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000040)={0x8b, 0x6576, 0x9})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r5, 0x100000)
r6 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
openat$vim2m(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0x5f, 0x1)
ptrace$ARCH_SHSTK_STATUS(0x1e, r2, &(0x7f00000000c0), 0x5005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r6, 0x0)

5.161993443s ago: executing program 3 (id=884):
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x110)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x25)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x58}}, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_GET_MAP_INFO(0x3, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
openat$ptmx(0xffffff9c, 0x0, 0x200, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2})
bpf$MAP_CREATE(0x0, &(0x7f0000004080)=@base={0x4, 0x4, 0x4, 0xbf22, 0x800, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
rmdir(&(0x7f0000000040)='./file0/../file0/file0\x00')
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40800}, 0x0)
openat$sequencer2(0xffffff9c, &(0x7f0000000000), 0x48a1c3, 0x0)

4.972371134s ago: executing program 0 (id=885):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000140)={@local, @random="c4bc9cac9686", @void, {@llc_tr={0x11, {@snap={0xaa, 0x0, "bf", "d700", 0x0, "0b1cf062df4821f260"}}}}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
socket$inet_udp(0x2, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r3], 0x5c}, 0x1, 0x0, 0x0, 0x801}, 0x0)

4.861202631s ago: executing program 0 (id=887):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = open(0x0, 0x0, 0xc8)
fcntl$notify(r1, 0x402, 0x8000001c)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[0x0], 0x1})
r3 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590200c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x41}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada33cc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b3178c965c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0x87}, {&(0x7f0000000280)="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", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xfe69}], 0x4}, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65756c9620757365723a73797a20"], 0x2a, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000940))
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2)
pselect6(0x40, &(0x7f0000000080)={0x5, 0x0, 0x120000000000, 0x2, 0x500, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x7, 0x0, 0x9, 0x86, 0x800, 0x80000002}, 0x0, 0x0)

4.398063268s ago: executing program 1 (id=889):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000014480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c0004400000000000000c7f14000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x40, 0xd, 0xa, 0x801, 0x0, 0x1f, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "1e1c"}]}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

4.104190105s ago: executing program 1 (id=890):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000300))
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x7e)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r3, @ANYBLOB="10007d"], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x10}}, './file0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r4, 0x40000000af01, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x24c200, 0x0)
ioctl$TUNGETFEATURES(r5, 0x800454cf, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000003c0)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usbip_server_init(0x2)
syz_emit_vhci(&(0x7f0000003980)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x6, 0xc8}}}, 0x6)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04050400c8"], 0x7)

4.043680914s ago: executing program 3 (id=891):
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x29, 0x41, &(0x7f0000000280)={'nat\x00', 0x2, [{}, {}]}, 0x44)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ip_vti0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=@newqdisc={0x60, 0x24, 0xf0b, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0x3}, {0xffff}, {0x2, 0xd}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x2}]}}, @TCA_RATE={0x6, 0x5, {0x2, 0xe}}, @qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x3, 0x0, 0x3}}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x24040800}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
mkdir(&(0x7f00000000c0)='./file0\x00', 0x80)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000380)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x7, 0x7}, {}, {0x8, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xfffffffd, 0x400, 0x1, 0x20006, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000480)={{{@in=@broadcast, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x4e20, 0xd, 0x4e20, 0x2, 0x2, 0xe0, 0x0, 0x3a}, {0x6, 0x794, 0x6, 0x80000000, 0xfffffffffffffffc, 0x1c000000, 0xfdca, 0x5}, {0x20000000000016, 0x1ff, 0x0, 0x278}, 0x65, 0x6e6bc0, 0x0, 0x0, 0x3}, {{@in=@remote, 0x4d5, 0x3c}, 0x2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x34ff, 0x2, 0x1, 0x40, 0x2, 0x9, 0x4}}, 0xe4)
r7 = socket$kcm(0x10, 0x2, 0x0)
recvmmsg$unix(r4, &(0x7f0000004080)=[{{&(0x7f00000001c0), 0x6e, &(0x7f0000000780)=[{&(0x7f00000006c0)=""/144, 0x90}, {&(0x7f0000000440)=""/57, 0x39}], 0x2, &(0x7f00000007c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x84}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000880)=""/65, 0x41}], 0x1, &(0x7f0000000940)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0x48}}, {{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f00000009c0)=""/192, 0xc0}, {&(0x7f0000000a80)=""/58, 0x3a}, {&(0x7f0000000ac0)=""/148, 0x94}, {&(0x7f0000000b80)=""/21, 0x15}, {&(0x7f0000000c00)=""/131, 0x83}, {&(0x7f0000000cc0)=""/88, 0x58}, {&(0x7f0000000d40)=""/28, 0x1c}, {&(0x7f0000000d80)=""/180, 0xb4}, {&(0x7f0000000e40)=""/130, 0x82}, {&(0x7f0000000f00)=""/211, 0xd3}], 0xa, &(0x7f0000002100)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0x48}}, {{&(0x7f0000002180), 0x6e, &(0x7f0000003680)=[{&(0x7f0000002200)=""/163, 0xa3}, {&(0x7f00000022c0)=""/79, 0x4f}, {&(0x7f0000001080)=""/23, 0x17}, {&(0x7f0000002340)=""/126, 0x7e}, {&(0x7f00000023c0)=""/165, 0xa5}, {&(0x7f0000002480)=""/251, 0xfb}, {&(0x7f0000002580)=""/84, 0x54}, {&(0x7f0000002600)=""/4096, 0x1000}, {&(0x7f0000003600)=""/66, 0x42}], 0x9, &(0x7f0000003700)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x44}}, {{&(0x7f0000003780)=@abs, 0x6e, &(0x7f0000003d80)=[{&(0x7f0000003800)=""/218, 0xda}, {&(0x7f0000003900)=""/107, 0x6b}, {&(0x7f0000003980)=""/6, 0x6}, {&(0x7f00000039c0)=""/248, 0xf8}, {&(0x7f0000003ac0)=""/206, 0xce}, {&(0x7f0000003bc0)=""/142, 0x8e}, {&(0x7f0000003c80)=""/121, 0x79}, {&(0x7f0000003d00)=""/95, 0x5f}], 0x8}}, {{0x0, 0x0, &(0x7f0000003fc0)=[{&(0x7f0000003dc0)=""/143, 0x8f}, {&(0x7f0000003e80)=""/47, 0x2f}, {&(0x7f0000003ec0)=""/198, 0xc6}], 0x3, &(0x7f0000004000)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}], 0x6, 0x40, &(0x7f0000004140)={0x77359400})
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000240)="d800000019008111e0020f060d8107040a60000007000000000455a12a00090008000699e3ffffff14000500fe80817806000567b8b7b94002000009080016060000000000000000d67f6f9400f7d1d9bbe94fa27100a007a2f7457f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237ee4b11602b2a10000000014d6d930dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b694138c9f1ac76efb42a9ecbee5de6ccd44242f4d643f6fd0f26187b51980dd6", 0xd8}], 0x1}, 0x40004000)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
r9 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r9, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x10000008, 0x10000004})
getsockopt$bt_hci(r8, 0x84, 0x22, &(0x7f00000010c0)=""/4106, &(0x7f0000000000)=0x100a)
syz_emit_ethernet(0x42, &(0x7f0000001480)={@link_local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, "01a600", 0xc, 0x11, 0xff, @local, @mcast2, {[], {0x4e22, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0xa, 0x0, @void}}}}}}}}, 0x0)

3.872016119s ago: executing program 3 (id=892):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TIOCL_SCROLLCONSOLE(0xffffffffffffffff, 0x541c, &(0x7f0000000040))
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4c831, 0xffffffffffffffff, 0x0)
r2 = socket(0x22, 0x2, 0x4)
setsockopt$MISDN_TIME_STAMP(r2, 0x0, 0x1, &(0x7f0000000100), 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200)
recvmmsg(r0, &(0x7f00000000c0), 0x0, 0x10143, 0x0)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x3f73, 0x100, 0xfffffffe, 0x1a}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000600)=<r5=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0xffffffffffffff3a, 0x3, 0xf4}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
getsockopt$bt_hci(r6, 0x0, 0x1, &(0x7f0000000140)=""/56, &(0x7f0000000180)=0x38)
read$FUSE(r7, &(0x7f0000004180)={0x2020}, 0x2020)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r6, 0x0, 0x0, 0x0, 0x262, 0x1, {0x1}})
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000a40)=@security={'security\x00', 0xe, 0x4, 0x39c, 0xffffffff, 0x0, 0x11c, 0x11c, 0xffffffff, 0xffffffff, 0x2d4, 0x2d4, 0x2d4, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@ipv6={@mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, [0xff, 0x0, 0xffffffff, 0xff], [0xffffffff, 0x0, 0xff000000, 0xffffffff], 'veth1_vlan\x00', 'pimreg0\x00', {0xff}, {0xff}, 0x0, 0x6, 0x7, 0x48}, 0x0, 0xf8, 0x11c, 0x0, {}, [@common=@inet=@ecn={{0x24}, {0x21, 0x18, 0x3, 0x3}}, @common=@ah={{0x30}, {[0x4d6, 0x4d6], 0x9, 0xff}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0x200}}, {{@uncond, 0x0, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x80000001}}}}, {{@uncond, 0x0, 0xa4, 0xd4}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x3, 0x5, 0x3}, {0xffffffffffffffff, 0x4}, 0x400, 0x5}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3f8)
io_uring_enter(0xffffffffffffffff, 0x6000351b, 0x4999, 0xf, 0x0, 0x0)

3.653777789s ago: executing program 0 (id=893):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000014480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c0004400000000000000c7f14000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x40, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0xfffd}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "1e1c"}]}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

3.58093486s ago: executing program 0 (id=894):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x15, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000440))
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f000001b080)=""/102400, 0x19000)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x24004080)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)

3.346766395s ago: executing program 0 (id=895):
socket$can_raw(0x1d, 0x3, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000100)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x2}, 0xffffff8f)
mq_open(&(0x7f00000007c0)='\r\x00elinu\xef\xe3elinux\x00\x86\xf6\x92\n#*\xac\x02\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a|\x9en\xbd\xeb\x14\x7f\xb9\x83\xfe\nf\xc26\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]G\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8S\\\xec\xa31_\v\x8a\xf2\x18\xa6\xb1\xbb\x8b9\x1e\xff\xf8\xcdX\xf7h\b\xaf\x01\x84\xd4\x06Ml(Bw=\x13\xa1&\xd3\xec\xa9\x8ba\x86\x9d\xf4\x11\n\x89z\xa5\xac\xcbh\xc2\x1b\xeay\xbf\x06\x80\xff\xdf\x93\xef\x7f\xb1\xaf\xa0\xae', 0x80, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00'}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000280)={@local, 0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, &(0x7f0000002680)={0x0, 0x1, 0x0, 0x5})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r2, 0x0)
sendfile(r2, r2, 0x0, 0x40008)

3.109451866s ago: executing program 1 (id=896):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="58000000020601080000000000000000030000000900020073797a3100000000050001000700000005000500020000000c000780080006400000040111000300686173683a6e65742c6e657400000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x19}}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5758661d46}, 0x4)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
r4 = syz_open_dev$usbfs(0x0, 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
syz_open_dev$dri(0x0, 0xd21, 0x4000)
syz_open_dev$usbmon(0x0, 0x0, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r6 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000080)={0x40000002})
write$P9_RSTATu(r5, &(0x7f0000000580)=ANY=[], 0x21e)
syz_open_dev$vbi(0x0, 0x0, 0x2)
openat$sequencer(0xffffff9c, &(0x7f0000001bc0), 0x88302, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
gettid()
r7 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_ENUMOUTPUT(r7, 0xc0485630, &(0x7f0000000380)={0x0, "d82453b8720d24a6dc4003336500c8e10aa0e01aff783131b5242d6bbdad6fe3"})
socket$nl_generic(0x10, 0x3, 0x10)

2.678052538s ago: executing program 3 (id=897):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000480)=0x7f)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0xfffffffc, 0x100, 0x3, 0x1, 0x15, "d594cfa91f49c7570a09e9ad6ed14f175d95f9"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bond_slave_1\x00', <r3=>0x0})
r4 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r4, &(0x7f0000001540)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x173b2a7e, @remote, 0x19}, 0x1c, 0x0, 0x0, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x28048005)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
sendto$inet(r6, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10)
sendto$inet(r6, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
writev(r4, &(0x7f0000000540)=[{&(0x7f00000002c0)="acfa", 0x2}], 0x1)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="400000001000010025bd7000fadbdf2700000000", @ANYRES32=r3, @ANYBLOB="138003002b920100200012800f000100626f58645f736c61766500000000"], 0x40}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)

2.446945311s ago: executing program 3 (id=898):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0xf987, 0x2000, 0xfffffffd, 0x0, 0x0, r1}, &(0x7f0000000180), &(0x7f00000005c0))
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x3ff1, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r2, r2, r2}, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_io_uring_setup(0xa39, &(0x7f0000000500)={0x0, 0xe4f, 0x800, 0x0, 0x4, 0x0, r4}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000340)=<r6=>0x0)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x6a113fc2)
r7 = socket$inet(0x2, 0x2, 0x1)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r11 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x2, 0xc1, 0x7f, 0xc, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r11, 0x0, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
close_range(r7, 0xffffffffffffffff, 0x0)
read(r4, &(0x7f0000000780)=""/4096, 0x1000)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})

2.021437512s ago: executing program 0 (id=899):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
shutdown(r1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc8000)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, 0x0, 0xfffffcb6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800001000000000000000000000000095002000000000007c92e24b84fd3c188bda48706a4f730500593115869a6807a467217c3bf1becd7c6856269df93bc40e1da9f0d78ff6cb84602e6dc6468427cca23ee8ed52d23dabfaf056ebfcffffffffffffff12dca7e0d6e34afdf8fb900f069652458b2f9494ff15c3fa8ad367915a907257d591c792aa3fe226520d0753e640b8df0b4b6a6aabed613923fad370f503d7ee6f6abeaebc37a0752d8fbf0be40b837d57c79c9aaaa6f994ef6528c9"], &(0x7f00000003c0)='GPL\x00'}, 0x94)
r4 = syz_open_dev$sndctrl(&(0x7f0000000380), 0x1ff, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x11}}], 0x10)
chdir(&(0x7f0000000100)='./file0\x00')
r5 = open(&(0x7f0000000040)='./file0\x00', 0x80242, 0x1df2a23c5997fa7b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x805, 0x0, 0xd, 0xfffffffffffffe85, 0x0, 0x0}, 0x4c)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000500)={0xa0, 0x0, 0x0, {{0x80000004, 0x3, 0xfffffffffffffffb, 0x4, 0x3, 0x1, {0xfffffffbffffffff, 0x3ff, 0x20ff, 0x7ff, 0xf7c, 0x800000000000d614, 0x0, 0x80000001, 0x6, 0x1000, 0x5, 0x0, 0x0, 0x3ff, 0x8ea2}}, {0x0, 0x6}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f04)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000008b80)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000017c0)="a3a1f15bba31e8680d98d95992468669b7737330fd2e7649036f8961eda4dfd9f4a2d7b06b580a95b4e9619adb54c952b5b8502b2b3765aa08c1e8f31282a9fc8e66a3117b8a1f27e98913955e5416fd193adeaf2dc38241a9751b0058b70d617211049d873d5cbe17b4758ebb6d0ac5a70f26bdc310025fcc62cede7ddca41b9813d5aaae55dd5c093e6fedb139532fbb98c37be2117776e9ba43a38bd9ad37afafca6118030c95a7e756d66c87752103eb96ee8c1847d18a01ed2a3cf9441324368b787efb0d0f54df5db4fc", 0xcd}, {&(0x7f0000000400)="cdccbec56961aaf665c7d57f32af1b8c35f83ae6166b5ca3e38c92195c9d85552fab4cf59ec4f39765a233f8c6c4b7f88dd015f35cbc8dbd2098ad40010ceb4a7720a4078782198cbff171c79002483d9ff5", 0x52}], 0x3, &(0x7f0000001b40)=[@cred={{0x18}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r1, r0, r3, r1, 0xffffffffffffffff, r1, r3]}}, @rights={{0x2c, 0x1, 0x1, [r3, 0xffffffffffffffff, r4, r2, r4, r4, r2, r0]}}, @rights={{0x1c, 0x1, 0x1, [r4, 0xffffffffffffffff, 0xffffffffffffffff, r2]}}, @cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [r1, r0, r1, 0xffffffffffffffff, 0xffffffffffffffff, r4, r1, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r5, r3]}}], 0x114, 0x20044051}}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001c80)="727d4456df10d37cbe5ee0712b8db389812d81310a2de09029a10d6714d226e7cf44b94b6f4a598d1de1a894c864129964f4136a5dd2706bacc47dd2e49ac57e752e4653bdeafcbebb9b19f8c691ab506a3820ef9249c2440dc8c6b812eddc1033e1f49a2dd54b7aab4b9796665c238c341dd0bc116e9ffa3f09d8836948f5724d6eff3c2c20d647861c5491c79e3b212324241b2090f83a48afbf1de157c19aa2d5530008589c8bb69f39e93d8e1f", 0xaf}, {&(0x7f0000001d40)="e4fa42f21c346b135c4e10e43598c9fbbf988fe6e00df850dcc741bc615edf3ed277f53d39a22bc449b95aac16a7d67daf3e57268aa94a603866593fbb3257c4ed2122b48b2746604558393e9839d23d01e24194df0debca04082fc4f396cf9caba9d63e06dac7918d7f82d6fa19aa85e779e453e287d0a93f8a1b8e23fcae9910b76f", 0x83}, {&(0x7f0000006d80)="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", 0x1000}, {&(0x7f0000001e00)="247e4c8773e784cec3879d7076690615b6418b90b6f60158eefd922b80a750ae0f28e6f8a93b667bd57e8ef8c9446c9278642ac11956d034872dc7b11856ff545d8cf46365deab3278ed4e582102388d14bf81f3805c11a4daddd62514eb7375619c70ffe8ef444672140920e7bcb3a6a276178dd1b1eb2f585291b7bd37aa1384bd380ca35ef98f43ae42448785b30ca4ab293e93d491355d98d33b48df406b66d111cc17285515d592", 0xaa}, {&(0x7f0000001ec0)}, {&(0x7f0000006280)="01c697ce8dcfc20995b6b85cae9afd6cd8ad86d9af2c93e9e0436e681432383ff604f24a47f5a652d9f5c64239d3bdb55b0fd631526c9c327e65f8727a5cbcf0c21730a7bce8560a04b16c114dc3ffe6990d2dcf64872a338c4c6cb65fcb6d280a2b51da3386f17cd63f3fd21bd95153a955ccb0a1ef09cb077cb325fbc0cab8bc9a90b3c316c3e26c2b9d1f20871572407308f52a3086588718348c536072130885b143f2e930d5c1fe7fd3ae9289aee54aae8e33cc5179b494b94978a29bf5ce6139ba77863c6a2718c08fc4b644f80f111b1d97ca832aa85587903c5cd931f213d1ba1f63e8c49969daa056", 0xed}], 0x6, &(0x7f0000006380)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x20, 0x1, 0x1, [r1, 0xffffffffffffffff, r3, 0xffffffffffffffff, r0]}}, @cred={{0x18, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0xcc, 0x24008041}}, {{&(0x7f00000083c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000084c0)=[{&(0x7f0000002000)="57831fc7c11aa64d894a", 0xa}, {&(0x7f0000008440)="ce932b8c5aadf3cf2da0eb5fdca78620c863b43cddad614eb866c5b2accb590d05db13e71b61b80736e8ba370c72731a84c0a0cc6033187d51d33dd512583f2d736e8de7b9c4530c355c07ebfd81c3", 0x4f}], 0x2, &(0x7f0000008500)=[@cred={{0x18}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x48, 0x4c044}}, {{0x0, 0x0, &(0x7f0000008a40)=[{&(0x7f0000008580)="83535b0ac374d94d1f6b729862719b87dda98d60ff51c7a84d51ecf6bdbdf62b46691ec1411485ed21ce71e8c1d4c73cd415bc6d1b4cd7ab4e5df332eec7c66d7880a349c3b608707835b5b923431da9e3ed965e8e5bceeb60b39b9faba662ffc8f18d35f4bdcc989d8c092a9c6f96a3e71a601f3954b83e4e00d8b88f6083b0d1f3e0e03e192b18b8264691d5f1062170574e00800f5f677591a3dcab138be8c4407648703dbee03e6ff1ddbf5263357f37a70f14fffba8baf6a7372ecc593e256f5b2c47a8e183e88e66149bb540d93c4d6da079f7f52a1b26b3690d3adaaf229fc14ff5dd8fb5ad24b95f584d16", 0xef}, {&(0x7f0000008680)="2f9db6ad2efdb9794988a9e4b247d1958fc457bef07d0ecfc0fe663d403ef72246e11967b57c94e996286882d3b2b2637858cc1c3f23dc468a90bb66e0e1a537abcb507711689cc27e0ff5b27ac90189a812786938294252ae89a50e9586c7d03cab6d81ade0", 0x66}, {&(0x7f0000008700)="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", 0xff}, {&(0x7f0000008800)="48fe19da23daff1f47cfcd4bd29e61e04cbcbbd18ec70cafe7514f6c62a03326e5a580f7aae4df958a0f7f866963f56511a1a6609d32e20e459d09dbe42ebaf98c03b3183b37184ff0e5791b057dbcfcc9039593843019c24cbd42", 0x5b}, {&(0x7f0000008880)="95896c1e4a0a5cb4f887213e3853d5668d23763e4c757c7ca91acd8c26f1b3b43eb0a5f28b778be5", 0x28}, {&(0x7f00000088c0)="15594ffe1ded7e3ff9f716f1b7c5a917b4b987aa79730ead2233a171f931abf759696b519db9788b652c8f3b35c345a6d190514fb78f54869e586af0079a36a3d60c17ed3bda2ad08f8239e0977f6f517ca8f903ac8f2e5733186be77d58518b9d38c85292cdf0f359fa0c617f5e5ba7ffdb62a2c4b08f7f0cc909286f0bf6", 0x7f}], 0x6, &(0x7f0000008ac0)=[@cred={{0x18}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x9c, 0x4080}}], 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r5}, 0x94)

1.749872953s ago: executing program 2 (id=900):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x18b)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
removexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')
r7 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff1, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x40000006}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
utimes(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000140)={{}, {0x0, 0xea60}})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r10, {}, {0x2, 0xb}, {0xd, 0xfff3}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1.528041029s ago: executing program 2 (id=901):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pipe2(&(0x7f00000000c0), 0x84080) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x184) (async)
ioctl$KVM_GET_MSRS_sys(r0, 0xc008ae88, &(0x7f0000000080))

1.441730274s ago: executing program 2 (id=902):
r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, 0x0, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_POST(r3, 0x5008, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = dup(r4)
r6 = syz_io_uring_setup(0x10e, &(0x7f0000000400)={0x0, 0xecb0, 0x800, 0x1}, &(0x7f0000000480)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r5, 0x8008f512, &(0x7f0000000340))
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4000, @fd=r6, 0x0, &(0x7f0000000240)=[{&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f0000001c00)=""/195, 0xc3}, {&(0x7f0000001880)=""/199, 0xc7}, {&(0x7f0000001b00)=""/218, 0xda}, {&(0x7f0000001a80)=""/77, 0x4d}], 0x5, 0x14})
io_uring_enter(r6, 0x3e79, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c500000005"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000004c0), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
unshare(0x6a040000)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018011000100666c6f775f6f66666c6f616400000000100002800900010073797a30000000000900010073797a30000000000900020073797a32000000007c010000020a01"], 0x250}, 0x1, 0x0, 0x0, 0x2000094}, 0x4000800)
syz_open_dev$sndmidi(&(0x7f0000001840), 0x9, 0x101080)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$kcm(0x29, 0x5, 0x0)
syz_io_uring_setup(0x6e00, &(0x7f0000001980)={0x0, 0x9607, 0x200, 0x2, 0x3bd, 0x0, r2}, &(0x7f0000000300), &(0x7f00000005c0))
getsockopt$IPT_SO_GET_REVISION_MATCH(r5, 0x0, 0x42, &(0x7f0000000600)={'HL\x00'}, &(0x7f0000000680)=0x1e)
writev(r0, &(0x7f0000000700)=[{0x0}, {&(0x7f00000017c0)="7d3276744fcf8a0a9c6456d21aed589b0d8669d58d9c1eda6aee0569e0897619d7f5ae2cdf05fae1d7d4d925a3a1eaba8b4af16e105ace9d2101e0d0209a5e5874a9432baf7d66133adcd221de5715d822975e079326c700e6a3da33fdf65fc0fbc6d40c78db7638af941be63d68be4362b0", 0x72}], 0x2)

1.241573833s ago: executing program 2 (id=903):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
r1 = memfd_create(&(0x7f0000000340)='%\x00#D)\xdeA\x02\n,\x06\x89\x96\x8f\xd3F\x9fe\xf7\x9f\x9f\x0f\xeb\v\xc3\x86c\xe7\xc6\x88\xce%0\x05\x9d4M\tH\x89m\x14>4\xe4\xb4m\fF\xaf\x9d&\x05\xcf\xc1HZ\x9a\xa3X\xaa;t\x12\'\xf5\x18PvY\xbe\xd1J6\xd9\xa6\xec\xde\xd4\xb9I5\x1a\xc6S\x14\x18]K\xe0\xef\x97Vv\xbe\x8a\xffG\xc79\x9d\x19\x10\x8c\xb2\xe0` >D\x11*V\xb9\xcfi\x03FnU\t|b\xbe\x10\xc4\xd4\x01\xb2=\x11%\xd0`-\xe2\x1d\x8e\x7f\xd1\x15\x03\xa5(\x1e\x05H\xe8\'[0\xc2\vO\xdc\xf8?QT[8:f\xe9f\x9b\xd3\xe2:\xa2b\xa3\x89\n\x9d\n\xe2\xb7\xf6\xa6\xbe\x82]YF\x90\x8e\xde\xbd\xb1w\xf7\x15\xed\xd8\xea\xa8\xef\xfbM\x82oX\x80~\xe3\x1fH\xf4\x99\xa4\xd2E\'@\xab\x13\x94\xc2\xef\x81R\xbd\xaah\xd2D\xce\x1f\'\x8b9\xa5\x88\xf1C\x1a\a!\x95\x165RS1\x9e[\xf4\xa9v\xfah\xb7\xd8\x9c&\x85\xcbs\xad\x14\xf5\xd5\xd7M\x06\x15\x9d\xa2\xfb\xfc\x9c\x94`x\xdfma\xa6\x04\x06\xcb\xeb\vC{b\xceW3l\x8a\x9cO\"\xb5\xeb#\x03k\xe4\x99\xeb\xe3\x9d\xba\xd0\xb5\x0fh\xf2\xdc\x01\x81\xb48\xea\xaf\xd0*\x9c\x1d\xba,;\x17\xfb\x94M1\xea\x1f\xbf', 0x5)
ioctl$FS_IOC_RESVSP(r1, 0x402c5828, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r2 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r2, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000200)="c0", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r3, 0x80047437, &(0x7f0000001f00))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$packet(0x11, 0x3, 0x300)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000300)={0x18, 0x0, {0x15, @remote, 'bond0\x00'}}, 0x1e)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r5, 0x40047438, &(0x7f0000000040)=0x2)
ioctl$PPPIOCBRIDGECHAN(r5, 0x40047435, &(0x7f0000000200)=0x1)
sendmmsg(r3, &(0x7f0000001200)=[{{&(0x7f0000000500)=@pppoe={0x18, 0x0, {0x3, @broadcast, 'team_slave_0\x00'}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000a80)="3e8dd43142b9dbb021569ac1151e41928e0df98784bfd014fbf626b27a23f2a060f01217462d2b50333e65e4cd96060608382f003d7cde3bb0bf482136f67dbfd76dc91de5524ba1e18d31ea5b25d885e0cc2c75d32dd0b4626edd966620bf0700388acceb91f32584854e7d56a5f4a36850b4b2330b92a101a3ed367864ab5da2de4b247c5a2363823c4c72710a509cf2f34d679660db86279e44a551dce33ddb1c56f11e9e27eab42839950ef2a7ee2b3115c560da6a721dca16b00377edf2a9db158479f6226bf17850a789c8a210530863448bdd052a3f6710acca1b1d494c79648b2b0e2ec956dbc9b4d093ee2a0ecbf3", 0xf3}, {&(0x7f0000000580)="7f867b4164d9dd8b3a1a8f565eb7376768416c6268d4ff7c18ff3accc3118965cef1152af1f395cc3ea12ca80c790204b406b005000a041a36023977cd761657fc7dd44dc4fd31ae4b65223e4d042791", 0x50}, {&(0x7f0000000bc0)="64e1008369edc780e59073852192d281a66c9c7c4e195569146531f50b938a64754ae8905fa533113742fa6d3708ac1c727a7c985a73835f9118b55f90f92ca7c992697f508b3b1d2da46f80e87013411d329dd1bc23d1b551cc342fdb0fb2c9ee2ad7a533953f23577e03fc2d10923e0d483d60e85a7c95347123c11a93dc4af5169e0a9a7e68dffe113e89b9d3a0a5c8c3b0e5f07b36681484babbdde7e6bd9c624facd8d75890c913d88c9a9e04dc60f39cb163476eb4a95279e5ed898dd52dbdb72a5e3ff6f0463f4e3f5bc95b6c898d500aff2f8e1f03493fb8f5cd052b43868aacdc42e3c22418e5227e529e4c87c4404fcc95f3a0", 0xf8}, {&(0x7f0000000cc0)="6e84a1baf1fc15826c35a5314f89af3c897a927f4e1edb4fe0cf5d2c555517d32c60d2b3281c6782babee0a762629ceaf1c61f8e808a28c50b82000523234f892799883bea825747129f617cbc8f9156323ecca9ebefebc95ffc0f62a9e64a89c2cb8952a072088dc3aa42039ee2c7a062ff907120a78591f8653a9678ad246994ef5295188d8b9ee2548bc3cd49e7a42e54bb9480372c8e03b6f821462b", 0x9e}, {&(0x7f0000000d80)="ad1d56dcf13b34ba358c6e2ab67c1b1a97640e840141b42c8f15b374e6ba3276b485522c15f6028f5851739fc96eb2535060a758ecdec12f1751e8d206cbb84562c6bbd3bd301618ac0f82978347d51cbd1f0d6c3cf050a6ca268e5c27b043f35148a979163b94d33ef7a3be943f3aeeed0b1dfb55d6f20da64f3487ae41e7a4f2bbfee1b6f2daccf8ce97f91967a138fb51e8dd1a10fd4ef9", 0x99}, {&(0x7f0000000740)="6edc9eefa6cdd09480942de04285397cf19a65e024175c89af7f89f65e0583ba0993b9e76d92c50ecdf06f324dc49048395acfab549d0bf90d0e84dcdcffab180414bdabf589f5e76b8f15f19d984cce", 0x50}, {&(0x7f0000000e40)="a19d9b6f07920a24f956d8ea54e5ff47342880635e13a1abdf8ff1164eea9aa3760ac05e730e8f0df1de0742bff6eaabf72a492efdafd9e7e7c1cf380af3eab65f8646c460745256eae9d4e7a811ed30cce62caa9d6e8be95cad8030e7e345557218026b83976d160794e278971c3d02b303a4dca9ce8b9c287e22b75870ff3ddd915524096db3ecf71aacab4d110d242878", 0x92}, {&(0x7f0000000f00)="b80d00514d9d407ac7fc80426e4d27886e06fcdafb87ee9a42581f9606007c2b64a5bcda91dd21326854ff1d4244195858c0e4f9753626dc708f08ea82df08589e31ecbe9b8f540d6a46", 0x4a}], 0x8, &(0x7f00000012c0)=[{0x28, 0x115, 0x7, "e6600c872f7d07c6276090c942bc84620eb5ef0584cb830a8010"}, {0xe4, 0x117, 0xffff0001, "86f25fda1cc45ad29479e63b318501d26c5349dc00a8eff29afd99745d6e005d60d17b9c52b733e1a62487974caa879b6ad58240d14c225847e62f5d7ea6b21b5e51ec1335ab76aca1308fb51c84887bade2c9fd8e9f54cfc65b0a71de028f6fde5dbfcc274c94020d2e1338589a171228deea83b72b3e31979d12a276f263e48139ff6f4245498d4c74bbc36074881fd3cd297a3c18a2367047467f41e2092921e5b9851ea8ea7e1e71e11874ddb6136db81bb44b8600203948e3ac485065ebbd3093ed9423f019f5ba1baa7ef6f59fda5e2e913f930ecf"}, {0x74, 0x18a, 0xff, "e5e0375edec3a2cad5d1eb54deab519b188a143d11de1e2a1fad0a8224f54386623572e8d17bc9de8c9d0da0229f18c6e03a43b90e4e6d7f3ad457681fb10c0b566edf00782fb6defaaa39444242337d83d56497326fe46f26028ec1ff1c422223f15b100c"}, {0x14, 0x10c, 0x4, "ebd9c08475"}, {0xfc, 0x1, 0xea, "e3ececccbd0554d6c20419bf2f82e34510d8b7d16b79fb773c8b87c902fc382745f68c55592b1a30355e62eb9046a133bc425812d6e998d31e538c9bf25ae575adb852d08cb38b63163aaee4cb788193bc3c43b8ddcaa9b778aa48208adaa689f42ae380e5afd09c6606c73fd2f671d6ea936b2fe38d304f4adeffce94585c17013d9dd29fe54ffbc2b58b6d974b83fd914985f43870a0c3fc3d26ea7120f06bf3714bf936871444078f3d136da7d44bdf01665ea66c0b1eebf6e32bd49b8cf9a9ca5713f79ec787659be0df989cb9d233b7fea94334b419edaf9a3ec80ec63dfd9306ff2f2312a0df43475fed29"}], 0x290}}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000f80)="d4675d18dae7c2615deb16723e239d841ecc102c68b625541de74623bf5f893f83f0e7fafb499b6669b71e4d1a9219891d8dd1435e6ce90670b5189778310ac101cfd7bc61c5137e7019c24e158640e7b22ab85f2f29c56b9e81c9c3d26c857a1d20b599912972077ee28aaa71a7bffbe41cfc41558b4dbe", 0x78}], 0x1, &(0x7f0000001580)=[{0xd8, 0x10e, 0x7, "28b45a1645a4130da74885c4a196915e41b19d827dfcbac3bc7b89646e6da4cd004a4e5ff1b6acfed17a3990da0ce0ea6e3ad60bad9b875ee01c27a00afe223abc0a6246aeaa0e92a6f1b53c22213948ce3ac3145b907f8e41db05c63abab39c256119029fb36a15dd6ce5ff89ead80378ea19aadec812d017de4e4e314ee9c66c5431af57fe866a9df49d45eab6e887e40075b1f7ac81dcacd38c4b4b00bf1f440529f39d929f5f016f3acfe2a5348ddea99d34a2237f2a4bf802fdf846ed2de823b2d73c89d442174c"}, {0x50, 0x18c, 0x3, "95d61026d7ac546170acb0bf38428071f7789dabe8a28962279b8229782a74df9339ccdd5450bb4b14051e4f49f351e05f727a730d5b6f568ed387fc26e391e059e2f4"}, {0x98, 0x107, 0x3, "506f07ec7aa91c889879cce11b2dfa64dc9c23f0088455007449e16000d87f08438fedc40710c6620cb37b393142153d7633220487002107dc2796db15992e522e272b0088f046203371e51693e9395e4d4d0da9fbc710c37599da849e50140b079ef29255c18cfd3313287d8e5864e4110affbc30e099145b808d6e5bc20394d44a9a13b1e6e19eb7e1bf"}, {0x44, 0x11c, 0x0, "2a7f5a6e0aa3dc3c8d4c1b12177bebbe554d177ea99c0bc005f2faeadae743beac1e1ae9156ffd8d367af4949b852f0b39ffbc3267"}, {0xa4, 0x119, 0xb0eb, "b84622f2a5b6e4c505d4e38c3628104bc3299cc0388ef27d7431a5a359c7e4d80e4a40880bb98ecbd2655ae59cbbc8a87025a07ea41c23077a037753c3ecf549f898644693d2131361080824f472a5ce72cc0ad52adbee1767c9c1dd4550bd85fbf7c39a195e62b97aa914d8cf5cebceb78c996e2cbd476a82d0d6cd3fe70bd986dde7b6dbb17ffe4ca5882025aef4282f3ffd9177fb"}, {0xd4, 0xacd5f207cb1ad58c, 0x8000, "4721dd6929684e1f94e8ffdb504570d910d5ce64820700d1e35eb091696fb58935ad3e9696b85d6f964ea44306415da8bd3bf1c602f9a04dc16f797229f341b5c39453f447eaf36f9bd194c59b59f1a6356070bdac7b801e873817cf6b3a6ef6024a11265016bbef8e4ad3c158e7aa99b53e68dfd39e0778dc106c6179405dd0f402df51d58db5f379ccb43d55e5e91ba42151aee366e22d42120aa4d5fd481a689e3d2a8dbeac6aa29ffa7c3c166a288cd13124e822cf5f750e27733e66f6aed13e85493836"}, {0xc4, 0x10f, 0xb33, "bd46affe4f8cd84a275bac5bd5a306428ab556c03763ec03c7a4c3a7fd77e66c0cdc25c8dfaca5619f2ef28315f3470e57da08fc83cf8c193dda613ff8cace21fe71058fe5faa9812d2d7f6c9bda99c51584b679e6e87647eaf0b7bcc23331744e590b5138f4349eb84f0ee0503a12fd7ec3360dc9ca50c7de563bfe4171f474ed08a36a80def793985a6fa38cbae646515c645d3f1bae8ca9170f70924abfdc5199a6022acbbf7ffd40b256b53c917af62cefb11ff4c8cf"}, {0xe8, 0x113, 0x8000000, "bd8b615c70ceff8ba2ae8728d8fb7eb2721e44a49130b0865a60763ce018551ae3cc962ed2ceb04b7e77e709ae27a342024450848929204a9277133bb6ab8e1299f610be43429aa6dde5724b128164a9727406ef031d817622ab5eadbdd0c4aeb6aff0bcedbc4061be7a3e20f086d1e8d09ad345fc644f1fc971e945f170c544acd16afb605d36bb65e780612a7f38f9d379de19fc36f93548c6835cef3849bcb5b62ff5c93e9aa9e90c25ce5757f7c1145a4cad783d204dcb8af8c7cbcd68a0f1edb3ea2c0145624f5d9d5557c2ff69ddd2e4ddca49b462884bc9"}], 0x528}}, {{&(0x7f0000001000)=@qipcrtr={0x2a, 0xffffffff, 0x8000}, 0x80, &(0x7f0000001180)=[{&(0x7f0000001080)="09f71699786f03863f9d5b13f12e577df0cc3c738e6d3af9b5f145829bc0f40ace373f12616f8227ba4e170460fb5f5a03a8f683b7ca41897e138833fb9881b18cf8d0a69feda5257dd96c84efb35e4a86102604b4af64be90e1591d2229e44ca0f0a9245bc7d74cf6a75ee7bbf78bc9d82e", 0x72}, {&(0x7f0000001100)="b4174904381e851fb34c391d5a277263a832eb072716481193e36260ef4ffcdf0f44d8393caa368ea512aa20a35e66628d863c9e4ac7b11073232e2f5f7a0c1144fad58b74d1da0078d27bd91c279b36c07c5bf39cc6b68116f5e94b9737049c22b4893e318e31685b236401c34f9df4ba2ec8142925", 0x76}, {&(0x7f0000001ac0)="4dcea3e43cbda9eb0b00634a66234e279dd07fd2431db8e6b630add58fcbd7b4d7af7e5b300ace1728529420ed9625eeac1bb4fd9606c3564c9134b332b77610adfdae39b81d0af507dd965edbd2eaa74dbcbe60e8123143735998efa5d3f2d7e91b588f239b651febe5d8d38ea8156aaa8a3937301acc8371134e4ee8c61de50e281c18", 0x84}], 0x3, &(0x7f0000004400)=[{0x8c, 0x29, 0x2, "b4a1d4adf23794f8bbdb35e9a4e08029891935af4156303f61bed5d861c7887bec10889392fe245fc962635cf5c806b84e60cb327000589e4580e1e46d8ff6e56e40b1c3237f854aead9a8f547fcabd67f38aae1d552e6b13949afdc2874fb5415dad2691fd537f6fa85a381aefbda4569567189944ac6242a29715fe031fb"}, {0x1070, 0x84, 0x10, "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"}, {0xa0, 0x88, 0x3, "46aecabed8c86d60f86d7ffa0af50a4d089dc2f68b8d7df895f6e5f8786862594f7ad2334dd73fe39bab51b18185614d014c0e7c5b1ae5722b27dc9439cdb591b0e94890ef22092f30eb20d51816632cde669931e31e3257185ee0f3ccda8d8f033d5330d98e3de8ab6fd09a526c53181d11b57cbf2c834260eb4349c0a90c309126347c293293bdcc69702619f4720933e0"}, {0x94, 0x10c, 0x9, "0497ae63708bb54e1de13a4dc0fb006db267090dc22a44aaff66d35fa98e5223ae703b210255ad11b56550289ff3576e9bd03a464509a60a679487cd2dfcb3cfcb5584bd4e18e7d58e276b10d0f66bb56b0bb616e05e4895f0b433f4d665b56db85bc67da4328db7a1cc05b8800532cf46120217a9ea8f2d0ef69ede92b0d12489ac8ee4890c"}, {0x100c, 0x11, 0x64, "1f7e9a9ddec6c577a72cde12858855543da4b980da1d9c5e4e6e3762111c5ad9c89e9fff16209913e9899bf7f502730a436a443b4516a56d516afcdc03bc4e645ac178d75bcc54164796132145029c55779579f5145429e27d982adc7d8dca134e6afe6e5339d5d84a3a9380a0a75f9faf73fc0c5837ad7c57a6a69beaabefbcea3408376881b1338aa330123f110d0847c4183f2347c023fee5e1b6b8d1210c4743ce73d323fa1222e22b215e3152e792573f8898fb7d5e4ad85bbfa72cb487d3c36e580bcff445efd549107ae26a79a05b241c656280aee0b1949dba5c834c992f2146b965b41677e13bcd253ac0ad10bce83f7f3ffecb18698ab3c5c5741c1ccf7ce7fd1d1e31a3c3c58fbf769d964383a94d492492a8a319923723500d0b3c9f06c3503fbf57b9070fdbaea66208a48676676d76180793e3949001430a11cc3af5d1b93eab9c5349e2643f5c0bc9368e0e50163f670067f91898839303e863f4f193db878051bf11d1f8910f3eb35cdf592077825ec0f92053a9e4cd86c538e0561a3faf4f0c5d4a72812879af2c101a0e9775502c210425f59c66572e1fbdc483215d863f53989be38b878dc0a160e166d8b0ad2ffddd45ef5cb38465cf11c4eadd14672163c8bab5aa45abc463eb434f23a729b12f93afd0497e2d497486628668c765c9540e8940e7c169cdbf6e9b85ce576fcb053f17d5933bc00afbf456c68e4ae6d3859845653d82901af9da6be764bd8b458a4173b931452b8153ac24e2f1e239d8c59c7a7f48a4dbabd388e0d1937bf10bc50f390c42abf4b865204d7106957c6cb7e5259466b48bef98f556462a270405bfbb49e3a5f49e2f2b47d12bed17dcb60f2c460c9d21d9e7408d1c75ccb178e5cebff674e215ece90752fbdf70411096474a941849ac58d7ca2f7d1c9b31e41da0765927753d77de09ee89f26a63ca6773b718463b9f02aca6b536ba97758768bcecc377601952a10e0b5e4fba1285867a3770c58f04122314420ed14315c2e478096f55a0553568ae98f37bb7a4595d3bd2c3c2105a8b3591389fa1aab08888c739f040f9b9e27515023c0e59f25182ede76a3933c48da89c5233df5e89c7451e5ef4040c6a3618eebd48c3f333b1d0345f8b843314afa521afd040485463e8b976311739a528284503aa268bf9300783a64b06317c6ba2c922088df0459347842070d8592b29a80b68723d43474636a98281d9a31b913472aef11f7411a9845a29bf7d2fed2ee424e093e0c50b70d09ed5ced2228977f48d8ec8634de65a18292bdf241a8cb669a404244fd6d9dd8171ea59be66d249401597fdda09aacacacf6dd0b1c9cea2ea0f9aa6ca951ef5d927cebebc096f5706fdee657fc63d70467f9b8a1aa95c8ad85cf5982910f265ce41c37cf07d19056279c9a68af008d17a6260c760286789aaf256bcc0ff30efdb21621c7bc8867984d6f76915be07214f5f33d6c7ecb7295cba613d11f4c6ab2a0dd8149e4ab82e9a04320c6c6b1de4e063e430d402605d242c83363908ad1db7f743b719d8a372e796e089797dfbc535469a7bde41f286679620e897d7d71919e0ca86ad5bea4523837650d6face8cd1781c3bb21ecf9de5e19691e302aeea6f21d5a807220b99026d04b1275bb71736dfd8e1117d1742dd15dbffcff8c95311fe4fbf45d9a57c4f5ffa4b4f76dadf9c3cbaceffb205017488e6c2eaf2e561daf716796dd2a3b6e3782c10737c0e04c3981e42a1d1f5595e58f9cdd6c0d7d3b89014b3d3c701345507d912345af51006459aeaf12ef5f80e5102bb10eeba7045327aa603ff2a143060291054368799acc8e5da7d951a28889034462427448d9b86cff866ccffdb3e9fc8328027b6ab24347d2db4f48020dd32f7adc411c47a1fb226a6402f8e96ef5dcb25e0e99035e5f0e783b0d2bb1988ead2efe26bcf7db21db1d3afa2cf9a23b9caff47219f1c3777d4ce9217920233e0cb3a440aab9ec13103a06fc6ce74be95b1d7d9386596a4e653ede2ad4a33de06172b3d208bbf9adc2bde138de9b90bff1e68f0158c10d8326e281870024e88b7d1388e97bd11881ebd94711b433974227a0637fc9b6abb03b793a85a0187dac40b0cd57feddea39967f0652a48eae6ec215c1abc1beffde37039ce607e6bd8592c28e80e387681f09e5851c477350da64eddc4bab9853fb2022b70d1a21523ca07f4a6722b60c17a86a1e3eced212576f6b40d61988a0d3711eaa1c257d7373337f142738c84ece7b06dabcef9e29aa7d8829ecce23edc807a86cfa8b9398945198c2511d96b57480c634b364c3fef7f53e8aee98c1fdce5f479c066cc2c5484f7dcf30dccca2a108c73194b462c0666ed38a561ef8c02a561d8a3cf24f3a042cbebdf86561c8de79d6cc5862032c9be8f91a938e5c10635580920051450502ce8b640c72fa6f0a2b81b8302b626d1ff08a8335d238e89a55a70b340b8291a0ab45d08e5e70b8b91acbfb6b4f403f4de7532688c9723be7b7b786e7c6c26ffc1ecf154e3102ced4da2b51274dccdcad3a57b9fc3eed4b23cbf9e0b56c6ebbef46939cfaa1b937d552b6ffe1387858d50db7a70b477eff9dfbd2772d8464b791e44cc75e535511b22ebe4b1a3f6acde11466c4c378392ca87d2a29ba0c608349c63e970593d277157267d86fabce999b2566dc2adaa85343c2289f8665ed4cf23c6780ff27728a5acde5a46bf420acb1db67703a9b8f1fea73d4068996c245efe13b1496adc0e3e284ca207316514506c68acd470bc3b0c756a4d3e819fa81c9cae72fc79b598deb80907acefa0370a1b2c2fd7dfe3671ec5704b331505e9069d394cb2dffce5bf8c46c93682b576becce28d966d7c8bf1de7e8f6c01e8d20a0c0ab253f34c31ffe9598f06573678251e2adc07e1f3e85f5c76bb2515c264859c0c33125cd477f370d131b94f8f3a0e38faa1366b14d79734e9d4caff9b614a995cb0fa5d931a8961cf2252bbc22c389a7a5e8990d533348b5bb9442f0ecf060a392e7b84ad058369e0236712d6d3af827a28a429de7cda7382974f280fe0b4a0a6fce0ee0d6b00badd0576e687844bc6d7d4d9a87c8560b796801d9d977a3d030ff9ea902ea5d8af14e90e627c06cb3781b17e2ca9b88fb9af1b4ac16aee5a6af88dbdaddc138319d8b6838bc18e2770845d5c8998917ed232c96e781bf5bc01f71f3da4a90e77aa3889967a420c50f4d5dfada26bfe8a2164e9995b7556b98ab7c114ec8a0a728e4b44158c33b291999db4eb39b4526758f279951aa887a40dd46aa43687e48a1777fabedb3b93638d443f9136eb5d1c4ee084717178aa44c29603861d76a06843f3a088be039040bfccc43d9180519504da3e9fbee1c2ed258ccf4299bdc380d7406e2d21fdd9a2ab86d9f2695960414207eb792dfe94c718bc4ad2c0bd5cd205e380abd6ae9d308f1b17b158dd074bbee14fdebd3201a38f924cb90ff997a74b9c48231449758b846f5b306e22f82caa52b08ad46bb0a32f20f20bbc541a0fb537351506aa03a1b0d8ba3a68331050a5a3d11de25f91b1eee8944fd3b23e3d5d2d7889b082e6137379fbc9f695a8b5b5eaa123029ea00b63a61f4a89b1aa27d7c36c1bff6fc6c221368c31d027977fdddb8ac5b4344f4e3f0c9a2da0d2930a705f9f693551b2a2d13dac49889da5a9fa62ab10c3c542309ddaf71e8d1babea6317170627e83777264f2c7103a9687ee6d260a170900d9d4b721fb889c2803aef93e095d53707e0170293b136811c1ff6936683f0868375aedf9836c6e14cd01374c03b08670ccdc2baf2b5e7975490bcd9ad7f4638f8378d3f1574447267681be1330aa0e96a9c1eee1bdd8f422d220204e07832e35080c5b2ebe0de73a6610dcdb9c360a71a321d57c41cea392e8e924d865e25e65ea448acb9a848d434ca2eab1ab7a567ab5789c2c23ccc5812f5d4dd4a15202bc0e9226c648bf89b6d58ca9ef8039f096ad78c15254cf3424064d7f20d2d85edca30bbaff43a0de4abb158945f1586425cc0d39c6823c63150653d39ce17842b0eb49af17a50f396144fe284f82552d01537067d88998a8ca6cc4f4cb1727c7da1c12fe86418fb0d1cf6c92be7ecd42222a73bff5d596ddc2ad82d6928fa3e5ddc14b582a6c9381a0b3497f15142bf83e911baee70cf2124fe9ab097e532b3b3acce63c540102c870098845c616c83d779b803527da6f596086b425980f2ec63d79028ed30b49a52c30563703202760b86fb079ea555393eb5e969f946e6c1f56f33ee672984d9460b337112f85d0cc316edbf5f5d11864f1ff2ac7d89d7e9a60a3be9d67cd13664ff5d921d015e5f96b644597e9dd2aef1c818aa7b28cd6e4fac99f87e20e1a00e52f59b0d0713d8898f7a0975ea5c6d1e35515529b2427517f44ba868ec3cd5056fae92b5c37f9a6b3e812d95ba70e59b4bca3983a7fbc3f2db79dd25c7124a34b47d8fbb67b0e24240c3f7bb1a3440938dfad253f09c21247161b4d52cfe2b00e79a38ccd25e4cf1ffad5261cb2f67ddc406964201150801b487ebb20cfeeacd0e61b2c79e0d1aea2ad31e903644b99405e76ae4fed2fd9174c42a230a076975d0f7ff23ef5629f344ef92bb9f6736b772ba98c9f42288f98135db9fd46b36860ec85d2a344f4ecec331ede11d101c2ed7c80d1f923f9504faa42dd4d4a184edb83ad3df882ac15443282905b40b136486026272953441b0177bf7445f7b465553d6e6633e89758982c9f0bd9b0a1acf9ce443216b2dfa372dd726c21e3231a1e863fc6fe157a9206f7e0d6aa4b894e7fb438bddcbe3aa5a5561ed9121b30c53f31668328747042eca678f0371bb558b988b6f9de9ed9eac73fb72ecf52819eb44e58f326977de7de545fe1cf8f22f7b6624d406e457895aa5999eccb1bec57c2da68b8f6853e51e38ba05734c968b919a5dae633a1a8abcab59bc82a93251d68bcf1252d0d3f51f38afc3887c77e3934efe60281e2db30508f9713985d78141eb0aabea0cb3a6720a3b234b6ff6903421bf60435ce703fa9d27f72ef149981cc65b256e8c15160fbcfdf6ab7bc9388c59fb9454d2758e98e46b165aba4f5ed669ea7394750c3fc8ab1e1a9c9999bafc3ebccf2d4a007fe4bc71311a41745026030ef73b7e77f01125ed3784d4a582509494e08647cbfeb35b5855893cdb1c94458d608d3b2b7a609eaedf8a64d0a4d56c9e9191fff696b0c7c2e6afe512c9a780339977b1c2762d267c715d4963464e3c990f4175de8fd3c88dadeb59cef79f2af8da97867ec3c8dbd32f593d975a1146672a338b2c46c09716dfcc8697cb3f0f2a1916141d5dcb80a315d6b7eac5ded15e2303eef2f86781ec84ef86a778cb2e86cb33866b1eb3b25a5b3d68ecb54647824cac0014b55af9f6ee304a59c49e96d487ff5077d22ecdbbb72e72abde9e043140244189a68ad3e72101b2e53f0884581e83abfb68d2887727b5c1f006d19102b467b7fd05c1fd87beef08d01fc9c49be6037c99ce4315a9524e2b5ea328ef102d897a147ceab552c20b2658923b8b687469b1081f42dc855e09954f3fa397a700f6c17ddb91dc96f33f06ab25f7ab5202cf1b747f187ab87f81baffe2668cc35504a4abf9a4054d3e90907a042fb13909f0991ffefe51d6f852a4eeb5f2e2b5d6a57b30d91829c965510c49eb4e27af99b27a8f5a1028261a5188db2264cb7fc70303b2c9d0c6f3900affd1d50ac460918c7acd6fddac80097de2b623def0028db08a10c5c44d5126"}, {0x70, 0x19, 0x3, "3ac7d6eb5efc4438c119db347e87893e6160c482696d168411f736a9df3a96709d7996788e07e5803db15f0171ccf9b0ac8c4332f1db3cedc01a5d700ffd21d22de69805418825de43eb80936b6a0dd84498c37a6983157fb99f902339e8abfe3dd55ee5"}, {0x1c, 0x10e, 0x1, "99c392bf50bb97d25a57a66034"}, {0x54, 0xff, 0x9, "11297cd5a7a2095fc5b7ab4271f47308c2430e6ee63a5df7896cff9a7efce59fde6fe6dcfbff1f993316f6a20d7ae7f87f72715348f76bc84e560137fc7059dbd9afe0b5b0f684"}], 0x231c}}], 0x3, 0x0)

1.147883639s ago: executing program 2 (id=904):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = open(0x0, 0x0, 0xc8)
fcntl$notify(r1, 0x402, 0x8000001c)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[0x0], 0x1})
r3 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590200c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x41}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada33cc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b3178c965c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0x87}, {&(0x7f0000000280)="fe112162c63e6da8bc8432294ef18af53cc330a62a2c7035246635093ba4d30fcf19a90804f04a10939db8f4e13069cda6d167bf1b68c94d8d694d6ad1a4d51a715975560ad48770706eb1b88d021e1119f2eb75275cfe77f862368649be0f7aff5e7826729816e3d3e7986d9434f891c71ca6e4210c6757083cfd8e732048c504f28b6d309fc129ed8eb5a82e224eb648f90134d1d315977c6ea360a7fece4baa3dd7dcc970759f29df0e86469e954e2b050e87b203ca27a2a519b7555c3b73f2681d49442d9647ff5ea64110cc5020fdeafe53a7d8be70f3260816bc376bcdc5352771fa55d9733e27730ec7103520e8359c78edd21ee6c68feb3685a55722f5da09ffe8ba9f05081a8d214156376f99906245f2f390ad717979d98f0574f8c5b52dcc2fa494f461be6c2560ddbaafb80c5b4583cbe56d24f14ab78fd718947077ea736251c7b8eee267267534c84daa6f095e94bfb85986a03ddea362cc7e6682884e710727c1163cd4f336c13b844605b7a815fe39e43bd0d2e414410a82958455b8a6bd9194c631d66295675fed64c04107a595c421111a3af6e9fadab5c9", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xfe69}], 0x4}, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000940))
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2)
pselect6(0x40, &(0x7f0000000080)={0x5, 0x0, 0x120000000000, 0x2, 0x500, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x7, 0x0, 0x9, 0x86, 0x800, 0x80000002}, 0x0, 0x0)

278.728165ms ago: executing program 3 (id=905):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xd1, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00')
getdents(r3, &(0x7f0000000080)=""/48, 0x30)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, 0x0, 0x0)
sendto$inet6(r4, &(0x7f00000001c0)="0e", 0x1, 0x40000, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback, 0x2}, 0x1c)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000000)="89070404", 0x4)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002300)=[{{&(0x7f00000001c0)={0x2, 0x4e21, @broadcast}, 0x10, 0x0}}], 0x1, 0x0)
read(r4, &(0x7f0000001300)=""/4096, 0x1000)
socket(0x6, 0x4, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)

0s ago: executing program 2 (id=906):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi1\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="021800021b000000000000000000000005000600000000000a00000000000000fc0000000000000000000000000000000000000000000000080012000000700d000000000000000006000000000000000000000000000000ac1e0001000000000000000000000000e000000200000000000000000000000005000500000000000a00000000000000fc0100000000000000000000000000000000000000000000070019000000"], 0xd8}}, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000005c0)={'pcl711\x00', [0x4f27, 0x80000000, 0x4, 0x4, 0x5, 0x5, 0x656b, 0x7, 0x54c6cff3, 0xfd, 0x2, 0x400001, 0x1, 0x1, 0x6, 0x3, 0x0, 0x7f, 0x3, 0x40000003, 0x8a, 0xcaa3, 0x0, 0x20001e5b, 0x3, 0xe66, 0x3, 0x8, 0x1, 0x0, 0xfffffff8]})

kernel console output (not intermixed with test programs):

6871]  do_user_addr_fault+0x7a6/0x1370
[  123.656621][ T6871]  ? rcu_is_watching+0x12/0xc0
[  123.656634][ T6871]  exc_page_fault+0x5c/0xb0
[  123.656651][ T6871]  asm_exc_page_fault+0x26/0x30
[  123.656662][ T6871] RIP: 0010:_copy_to_user+0xb6/0xd0
[  123.656674][ T6871] Code: 89 ee 48 89 ef e8 3a d1 d9 fc 4d 85 ff 75 a8 e8 80 d6 d9 fc 89 de 4c 89 e7 e8 c6 4c 3f fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  123.656684][ T6871] RSP: 0018:ffffc90003547ce8 EFLAGS: 00050246
[  123.656694][ T6871] RAX: 0000000000000001 RBX: 00000000007ae000 RCX: 00000000007a8000
[  123.656701][ T6871] RDX: 0000000000000000 RSI: ffffc90030744000 RDI: 0000000080015000
[  123.656708][ T6871] RBP: 000000008000f000 R08: 0000000000000000 R09: fffff520061dd7ff
[  123.656717][ T6871] R10: ffffc90030eebfff R11: 0000000000000000 R12: ffffc9003073e000
[  123.656742][ T6871] R13: 00000000807bd000 R14: 00007ffffffff000 R15: 0000000000000000
[  123.656762][ T6871]  ? _copy_to_user+0xaa/0xd0
[  123.656779][ T6871]  kvm_get_dirty_log_protect+0x4c0/0x770
[  123.656807][ T6871]  kvm_vm_compat_ioctl+0x370/0x430
[  123.656823][ T6871]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  123.656839][ T6871]  ? find_held_lock+0x2b/0x80
[  123.656852][ T6871]  ? hook_file_ioctl_common+0x145/0x410
[  123.656880][ T6871]  ? __fget_files+0x20e/0x3c0
[  123.656907][ T6871]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  123.656919][ T6871]  __ia32_compat_sys_ioctl+0x242/0x370
[  123.656941][ T6871]  __do_fast_syscall_32+0x7c/0x300
[  123.656953][ T6871]  do_fast_syscall_32+0x32/0x80
[  123.656963][ T6871]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  123.656977][ T6871] RIP: 0023:0xf7f74579
[  123.656986][ T6871] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  123.656996][ T6871] RSP: 002b:00000000f544555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  123.657006][ T6871] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004010ae42
[  123.657012][ T6871] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  123.657018][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  123.657024][ T6871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  123.657030][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  123.657044][ T6871]  </TASK>
[  124.206355][ T6882] overlayfs: failed to resolve './file1': -2
[  125.683306][ T6943] netlink: 8 bytes leftover after parsing attributes in process `syz.1.201'.
[  126.251928][ T6962] binder: 6961:6962 ioctl 8008f512 80000340 returned -22
[  126.257351][ T6951] 9pnet_fd: Insufficient options for proto=fd
[  126.683638][ T6968] netlink: 12 bytes leftover after parsing attributes in process `syz.0.206'.
[  126.980981][ T6979] overlayfs: failed to resolve './file1': -2
[  127.182480][ T6991] netlink: 12 bytes leftover after parsing attributes in process `syz.0.213'.
[  127.338606][ T6999] binder: 6998:6999 ioctl 8008f512 80000340 returned -22
[  127.413036][ T7005] MPI: mpi too large (129416 bits)
[  127.526393][ T7008] netlink: 92 bytes leftover after parsing attributes in process `syz.1.218'.
[  127.808321][ T7017] netlink: 56 bytes leftover after parsing attributes in process `syz.3.221'.
[  127.876911][ T7021] netlink: 12 bytes leftover after parsing attributes in process `syz.1.223'.
[  128.061972][    T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  128.174985][ T7035] fuse: Bad value for 'rootmode'
[  128.213900][   T67] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  128.219448][ T7039] fuse: Bad value for 'group_id'
[  128.221542][ T7039] fuse: Bad value for 'group_id'
[  128.221939][    T9] usb 7-1: Using ep0 maxpacket: 32
[  128.232494][    T9] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  128.235458][    T9] usb 7-1: config 0 has no interface number 0
[  128.238123][    T9] usb 7-1: config 0 interface 12 has no altsetting 0
[  128.259561][    T9] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  128.263542][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.266197][    T9] usb 7-1: Product: syz
[  128.268231][    T9] usb 7-1: Manufacturer: syz
[  128.270335][    T9] usb 7-1: SerialNumber: syz
[  128.279186][    T9] usb 7-1: config 0 descriptor??
[  128.325498][ T7044] binder: 7041:7044 ioctl 8008f512 80000340 returned -22
[  128.366240][   T67] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  128.369820][   T67] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.389060][   T67] usb 8-1: Product: syz
[  128.390983][   T67] usb 8-1: Manufacturer: syz
[  128.392831][   T67] usb 8-1: SerialNumber: syz
[  128.405590][   T67] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  128.463305][   T55] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  129.052833][    T9] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  129.055305][    T9] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  129.057606][    T9] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  129.060178][    T9] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  129.067779][    T9] usb 7-1: USB disconnect, device number 3
[  129.782017][   T55] usb 8-1: Service connection timeout for: 256
[  129.784296][   T55] ath9k_htc 8-1:1.0: ath9k_htc: Unable to initialize HTC services
[  130.337875][   T55] ath9k_htc: Failed to initialize the device
[  130.344223][   T55] usb 8-1: ath9k_htc: USB layer deinitialized
[  130.398566][ T7055] netlink: 12 bytes leftover after parsing attributes in process `syz.1.233'.
[  130.553037][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.235'.
[  130.564925][ T7058] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.038437][ T1345] usb 8-1: USB disconnect, device number 2
[  131.134277][ T7074] binder: 7073:7074 ioctl 8008f512 80000340 returned -22
[  131.415519][ T7082] fuse: Bad value for 'fd'
[  131.536789][ T7077] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  131.539495][ T7077] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  131.565592][ T7077] vhci_hcd vhci_hcd.0: Device attached
[  131.589081][ T7085] vhci_hcd: connection closed
[  131.589930][ T1147] vhci_hcd: stop threads
[  131.594149][ T1147] vhci_hcd: release socket
[  131.595849][ T1147] vhci_hcd: disconnect device
[  131.774632][ T7089] fuse: Bad value for 'group_id'
[  131.793007][ T7089] fuse: Bad value for 'group_id'
[  133.617071][ T7122] mkiss: ax0: crc mode is auto.
[  134.028031][ T7124] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  134.030090][ T7124] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  134.033965][ T7124] vhci_hcd vhci_hcd.0: Device attached
[  134.037238][ T7128] vhci_hcd: connection closed
[  134.038308][ T1236] vhci_hcd: stop threads
[  134.041271][ T1236] vhci_hcd: release socket
[  134.043100][ T1236] vhci_hcd: disconnect device
[  135.480120][ T7154] binder: 7153:7154 ioctl 8008f512 80000340 returned -22
[  135.589547][ T7159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.261'.
[  136.072103][ T5978] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  136.233650][ T5978] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  136.236629][ T5978] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.242328][ T5978] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  136.245277][ T5978] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  136.247844][ T5978] usb 5-1: Manufacturer: syz
[  136.250765][ T5978] usb 5-1: config 0 descriptor??
[  136.311985][ T5978] rc_core: IR keymap rc-hauppauge not found
[  136.313993][ T5978] Registered IR keymap rc-empty
[  136.318321][ T5978] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  136.323418][ T5978] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input5
[  136.573007][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.0.267'.
[  136.597585][ T7186] FAULT_INJECTION: forcing a failure.
[  136.597585][ T7186] name failslab, interval 1, probability 0, space 0, times 1
[  136.603600][ T7186] CPU: 2 UID: 0 PID: 7186 Comm: syz.1.269 Not tainted syzkaller #0 PREEMPT(full) 
[  136.603625][ T7186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.603635][ T7186] Call Trace:
[  136.603641][ T7186]  <TASK>
[  136.603649][ T7186]  dump_stack_lvl+0x16c/0x1f0
[  136.603709][ T7186]  should_fail_ex+0x512/0x640
[  136.603744][ T7186]  ? siphash_1u32+0x12/0x1e0
[  136.603773][ T7186]  should_failslab+0xc2/0x120
[  136.603797][ T7186]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  136.603820][ T7186]  ? dst_alloc+0x99/0x1a0
[  136.603848][ T7186]  dst_alloc+0x99/0x1a0
[  136.603873][ T7186]  rt_dst_alloc+0x35/0x3a0
[  136.603893][ T7186]  ip_route_output_key_hash_rcu+0x87a/0x28e0
[  136.603924][ T7186]  ip_route_output_key_hash+0x137/0x2e0
[  136.603947][ T7186]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  136.603984][ T7186]  ipv4_sk_update_pmtu+0x933/0xcb0
[  136.604011][ T7186]  ? __pfx_ipv4_sk_update_pmtu+0x10/0x10
[  136.604049][ T7186]  ? raw_v4_match+0x5d/0x2a0
[  136.604074][ T7186]  raw_icmp_error+0x6f6/0xbf0
[  136.604103][ T7186]  icmp_socket_deliver+0x13a/0x410
[  136.604132][ T7186]  icmp_unreach+0x385/0xf40
[  136.604156][ T7186]  ? __skb_checksum_complete+0x16a/0x360
[  136.604182][ T7186]  icmp_rcv+0xaf7/0x1140
[  136.604207][ T7186]  ? __pfx_icmp_rcv+0x10/0x10
[  136.604232][ T7186]  ip_protocol_deliver_rcu+0x447/0x4c0
[  136.604260][ T7186]  ip_local_deliver_finish+0x3f2/0x720
[  136.604289][ T7186]  ip_local_deliver+0x18e/0x1f0
[  136.604315][ T7186]  ip_rcv+0x2e0/0x600
[  136.604339][ T7186]  ? __pfx_ip_rcv+0x10/0x10
[  136.604359][ T7186]  __netif_receive_skb_one_core+0x197/0x1e0
[  136.604384][ T7186]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  136.604408][ T7186]  ? lock_acquire+0x179/0x350
[  136.604433][ T7186]  ? __phys_addr+0xe8/0x180
[  136.604459][ T7186]  __netif_receive_skb+0x1d/0x160
[  136.604484][ T7186]  netif_receive_skb+0x137/0x7b0
[  136.604506][ T7186]  ? __pfx_netif_receive_skb+0x10/0x10
[  136.604540][ T7186]  tun_rx_batched.isra.0+0x3ee/0x740
[  136.604563][ T7186]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  136.604589][ T7186]  ? tun_get_user+0x1df6/0x3cd0
[  136.604608][ T7186]  ? rcu_is_watching+0x12/0xc0
[  136.604631][ T7186]  tun_get_user+0x28bb/0x3cd0
[  136.604665][ T7186]  ? __pfx_tun_get_user+0x10/0x10
[  136.604686][ T7186]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  136.604713][ T7186]  ? find_held_lock+0x2b/0x80
[  136.604730][ T7186]  ? tun_get+0x191/0x370
[  136.604755][ T7186]  tun_chr_write_iter+0xdc/0x210
[  136.604777][ T7186]  vfs_write+0x7d0/0x11d0
[  136.604798][ T7186]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  136.604822][ T7186]  ? __pfx_vfs_write+0x10/0x10
[  136.604840][ T7186]  ? find_held_lock+0x2b/0x80
[  136.604876][ T7186]  ksys_write+0x12a/0x250
[  136.604895][ T7186]  ? __pfx_ksys_write+0x10/0x10
[  136.604918][ T7186]  ? rcu_is_watching+0x12/0xc0
[  136.604939][ T7186]  __do_fast_syscall_32+0x7c/0x300
[  136.604958][ T7186]  do_fast_syscall_32+0x32/0x80
[  136.604974][ T7186]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.604995][ T7186] RIP: 0023:0xf700e579
[  136.605009][ T7186] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.605031][ T7186] RSP: 002b:00000000f53fe520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  136.605048][ T7186] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000200
[  136.605059][ T7186] RDX: 0000000000000046 RSI: 00000000f73a5ff4 RDI: 0000000000000000
[  136.605069][ T7186] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.605078][ T7186] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.605088][ T7186] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.605112][ T7186]  </TASK>
[  136.625431][ T7188] netlink: 12 bytes leftover after parsing attributes in process `syz.2.270'.
[  136.951025][ T7204] Error: Driver 'c6xdigio' is already registered, aborting...
[  136.970667][ T7204] netlink: 'syz.1.276': attribute type 1 has an invalid length.
[  136.988360][ T7204] 8021q: adding VLAN 0 to HW filter on device bond1
[  137.003570][ T7204] bond1: (slave geneve2): making interface the new active one
[  137.008433][ T7204] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  137.100693][ T7211] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  137.104673][ T7211] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  137.238167][ T7209] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  137.240245][ T7209] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  137.244020][ T7209] vhci_hcd vhci_hcd.0: Device attached
[  137.247502][ T7216] vhci_hcd: connection closed
[  137.249025][ T6923] vhci_hcd: stop threads
[  137.253443][ T6923] vhci_hcd: release socket
[  137.255115][ T6923] vhci_hcd: disconnect device
[  137.531954][ T6336] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  137.603598][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  137.685390][ T6336] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  137.688749][ T6336] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  137.692346][ T6336] usb 6-1: config 0 interface 0 has no altsetting 0
[  137.696407][ T6336] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  137.699313][ T6336] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  137.702488][ T6336] usb 6-1: Product: syz
[  137.704099][ T6336] usb 6-1: Manufacturer: syz
[  137.706069][ T6336] usb 6-1: SerialNumber: syz
[  137.709926][ T6336] usb 6-1: config 0 descriptor??
[  137.714208][ T6336] hub 6-1:0.0: bad descriptor, ignoring hub
[  137.716471][ T6336] hub 6-1:0.0: probe with driver hub failed with error -5
[  137.721164][ T6336] usb 6-1: selecting invalid altsetting 0
[  137.827456][ T7223] netlink: 12 bytes leftover after parsing attributes in process `syz.2.281'.
[  138.027550][ T7231] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  138.324609][ T7219] usb 6-1: reset high-speed USB device number 4 using dummy_hcd
[  138.481392][ T7219] usb 6-1: device firmware changed
[  138.481563][ T7242] MPI: mpi too large (129416 bits)
[  138.485057][   T53] usb 6-1: USB disconnect, device number 4
[  138.651982][   T53] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  138.787754][ T7244] netlink: 132 bytes leftover after parsing attributes in process `syz.3.289'.
[  138.802101][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  138.802113][   T40] audit: type=1326 audit(1759162714.814:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7175 comm="syz.0.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7fc00000
[  138.833249][   T55] usb 5-1: USB disconnect, device number 2
[  138.884681][   T53] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  138.888376][   T53] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  138.907429][   T53] usb 6-1: config 0 interface 0 has no altsetting 0
[  138.946093][   T53] usb 6-1: string descriptor 0 read error: -22
[  138.948771][   T53] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  138.963958][   T53] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  138.968263][   T53] usb 6-1: config 0 descriptor??
[  138.974558][   T53] hub 6-1:0.0: bad descriptor, ignoring hub
[  138.977561][   T53] hub 6-1:0.0: probe with driver hub failed with error -5
[  138.984344][   T53] usb 6-1: selecting invalid altsetting 0
[  139.000919][ T7252] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  139.003461][ T7252] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  139.008444][ T7252] vhci_hcd vhci_hcd.0: Device attached
[  139.015804][ T7253] vhci_hcd: connection closed
[  139.016011][ T1236] vhci_hcd: stop threads
[  139.019869][ T1236] vhci_hcd: release socket
[  139.023843][ T1236] vhci_hcd: disconnect device
[  139.025749][ T7255] MPI: mpi too large (129416 bits)
[  139.292213][   T53] usb 6-1: USB disconnect, device number 5
[  139.946842][ T7264] netlink: 'syz.1.295': attribute type 5 has an invalid length.
[  140.527488][   T67] kernel read not supported for file /dsp1 (pid: 67 comm: kworker/3:2)
[  140.830017][ T7286] ÿü: entered promiscuous mode
[  141.500642][ T7293] fuse: Unknown parameter 'user_id00000000000000000000'
[  141.725357][ T7304] tipc: Started in network mode
[  141.727377][ T7304] tipc: Node identity 4, cluster identity 4711
[  141.729706][ T7304] tipc: Node number set to 4
[  142.478759][ T7319] fuse: Bad value for 'fd'
[  142.711190][ T7324] mkiss: ax0: crc mode is auto.
[  143.615994][ T7332] MPI: mpi too large (129416 bits)
[  143.638922][ T7331] binder: 7330:7331 ioctl 8008f512 80000340 returned -22
[  144.904282][ T7341] netlink: 44 bytes leftover after parsing attributes in process `syz.0.318'.
[  145.124372][ T5979] Bluetooth: hci2: command 0x0419 tx timeout
[  145.129626][ T7346] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  145.131733][ T7346] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  145.144094][ T7346] vhci_hcd vhci_hcd.0: Device attached
[  145.266837][ T7350] loop0: detected capacity change from 0 to 2560
[  145.289064][ T7350] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  145.293082][ T7350] Buffer I/O error on dev loop0, logical block 1, lost async page write
[  145.297375][ T7350] Buffer I/O error on dev loop0, logical block 2, lost async page write
[  145.302128][ T7350] Buffer I/O error on dev loop0, logical block 3, lost async page write
[  145.306849][ T7350] Buffer I/O error on dev loop0, logical block 4, lost async page write
[  145.311994][ T7350] Buffer I/O error on dev loop0, logical block 5, lost async page write
[  145.319359][ T7350] Buffer I/O error on dev loop0, logical block 6, lost async page write
[  145.325819][ T7350] Buffer I/O error on dev loop0, logical block 7, lost async page write
[  145.331906][ T7083] Buffer I/O error on dev loop0, logical block 256, lost async page write
[  145.342197][ T7350] Buffer I/O error on dev loop0, logical block 8, lost async page write
[  145.361510][   T40] audit: type=1800 audit(1759162721.374:26): pid=7346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.319" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  145.481974][ T6064] usb 42-1: SetAddress Request (2) to port 0
[  145.484215][ T6064] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  145.916503][ T7347] vhci_hcd: connection reset by peer
[  145.935081][ T1142] vhci_hcd: stop threads
[  145.936886][ T1142] vhci_hcd: release socket
[  145.947981][ T1142] vhci_hcd: disconnect device
[  146.644882][ T7378] overlayfs: conflicting lowerdir path
[  146.712522][ T6336] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  147.540000][ T7393] mkiss: ax0: crc mode is auto.
[  150.562303][ T6064] usb 42-1: device descriptor read/8, error -110
[  150.952537][ T6064] usb usb42-port1: attempt power cycle
[  151.512434][ T6064] usb usb42-port1: unable to enumerate USB device
[  156.893654][ T7437] MPI: mpi too large (129416 bits)
[  156.915003][ T7436] MPI: mpi too large (129416 bits)
[  157.393926][ T6336] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  157.551927][ T6336] usb 7-1: Using ep0 maxpacket: 32
[  157.579986][ T6336] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  157.597990][ T6336] usb 7-1: config 0 has no interface number 0
[  157.599954][ T6336] usb 7-1: config 0 interface 12 has no altsetting 0
[  157.629457][ T6336] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  157.632466][ T6336] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.634936][ T6336] usb 7-1: Product: syz
[  157.636291][ T6336] usb 7-1: Manufacturer: syz
[  157.637904][ T6336] usb 7-1: SerialNumber: syz
[  157.641478][ T6336] usb 7-1: config 0 descriptor??
[  157.723030][   T53] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  157.901905][   T53] usb 5-1: Using ep0 maxpacket: 32
[  157.921307][   T53] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  157.923810][   T53] usb 5-1: config 0 has no interface number 0
[  157.925517][   T53] usb 5-1: config 0 interface 12 has no altsetting 0
[  158.012285][   T53] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  158.015685][   T53] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.018572][   T53] usb 5-1: Product: syz
[  158.019879][   T53] usb 5-1: Manufacturer: syz
[  158.021344][   T53] usb 5-1: SerialNumber: syz
[  158.131216][   T53] usb 5-1: config 0 descriptor??
[  158.138835][ T6336] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  158.142873][ T7448] MPI: mpi too large (129416 bits)
[  158.146415][ T6336] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  158.148786][ T6336] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  158.151189][ T6336] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  158.203258][ T6336] usb 7-1: USB disconnect, device number 4
[  158.603364][   T53] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  158.605731][   T53] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  158.607933][   T53] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  158.661912][   T53] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  158.662032][ T1345] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  158.672144][   T53] usb 5-1: USB disconnect, device number 3
[  159.252005][ T1345] usb 6-1: Using ep0 maxpacket: 32
[  159.256843][ T1345] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  159.259590][ T1345] usb 6-1: config 0 has no interface number 0
[  159.261736][ T1345] usb 6-1: config 0 interface 12 has no altsetting 0
[  159.275633][ T1345] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  159.278592][ T1345] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.281398][ T1345] usb 6-1: Product: syz
[  159.304768][ T1345] usb 6-1: Manufacturer: syz
[  159.306539][ T1345] usb 6-1: SerialNumber: syz
[  159.328784][ T1345] usb 6-1: config 0 descriptor??
[  159.621016][ T7464] capability: warning: `syz.2.342' uses 32-bit capabilities (legacy support in use)
[  159.961652][ T1345] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  159.966653][ T1345] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  159.972873][ T1345] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  160.028447][ T1345] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  160.050243][ T7470] MPI: mpi too large (129416 bits)
[  160.244397][ T1345] usb 6-1: USB disconnect, device number 6
[  160.812141][ T6336] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  161.042030][ T6336] usb 5-1: Using ep0 maxpacket: 32
[  161.046609][ T6336] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  161.049499][ T6336] usb 5-1: config 0 has no interface number 0
[  161.092861][ T6336] usb 5-1: config 0 interface 12 has no altsetting 0
[  161.230385][ T6336] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  161.437689][ T6336] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.441190][ T6336] usb 5-1: Product: syz
[  161.443248][ T6336] usb 5-1: Manufacturer: syz
[  161.445012][ T7483] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  161.445246][ T6336] usb 5-1: SerialNumber: syz
[  161.447267][ T7483] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  161.452676][ T6336] usb 5-1: config 0 descriptor??
[  161.453495][ T7483] vhci_hcd vhci_hcd.0: Device attached
[  161.471261][ T7488] vhci_hcd: connection closed
[  161.479564][ T6934] vhci_hcd: stop threads
[  161.482849][ T6934] vhci_hcd: release socket
[  161.484650][ T6934] vhci_hcd: disconnect device
[  161.935788][ T6336] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  161.963476][ T6336] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  161.965721][ T6336] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  161.968093][ T6336] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  162.070309][ T7494] warning: `syz.2.350' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  162.167956][ T6336] usb 5-1: USB disconnect, device number 4
[  162.397625][ T7498] MPI: mpi too large (129416 bits)
[  162.831958][ T6068] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  162.992842][ T6068] usb 6-1: Using ep0 maxpacket: 32
[  162.998398][ T6068] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  163.004472][ T6068] usb 6-1: config 0 has no interface number 0
[  163.228414][ T6068] usb 6-1: config 0 interface 12 has no altsetting 0
[  163.341892][ T7505] mkiss: ax0: crc mode is auto.
[  163.367763][ T6068] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  163.370594][ T6068] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.377199][ T6068] usb 6-1: Product: syz
[  163.378523][ T6068] usb 6-1: Manufacturer: syz
[  163.379999][ T6068] usb 6-1: SerialNumber: syz
[  163.433398][ T6068] usb 6-1: config 0 descriptor??
[  164.063752][ T6068] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  164.066610][ T6068] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  164.069239][ T6068] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  164.083327][ T6068] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  164.090773][ T6068] usb 6-1: USB disconnect, device number 7
[  164.581955][ T6068] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  164.734096][ T6068] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  164.784374][ T6068] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  164.787805][ T6068] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  164.802166][ T6068] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  164.802177][ T6934] wlan1: Trigger new scan to find an IBSS to join
[  164.805688][ T6068] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  164.820434][ T7524] overlayfs: conflicting lowerdir path
[  164.822925][ T6068] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  164.826083][ T6068] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  164.828564][ T6068] usb 6-1: Product: syz
[  164.829917][ T6068] usb 6-1: Manufacturer: syz
[  164.882553][ T6068] cdc_wdm 6-1:1.0: skipping garbage
[  164.885471][ T6068] cdc_wdm 6-1:1.0: skipping garbage
[  164.906027][ T6068] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  164.908464][ T6336] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  164.909090][ T7523] random: crng reseeded on system resumption
[  164.909914][ T6068] cdc_wdm 6-1:1.0: Unknown control protocol
[  165.503347][ T7548] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.510194][ T7548] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.672777][ T7554] MPI: mpi too large (129416 bits)
[  165.961939][ T1345] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  166.511892][ T1345] usb 8-1: Using ep0 maxpacket: 32
[  166.621917][ T1345] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  166.624564][ T1345] usb 8-1: config 0 has no interface number 0
[  166.626827][ T1345] usb 8-1: config 0 interface 12 has no altsetting 0
[  166.711793][ T1345] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  166.715136][ T1345] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.718217][ T1345] usb 8-1: Product: syz
[  166.719697][ T1345] usb 8-1: Manufacturer: syz
[  166.721493][ T1345] usb 8-1: SerialNumber: syz
[  166.740893][ T1345] usb 8-1: config 0 descriptor??
[  167.137843][   T67] usb 6-1: USB disconnect, device number 8
[  167.226281][ T7560] 9pnet_virtio: no channels available for device syz
[  167.297485][ T1345] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  167.299969][ T1345] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  167.317761][ T1345] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  167.320264][ T1345] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  167.333285][ T1345] usb 8-1: USB disconnect, device number 3
[  167.874516][ T7565] netlink: 12 bytes leftover after parsing attributes in process `syz.0.363'.
[  168.403215][ T1236] wlan1: Trigger new scan to find an IBSS to join
[  168.483333][ T7572] mkiss: ax0: crc mode is auto.
[  169.312345][ T6934] wlan1: Creating new IBSS network, BSSID a6:4c:a9:eb:80:53
[  172.437953][ T7594] overlayfs: invalid origin (000000ca67081e5f112bed8ab4416592a5356da96db48150eae0040000006fe65c239a40022f00000000000000000000)
[  172.448850][ T7594] netlink: 32 bytes leftover after parsing attributes in process `syz.0.370'.
[  172.614702][ T7605] MPI: mpi too large (125288 bits)
[  172.951935][   T67] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  173.071269][ T7612] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  173.073361][ T7612] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  173.076678][ T7612] vhci_hcd vhci_hcd.0: Device attached
[  173.081416][ T7615] vhci_hcd: connection closed
[  173.083880][ T6934] vhci_hcd: stop threads
[  173.087121][ T6934] vhci_hcd: release socket
[  173.088882][ T6934] vhci_hcd: disconnect device
[  173.291969][   T67] usb 5-1: Using ep0 maxpacket: 32
[  173.386707][   T67] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  173.389676][   T67] usb 5-1: config 0 has no interface number 0
[  173.391627][   T67] usb 5-1: config 0 interface 12 has no altsetting 0
[  173.405841][   T67] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  173.410162][   T67] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.414064][   T67] usb 5-1: Product: syz
[  173.415701][   T67] usb 5-1: Manufacturer: syz
[  173.417327][   T67] usb 5-1: SerialNumber: syz
[  173.420511][   T67] usb 5-1: config 0 descriptor??
[  173.904429][ T7622] random: crng reseeded on system resumption
[  175.517586][   T67] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  175.520065][   T67] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  175.522638][   T67] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  175.525216][   T67] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  175.531553][ T7639] 9pnet_virtio: no channels available for device syz
[  175.532577][   T67] usb 5-1: USB disconnect, device number 5
[  175.630901][ T7643] MPI: mpi too large (129416 bits)
[  176.184124][ T7646] binder: 7645:7646 ioctl 8008f512 80000340 returned -22
[  176.332100][   T54] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  176.501890][   T54] usb 5-1: Using ep0 maxpacket: 32
[  176.505007][   T54] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  176.507639][   T54] usb 5-1: config 0 has no interface number 0
[  176.509797][   T54] usb 5-1: config 0 interface 12 has no altsetting 0
[  176.683977][ T7654] 9pnet_virtio: no channels available for device syz
[  176.893414][   T54] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  176.896341][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.898834][   T54] usb 5-1: Product: syz
[  176.900155][   T54] usb 5-1: Manufacturer: syz
[  176.903052][   T54] usb 5-1: SerialNumber: syz
[  176.910850][   T54] usb 5-1: config 0 descriptor??
[  177.364575][   T54] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  177.367126][   T54] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  177.369776][   T54] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  177.465747][   T54] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  177.494198][   T54] usb 5-1: USB disconnect, device number 6
[  180.642017][ T5979] Bluetooth: hci0: command 0x0406 tx timeout
[  180.999462][ T7686] binder: 7685:7686 ioctl 8008f512 80000340 returned -22
[  181.266926][ T7687] random: crng reseeded on system resumption
[  181.578059][ T7699] MPI: mpi too large (129416 bits)
[  181.982081][ T6336] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  182.199021][ T6336] usb 8-1: Using ep0 maxpacket: 32
[  182.227779][ T7707] MPI: mpi too large (129416 bits)
[  182.356991][ T6336] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  182.359511][ T6336] usb 8-1: config 0 has no interface number 0
[  182.361458][ T6336] usb 8-1: config 0 interface 12 has no altsetting 0
[  182.424442][ T6336] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  182.427995][ T6336] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.431963][ T6336] usb 8-1: Product: syz
[  182.433426][ T6336] usb 8-1: Manufacturer: syz
[  182.435027][ T6336] usb 8-1: SerialNumber: syz
[  182.439286][ T6336] usb 8-1: config 0 descriptor??
[  182.721094][   T10] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  182.959110][ T7693] ieee802154 phy0 wpan0: encryption failed: -90
[  182.962093][ T6068] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  182.994440][   T10] usb 7-1: device descriptor read/64, error -71
[  183.018570][ T6336] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  183.023725][ T6336] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  183.027191][ T6336] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  183.118726][ T6068] usb 5-1: Using ep0 maxpacket: 32
[  183.127484][ T6336] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  183.135533][ T6336] usb 8-1: USB disconnect, device number 4
[  183.139893][ T6068] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  183.142778][ T6068] usb 5-1: config 0 has no interface number 0
[  183.144783][ T6068] usb 5-1: config 0 interface 12 has no altsetting 0
[  183.152695][ T6068] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  183.155802][ T6068] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.172128][ T6068] usb 5-1: Product: syz
[  183.174066][ T6068] usb 5-1: Manufacturer: syz
[  183.175797][ T6068] usb 5-1: SerialNumber: syz
[  183.179037][ T6068] usb 5-1: config 0 descriptor??
[  183.271951][   T10] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  183.403154][   T10] usb 7-1: device descriptor read/64, error -71
[  183.532427][   T10] usb usb7-port1: attempt power cycle
[  183.725197][ T6068] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  183.764832][ T6068] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  183.785959][ T6068] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  183.794617][ T6068] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  183.803994][ T6068] usb 5-1: USB disconnect, device number 7
[  184.061911][   T10] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  184.130155][   T10] usb 7-1: device descriptor read/8, error -71
[  184.372029][   T10] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  184.522536][   T10] usb 7-1: device descriptor read/8, error -71
[  184.564989][ T7719] binder: 7718:7719 ioctl 8008f512 80000340 returned -22
[  184.917375][ T7724] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  184.919927][ T7724] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  184.927922][ T7724] vhci_hcd vhci_hcd.0: Device attached
[  184.931636][ T7728] vhci_hcd: connection closed
[  184.931962][ T1142] vhci_hcd: stop threads
[  184.935239][ T1142] vhci_hcd: release socket
[  184.936796][ T1142] vhci_hcd: disconnect device
[  185.495457][   T10] usb usb7-port1: unable to enumerate USB device
[  185.508210][ T7743] MPI: mpi too large (129416 bits)
[  186.231978][ T5340] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11
[  186.322036][   T10] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  186.328350][ T7757] MPI: mpi too large (129416 bits)
[  186.481981][   T10] usb 7-1: Using ep0 maxpacket: 32
[  186.575582][   T10] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  186.578909][   T10] usb 7-1: config 0 has no interface number 0
[  186.581508][   T10] usb 7-1: config 0 interface 12 has no altsetting 0
[  186.592036][   T67] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  186.740878][ T7760] netlink: 60 bytes leftover after parsing attributes in process `syz.1.413'.
[  186.865358][   T67] usb 8-1: Using ep0 maxpacket: 32
[  186.974475][   T67] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  187.053010][   T10] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  187.057996][   T67] usb 8-1: config 0 has no interface number 0
[  187.060066][   T67] usb 8-1: config 0 interface 12 has no altsetting 0
[  187.080627][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.113666][ T6336] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  187.121964][   T10] usb 7-1: Product: syz
[  187.123275][   T10] usb 7-1: Manufacturer: syz
[  187.124700][   T10] usb 7-1: SerialNumber: syz
[  187.128398][   T10] usb 7-1: config 0 descriptor??
[  187.153807][   T67] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  187.157513][   T67] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.160840][   T67] usb 8-1: Product: syz
[  187.162651][   T67] usb 8-1: Manufacturer: syz
[  187.164822][   T67] usb 8-1: SerialNumber: syz
[  187.169202][   T67] usb 8-1: config 0 descriptor??
[  187.412735][ T6336] usb 6-1: device descriptor read/64, error -71
[  187.532578][   T10] f81534 7-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  187.536202][   T10] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  187.541195][   T67] f81534 8-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  187.544714][   T67] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  187.547274][   T67] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  187.549814][   T67] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  187.558572][   T67] usb 8-1: USB disconnect, device number 5
[  187.640333][   T10] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  187.643785][   T10] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  187.662830][   T10] usb 7-1: USB disconnect, device number 9
[  187.672067][ T6336] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  187.801949][ T6336] usb 6-1: device descriptor read/64, error -71
[  187.912195][ T6336] usb usb6-port1: attempt power cycle
[  188.261951][ T6336] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  188.289318][ T6336] usb 6-1: device descriptor read/8, error -71
[  188.522107][ T6336] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  188.531347][ T7765] MPI: mpi too large (129416 bits)
[  188.561886][ T6336] usb 6-1: device descriptor read/8, error -71
[  188.706125][ T6336] usb usb6-port1: unable to enumerate USB device
[  188.792332][   T10] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  189.001907][   T10] usb 7-1: Using ep0 maxpacket: 32
[  189.052612][   T10] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  189.055225][   T10] usb 7-1: config 0 has no interface number 0
[  189.083752][   T10] usb 7-1: config 0 interface 12 has no altsetting 0
[  189.089401][   T10] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  189.092573][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.095100][   T10] usb 7-1: Product: syz
[  189.096399][   T10] usb 7-1: Manufacturer: syz
[  189.098009][ T7770] MPI: mpi too large (129416 bits)
[  189.099706][   T10] usb 7-1: SerialNumber: syz
[  189.123864][   T10] usb 7-1: config 0 descriptor??
[  189.551998][ T1345] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  189.648881][ T7775] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  189.651926][ T7775] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  189.657883][ T7775] vhci_hcd vhci_hcd.0: Device attached
[  189.702017][ T1345] usb 5-1: Using ep0 maxpacket: 32
[  189.814847][   T10] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  189.817548][   T10] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  189.819967][   T10] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  189.830670][   T10] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  189.836219][   T10] usb 7-1: USB disconnect, device number 10
[  190.014401][ T1345] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  190.017630][ T1345] usb 5-1: config 0 has no interface number 0
[  190.020151][ T1345] usb 5-1: config 0 interface 12 has no altsetting 0
[  190.032755][ T1345] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  190.037039][ T1345] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.039873][ T1345] usb 5-1: Product: syz
[  190.118618][ T6064] usb 44-1: SetAddress Request (2) to port 0
[  190.121137][ T6064] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  190.126284][ T1345] usb 5-1: Manufacturer: syz
[  190.129597][ T1345] usb 5-1: SerialNumber: syz
[  190.152941][ T1345] usb 5-1: config 0 descriptor??
[  190.587107][ T1345] f81534 5-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  190.589727][ T1345] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  190.592174][ T1345] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  190.594915][ T1345] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  190.600409][ T1345] usb 5-1: USB disconnect, device number 8
[  190.811724][ T7776] vhci_hcd: connection reset by peer
[  190.836692][ T6935] vhci_hcd: stop threads
[  190.838504][ T6935] vhci_hcd: release socket
[  190.840536][ T6935] vhci_hcd: disconnect device
[  191.977740][   T40] audit: type=1326 audit(1759162767.994:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.004424][   T40] audit: type=1326 audit(1759162768.004:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.012239][   T40] audit: type=1326 audit(1759162768.004:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.019849][   T40] audit: type=1326 audit(1759162768.004:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.031959][   T40] audit: type=1326 audit(1759162768.004:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.040737][   T40] audit: type=1326 audit(1759162768.014:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.048999][   T40] audit: type=1326 audit(1759162768.014:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.057881][   T40] audit: type=1326 audit(1759162768.014:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.066320][   T40] audit: type=1326 audit(1759162768.014:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  192.138922][   T40] audit: type=1326 audit(1759162768.014:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7788 comm="syz.0.420" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  193.681362][ T7823] MPI: mpi too large (129416 bits)
[  193.972001][ T1345] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  194.132428][ T1345] usb 7-1: Using ep0 maxpacket: 32
[  194.171144][ T1345] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  194.205146][ T1345] usb 7-1: config 0 has no interface number 0
[  194.207500][ T1345] usb 7-1: config 0 interface 12 has no altsetting 0
[  194.326293][ T1345] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  194.329636][ T1345] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.394815][ T1345] usb 7-1: Product: syz
[  194.399241][ T1345] usb 7-1: Manufacturer: syz
[  194.401215][ T1345] usb 7-1: SerialNumber: syz
[  194.452346][ T1345] usb 7-1: config 0 descriptor??
[  194.751586][ T1345] f81534 7-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  194.755752][ T1345] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  194.758215][ T1345] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  194.764000][ T1345] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  194.777085][ T1345] usb 7-1: USB disconnect, device number 11
[  195.202086][ T6064] usb 44-1: device descriptor read/8, error -110
[  195.673032][ T6064] usb usb44-port1: attempt power cycle
[  195.726717][ T1021] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  195.881979][ T1021] usb 8-1: Using ep0 maxpacket: 32
[  195.886790][ T1021] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  195.890234][ T1021] usb 8-1: config 0 has no interface number 0
[  195.893092][ T1021] usb 8-1: config 0 interface 12 has no altsetting 0
[  195.897636][ T1021] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  195.900701][ T1021] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.903364][ T1021] usb 8-1: Product: syz
[  195.905140][ T1021] usb 8-1: Manufacturer: syz
[  195.906789][ T1021] usb 8-1: SerialNumber: syz
[  195.914919][ T1021] usb 8-1: config 0 descriptor??
[  196.272491][ T6064] usb usb44-port1: unable to enumerate USB device
[  196.400805][ T1021] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  196.403216][ T1021] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  196.405639][ T1021] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  196.415354][ T1021] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  196.422750][ T1021] usb 8-1: USB disconnect, device number 6
[  196.788255][ T7861] 9pnet_virtio: no channels available for device syz
[  196.921054][ T7871] 9pnet_virtio: no channels available for device syz
[  198.278638][ T7886] MPI: mpi too large (129416 bits)
[  198.774138][ T6336] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  198.932050][ T6336] usb 5-1: Using ep0 maxpacket: 32
[  198.947582][ T6336] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  198.950364][ T6336] usb 5-1: config 0 has no interface number 0
[  198.953866][ T6336] usb 5-1: config 0 interface 12 has no altsetting 0
[  198.958768][ T6336] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  198.963003][ T6336] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.967233][ T6336] usb 5-1: Product: syz
[  198.969229][ T6336] usb 5-1: Manufacturer: syz
[  198.971381][ T6336] usb 5-1: SerialNumber: syz
[  198.987444][ T6336] usb 5-1: config 0 descriptor??
[  199.058619][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  199.484650][ T6336] f81534 5-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  199.563586][ T6336] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  199.579176][ T6336] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  199.582344][ T6336] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  199.617037][ T6336] usb 5-1: USB disconnect, device number 9
[  200.630252][ T7911] 9pnet_virtio: no channels available for device syz
[  201.330427][ T7924] MPI: mpi too large (129416 bits)
[  201.388890][ T7925] MPI: mpi too large (129416 bits)
[  201.609203][ T7928] =======================================================
[  201.609203][ T7928] WARNING: The mand mount option has been deprecated and
[  201.609203][ T7928]          and is ignored by this kernel. Remove the mand
[  201.609203][ T7928]          option from the mount to silence this warning.
[  201.609203][ T7928] =======================================================
[  201.611921][ T6336] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  201.841971][ T6336] usb 5-1: Using ep0 maxpacket: 32
[  201.876682][ T6336] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  201.880248][ T6336] usb 5-1: config 0 has no interface number 0
[  201.886823][ T6336] usb 5-1: config 0 interface 12 has no altsetting 0
[  201.933895][ T6336] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  202.101208][ T6336] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.173330][ T6336] usb 5-1: Product: syz
[  202.174700][ T6336] usb 5-1: Manufacturer: syz
[  202.176170][ T6336] usb 5-1: SerialNumber: syz
[  202.180287][ T6336] usb 5-1: config 0 descriptor??
[  202.203392][ T1021] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  202.362116][ T1021] usb 7-1: Using ep0 maxpacket: 32
[  202.366375][ T1021] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  202.368912][ T1021] usb 7-1: config 0 has no interface number 0
[  202.372774][ T1021] usb 7-1: config 0 interface 12 has no altsetting 0
[  202.467303][ T1021] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  202.471248][ T1021] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.474399][ T1021] usb 7-1: Product: syz
[  202.479255][ T1021] usb 7-1: Manufacturer: syz
[  202.481609][ T1021] usb 7-1: SerialNumber: syz
[  202.484914][ T1021] usb 7-1: config 0 descriptor??
[  202.638524][ T6336] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  202.640979][ T6336] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  202.647583][ T6336] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  202.650503][ T6336] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  202.677701][ T6336] usb 5-1: USB disconnect, device number 10
[  202.787604][ T7943] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  202.790016][ T7943] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  202.802003][ T7943] vhci_hcd vhci_hcd.0: Device attached
[  202.808861][ T7952] vhci_hcd: connection closed
[  202.809484][ T1142] vhci_hcd: stop threads
[  202.814367][ T1142] vhci_hcd: release socket
[  202.816247][ T1142] vhci_hcd: disconnect device
[  203.100995][ T1021] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  203.132062][ T1021] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  203.135155][ T1021] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  203.162603][ T1021] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  203.189192][ T1021] usb 7-1: USB disconnect, device number 12
[  203.247129][ T7960] binder: 7959:7960 unknown command 0
[  203.250002][ T7960] binder: 7959:7960 ioctl c0306201 800001c0 returned -22
[  203.672490][ T7972] 9pnet_virtio: no channels available for device syz
[  203.675075][ T7972] overlay: Bad value for 'uuid'
[  204.612798][ T7987] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  204.614975][ T7987] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  204.620328][ T7987] vhci_hcd vhci_hcd.0: Device attached
[  204.623968][ T7994] vhci_hcd: connection closed
[  204.624642][ T1236] vhci_hcd: stop threads
[  204.627684][ T1236] vhci_hcd: release socket
[  204.630761][ T1236] vhci_hcd: disconnect device
[  205.275562][ T8016] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  205.278237][ T8016] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  205.281788][ T8016] vhci_hcd vhci_hcd.0: Device attached
[  205.314442][ T8019] netlink: 'syz.2.491': attribute type 1 has an invalid length.
[  205.521954][ T6018] usb 43-1: new high-speed USB device number 3 using vhci_hcd
[  205.815850][ T8027] FAULT_INJECTION: forcing a failure.
[  205.815850][ T8027] name failslab, interval 1, probability 0, space 0, times 0
[  205.821468][ T8027] CPU: 2 UID: 0 PID: 8027 Comm: syz.0.495 Not tainted syzkaller #0 PREEMPT(full) 
[  205.821499][ T8027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.821512][ T8027] Call Trace:
[  205.821521][ T8027]  <TASK>
[  205.821531][ T8027]  dump_stack_lvl+0x16c/0x1f0
[  205.821572][ T8027]  should_fail_ex+0x512/0x640
[  205.821606][ T8027]  ? fs_reclaim_acquire+0xae/0x150
[  205.821641][ T8027]  ? tomoyo_encode2+0x100/0x3e0
[  205.821670][ T8027]  should_failslab+0xc2/0x120
[  205.821700][ T8027]  __kmalloc_noprof+0xd2/0x510
[  205.821734][ T8027]  tomoyo_encode2+0x100/0x3e0
[  205.821767][ T8027]  tomoyo_encode+0x29/0x50
[  205.821795][ T8027]  tomoyo_realpath_from_path+0x18f/0x6e0
[  205.821846][ T8027]  ? tomoyo_profile+0x47/0x60
[  205.821868][ T8027]  tomoyo_path_number_perm+0x245/0x580
[  205.821891][ T8027]  ? tomoyo_path_number_perm+0x237/0x580
[  205.821921][ T8027]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  205.821984][ T8027]  ? find_held_lock+0x2b/0x80
[  205.822006][ T8027]  ? hook_file_ioctl_common+0x145/0x410
[  205.822043][ T8027]  ? __fget_files+0x20e/0x3c0
[  205.822093][ T8027]  security_file_ioctl_compat+0x9b/0x240
[  205.822125][ T8027]  __ia32_compat_sys_ioctl+0xc3/0x370
[  205.822166][ T8027]  __do_fast_syscall_32+0x7c/0x300
[  205.822190][ T8027]  do_fast_syscall_32+0x32/0x80
[  205.822211][ T8027]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.822238][ T8027] RIP: 0023:0xf7f65579
[  205.822255][ T8027] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  205.822275][ T8027] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  205.822296][ T8027] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000005411
[  205.822310][ T8027] RDX: 0000000080000d40 RSI: 0000000000000000 RDI: 0000000000000000
[  205.822323][ T8027] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.822335][ T8027] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.822347][ T8027] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.822385][ T8027]  </TASK>
[  205.874245][ T8017] vhci_hcd: connection reset by peer
[  205.876663][ T8027] ERROR: Out of memory at tomoyo_realpath_from_path.
[  205.884753][ T6934] vhci_hcd: stop threads
[  205.906903][ T6934] vhci_hcd: release socket
[  205.911488][ T6934] vhci_hcd: disconnect device
[  206.455138][ T8042] netlink: 48 bytes leftover after parsing attributes in process `syz.0.501'.
[  206.514263][ T8043] FAULT_INJECTION: forcing a failure.
[  206.514263][ T8043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.518105][ T8043] CPU: 2 UID: 0 PID: 8043 Comm: syz.0.501 Not tainted syzkaller #0 PREEMPT(full) 
[  206.518126][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.518133][ T8043] Call Trace:
[  206.518138][ T8043]  <TASK>
[  206.518143][ T8043]  dump_stack_lvl+0x16c/0x1f0
[  206.518166][ T8043]  should_fail_ex+0x512/0x640
[  206.518187][ T8043]  _copy_from_user+0x2e/0xd0
[  206.518199][ T8043]  move_addr_to_kernel+0x65/0x170
[  206.518215][ T8043]  __sys_connect+0xb1/0x160
[  206.518229][ T8043]  ? __pfx___sys_connect+0x10/0x10
[  206.518243][ T8043]  ? handle_mm_fault+0x240/0xd10
[  206.518260][ T8043]  ? __pfx_ksys_write+0x10/0x10
[  206.518276][ T8043]  __ia32_sys_connect+0x71/0xb0
[  206.518290][ T8043]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  206.518321][ T8043]  __do_fast_syscall_32+0x7c/0x300
[  206.518332][ T8043]  do_fast_syscall_32+0x32/0x80
[  206.518342][ T8043]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.518356][ T8043] RIP: 0023:0xf7f65579
[  206.518365][ T8043] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.518376][ T8043] RSP: 002b:00000000f543555c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  206.518387][ T8043] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000280
[  206.518393][ T8043] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000000
[  206.518399][ T8043] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.518405][ T8043] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  206.518412][ T8043] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.518424][ T8043]  </TASK>
[  206.579738][ T8045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.501'.
[  206.969858][ T8047] netlink: 48 bytes leftover after parsing attributes in process `syz.1.502'.
[  207.177958][ T8049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.502'.
[  207.634954][ T8062] FAULT_INJECTION: forcing a failure.
[  207.634954][ T8062] name failslab, interval 1, probability 0, space 0, times 0
[  207.639812][ T8062] CPU: 2 UID: 0 PID: 8062 Comm: syz.2.507 Not tainted syzkaller #0 PREEMPT(full) 
[  207.639830][ T8062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.639837][ T8062] Call Trace:
[  207.639842][ T8062]  <TASK>
[  207.639847][ T8062]  dump_stack_lvl+0x16c/0x1f0
[  207.639871][ T8062]  should_fail_ex+0x512/0x640
[  207.639890][ T8062]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  207.639906][ T8062]  should_failslab+0xc2/0x120
[  207.639923][ T8062]  __kmalloc_cache_noprof+0x6a/0x3e0
[  207.639934][ T8062]  ? __request_region+0x9e/0xf0
[  207.639951][ T8062]  ? __i8254_init.part.0+0x52/0x250
[  207.639967][ T8062]  ? __pfx_i8254_io8_cb+0x10/0x10
[  207.639980][ T8062]  __i8254_init.part.0+0x52/0x250
[  207.639993][ T8062]  ? __pfx_i8254_io8_cb+0x10/0x10
[  207.640005][ T8062]  comedi_8254_io_alloc+0x74/0x90
[  207.640020][ T8062]  das16m1_attach+0x1c3/0xc10
[  207.640036][ T8062]  comedi_device_attach+0x3b0/0x900
[  207.640086][ T8062]  do_devconfig_ioctl+0x1b1/0x710
[  207.640100][ T8062]  ? __mutex_lock+0x1c5/0x1060
[  207.640112][ T8062]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  207.640133][ T8062]  ? kasan_save_stack+0x42/0x60
[  207.640147][ T8062]  ? kasan_save_stack+0x33/0x60
[  207.640159][ T8062]  ? kasan_save_track+0x14/0x30
[  207.640172][ T8062]  ? kasan_save_free_info+0x3b/0x60
[  207.640182][ T8062]  ? __kasan_slab_free+0x60/0x70
[  207.640195][ T8062]  ? kfree+0x2b4/0x4d0
[  207.640205][ T8062]  ? tomoyo_path_number_perm+0x470/0x580
[  207.640224][ T8062]  comedi_unlocked_ioctl+0x165d/0x2f00
[  207.640244][ T8062]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  207.640270][ T8062]  ? kasan_quarantine_put+0x10a/0x240
[  207.640284][ T8062]  ? lockdep_hardirqs_on+0x7c/0x110
[  207.640303][ T8062]  ? find_held_lock+0x2b/0x80
[  207.640316][ T8062]  ? tomoyo_path_number_perm+0x295/0x580
[  207.640334][ T8062]  ? tomoyo_path_number_perm+0x18d/0x580
[  207.640350][ T8062]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  207.640368][ T8062]  comedi_compat_ioctl+0x1d0/0x990
[  207.640384][ T8062]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  207.640401][ T8062]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  207.640420][ T8062]  ? do_vfs_ioctl+0x128/0x14f0
[  207.640440][ T8062]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  207.640464][ T8062]  ? find_held_lock+0x2b/0x80
[  207.640475][ T8062]  ? hook_file_ioctl_common+0x145/0x410
[  207.640495][ T8062]  ? __fget_files+0x20e/0x3c0
[  207.640511][ T8062]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  207.640528][ T8062]  __ia32_compat_sys_ioctl+0x242/0x370
[  207.640549][ T8062]  __do_fast_syscall_32+0x7c/0x300
[  207.640562][ T8062]  do_fast_syscall_32+0x32/0x80
[  207.640574][ T8062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.640589][ T8062] RIP: 0023:0xf7f35579
[  207.640599][ T8062] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  207.640615][ T8062] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  207.640631][ T8062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[  207.640640][ T8062] RDX: 0000000080000500 RSI: 0000000000000000 RDI: 0000000000000000
[  207.640649][ T8062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.640681][ T8062] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  207.640692][ T8062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.640707][ T8062]  </TASK>
[  207.865439][ T8062] /dev/sr0: Can't open blockdev
[  207.918561][ T8070] netlink: 48 bytes leftover after parsing attributes in process `syz.2.510'.
[  208.084244][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.510'.
[  208.968514][ T8090] FAULT_INJECTION: forcing a failure.
[  208.968514][ T8090] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.970856][ T8087] Invalid logical block size (6)
[  208.974066][ T8090] CPU: 2 UID: 0 PID: 8090 Comm: syz.2.515 Not tainted syzkaller #0 PREEMPT(full) 
[  208.974085][ T8090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.974092][ T8090] Call Trace:
[  208.974096][ T8090]  <TASK>
[  208.974100][ T8090]  dump_stack_lvl+0x16c/0x1f0
[  208.974122][ T8090]  should_fail_ex+0x512/0x640
[  208.974143][ T8090]  _copy_from_user+0x2e/0xd0
[  208.974155][ T8090]  get_compat_msghdr+0xa7/0x170
[  208.974172][ T8090]  ? __pfx_get_compat_msghdr+0x10/0x10
[  208.974192][ T8090]  ___sys_sendmsg+0x1ae/0x1d0
[  208.974210][ T8090]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.974233][ T8090]  ? find_held_lock+0x2b/0x80
[  208.974254][ T8090]  __sys_sendmsg+0x16d/0x220
[  208.974271][ T8090]  ? __pfx___sys_sendmsg+0x10/0x10
[  208.974293][ T8090]  ? rcu_is_watching+0x12/0xc0
[  208.974307][ T8090]  __do_fast_syscall_32+0x7c/0x300
[  208.974319][ T8090]  do_fast_syscall_32+0x32/0x80
[  208.974334][ T8090]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  208.974348][ T8090] RIP: 0023:0xf7f35579
[  208.974357][ T8090] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  208.974368][ T8090] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  208.974379][ T8090] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  208.974386][ T8090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  208.974392][ T8090] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  208.974398][ T8090] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  208.974405][ T8090] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  208.974418][ T8090]  </TASK>
[  209.595207][ T5340] Bluetooth: hci0: unexpected event for opcode 0x1408
[  209.638832][ T8096] capability: warning: `syz.2.517' uses deprecated v2 capabilities in a way that may be insecure
[  209.761800][ T8105] netlink: 16 bytes leftover after parsing attributes in process `syz.2.517'.
[  210.044466][ T8114] befs: (nbd1): No write support. Marking filesystem read-only
[  210.051094][ T8114] befs: (nbd1): unable to read superblock
[  210.104201][   T10] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  210.284271][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  210.312974][   T10] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  210.317632][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.321118][   T10] usb 7-1: Product: syz
[  210.322727][   T10] usb 7-1: Manufacturer: syz
[  210.324291][   T10] usb 7-1: SerialNumber: syz
[  210.335699][   T10] usb 7-1: config 0 descriptor??
[  210.632740][ T6018] vhci_hcd: vhci_device speed not set
[  210.738546][ T8096] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.820184][ T8124] program syz.0.524 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.830078][ T8096] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.444076][ T8136] netlink: 2 bytes leftover after parsing attributes in process `syz.1.527'.
[  212.077363][ T8158] 9pnet_virtio: no channels available for device syz
[  212.146648][ T5978] usb 7-1: USB disconnect, device number 13
[  212.350969][ T8164] befs: (nbd2): No write support. Marking filesystem read-only
[  212.354338][ T8164] befs: (nbd2): unable to read superblock
[  213.581950][ T5978] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  213.603464][ T5340] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  213.606961][ T5340] Bluetooth: hci0: Injecting HCI hardware error event
[  213.610580][ T5340] Bluetooth: hci0: hardware error 0x00
[  213.741948][ T5978] usb 7-1: device descriptor read/64, error -71
[  214.001984][ T5978] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  214.088022][ T8193] MPI: mpi too large (129416 bits)
[  214.131939][ T5978] usb 7-1: device descriptor read/64, error -71
[  214.244099][ T5978] usb usb7-port1: attempt power cycle
[  214.381933][   T10] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  214.430115][ T8196] sctp: [Deprecated]: syz.0.542 (pid 8196) Use of int in max_burst socket option deprecated.
[  214.430115][ T8196] Use struct sctp_assoc_value instead
[  214.531934][   T10] usb 6-1: Using ep0 maxpacket: 32
[  214.536055][   T10] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  214.539397][   T10] usb 6-1: config 0 has no interface number 0
[  214.572009][   T10] usb 6-1: config 0 interface 12 has no altsetting 0
[  214.576060][   T10] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  214.578892][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.581492][   T10] usb 6-1: Product: syz
[  214.591940][   T10] usb 6-1: Manufacturer: syz
[  214.593934][   T10] usb 6-1: SerialNumber: syz
[  214.597652][   T10] usb 6-1: config 0 descriptor??
[  214.652322][ T5978] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  214.717321][ T5978] usb 7-1: device descriptor read/8, error -71
[  215.013903][ T5978] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  215.034836][ T5978] usb 7-1: device descriptor read/8, error -71
[  215.091570][   T10] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  215.094087][   T10] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  215.096419][   T10] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  215.098903][   T10] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  215.112201][   T10] usb 6-1: USB disconnect, device number 13
[  215.125785][ T8201] FAULT_INJECTION: forcing a failure.
[  215.125785][ T8201] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.131083][ T8201] CPU: 1 UID: 0 PID: 8201 Comm: syz.3.543 Not tainted syzkaller #0 PREEMPT(full) 
[  215.131099][ T8201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.131106][ T8201] Call Trace:
[  215.131111][ T8201]  <TASK>
[  215.131116][ T8201]  dump_stack_lvl+0x16c/0x1f0
[  215.131137][ T8201]  should_fail_ex+0x512/0x640
[  215.131157][ T8201]  _copy_from_user+0x2e/0xd0
[  215.131170][ T8201]  get_compat_msghdr+0xa7/0x170
[  215.131187][ T8201]  ? __pfx_get_compat_msghdr+0x10/0x10
[  215.131203][ T8201]  ? __lock_acquire+0x62e/0x1ce0
[  215.131222][ T8201]  ___sys_recvmsg+0x191/0x1a0
[  215.131239][ T8201]  ? __pfx____sys_recvmsg+0x10/0x10
[  215.131257][ T8201]  ? find_held_lock+0x2b/0x80
[  215.131272][ T8201]  ? __pfx___might_resched+0x10/0x10
[  215.131293][ T8201]  do_recvmmsg+0x55d/0x750
[  215.131311][ T8201]  ? __pfx_do_recvmmsg+0x10/0x10
[  215.131338][ T8201]  ? __fget_files+0x20e/0x3c0
[  215.131353][ T8201]  __sys_recvmmsg+0x21c/0x280
[  215.131370][ T8201]  ? __pfx___sys_recvmmsg+0x10/0x10
[  215.131388][ T8201]  ? __pfx_ksys_write+0x10/0x10
[  215.131404][ T8201]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  215.131420][ T8201]  ? lockdep_hardirqs_on+0x7c/0x110
[  215.131437][ T8201]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  215.131455][ T8201]  __do_fast_syscall_32+0x7c/0x300
[  215.131466][ T8201]  do_fast_syscall_32+0x32/0x80
[  215.131476][ T8201]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  215.131491][ T8201] RIP: 0023:0xf7f74579
[  215.131499][ T8201] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  215.131510][ T8201] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  215.131521][ T8201] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001640
[  215.131528][ T8201] RDX: 00000000000000b4 RSI: 0000000000034000 RDI: 0000000000000000
[  215.131534][ T8201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  215.131540][ T8201] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  215.131547][ T8201] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  215.131559][ T8201]  </TASK>
[  215.246777][ T8205] netlink: 4 bytes leftover after parsing attributes in process `syz.3.544'.
[  215.265365][ T8205] macsec1: entered promiscuous mode
[  215.267862][ T8205] gretap0: entered promiscuous mode
[  215.270436][ T8205] macsec1: entered allmulticast mode
[  215.275284][ T8205] gretap0: entered allmulticast mode
[  215.436855][ T5978] usb usb7-port1: unable to enumerate USB device
[  215.443970][ T8205] gretap0: left allmulticast mode
[  215.452116][ T8205] gretap0: left promiscuous mode
[  215.682046][ T5340] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  215.884079][ T8211] befs: (nbd0): No write support. Marking filesystem read-only
[  215.889423][ T8211] befs: (nbd0): unable to read superblock
[  217.480959][ T8237] 9pnet_virtio: no channels available for device syz
[  218.780968][ T8240] 9pnet_virtio: no channels available for device syz
[  219.222113][ T8247] netlink: 48 bytes leftover after parsing attributes in process `syz.3.552'.
[  219.323440][ T8250] MPI: mpi too large (125288 bits)
[  219.433995][ T8249] netlink: 4 bytes leftover after parsing attributes in process `syz.3.552'.
[  220.101942][   T24] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  220.261970][   T24] usb 7-1: Using ep0 maxpacket: 32
[  220.270113][   T24] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  220.273856][   T24] usb 7-1: config 0 has no interface number 0
[  220.276020][   T24] usb 7-1: config 0 interface 12 has no altsetting 0
[  220.282720][   T24] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  220.286780][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.290509][   T24] usb 7-1: Product: syz
[  220.292720][   T24] usb 7-1: Manufacturer: syz
[  220.296537][   T24] usb 7-1: SerialNumber: syz
[  220.303474][   T24] usb 7-1: config 0 descriptor??
[  220.983855][   T24] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  220.986479][   T24] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  220.989504][   T24] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  220.992969][   T24] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  220.999066][   T24] usb 7-1: USB disconnect, device number 18
[  221.597113][ T8272] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  221.599215][ T8272] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  221.617301][ T8272] vhci_hcd vhci_hcd.0: Device attached
[  221.656047][ T8276] netlink: 12 bytes leftover after parsing attributes in process `syz.0.561'.
[  221.882139][ T6018] usb 44-1: SetAddress Request (6) to port 0
[  221.884723][ T6018] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  221.964219][ T8279] binder: 8278:8279 ioctl 8008f512 80000340 returned -22
[  222.027172][ T8280] netlink: 360 bytes leftover after parsing attributes in process `syz.0.562'.
[  222.201710][ T8273] vhci_hcd: connection reset by peer
[  222.223474][ T1147] vhci_hcd: stop threads
[  222.225368][ T1147] vhci_hcd: release socket
[  222.227296][ T1147] vhci_hcd: disconnect device
[  222.298038][ T8286] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0)
[  222.309176][ T8286] netlink: 'syz.0.564': attribute type 11 has an invalid length.
[  222.418841][ T8283] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  222.421416][ T8283] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  222.425043][ T8283] vhci_hcd vhci_hcd.0: Device attached
[  222.428641][ T8289] vhci_hcd: connection closed
[  222.428900][ T1147] vhci_hcd: stop threads
[  222.429300][ T8291] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  222.430873][ T1147] vhci_hcd: release socket
[  222.434422][ T8291] overlayfs: overlapping lowerdir path
[  222.437384][ T1147] vhci_hcd: disconnect device
[  223.205561][ T8296] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  223.208241][ T8296] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 1th superblock
[  223.211395][ T8296] F2FS-fs (nbd2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  223.214612][ T8296] F2FS-fs (nbd2): Can't find valid F2FS filesystem in 2th superblock
[  223.358273][ T8298] overlayfs: missing 'workdir'
[  223.527061][ T8302] binder: 8301:8302 ioctl 8008f512 80000340 returned -22
[  223.626220][ T8307] netlink: 360 bytes leftover after parsing attributes in process `syz.3.569'.
[  223.961187][ T8316] binder: 8315:8316 ioctl 8008f512 80000340 returned -22
[  224.013832][ T8314] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  224.016424][ T8314] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  224.025885][ T8314] vhci_hcd vhci_hcd.0: Device attached
[  224.033586][ T8318] vhci_hcd: connection closed
[  224.033971][ T1147] vhci_hcd: stop threads
[  224.037952][ T1147] vhci_hcd: release socket
[  224.041769][ T1147] vhci_hcd: disconnect device
[  224.044835][ T8320] netlink: 360 bytes leftover after parsing attributes in process `syz.1.573'.
[  224.334729][ T8325] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  224.337174][ T8325] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  224.339799][ T8325] vhci_hcd vhci_hcd.0: Device attached
[  224.344416][ T8328] vhci_hcd: connection closed
[  224.344631][ T6923] vhci_hcd: stop threads
[  224.348799][ T6923] vhci_hcd: release socket
[  224.350838][ T6923] vhci_hcd: disconnect device
[  225.367853][ T8347] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  225.368310][ T8346] netlink: 12 bytes leftover after parsing attributes in process `syz.2.579'.
[  225.369947][ T8347] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  225.370160][ T8347] vhci_hcd vhci_hcd.0: Device attached
[  225.427750][ T8346] netlink: 40 bytes leftover after parsing attributes in process `syz.2.579'.
[  225.750856][ T1345] usb 40-1: SetAddress Request (2) to port 0
[  225.754385][ T1345] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  225.954130][ T8349] vhci_hcd: connection reset by peer
[  225.956770][ T1236] vhci_hcd: stop threads
[  225.958411][ T1236] vhci_hcd: release socket
[  225.959869][ T1236] vhci_hcd: disconnect device
[  226.141270][ T8367] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  226.144286][ T8367] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  226.152997][ T8367] vhci_hcd vhci_hcd.0: Device attached
[  226.158357][ T8372] vhci_hcd: connection closed
[  226.158659][ T1147] vhci_hcd: stop threads
[  226.163511][ T1147] vhci_hcd: release socket
[  226.165502][ T1147] vhci_hcd: disconnect device
[  226.693677][ T8378] MPI: mpi too large (129416 bits)
[  226.961975][ T6018] usb 44-1: device descriptor read/8, error -110
[  227.062363][ T6336] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  227.099063][ T8388] FAULT_INJECTION: forcing a failure.
[  227.099063][ T8388] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  227.143142][ T8388] CPU: 3 UID: 0 PID: 8388 Comm: syz.3.590 Not tainted syzkaller #0 PREEMPT(full) 
[  227.143161][ T8388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.143169][ T8388] Call Trace:
[  227.143174][ T8388]  <TASK>
[  227.143179][ T8388]  dump_stack_lvl+0x16c/0x1f0
[  227.143208][ T8388]  should_fail_ex+0x512/0x640
[  227.143230][ T8388]  should_fail_alloc_page+0xe7/0x130
[  227.143248][ T8388]  prepare_alloc_pages+0x3c2/0x610
[  227.143266][ T8388]  ? rcu_is_watching+0x12/0xc0
[  227.143281][ T8388]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  227.143296][ T8388]  ? __lock_acquire+0x62e/0x1ce0
[  227.143318][ T8388]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  227.143338][ T8388]  ? __lock_acquire+0x62e/0x1ce0
[  227.143356][ T8388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  227.143375][ T8388]  ? policy_nodemask+0xea/0x4e0
[  227.143392][ T8388]  alloc_pages_mpol+0x1fb/0x550
[  227.143408][ T8388]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  227.143425][ T8388]  ? __lock_acquire+0x62e/0x1ce0
[  227.143441][ T8388]  folio_alloc_mpol_noprof+0x36/0x2f0
[  227.143460][ T8388]  vma_alloc_folio_noprof+0xed/0x1e0
[  227.143478][ T8388]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  227.143500][ T8388]  do_pte_missing+0x2230/0x3ba0
[  227.143513][ T8388]  ? find_held_lock+0x2b/0x80
[  227.143528][ T8388]  __handle_mm_fault+0x152a/0x2a50
[  227.143548][ T8388]  ? __pfx___handle_mm_fault+0x10/0x10
[  227.143567][ T8388]  ? __pte_offset_map_lock+0x174/0x310
[  227.143592][ T8388]  ? find_held_lock+0x2b/0x80
[  227.143618][ T8388]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  227.143652][ T8388]  handle_mm_fault+0x589/0xd10
[  227.143676][ T8388]  __get_user_pages+0x551/0x34a0
[  227.143737][ T8388]  ? down_read_killable+0x220/0x4b0
[  227.143758][ T8388]  ? __lock_acquire+0x62e/0x1ce0
[  227.143775][ T8388]  ? __pfx___get_user_pages+0x10/0x10
[  227.143794][ T8388]  ? __lock_acquire+0x62e/0x1ce0
[  227.143811][ T8388]  __gup_longterm_locked+0xa92/0x17e0
[  227.143833][ T8388]  ? __pfx___gup_longterm_locked+0x10/0x10
[  227.143855][ T8388]  ? sanity_check_pinned_pages+0x58a/0x11d0
[  227.143876][ T8388]  gup_fast_fallback+0xf78/0x23f0
[  227.143904][ T8388]  ? __pfx_gup_fast_fallback+0x10/0x10
[  227.143929][ T8388]  pin_user_pages_fast+0xa7/0xf0
[  227.143949][ T8388]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  227.143966][ T8388]  ? trace_kmalloc+0x2b/0xd0
[  227.143986][ T8388]  rds_info_getsockopt+0x39f/0x4f0
[  227.144006][ T8388]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  227.144023][ T8388]  ? find_held_lock+0x2b/0x80
[  227.144035][ T8388]  ? __might_fault+0x13b/0x190
[  227.144052][ T8388]  rds_getsockopt+0x173/0x2d0
[  227.144066][ T8388]  ? __pfx_rds_getsockopt+0x10/0x10
[  227.144077][ T8388]  do_sock_getsockopt+0x34a/0x440
[  227.144092][ T8388]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  227.144104][ T8388]  ? __fget_files+0x204/0x3c0
[  227.144124][ T8388]  __sys_getsockopt+0x123/0x1b0
[  227.144144][ T8388]  __ia32_sys_getsockopt+0xbc/0x160
[  227.144160][ T8388]  ? lockdep_hardirqs_on+0x7c/0x110
[  227.144176][ T8388]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  227.144199][ T8388]  __do_fast_syscall_32+0x7c/0x300
[  227.144211][ T8388]  do_fast_syscall_32+0x32/0x80
[  227.144221][ T8388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.144235][ T8388] RIP: 0023:0xf7f74579
[  227.144244][ T8388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.144255][ T8388] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  227.144266][ T8388] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114
[  227.144273][ T8388] RDX: 0000000000002715 RSI: 0000000080000580 RDI: 0000000080000400
[  227.144280][ T8388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  227.144286][ T8388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.144292][ T8388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.144306][ T8388]  </TASK>
[  227.251941][ T6336] usb 6-1: Using ep0 maxpacket: 32
[  227.408073][ T6336] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  227.411150][ T6336] usb 6-1: config 0 has no interface number 0
[  227.435193][ T6336] usb 6-1: config 0 interface 12 has no altsetting 0
[  227.452689][ T6336] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  227.455929][ T6336] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.458442][ T6336] usb 6-1: Product: syz
[  227.459738][ T6336] usb 6-1: Manufacturer: syz
[  227.461214][ T6336] usb 6-1: SerialNumber: syz
[  227.468015][ T6336] usb 6-1: config 0 descriptor??
[  227.611693][ T8395] MPI: mpi too large (129416 bits)
[  227.949504][ T6018] usb usb44-port1: attempt power cycle
[  228.105322][ T6336] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  228.107676][ T6336] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  228.110431][ T6336] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  228.156088][ T6336] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  228.164575][ T6336] usb 6-1: USB disconnect, device number 14
[  228.181904][   T54] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  228.328354][ T8398] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  228.338200][ T8398] netlink: 60 bytes leftover after parsing attributes in process `syz.2.593'.
[  228.354506][   T54] usb 8-1: Using ep0 maxpacket: 32
[  228.373604][ T8400] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(16)
[  228.375856][ T8400] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  228.378830][ T8399] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  228.381046][ T8399] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  228.408306][   T54] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  228.411076][   T54] usb 8-1: config 0 has no interface number 0
[  228.417534][ T8400] vhci_hcd vhci_hcd.0: Device attached
[  228.417926][ T8399] vhci_hcd vhci_hcd.0: Device attached
[  228.453266][ T8404] vhci_hcd: connection closed
[  228.453317][ T8403] vhci_hcd: connection closed
[  228.456005][ T1236] vhci_hcd: stop threads
[  228.459244][ T1236] vhci_hcd: release socket
[  228.461694][ T1236] vhci_hcd: disconnect device
[  228.464630][ T1236] vhci_hcd: stop threads
[  228.466454][ T1236] vhci_hcd: release socket
[  228.468298][ T1236] vhci_hcd: disconnect device
[  228.517430][   T54] usb 8-1: config 0 interface 12 has no altsetting 0
[  228.552857][ T6018] usb usb44-port1: unable to enumerate USB device
[  228.626299][   T54] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  228.648585][   T54] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.651310][   T54] usb 8-1: Product: syz
[  228.702772][   T54] usb 8-1: Manufacturer: syz
[  228.704619][   T54] usb 8-1: SerialNumber: syz
[  228.708616][   T54] usb 8-1: config 0 descriptor??
[  229.097061][ T8408] random: crng reseeded on system resumption
[  229.147166][   T54] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  229.149917][   T54] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  229.162534][ T8409] netlink: 68 bytes leftover after parsing attributes in process `syz.2.594'.
[  229.169780][ T8409] input: syz1 as /devices/virtual/input/input6
[  229.203144][   T54] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  229.206620][   T54] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  229.236976][   T54] usb 8-1: USB disconnect, device number 7
[  229.847000][ T8412] 9pnet_virtio: no channels available for device syz
[  230.068319][ T8414] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  230.071074][ T8414] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  230.097866][ T8414] vhci_hcd vhci_hcd.0: Device attached
[  230.105879][ T8418] vhci_hcd: connection closed
[  230.110061][ T1142] vhci_hcd: stop threads
[  230.124810][ T1142] vhci_hcd: release socket
[  230.127597][ T1142] vhci_hcd: disconnect device
[  230.555024][ T8421] netlink: 12 bytes leftover after parsing attributes in process `syz.3.597'.
[  230.618684][ T8422] netlink: 16 bytes leftover after parsing attributes in process `syz.3.597'.
[  230.623872][ T8422] overlayfs: failed to resolve './file0': -2
[  230.891969][ T1345] usb 40-1: device descriptor read/8, error -110
[  231.293418][ T1345] usb usb40-port1: attempt power cycle
[  231.432977][ T8434] FAULT_INJECTION: forcing a failure.
[  231.432977][ T8434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.437207][ T8434] CPU: 3 UID: 0 PID: 8434 Comm: syz.3.601 Not tainted syzkaller #0 PREEMPT(full) 
[  231.437224][ T8434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.437231][ T8434] Call Trace:
[  231.437236][ T8434]  <TASK>
[  231.437241][ T8434]  dump_stack_lvl+0x16c/0x1f0
[  231.437262][ T8434]  should_fail_ex+0x512/0x640
[  231.437282][ T8434]  _copy_from_iter+0x29f/0x1720
[  231.437298][ T8434]  ? __alloc_skb+0x200/0x380
[  231.437315][ T8434]  ? __pfx__copy_from_iter+0x10/0x10
[  231.437328][ T8434]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  231.437351][ T8434]  netlink_sendmsg+0x829/0xdd0
[  231.437372][ T8434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.437391][ T8434]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  231.437406][ T8434]  ____sys_sendmsg+0xa95/0xc70
[  231.437421][ T8434]  ? __pfx_____sys_sendmsg+0x10/0x10
[  231.437433][ T8434]  ? get_compat_msghdr+0x11a/0x170
[  231.437458][ T8434]  ___sys_sendmsg+0x134/0x1d0
[  231.437476][ T8434]  ? __pfx____sys_sendmsg+0x10/0x10
[  231.437499][ T8434]  ? find_held_lock+0x2b/0x80
[  231.437520][ T8434]  __sys_sendmsg+0x16d/0x220
[  231.437538][ T8434]  ? __pfx___sys_sendmsg+0x10/0x10
[  231.437561][ T8434]  ? rcu_is_watching+0x12/0xc0
[  231.437575][ T8434]  __do_fast_syscall_32+0x7c/0x300
[  231.437587][ T8434]  do_fast_syscall_32+0x32/0x80
[  231.437598][ T8434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  231.437612][ T8434] RIP: 0023:0xf7f74579
[  231.437622][ T8434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  231.437634][ T8434] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  231.437645][ T8434] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  231.437652][ T8434] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  231.437659][ T8434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  231.437665][ T8434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  231.437671][ T8434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  231.437685][ T8434]  </TASK>
[  231.626700][ T8444] netlink: 'syz.1.606': attribute type 1 has an invalid length.
[  231.644946][ T8444] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3965544961 (63448719376 ns) > initial count (51650093520 ns). Using initial count to start timer.
[  231.651288][ T8444] netlink: 32 bytes leftover after parsing attributes in process `syz.1.606'.
[  231.659126][ T8442] netlink: 24 bytes leftover after parsing attributes in process `syz.0.605'.
[  231.872815][ T1345] usb usb40-port1: unable to enumerate USB device
[  232.986911][ T8479] netlink: 12 bytes leftover after parsing attributes in process `syz.1.619'.
[  233.848127][ T8485] netlink: 'syz.0.615': attribute type 9 has an invalid length.
[  233.910673][ T8495] netlink: 'syz.0.618': attribute type 1 has an invalid length.
[  233.927421][ T8495] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3965544961 (63448719376 ns) > initial count (51650093520 ns). Using initial count to start timer.
[  233.939898][ T8495] netlink: 32 bytes leftover after parsing attributes in process `syz.0.618'.
[  233.943479][ T8498] binder: 8496:8498 ioctl 8008f512 80000340 returned -22
[  234.005672][ T8503] netlink: 360 bytes leftover after parsing attributes in process `syz.3.620'.
[  234.140339][ T8515] loop6: detected capacity change from 0 to 524287999
[  234.195620][ T8510] 9pnet_fd: Insufficient options for proto=fd
[  234.291182][ T8517] FAULT_INJECTION: forcing a failure.
[  234.291182][ T8517] name failslab, interval 1, probability 0, space 0, times 0
[  234.295400][ T8517] CPU: 1 UID: 0 PID: 8517 Comm: syz.1.627 Not tainted syzkaller #0 PREEMPT(full) 
[  234.295418][ T8517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  234.295426][ T8517] Call Trace:
[  234.295431][ T8517]  <TASK>
[  234.295436][ T8517]  dump_stack_lvl+0x16c/0x1f0
[  234.295460][ T8517]  should_fail_ex+0x512/0x640
[  234.295482][ T8517]  should_failslab+0xc2/0x120
[  234.295500][ T8517]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  234.295515][ T8517]  ? skb_clone+0x190/0x3f0
[  234.295536][ T8517]  skb_clone+0x190/0x3f0
[  234.295555][ T8517]  netlink_deliver_tap+0xabd/0xd30
[  234.295577][ T8517]  netlink_unicast+0x64c/0x870
[  234.295599][ T8517]  ? __pfx_netlink_unicast+0x10/0x10
[  234.295619][ T8517]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  234.295644][ T8517]  netlink_sendmsg+0x8d1/0xdd0
[  234.295666][ T8517]  ? __pfx_netlink_sendmsg+0x10/0x10
[  234.295689][ T8517]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  234.295707][ T8517]  ____sys_sendmsg+0xa95/0xc70
[  234.295723][ T8517]  ? __pfx_____sys_sendmsg+0x10/0x10
[  234.295737][ T8517]  ? get_compat_msghdr+0x11a/0x170
[  234.295763][ T8517]  ___sys_sendmsg+0x134/0x1d0
[  234.295783][ T8517]  ? __pfx____sys_sendmsg+0x10/0x10
[  234.295811][ T8517]  ? find_held_lock+0x2b/0x80
[  234.295834][ T8517]  __sys_sendmsg+0x16d/0x220
[  234.295861][ T8517]  ? __pfx___sys_sendmsg+0x10/0x10
[  234.295890][ T8517]  ? rcu_is_watching+0x12/0xc0
[  234.295906][ T8517]  __do_fast_syscall_32+0x7c/0x300
[  234.295921][ T8517]  do_fast_syscall_32+0x32/0x80
[  234.295933][ T8517]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  234.295949][ T8517] RIP: 0023:0xf700e579
[  234.295960][ T8517] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  234.295973][ T8517] RSP: 002b:00000000f53fe55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  234.295986][ T8517] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000100
[  234.295994][ T8517] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  234.296001][ T8517] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  234.296009][ T8517] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  234.296016][ T8517] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  234.296032][ T8517]  </TASK>
[  234.296569][ T8517] tipc: New replicast peer: 255.255.255.255
[  234.404795][ T8517] tipc: Enabled bearer <udp:syz2>, priority 10
[  234.408370][ T8523] netlink: 12 bytes leftover after parsing attributes in process `syz.1.627'.
[  234.439796][ T8525] netlink: 12 bytes leftover after parsing attributes in process `syz.3.626'.
[  234.455918][ T8526] MPI: mpi too large (129416 bits)
[  234.711998][   T67] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  234.861913][   T67] usb 7-1: Using ep0 maxpacket: 32
[  234.869472][   T67] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  234.872307][   T67] usb 7-1: config 0 has no interface number 0
[  234.874834][   T67] usb 7-1: config 0 interface 12 has no altsetting 0
[  234.883543][   T67] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  234.887807][   T67] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.901069][   T67] usb 7-1: Product: syz
[  234.913115][   T67] usb 7-1: Manufacturer: syz
[  234.921470][   T67] usb 7-1: SerialNumber: syz
[  234.964200][   T67] usb 7-1: config 0 descriptor??
[  235.281324][ T8533] MPI: mpi too large (129416 bits)
[  235.507452][   T67] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  235.510158][   T67] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  235.533336][ T1345] tipc: Node number set to 1055775351
[  235.577489][   T67] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  235.581090][   T67] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  235.586512][   T67] usb 7-1: USB disconnect, device number 19
[  235.949948][ T8537] tipc: New replicast peer: 255.255.255.255
[  236.021992][ T6068] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  236.074868][ T8537] tipc: Enabled bearer <udp:syz2>, priority 10
[  236.082241][ T8538] netlink: 12 bytes leftover after parsing attributes in process `syz.0.631'.
[  236.232182][ T6068] usb 6-1: Using ep0 maxpacket: 32
[  236.241402][ T6068] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  236.244593][ T6068] usb 6-1: config 0 has no interface number 0
[  236.246999][ T6068] usb 6-1: config 0 interface 12 has no altsetting 0
[  236.252767][ T6068] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  236.256897][ T6068] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.261509][ T6068] usb 6-1: Product: syz
[  236.264896][ T6068] usb 6-1: Manufacturer: syz
[  236.267247][ T6068] usb 6-1: SerialNumber: syz
[  236.285385][ T6068] usb 6-1: config 0 descriptor??
[  237.493192][ T6068] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  237.495918][ T6068] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  237.498346][ T6068] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  237.500908][ T6068] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  237.515656][ T6068] usb 6-1: USB disconnect, device number 15
[  238.745939][ T8556] Bluetooth: MGMT ver 1.23
[  239.747438][ T8572] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  240.143503][ T8605] FAULT_INJECTION: forcing a failure.
[  240.143503][ T8605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.148791][ T8605] CPU: 1 UID: 0 PID: 8605 Comm: syz.3.647 Not tainted syzkaller #0 PREEMPT(full) 
[  240.148822][ T8605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.148830][ T8605] Call Trace:
[  240.148836][ T8605]  <TASK>
[  240.148842][ T8605]  dump_stack_lvl+0x16c/0x1f0
[  240.148868][ T8605]  should_fail_ex+0x512/0x640
[  240.148890][ T8605]  _copy_from_user+0x2e/0xd0
[  240.148908][ T8605]  vmci_host_do_alloc_queuepair.constprop.0+0x28d/0x3d0
[  240.148930][ T8605]  ? __pfx_vmci_host_do_alloc_queuepair.constprop.0+0x10/0x10
[  240.148951][ T8605]  ? kasan_quarantine_put+0x10a/0x240
[  240.148966][ T8605]  ? lockdep_hardirqs_on+0x7c/0x110
[  240.148990][ T8605]  ? tomoyo_path_number_perm+0x18d/0x580
[  240.149009][ T8605]  vmci_host_unlocked_ioctl+0x562/0x2040
[  240.149026][ T8605]  ? lockdep_hardirqs_on+0x7c/0x110
[  240.149042][ T8605]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  240.149061][ T8605]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  240.149080][ T8605]  ? do_vfs_ioctl+0x128/0x14f0
[  240.149100][ T8605]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  240.149121][ T8605]  ? find_held_lock+0x2b/0x80
[  240.149134][ T8605]  ? hook_file_ioctl_common+0x145/0x410
[  240.149153][ T8605]  ? __fget_files+0x20e/0x3c0
[  240.149167][ T8605]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  240.149184][ T8605]  compat_ptr_ioctl+0x6e/0xa0
[  240.149201][ T8605]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  240.149217][ T8605]  __ia32_compat_sys_ioctl+0x242/0x370
[  240.149237][ T8605]  __do_fast_syscall_32+0x7c/0x300
[  240.149250][ T8605]  do_fast_syscall_32+0x32/0x80
[  240.149260][ T8605]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  240.149276][ T8605] RIP: 0023:0xf7f74579
[  240.149286][ T8605] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  240.149297][ T8605] RSP: 002b:00000000f542455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  240.149309][ T8605] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000000007a8
[  240.149316][ T8605] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000
[  240.149322][ T8605] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  240.149329][ T8605] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  240.149335][ T8605] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  240.149348][ T8605]  </TASK>
[  240.297046][ T8601] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  240.297073][ T8601] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  240.297155][ T8601] vhci_hcd vhci_hcd.0: Device attached
[  240.300087][ T8612] vhci_hcd: connection closed
[  240.305931][ T1147] vhci_hcd: stop threads
[  240.309931][ T1147] vhci_hcd: release socket
[  240.312614][ T1147] vhci_hcd: disconnect device
[  241.042076][ T8648] MPI: mpi too large (129416 bits)
[  241.621993][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  241.622016][   T40] audit: type=1326 audit(1759162817.614:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8649 comm="syz.1.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  241.701957][   T10] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  241.841384][   T40] audit: type=1326 audit(1759162817.614:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8649 comm="syz.1.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  241.848799][   T40] audit: type=1326 audit(1759162817.614:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8649 comm="syz.1.667" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf700e579 code=0x7ffc0000
[  241.908834][   T40] audit: type=1326 audit(1759162817.924:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8649 comm="syz.1.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  241.941964][   T40] audit: type=1326 audit(1759162817.924:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8649 comm="syz.1.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  242.011996][   T10] usb 8-1: Using ep0 maxpacket: 32
[  242.122148][ T8653] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  242.197293][   T10] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  242.200440][   T10] usb 8-1: config 0 has no interface number 0
[  242.203446][   T10] usb 8-1: config 0 interface 12 has no altsetting 0
[  242.342394][   T10] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  242.347168][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.350512][   T10] usb 8-1: Product: syz
[  242.352364][   T10] usb 8-1: Manufacturer: syz
[  242.354286][   T10] usb 8-1: SerialNumber: syz
[  242.358518][   T10] usb 8-1: config 0 descriptor??
[  242.480920][ T8677] fuse: Bad value for 'fd'
[  242.866585][ T6336] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  242.881307][   T10] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  242.885963][   T10] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  242.896771][   T10] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  242.908797][   T10] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  242.928741][   T10] usb 8-1: USB disconnect, device number 8
[  243.024143][ T6336] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.028416][ T6336] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  243.031406][ T6336] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.042136][ T6336] usb 6-1: config 0 descriptor??
[  243.201151][ T8685] netlink: 'syz.2.678': attribute type 9 has an invalid length.
[  243.262245][ T6336] usbhid 6-1:0.0: can't add hid device: -71
[  243.265088][ T6336] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  243.290998][ T6336] usb 6-1: USB disconnect, device number 16
[  243.498610][ T8695] binder: 8694:8695 ioctl 8008f512 80000340 returned -22
[  243.564295][ T8696] netlink: 360 bytes leftover after parsing attributes in process `syz.2.683'.
[  243.761927][ T6336] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  243.972134][ T6336] usb 6-1: Using ep0 maxpacket: 32
[  243.976414][ T6336] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.979905][ T6336] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  243.983206][ T6336] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.988272][ T6336] usb 6-1: config 0 descriptor??
[  243.992811][ T6336] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  243.997240][ T6336] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  244.206719][ T8714] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  244.290412][    C3] ldusb 6-1:0.0: Ring buffer overflow, 8 bytes dropped
[  244.544858][ T8724] FAULT_INJECTION: forcing a failure.
[  244.544858][ T8724] name failslab, interval 1, probability 0, space 0, times 0
[  244.549991][ T8724] CPU: 2 UID: 0 PID: 8724 Comm: syz.0.692 Not tainted syzkaller #0 PREEMPT(full) 
[  244.550022][ T8724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.550033][ T8724] Call Trace:
[  244.550039][ T8724]  <TASK>
[  244.550048][ T8724]  dump_stack_lvl+0x16c/0x1f0
[  244.550081][ T8724]  should_fail_ex+0x512/0x640
[  244.550109][ T8724]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  244.550130][ T8724]  should_failslab+0xc2/0x120
[  244.550154][ T8724]  __kmalloc_cache_noprof+0x6a/0x3e0
[  244.550174][ T8724]  ? route4_change+0x15ad/0x26f0
[  244.550201][ T8724]  route4_change+0x15ad/0x26f0
[  244.550230][ T8724]  ? __pfx_route4_change+0x10/0x10
[  244.550268][ T8724]  ? __pfx_route4_change+0x10/0x10
[  244.550292][ T8724]  tc_new_tfilter+0xa32/0x2340
[  244.550326][ T8724]  ? __pfx_tc_new_tfilter+0x10/0x10
[  244.550354][ T8724]  ? __lock_acquire+0x62e/0x1ce0
[  244.550393][ T8724]  ? find_held_lock+0x2b/0x80
[  244.550412][ T8724]  ? __pfx_tc_new_tfilter+0x10/0x10
[  244.550428][ T8724]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  244.550446][ T8724]  ? __pfx_tc_new_tfilter+0x10/0x10
[  244.550462][ T8724]  rtnetlink_rcv_msg+0x95e/0xe90
[  244.550481][ T8724]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  244.550506][ T8724]  ? ref_tracker_free+0x37c/0x830
[  244.550527][ T8724]  netlink_rcv_skb+0x155/0x420
[  244.550554][ T8724]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  244.550574][ T8724]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  244.550611][ T8724]  ? netlink_deliver_tap+0x1ae/0xd30
[  244.550642][ T8724]  netlink_unicast+0x5aa/0x870
[  244.550674][ T8724]  ? __pfx_netlink_unicast+0x10/0x10
[  244.550701][ T8724]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  244.550735][ T8724]  netlink_sendmsg+0x8d1/0xdd0
[  244.550768][ T8724]  ? __pfx_netlink_sendmsg+0x10/0x10
[  244.550798][ T8724]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  244.550823][ T8724]  ____sys_sendmsg+0xa95/0xc70
[  244.550847][ T8724]  ? __pfx_____sys_sendmsg+0x10/0x10
[  244.550865][ T8724]  ? get_compat_msghdr+0x11a/0x170
[  244.550899][ T8724]  ___sys_sendmsg+0x134/0x1d0
[  244.550928][ T8724]  ? __pfx____sys_sendmsg+0x10/0x10
[  244.550967][ T8724]  ? find_held_lock+0x2b/0x80
[  244.551008][ T8724]  __sys_sendmsg+0x16d/0x220
[  244.551037][ T8724]  ? __pfx___sys_sendmsg+0x10/0x10
[  244.551072][ T8724]  ? rcu_is_watching+0x12/0xc0
[  244.551111][ T8724]  __do_fast_syscall_32+0x7c/0x300
[  244.551131][ T8724]  do_fast_syscall_32+0x32/0x80
[  244.551149][ T8724]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  244.551173][ T8724] RIP: 0023:0xf7f65579
[  244.551187][ T8724] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  244.551205][ T8724] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  244.551223][ T8724] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000900
[  244.551236][ T8724] RDX: 0000000020000800 RSI: 0000000000000000 RDI: 0000000000000000
[  244.551247][ T8724] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  244.551257][ T8724] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  244.551268][ T8724] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  244.551292][ T8724]  </TASK>
[  244.612784][    C1] ldusb 6-1:0.0: Ring buffer overflow, 8 bytes dropped
[  244.684185][    C1] vkms_vblank_simulate: vblank timer overrun
[  245.586965][ T8759] binder: 8758:8759 ioctl 8008f512 80000340 returned -22
[  245.645529][ T8760] netlink: 360 bytes leftover after parsing attributes in process `syz.0.699'.
[  245.828350][   T67] usb 6-1: USB disconnect, device number 17
[  245.845257][   T67] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[  245.962315][ T8770] binder: 8769:8770 ioctl 8008f512 80000340 returned -22
[  246.065283][ T8777] netlink: 360 bytes leftover after parsing attributes in process `syz.1.701'.
[  246.541455][ T8792] netlink: 52 bytes leftover after parsing attributes in process `syz.3.706'.
[  247.023125][ T8811] binder: 8810:8811 ioctl 8008f512 80000340 returned -22
[  247.088587][ T8812] netlink: 360 bytes leftover after parsing attributes in process `syz.1.711'.
[  247.304511][ T8815] netlink: 4 bytes leftover after parsing attributes in process `syz.2.712'.
[  247.328816][ T8817] netlink: 35 bytes leftover after parsing attributes in process `syz.1.714'.
[  247.388453][   T40] audit: type=1326 audit(1759162823.404:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.398246][   T40] audit: type=1326 audit(1759162823.414:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.409713][   T40] audit: type=1326 audit(1759162823.414:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.417048][   T40] audit: type=1326 audit(1759162823.414:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.427516][   T40] audit: type=1326 audit(1759162823.414:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.435905][   T40] audit: type=1326 audit(1759162823.414:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.446222][   T40] audit: type=1326 audit(1759162823.414:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.459921][   T40] audit: type=1326 audit(1759162823.414:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.467950][   T40] audit: type=1326 audit(1759162823.414:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700e579 code=0x7ffc0000
[  247.475184][   T40] audit: type=1326 audit(1759162823.424:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.1.714" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700e579 code=0x7ffc0000
[  248.477723][ T8842] binder: 8841:8842 ioctl 8008f512 80000340 returned -22
[  248.572874][ T8842] netlink: 360 bytes leftover after parsing attributes in process `syz.0.722'.
[  249.483526][ T8857] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  250.078735][ T8872] netlink: 36 bytes leftover after parsing attributes in process `syz.1.727'.
[  250.354607][ T8880] 9pnet_virtio: no channels available for device syz
[  250.965479][ T8902] binder: 8901:8902 ioctl 8008f512 80000340 returned -22
[  251.047085][ T8907] netlink: 360 bytes leftover after parsing attributes in process `syz.3.736'.
[  251.987603][ T8929] MPI: mpi too large (129416 bits)
[  252.079281][ T8934] binder: 8933:8934 ioctl 8008f512 80000340 returned -22
[  252.140090][ T8935] netlink: 360 bytes leftover after parsing attributes in process `syz.2.745'.
[  252.231705][ T8938] netlink: 35 bytes leftover after parsing attributes in process `syz.2.746'.
[  252.372084][ T6018] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  252.944157][ T6018] usb 5-1: Using ep0 maxpacket: 32
[  252.947276][ T6018] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  252.949807][ T6018] usb 5-1: config 0 has no interface number 0
[  252.951788][ T6018] usb 5-1: config 0 interface 12 has no altsetting 0
[  253.006214][ T6018] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  253.008857][ T6018] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.020586][ T6018] usb 5-1: Product: syz
[  253.022222][ T6018] usb 5-1: Manufacturer: syz
[  253.023750][ T6018] usb 5-1: SerialNumber: syz
[  253.035113][ T6018] usb 5-1: config 0 descriptor??
[  253.659540][ T6018] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  253.666531][ T6018] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  253.668965][ T6018] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  253.671449][ T6018] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  253.708519][ T6018] usb 5-1: USB disconnect, device number 11
[  253.748444][ T8951] netlink: 28 bytes leftover after parsing attributes in process `syz.1.747'.
[  253.752847][ T8951] netlink: 28 bytes leftover after parsing attributes in process `syz.1.747'.
[  253.764571][ T8951] ubi: mtd0 is already attached to ubi31
[  253.944008][ T8955] netlink: 8 bytes leftover after parsing attributes in process `syz.0.751'.
[  254.144444][ T8966] binder: 8965:8966 ioctl 8008f512 80000340 returned -22
[  254.207067][ T8972] netlink: 360 bytes leftover after parsing attributes in process `syz.2.754'.
[  254.718729][ T9019] netlink: 64 bytes leftover after parsing attributes in process `syz.2.762'.
[  254.939714][ T9032] tipc: Started in network mode
[  254.941393][ T9032] tipc: Node identity a6d20bd01e8f, cluster identity 2
[  254.944488][ T9032] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  254.947281][ T9033] syzkaller0: entered promiscuous mode
[  254.949416][ T9033] syzkaller0: entered allmulticast mode
[  254.967132][ T9035] tipc: Resetting bearer <eth:syzkaller0>
[  254.978261][ T9035] tipc: Disabling bearer <eth:syzkaller0>
[  255.100370][ T9038] netlink: 64 bytes leftover after parsing attributes in process `syz.3.765'.
[  255.650960][ T9050] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.768'.
[  256.284478][ T9067] 9pnet_virtio: no channels available for device syz
[  257.286139][ T9079] 9pnet_fd: Insufficient options for proto=fd
[  257.913539][ T9090] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  257.916344][ T9090] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  257.921214][ T9090] vhci_hcd vhci_hcd.0: Device attached
[  257.953652][ T9091] vhci_hcd: connection closed
[  257.954039][ T6934] vhci_hcd: stop threads
[  257.958615][ T6934] vhci_hcd: release socket
[  257.962144][ T6934] vhci_hcd: disconnect device
[  258.363661][ T9097] netlink: 8 bytes leftover after parsing attributes in process `syz.1.782'.
[  259.033787][   T40] kauditd_printk_skb: 113 callbacks suppressed
[  259.033802][   T40] audit: type=1326 audit(1759162835.054:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.2.785" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x0
[  259.472062][ T9121] netlink: 64 bytes leftover after parsing attributes in process `syz.1.789'.
[  259.862783][ T9128] 9pnet_virtio: no channels available for device syz
[  260.393701][ T9130] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  260.395964][ T9130] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  260.398970][ T9130] vhci_hcd vhci_hcd.0: Device attached
[  260.403399][ T9133] vhci_hcd: connection closed
[  260.405045][ T1187] vhci_hcd: stop threads
[  260.408849][ T1187] vhci_hcd: release socket
[  260.410555][ T1187] vhci_hcd: disconnect device
[  261.020430][ T9151] netlink: 32 bytes leftover after parsing attributes in process `syz.2.795'.
[  263.107525][ T6923] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  263.484477][   T40] audit: type=1800 audit(1759162839.504:177): pid=9180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.804" name="/" dev="9p" ino=2 res=0 errno=0
[  263.748733][ T9186] binder: 9184:9186 ioctl 8008f512 80000340 returned -22
[  263.817212][ T9194] netlink: 360 bytes leftover after parsing attributes in process `syz.3.807'.
[  264.499492][ T6047] IPVS: starting estimator thread 0...
[  264.602252][ T9209] IPVS: using max 22 ests per chain, 52800 per kthread
[  264.631917][ T9187] comedi comedi0: reset error (fatal)
[  265.364202][ T9220] netlink: 8 bytes leftover after parsing attributes in process `syz.0.814'.
[  265.512666][ T9227] netlink: 40 bytes leftover after parsing attributes in process `syz.3.816'.
[  265.792157][ T9236] input: syz1 as /devices/virtual/input/input7
[  266.381908][    C0] vkms_vblank_simulate: vblank timer overrun
[  266.648314][ T9252] netlink: 24 bytes leftover after parsing attributes in process `syz.0.824'.
[  267.338790][ T9255] syzkaller1: entered promiscuous mode
[  267.342220][ T9255] syzkaller1: entered allmulticast mode
[  267.382545][ T9255] netlink: 8 bytes leftover after parsing attributes in process `syz.2.825'.
[  267.431527][   T67] IPVS: starting estimator thread 0...
[  267.532574][ T9258] IPVS: using max 41 ests per chain, 98400 per kthread
[  267.551670][ T9262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.828'.
[  267.855587][ T9272] FAULT_INJECTION: forcing a failure.
[  267.855587][ T9272] name failslab, interval 1, probability 0, space 0, times 0
[  267.860930][ T9272] CPU: 2 UID: 0 PID: 9272 Comm: syz.2.831 Not tainted syzkaller #0 PREEMPT(full) 
[  267.860957][ T9272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.860971][ T9272] Call Trace:
[  267.860981][ T9272]  <TASK>
[  267.860989][ T9272]  dump_stack_lvl+0x16c/0x1f0
[  267.861051][ T9272]  should_fail_ex+0x512/0x640
[  267.861094][ T9272]  should_failslab+0xc2/0x120
[  267.861122][ T9272]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  267.861147][ T9272]  ? skb_clone+0x190/0x3f0
[  267.861182][ T9272]  skb_clone+0x190/0x3f0
[  267.861212][ T9272]  netlink_deliver_tap+0xabd/0xd30
[  267.861249][ T9272]  netlink_unicast+0x64c/0x870
[  267.861283][ T9272]  ? __pfx_netlink_unicast+0x10/0x10
[  267.861316][ T9272]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  267.861355][ T9272]  netlink_sendmsg+0x8d1/0xdd0
[  267.861390][ T9272]  ? __pfx_netlink_sendmsg+0x10/0x10
[  267.861424][ T9272]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  267.861453][ T9272]  ____sys_sendmsg+0xa95/0xc70
[  267.861479][ T9272]  ? __pfx_____sys_sendmsg+0x10/0x10
[  267.861501][ T9272]  ? get_compat_msghdr+0x11a/0x170
[  267.861539][ T9272]  ___sys_sendmsg+0x134/0x1d0
[  267.861569][ T9272]  ? __pfx____sys_sendmsg+0x10/0x10
[  267.861613][ T9272]  ? find_held_lock+0x2b/0x80
[  267.861654][ T9272]  __sys_sendmsg+0x16d/0x220
[  267.861683][ T9272]  ? __pfx___sys_sendmsg+0x10/0x10
[  267.861730][ T9272]  ? rcu_is_watching+0x12/0xc0
[  267.861755][ T9272]  __do_fast_syscall_32+0x7c/0x300
[  267.861778][ T9272]  do_fast_syscall_32+0x32/0x80
[  267.861828][ T9272]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  267.861852][ T9272] RIP: 0023:0xf7f35579
[  267.861870][ T9272] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  267.861887][ T9272] RSP: 002b:00000000f540555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  267.861910][ T9272] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000080000100
[  267.861922][ T9272] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  267.861935][ T9272] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  267.861947][ T9272] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  267.861957][ T9272] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  267.861984][ T9272]  </TASK>
[  267.964691][ T9272] netlink: 'syz.2.831': attribute type 1 has an invalid length.
[  267.968074][ T9272] netlink: 'syz.2.831': attribute type 4 has an invalid length.
[  269.557121][ T9298] overlayfs: workdir and upperdir must reside under the same mount
[  270.142407][ T9317] MPI: mpi too large (129416 bits)
[  270.501982][   T24] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  270.572186][ T9300] comedi comedi0: reset error (fatal)
[  270.741919][   T24] usb 6-1: Using ep0 maxpacket: 32
[  270.746463][   T24] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  270.756308][   T24] usb 6-1: config 0 has no interface number 0
[  270.758844][   T24] usb 6-1: config 0 interface 12 has no altsetting 0
[  270.763789][   T24] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  270.767690][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.771443][   T24] usb 6-1: Product: syz
[  270.773541][   T24] usb 6-1: Manufacturer: syz
[  270.775619][   T24] usb 6-1: SerialNumber: syz
[  270.779841][   T24] usb 6-1: config 0 descriptor??
[  270.882110][ T7714] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  271.142250][ T7714] usb 7-1: Using ep0 maxpacket: 8
[  271.147099][ T7714] usb 7-1: config 0 interface 0 has no altsetting 0
[  271.150025][ T7714] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  271.154161][ T7714] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.159378][ T7714] usb 7-1: config 0 descriptor??
[  271.299045][   T24] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  271.303409][   T24] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  271.306664][   T24] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  271.309946][   T24] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  271.317854][   T24] usb 6-1: USB disconnect, device number 18
[  271.886244][ T9335] netlink: 56 bytes leftover after parsing attributes in process `syz.0.849'.
[  272.240053][ T9349] tipc: Started in network mode
[  272.244146][ T9349] tipc: Node identity eaa73c3ce091, cluster identity 4711
[  272.246876][ T9349] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  272.253638][ T7714] usbhid 7-1:0.0: can't add hid device: -71
[  272.255274][ T9349] syzkaller0: entered promiscuous mode
[  272.258216][ T9349] syzkaller0: entered allmulticast mode
[  272.312170][ T9348] tipc: Resetting bearer <eth:syzkaller0>
[  272.338650][ T9348] tipc: Disabling bearer <eth:syzkaller0>
[  272.537191][ T9352] tmpfs: Unknown parameter 'hash'
[  272.541324][ T7714] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  272.543382][ T9353] netlink: 8 bytes leftover after parsing attributes in process `syz.2.852'.
[  272.823841][ T7714] usb 7-1: USB disconnect, device number 20
[  274.737522][ T9362] 9pnet_virtio: no channels available for device syz
[  275.638014][ T9381] netlink: 'syz.3.860': attribute type 1 has an invalid length.
[  275.989335][ T9388] netlink: 8 bytes leftover after parsing attributes in process `syz.1.862'.
[  276.068350][ T9391] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  276.072249][ T9391] syzkaller0: entered promiscuous mode
[  276.074782][ T9391] syzkaller0: entered allmulticast mode
[  276.088568][ T9391] tipc: Resetting bearer <eth:syzkaller0>
[  276.115756][ T9390] tipc: Resetting bearer <eth:syzkaller0>
[  276.130038][ T9390] tipc: Disabling bearer <eth:syzkaller0>
[  276.132095][ T9393] binder: 9392:9393 ioctl 8008f512 80000340 returned -22
[  276.189200][ T9396] netlink: 360 bytes leftover after parsing attributes in process `syz.2.863'.
[  276.274338][ T9402] binder: 9401:9402 ioctl 8008f512 80000340 returned -22
[  276.343575][ T9406] netlink: 360 bytes leftover after parsing attributes in process `syz.1.867'.
[  276.408222][ T9398] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  276.411103][ T9398] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  276.430184][ T9398] vhci_hcd vhci_hcd.0: Device attached
[  276.433860][ T9409] vhci_hcd: connection closed
[  276.439756][ T1147] vhci_hcd: stop threads
[  276.446304][ T1147] vhci_hcd: release socket
[  276.448488][ T1147] vhci_hcd: disconnect device
[  277.741045][ T9434] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[  277.744273][ T9434] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  277.748207][ T9434] vhci_hcd vhci_hcd.0: Device attached
[  278.102452][ T1345] usb 40-1: SetAddress Request (6) to port 0
[  278.104850][ T1345] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  278.156404][ T9428] [U] 
[  278.165098][ T9435] vhci_hcd: connection reset by peer
[  278.167888][ T1142] vhci_hcd: stop threads
[  278.169899][ T1142] vhci_hcd: release socket
[  278.183633][ T1142] vhci_hcd: disconnect device
[  278.397435][ T9448] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  278.399714][ T9448] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  278.402521][ T9448] vhci_hcd vhci_hcd.0: Device attached
[  278.406679][ T9451] vhci_hcd: connection closed
[  278.406894][ T1142] vhci_hcd: stop threads
[  278.412033][ T1142] vhci_hcd: release socket
[  278.413748][ T1142] vhci_hcd: disconnect device
[  278.736992][ T9458] input: syz1 as /devices/virtual/input/input8
[  281.882153][   T54] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  281.946066][ T9492] netlink: 144 bytes leftover after parsing attributes in process `syz.3.891'.
[  282.042501][   T54] usb 7-1: Using ep0 maxpacket: 32
[  282.055893][   T54] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[  282.070759][   T54] usb 7-1: config 0 has no interface number 0
[  282.085597][   T54] usb 7-1: config 0 interface 12 has no altsetting 0
[  282.098002][   T54] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  282.101513][   T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.112379][   T54] usb 7-1: Product: syz
[  282.116216][   T54] usb 7-1: Manufacturer: syz
[  282.118263][   T54] usb 7-1: SerialNumber: syz
[  282.131786][   T54] usb 7-1: config 0 descriptor??
[  282.146421][ T9489] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  282.149758][ T9489] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  282.155379][ T9489] vhci_hcd vhci_hcd.0: Device attached
[  282.160298][ T9496] vhci_hcd: connection closed
[  282.160942][ T1236] vhci_hcd: stop threads
[  282.168072][ T1236] vhci_hcd: release socket
[  282.170114][ T1236] vhci_hcd: disconnect device
[  282.700990][   T54] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  282.712807][   T54] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[  282.716432][   T54] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  282.719130][   T54] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[  282.732050][   T54] usb 7-1: USB disconnect, device number 21
[  283.203192][ T1345] usb 40-1: device descriptor read/8, error -110
[  283.282942][ T9512] netlink: 12 bytes leftover after parsing attributes in process `syz.3.897'.
[  283.598304][ T1345] usb usb40-port1: attempt power cycle
[  283.765525][ T9516] MPI: mpi too large (129416 bits)
[  284.175011][ T1345] usb usb40-port1: unable to enumerate USB device
[  284.222040][   T29] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  284.252871][ T9522] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  284.257272][ T9522] syzkaller0: entered promiscuous mode
[  284.259275][ T9522] syzkaller0: entered allmulticast mode
[  284.282492][ T9522] tipc: Resetting bearer <eth:syzkaller0>
[  284.290991][ T9521] tipc: Resetting bearer <eth:syzkaller0>
[  284.300470][ T9521] tipc: Disabling bearer <eth:syzkaller0>
[  284.519826][ T9528] binder: 9527:9528 ioctl 8008f512 80000340 returned -22
[  284.585817][ T9529] netlink: 360 bytes leftover after parsing attributes in process `syz.2.902'.
[  284.862897][   T29] usb 8-1: Using ep0 maxpacket: 32
[  284.869408][   T29] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  284.872575][   T29] usb 8-1: config 0 has no interface number 0
[  284.876922][   T29] usb 8-1: config 0 interface 12 has no altsetting 0
[  284.882233][   T29] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  284.885159][   T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  284.888183][   T29] usb 8-1: Product: syz
[  284.900876][   T29] usb 8-1: Manufacturer: syz
[  284.904993][   T29] usb 8-1: SerialNumber: syz
[  284.914218][   T29] usb 8-1: config 0 descriptor??
[  285.546220][   T29] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  285.549506][   T29] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  285.562135][   T29] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  285.576923][   T29] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  285.589099][   T29] usb 8-1: USB disconnect, device number 9
[  286.006686][ T9543] ==================================================================
[  286.009470][ T9543] BUG: KASAN: slab-use-after-free in sysfs_remove_file_ns+0x63/0x70
[  286.012381][ T9543] Read of size 8 at addr ffff888070137a30 by task syz.2.906/9543
[  286.015959][ T9543] 
[  286.017827][ T9543] CPU: 2 UID: 0 PID: 9543 Comm: syz.2.906 Not tainted syzkaller #0 PREEMPT(full) 
[  286.017844][ T9543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  286.017854][ T9543] Call Trace:
[  286.017859][ T9543]  <TASK>
[  286.017864][ T9543]  dump_stack_lvl+0x116/0x1f0
[  286.017891][ T9543]  print_report+0xcd/0x630
[  286.017907][ T9543]  ? __virt_addr_valid+0x81/0x610
[  286.017922][ T9543]  ? __phys_addr+0xe8/0x180
[  286.017938][ T9543]  ? sysfs_remove_file_ns+0x63/0x70
[  286.017950][ T9543]  kasan_report+0xe0/0x110
[  286.017964][ T9543]  ? sysfs_remove_file_ns+0x63/0x70
[  286.017977][ T9543]  sysfs_remove_file_ns+0x63/0x70
[  286.017992][ T9543]  driver_remove_file+0x4a/0x60
[  286.018004][ T9543]  bus_remove_driver+0x224/0x2c0
[  286.018021][ T9543]  driver_unregister+0x76/0xb0
[  286.018031][ T9543]  comedi_device_detach_locked+0x12c/0xa50
[  286.018052][ T9543]  do_devconfig_ioctl+0x555/0x710
[  286.018065][ T9543]  ? __mutex_lock+0x1c5/0x1060
[  286.018089][ T9543]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  286.018106][ T9543]  ? kasan_save_stack+0x42/0x60
[  286.018121][ T9543]  ? kasan_save_stack+0x33/0x60
[  286.018133][ T9543]  ? kasan_save_track+0x14/0x30
[  286.018146][ T9543]  ? kasan_save_free_info+0x3b/0x60
[  286.018158][ T9543]  ? __kasan_slab_free+0x60/0x70
[  286.018172][ T9543]  ? kfree+0x2b4/0x4d0
[  286.018183][ T9543]  ? tomoyo_path_number_perm+0x470/0x580
[  286.018201][ T9543]  comedi_unlocked_ioctl+0x165d/0x2f00
[  286.018219][ T9543]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  286.018241][ T9543]  ? kasan_quarantine_put+0x10a/0x240
[  286.018253][ T9543]  ? lockdep_hardirqs_on+0x7c/0x110
[  286.018270][ T9543]  ? find_held_lock+0x2b/0x80
[  286.018282][ T9543]  ? tomoyo_path_number_perm+0x295/0x580
[  286.018296][ T9543]  ? tomoyo_path_number_perm+0x18d/0x580
[  286.018310][ T9543]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  286.018325][ T9543]  comedi_compat_ioctl+0x1d0/0x990
[  286.018339][ T9543]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  286.018354][ T9543]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.018371][ T9543]  ? do_vfs_ioctl+0x128/0x14f0
[  286.018389][ T9543]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  286.018408][ T9543]  ? find_held_lock+0x2b/0x80
[  286.018418][ T9543]  ? hook_file_ioctl_common+0x145/0x410
[  286.018439][ T9543]  ? __fget_files+0x20e/0x3c0
[  286.018452][ T9543]  ? __ia32_compat_sys_openat+0x160/0x210
[  286.018464][ T9543]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  286.018479][ T9543]  __ia32_compat_sys_ioctl+0x242/0x370
[  286.018497][ T9543]  __do_fast_syscall_32+0x7c/0x300
[  286.018508][ T9543]  do_fast_syscall_32+0x32/0x80
[  286.018518][ T9543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.018532][ T9543] RIP: 0023:0xf7f35579
[  286.018542][ T9543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  286.018554][ T9543] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  286.018565][ T9543] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[  286.018573][ T9543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  286.018579][ T9543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.018586][ T9543] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  286.018592][ T9543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  286.018602][ T9543]  </TASK>
[  286.018606][ T9543] 
[  286.148459][ T9543] Allocated by task 9349:
[  286.149826][ T9543]  kasan_save_stack+0x33/0x60
[  286.151333][ T9543]  kasan_save_track+0x14/0x30
[  286.152851][ T9543]  __kasan_kmalloc+0xaa/0xb0
[  286.154384][ T9543]  __kmalloc_noprof+0x223/0x510
[  286.156031][ T9543]  __register_sysctl_table+0xea2/0x1900
[  286.157904][ T9543]  neigh_sysctl_register+0x31f/0x670
[  286.159802][ T9543]  addrconf_sysctl_register+0xb9/0x1f0
[  286.162018][ T9543]  ipv6_add_dev+0xb31/0x15f0
[  286.163661][ T9543]  addrconf_notify+0x53e/0x19e0
[  286.165415][ T9543]  notifier_call_chain+0xb9/0x410
[  286.167110][ T9543]  call_netdevice_notifiers_info+0xbe/0x140
[  286.169115][ T9543]  register_netdevice+0x182e/0x2270
[  286.170874][ T9543]  __tun_chr_ioctl+0x1ed9/0x48b0
[  286.172480][ T9543]  __ia32_compat_sys_ioctl+0x242/0x370
[  286.174263][ T9543]  __do_fast_syscall_32+0x7c/0x300
[  286.176028][ T9543]  do_fast_syscall_32+0x32/0x80
[  286.177879][ T9543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.180334][ T9543] 
[  286.181194][ T9543] Freed by task 6934:
[  286.182555][ T9543]  kasan_save_stack+0x33/0x60
[  286.184187][ T9543]  kasan_save_track+0x14/0x30
[  286.185708][ T9543]  kasan_save_free_info+0x3b/0x60
[  286.187355][ T9543]  __kasan_slab_free+0x60/0x70
[  286.188938][ T9543]  kmem_cache_free_bulk.part.0+0x383/0x7f0
[  286.190943][ T9543]  kvfree_rcu_bulk+0x1b7/0x1e0
[  286.192874][ T9543]  kfree_rcu_monitor+0x1d0/0x2f0
[  286.194879][ T9543]  process_one_work+0x9cc/0x1b70
[  286.196808][ T9543]  worker_thread+0x6c8/0xf10
[  286.198303][ T9543]  kthread+0x3c2/0x780
[  286.199707][ T9543]  ret_from_fork+0x56d/0x730
[  286.201298][ T9543]  ret_from_fork_asm+0x1a/0x30
[  286.202946][ T9543] 
[  286.203727][ T9543] Last potentially related work creation:
[  286.205592][ T9543]  kasan_save_stack+0x33/0x60
[  286.207132][ T9543]  kasan_record_aux_stack+0xa7/0xc0
[  286.209025][ T9543]  kvfree_call_rcu+0x76/0x470
[  286.211184][ T9543]  drop_sysctl_table+0x355/0x5f0
[  286.213129][ T9543]  unregister_sysctl_table+0x41/0x60
[  286.215069][ T9543]  neigh_sysctl_unregister+0x5f/0x80
[  286.216852][ T9543]  addrconf_ifdown.isra.0+0x1498/0x1aa0
[  286.218598][ T9543]  addrconf_notify+0x220/0x19e0
[  286.220087][ T9543]  notifier_call_chain+0xb9/0x410
[  286.221611][ T9543]  call_netdevice_notifiers_info+0xbe/0x140
[  286.223700][ T9543]  unregister_netdevice_many_notify+0xf76/0x24c0
[  286.225855][ T9543]  unregister_netdevice_queue+0x305/0x3f0
[  286.227900][ T9543]  __tun_detach+0x1249/0x1540
[  286.229642][ T9543]  tun_chr_close+0xc2/0x230
[  286.231396][ T9543]  __fput+0x402/0xb70
[  286.232943][ T9543]  task_work_run+0x150/0x240
[  286.234869][ T9543]  exit_to_user_mode_loop+0xeb/0x110
[  286.236718][ T9543]  __do_fast_syscall_32+0x240/0x300
[  286.238391][ T9543]  do_fast_syscall_32+0x32/0x80
[  286.239990][ T9543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.241980][ T9543] 
[  286.242763][ T9543] The buggy address belongs to the object at ffff888070137a00
[  286.242763][ T9543]  which belongs to the cache kmalloc-256 of size 256
[  286.247444][ T9543] The buggy address is located 48 bytes inside of
[  286.247444][ T9543]  freed 256-byte region [ffff888070137a00, ffff888070137b00)
[  286.252365][ T9543] 
[  286.253244][ T9543] The buggy address belongs to the physical page:
[  286.255536][ T9543] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888070137c00 pfn:0x70136
[  286.258839][ T9543] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  286.261505][ T9543] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[  286.264274][ T9543] page_type: f5(slab)
[  286.265557][ T9543] raw: 04fff00000000240 ffff88801b842b40 ffffea00013f3990 ffffea0001394110
[  286.268462][ T9543] raw: ffff888070137c00 0000000000100003 00000000f5000000 0000000000000000
[  286.271237][ T9543] head: 04fff00000000240 ffff88801b842b40 ffffea00013f3990 ffffea0001394110
[  286.274159][ T9543] head: ffff888070137c00 0000000000100003 00000000f5000000 0000000000000000
[  286.276993][ T9543] head: 04fff00000000001 ffffea0001c04d81 00000000ffffffff 00000000ffffffff
[  286.279874][ T9543] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  286.282755][ T9543] page dumped because: kasan: bad access detected
[  286.284964][ T9543] page_owner tracks the page as allocated
[  286.286820][ T9543] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6469, tgid 6466 (syz.1.81), ts 95647137648, free_ts 90893585352
[  286.293599][ T9543]  post_alloc_hook+0x1c0/0x230
[  286.295299][ T9543]  get_page_from_freelist+0x132b/0x38e0
[  286.297099][ T9543]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  286.299034][ T9543]  alloc_pages_mpol+0x1fb/0x550
[  286.300653][ T9543]  new_slab+0x247/0x330
[  286.302124][ T9543]  ___slab_alloc+0xcf2/0x1750
[  286.303739][ T9543]  __slab_alloc.constprop.0+0x56/0xb0
[  286.305684][ T9543]  __kmalloc_noprof+0x2f2/0x510
[  286.307496][ T9543]  iter_file_splice_write+0x1cc/0x12e0
[  286.309429][ T9543]  direct_splice_actor+0x18f/0x6c0
[  286.311083][ T9543]  splice_direct_to_actor+0x345/0xa30
[  286.312827][ T9543]  do_splice_direct+0x174/0x240
[  286.314396][ T9543]  do_sendfile+0xb06/0xe50
[  286.315815][ T9543]  __ia32_compat_sys_sendfile+0x162/0x220
[  286.317817][ T9543]  __do_fast_syscall_32+0x7c/0x300
[  286.319508][ T9543]  do_fast_syscall_32+0x32/0x80
[  286.321158][ T9543] page last free pid 1345 tgid 1345 stack trace:
[  286.323616][ T9543]  __free_frozen_pages+0x7d5/0x10f0
[  286.326032][ T9543]  vfree+0x1fd/0xb50
[  286.327501][ T9543]  delayed_vfree_work+0x56/0x70
[  286.329266][ T9543]  process_one_work+0x9cc/0x1b70
[  286.330887][ T9543]  worker_thread+0x6c8/0xf10
[  286.332361][ T9543]  kthread+0x3c2/0x780
[  286.333669][ T9543]  ret_from_fork+0x56d/0x730
[  286.335185][ T9543]  ret_from_fork_asm+0x1a/0x30
[  286.336714][ T9543] 
[  286.337706][ T9543] Memory state around the buggy address:
[  286.339655][ T9543]  ffff888070137900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  286.342263][ T9543]  ffff888070137980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  286.345044][ T9543] >ffff888070137a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  286.347947][ T9543]                                      ^
[  286.349926][ T9543]  ffff888070137a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  286.352548][ T9543]  ffff888070137b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  286.355132][ T9543] ==================================================================
[  286.364627][ T9543] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  286.367133][ T9543] CPU: 2 UID: 0 PID: 9543 Comm: syz.2.906 Not tainted syzkaller #0 PREEMPT(full) 
[  286.370244][ T9543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  286.373649][ T9543] Call Trace:
[  286.374774][ T9543]  <TASK>
[  286.375718][ T9543]  dump_stack_lvl+0x3d/0x1f0
[  286.377241][ T9543]  vpanic+0x6e8/0x7a0
[  286.378536][ T9543]  ? __pfx_vpanic+0x10/0x10
[  286.380051][ T9543]  ? __pfx_vprintk_emit+0x10/0x10
[  286.381777][ T9543]  ? sysfs_remove_file_ns+0x63/0x70
[  286.383945][ T9543]  panic+0xca/0xd0
[  286.385360][ T9543]  ? __pfx_panic+0x10/0x10
[  286.387010][ T9543]  ? sysfs_remove_file_ns+0x63/0x70
[  286.388839][ T9543]  ? preempt_schedule_common+0x44/0xc0
[  286.390635][ T9543]  ? preempt_schedule_thunk+0x16/0x30
[  286.392440][ T9543]  check_panic_on_warn+0xab/0xb0
[  286.394035][ T9543]  end_report+0x107/0x170
[  286.395435][ T9543]  kasan_report+0xee/0x110
[  286.397061][ T9543]  ? sysfs_remove_file_ns+0x63/0x70
[  286.399021][ T9543]  sysfs_remove_file_ns+0x63/0x70
[  286.401054][ T9543]  driver_remove_file+0x4a/0x60
[  286.402904][ T9543]  bus_remove_driver+0x224/0x2c0
[  286.404776][ T9543]  driver_unregister+0x76/0xb0
[  286.406446][ T9543]  comedi_device_detach_locked+0x12c/0xa50
[  286.408636][ T9543]  do_devconfig_ioctl+0x555/0x710
[  286.410488][ T9543]  ? __mutex_lock+0x1c5/0x1060
[  286.412038][ T9543]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  286.413781][ T9543]  ? kasan_save_stack+0x42/0x60
[  286.415344][ T9543]  ? kasan_save_stack+0x33/0x60
[  286.416913][ T9543]  ? kasan_save_track+0x14/0x30
[  286.418460][ T9543]  ? kasan_save_free_info+0x3b/0x60
[  286.420359][ T9543]  ? __kasan_slab_free+0x60/0x70
[  286.422177][ T9543]  ? kfree+0x2b4/0x4d0
[  286.423789][ T9543]  ? tomoyo_path_number_perm+0x470/0x580
[  286.426127][ T9543]  comedi_unlocked_ioctl+0x165d/0x2f00
[  286.428039][ T9543]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  286.429680][ T9543]  ? kasan_quarantine_put+0x10a/0x240
[  286.431412][ T9543]  ? lockdep_hardirqs_on+0x7c/0x110
[  286.433143][ T9543]  ? find_held_lock+0x2b/0x80
[  286.434839][ T9543]  ? tomoyo_path_number_perm+0x295/0x580
[  286.436817][ T9543]  ? tomoyo_path_number_perm+0x18d/0x580
[  286.438785][ T9543]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  286.441114][ T9543]  comedi_compat_ioctl+0x1d0/0x990
[  286.443107][ T9543]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  286.444998][ T9543]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  286.447349][ T9543]  ? do_vfs_ioctl+0x128/0x14f0
[  286.449353][ T9543]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  286.451109][ T9543]  ? find_held_lock+0x2b/0x80
[  286.452546][ T9543]  ? hook_file_ioctl_common+0x145/0x410
[  286.454752][ T9543]  ? __fget_files+0x20e/0x3c0
[  286.456564][ T9543]  ? __ia32_compat_sys_openat+0x160/0x210
[  286.458714][ T9543]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  286.460539][ T9543]  __ia32_compat_sys_ioctl+0x242/0x370
[  286.462256][ T9543]  __do_fast_syscall_32+0x7c/0x300
[  286.463910][ T9543]  do_fast_syscall_32+0x32/0x80
[  286.465460][ T9543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.467434][ T9543] RIP: 0023:0xf7f35579
[  286.468725][ T9543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  286.474896][ T9543] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  286.477517][ T9543] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[  286.479993][ T9543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  286.482470][ T9543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.485062][ T9543] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  286.488217][ T9543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  286.490950][ T9543]  </TASK>
[  286.492797][ T9543] Kernel Offset: disabled
[  286.494215][ T9543] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:21:02  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff888023408b18 RCX=0000000000000000 RDX=0000000000000001
RSI=ffff88802b23a458 RDI=ffff888023408b18 RBP=ffff88802b23a458 RSP=ffffc900322ff688
R8 =ffff88802544a458 R9 =0000000000000001 R10=0000000000000000 R11=000000000007fffc
R12=ffff888023408000 R13=ffff888023408af0 R14=0000000000000001 R15=0000000000000046
RIP=ffffffff8196e97b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880974b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000003301b000 CR3=0000000020dc1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffff8880236d8af0 RCX=0000000000000001 RDX=0000000000000006
RSI=ffff8880236d8b18 RDI=ffff8880236d8000 RBP=ffffc90003067078 RSP=ffffc90003067050
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000028 R11=0000000000000001
R12=ffff8880236d8b18 R13=ffff8880236d8000 R14=0000000000000003 R15=0000000000000000
RIP=ffffffff819731dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057d9d4a8 CR3=0000000020dc1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8561eca0 RDI=ffffffff9b103780 RBP=ffffffff9b103740 RSP=ffffc9003239f1a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000034353954
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff3620742 R15=dffffc0000000000
RIP=ffffffff8561ecc7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000032722ffc CR3=000000004fc2e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88806bf143a8 RCX=ffffffff8b5ec50b RDX=ffff8880252a0000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000075 RSP=ffffc90004e17b18
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff81bb017b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057d9d4c0 CR3=00000000687db000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000