r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[  551.946330][ T2494] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  552.196263][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  552.316563][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  552.333371][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  552.353089][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  552.365957][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  552.386556][ T2494] usb 1-1: config 0 descriptor??
[  552.867693][ T2494] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  552.886915][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0010/input/input24
[  552.968621][ T2494] microsoft 0003:045E:07DA.0010: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  553.270457][ T2693] usb 1-1: USB disconnect, device number 29
21:56:36 executing program 0:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:36 executing program 3:
set_mempolicy(0x2, &(0x7f0000000040)=0xfffffffffffffff6, 0x4)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000180)='\x00\x00\x00\x01\x00\x00\x00\x05\x00x\x92\x12\xbc\x06^\xbewV\xf3\xb3\xa4e\xfb\xc5}\x9c\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|b\xe2\xff\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c')

21:56:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:36 executing program 5:
request_key(&(0x7f0000000000)='cifs.spnego\x00', 0x0, &(0x7f0000000080)=')Wd\f\xc9\a\x15\xeb\x1dn\x16t\xe3\xf0\xa7\xba)G\xadR\xc2\n\x0e\xb0{\xd2qo\xc1~\xf4\xc0\x8f\xbc\x19B1\x9d\xea\x8b\x13\x10\xdb\xad3>r t`\xa0\xae\x8cl.\xae\xaa\xc2', 0xfffffffffffffffa)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x418, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, 0x0, 0xfffffffffffffe3b)
creat(0x0, 0x0)
creat(0x0, 0x98)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x40)
dup(0xffffffffffffffff)
open$dir(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240), 0x40)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = dup(r0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000000)=0x81, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(r1, 0x29, 0x35, &(0x7f0000000100)=0x1, 0x4)
mmap(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
prctl$PR_GET_KEEPCAPS(0x7)
ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
fdatasync(0xffffffffffffffff)
ftruncate(r2, 0x7fff)
sendfile(r1, r2, 0x0, 0x8000fffffffe)

21:56:36 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c00000000000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:36 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$binfmt_elf64(r0, &(0x7f0000000300)={{0x1b, 0x9b, 0x7, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [], "4c94cba77678fab46aa4"}, 0x4a)

21:56:36 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:36 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$binfmt_elf64(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="1b9b073b00000000000000000000000000000000000900000000000000000000000000000000000058"], 0x4a)

21:56:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:36 executing program 3:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uhid\x00', 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x12e)
write$UHID_DESTROY(r0, &(0x7f0000000000), 0x4)

21:56:36 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:37 executing program 1:

[  554.052827][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.093479][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.106434][   T23] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  554.124045][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.141886][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.158176][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.169587][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.186040][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.193586][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.209601][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.226236][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.233721][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.249009][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.261102][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.272387][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.282764][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.292573][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.302350][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.312013][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.322353][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.330129][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.338585][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.349216][ T2693] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  554.356042][   T23] usb 1-1: Using ep0 maxpacket: 16
[  554.364045][ T2693] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on s�z1
[  554.401318][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.412934][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.427263][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.434656][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.446826][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.454213][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.465037][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.473203][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.476462][   T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  554.480963][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.501129][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.508485][   T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  554.508531][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  554.508544][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  554.523358][   T23] usb 1-1: config 0 descriptor??
[  554.536347][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.557104][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.564577][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.579546][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.594493][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.603267][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.610935][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.618560][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.626290][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.633833][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.641505][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.649171][ T2693] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  554.661128][ T2693] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on s�z1
[  555.017605][   T23] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0
[  555.035638][   T23] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0013/input/input25
[  555.126359][   T23] microsoft 0003:045E:07DA.0013: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  555.425517][ T2494] usb 1-1: USB disconnect, device number 30
21:56:38 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:38 executing program 5:

21:56:38 executing program 1:

21:56:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:38 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:38 executing program 3:

21:56:38 executing program 1:

21:56:39 executing program 5:

21:56:39 executing program 3:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0x37)
syz_open_procfs(0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
tkill(r1, 0x4)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
wait4(0x0, 0x0, 0x0, 0x0)

21:56:39 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c00000000000000010000000200", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:39 executing program 5:

21:56:39 executing program 1:

21:56:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:39 executing program 5:

21:56:39 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c00000000000000010000000200", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:39 executing program 1:

[  556.305848][ T2494] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  556.555820][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  556.676837][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  556.687849][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  556.701017][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  556.710369][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  556.719664][ T2494] usb 1-1: config 0 descriptor??
[  557.197118][ T2494] microsoft 0003:045E:07DA.0014: unknown main item tag 0x0
[  557.211139][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0014/input/input26
[  557.300912][ T2494] microsoft 0003:045E:07DA.0014: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  557.602298][ T8150] usb 1-1: USB disconnect, device number 31
21:56:41 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:41 executing program 3:

21:56:41 executing program 5:

21:56:41 executing program 1:

21:56:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:41 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c00000000000000010000000200", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:41 executing program 3:

21:56:41 executing program 1:

21:56:41 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:41 executing program 5:

21:56:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:41 executing program 3:

[  558.475573][ T2494] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  558.715564][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  558.836611][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  558.847515][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  558.860631][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  558.869987][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  558.879343][ T2494] usb 1-1: config 0 descriptor??
[  559.357176][ T2494] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  559.374607][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0015/input/input27
[  559.469961][ T2494] microsoft 0003:045E:07DA.0015: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  559.759411][ T2494] usb 1-1: USB disconnect, device number 32
21:56:43 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:43 executing program 5:

21:56:43 executing program 1:
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x46802)
pipe(0x0)
ioctl$PPPIOCSMRU1(0xffffffffffffffff, 0x40047452, 0x0)
r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040))
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xfd14)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r2=>0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_submit(r2, 0x82, &(0x7f0000000540)=[&(0x7f00000000c0)={0xc, 0x1f00, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}])
r3 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r3, 0x0)
r4 = open(&(0x7f00000009c0)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x0)
connect$inet6(r4, 0x0, 0x0)

21:56:43 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:43 executing program 3:
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x4, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000400)={0x77359400})

21:56:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:43 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:43 executing program 5:
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f00000012c0)=""/4096, 0x1000}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
preadv(r0, &(0x7f00000017c0), 0xf2, 0x0)

21:56:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:43 executing program 3:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_script(r1, &(0x7f00000002c0)=ANY=[@ANYRES64, @ANYRES32], 0xfffffcaa)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000000580), 0x10000005c)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x8d}, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
write$P9_RLCREATE(r3, 0x0, 0xffffffffffffff43)
pipe(&(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$setpipe(r6, 0x407, 0x0)
write(r6, &(0x7f0000000340), 0x4139569a)
vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, 0x0, 0x0)
bind$alg(r2, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r7 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
splice(r0, 0x0, r7, 0x0, 0x80000011, 0x0)

21:56:43 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x0, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:43 executing program 1:
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f00000012c0)=""/4096, 0x1000}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000000)={0xf}, 0xf)
preadv(r0, &(0x7f00000017c0), 0xf2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup(r1)

[  560.625330][ T8150] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  560.895568][ T8150] usb 1-1: Using ep0 maxpacket: 16
[  561.037341][ T8150] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  561.048408][ T8150] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  561.061614][ T8150] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  561.070776][ T8150] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.080270][ T8150] usb 1-1: config 0 descriptor??
[  561.577159][ T8150] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  561.590357][ T8150] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0016/input/input28
[  561.669323][ T8150] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  561.980241][ T2494] usb 1-1: USB disconnect, device number 33
21:56:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:45 executing program 5:
mknod$loop(&(0x7f0000000100)='./file0\x00', 0x6000, 0x1)
clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='udf\x00', 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000005040), 0x15f, 0x0)
bind(0xffffffffffffffff, 0x0, 0x0)

21:56:45 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}}, 0x108)
dup3(r0, r1, 0x0)

21:56:45 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x0, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:45 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:45 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f00000006c0)={'syz0\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

[  562.552123][T28954] input: syz0 as /devices/virtual/input/input29
[  562.599419][ T2421] blk_update_request: I/O error, dev loop11, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.611466][ T2421] blk_update_request: I/O error, dev loop11, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.623629][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
21:56:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  562.673554][ T2421] blk_update_request: I/O error, dev loop11, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.684959][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  562.703522][T28965] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  562.714547][T28965] UDF-fs: Scanning with blocksize 512 failed
21:56:45 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x0, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[  562.721378][ T2421] blk_update_request: I/O error, dev loop11, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.734499][ T2422] blk_update_request: I/O error, dev loop11, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.736000][T28985] input: syz0 as /devices/virtual/input/input30
[  562.749617][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
21:56:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r0, r1, 0x0)

21:56:45 executing program 3:
r0 = socket$inet(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

[  562.819099][ T2421] blk_update_request: I/O error, dev loop11, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.833902][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  562.858376][T28965] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  562.867049][T28965] UDF-fs: Scanning with blocksize 1024 failed
[  562.873611][ T2421] blk_update_request: I/O error, dev loop11, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.886866][ T2422] blk_update_request: I/O error, dev loop11, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.899224][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
[  562.925260][    T5] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  562.936748][ T2422] blk_update_request: I/O error, dev loop11, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  562.948402][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  562.969330][T28965] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  562.981806][T28965] UDF-fs: Scanning with blocksize 2048 failed
[  562.991929][ T2422] blk_update_request: I/O error, dev loop11, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  563.011808][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
21:56:46 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x0, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:46 executing program 1:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='iso9660\x00', 0x0, 0x0)

[  563.023030][T28965] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  563.032985][T28965] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  563.040958][T28965] UDF-fs: Scanning with blocksize 4096 failed
[  563.047262][T28965] UDF-fs: warning (device loop11): udf_fill_super: No partition found (1)
[  563.057757][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
[  563.105937][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  563.126188][T28958] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  563.134246][T28958] UDF-fs: Scanning with blocksize 512 failed
[  563.143811][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
[  563.155098][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  563.175336][    T5] usb 1-1: Using ep0 maxpacket: 16
[  563.185054][T28958] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  563.196170][T28958] UDF-fs: Scanning with blocksize 1024 failed
[  563.203463][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
[  563.214612][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  563.225185][T28958] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  563.232887][T28958] UDF-fs: Scanning with blocksize 2048 failed
[  563.239904][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=256, location=256
21:56:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000380)='./file0\x00', 0xa0, 0x0, 0x0, 0x0, &(0x7f0000000100)={[{@lockproto_nolock='lockproto=lock_nolock'}, {@locktable={'locktable', 0x3d, '/h\x00'}}]})

21:56:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:46 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='hybla\x00', 0x6)
sendto$inet(r0, 0x0, 0x2d, 0x210007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
write(r0, &(0x7f00000001c0)="ee", 0x1)

[  563.249761][T28958] UDF-fs: error (device loop11): udf_read_tagged: read failed, block=512, location=512
[  563.259894][T28958] UDF-fs: warning (device loop11): udf_load_vrs: No anchor found
[  563.267680][T28958] UDF-fs: Scanning with blocksize 4096 failed
[  563.273730][T28958] UDF-fs: warning (device loop11): udf_fill_super: No partition found (1)
[  563.297667][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  563.312153][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  563.360001][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  563.391295][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  563.419052][    T5] usb 1-1: config 0 descriptor??
[  563.886532][    T5] microsoft 0003:045E:07DA.0017: unknown main item tag 0x0
[  563.904613][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0017/input/input31
[  563.989310][    T5] microsoft 0003:045E:07DA.0017: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  564.302785][T27672] usb 1-1: USB disconnect, device number 34
21:56:47 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:47 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x0, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:47 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00')
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, 0x0, 0x0)

21:56:47 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000005c0), 0xfffffffffffffee0, 0x0, 0x0, 0xb6)

21:56:47 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:56:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:47 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x0, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:47 executing program 3:
socket$inet_tcp(0x2, 0x1, 0x0)
pipe(&(0x7f0000000080))
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/timer\x00', 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1fd}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)

21:56:47 executing program 1:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000740)=ANY=[], 0x65)

21:56:47 executing program 5:
prctl$PR_GET_NAME(0x10, &(0x7f0000000440)=""/62)

21:56:47 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:48 executing program 5:
r0 = socket(0x25, 0x1, 0x0)
sendmmsg(r0, &(0x7f0000000d00), 0x400004e, 0x0)

[  565.175229][   T23] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  565.415123][   T23] usb 1-1: Using ep0 maxpacket: 16
[  565.545538][   T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  565.556503][   T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  565.569771][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  565.579048][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  565.588596][   T23] usb 1-1: config 0 descriptor??
[  566.056721][   T23] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  566.074173][   T23] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0018/input/input32
[  566.164331][   T23] microsoft 0003:045E:07DA.0018: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  566.473088][   T23] usb 1-1: USB disconnect, device number 35
21:56:49 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

21:56:49 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:49 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:49 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffff9c, 0x0, 0x1ff)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x20001, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9, 0x1, 'veth\x00'}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_OPERSTATE={0x5, 0x3}]}, 0x3c}}, 0x0)
preadv(r0, 0x0, 0xffffffffffffffcf, 0x200000)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000100)=""/249, 0x37, 0xf9, 0x1}, 0x20)
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
open(0x0, 0x149042, 0x0)
syz_open_procfs(0x0, 0x0)

21:56:49 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x9, &(0x7f0000000140)=ANY=[@ANYRES64=r1], &(0x7f0000000080)=0x3f8)

21:56:50 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

21:56:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9)
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio1\x00', 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040))

21:56:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

21:56:50 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, 0x0, 0x0, 0x0)

[  567.317616][    T5] usb 1-1: new high-speed USB device number 36 using dummy_hcd
21:56:50 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, 0x0, 0x0, 0x0)

21:56:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  567.585308][    T5] usb 1-1: Using ep0 maxpacket: 16
[  567.755721][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  567.785830][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  567.800488][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  567.811374][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.826097][    T5] usb 1-1: config 0 descriptor??
[  568.316603][    T5] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[  568.333494][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0019/input/input33
[  568.421642][    T5] microsoft 0003:045E:07DA.0019: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  568.726076][    T5] usb 1-1: USB disconnect, device number 36
21:56:52 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:52 executing program 5:
syz_open_dev$evdev(0x0, 0x0, 0x0)

21:56:52 executing program 3:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$kcm(0x10, 0x2, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x30, r4, 0x8b8e0eb13081c495, 0x0, 0x0, {{0x1, 0x0, 0x5901}, {0x0, 0x4107}, {0xa, 0x18, {0x0, @bearer=@udp='udp:syz2\x00'}}}}, 0x30}}, 0x0)

21:56:52 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:52 executing program 2:
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32], 0x50}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, 0x0, 0x0, 0x0)

21:56:52 executing program 2:
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x2}}, 0xe8)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c)
sendmmsg(r0, &(0x7f0000000240), 0x5c3, 0x0)

21:56:52 executing program 3:
syz_mount_image$minix(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000300)='./file0\x00', 0x141042, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000980)=ANY=[], 0x4c4)
sendfile(r0, r0, &(0x7f0000000480), 0xa198)

21:56:52 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r2, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000005500)=@delchain={0x24, 0x2e, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x1, 0xffff}}}, 0x24}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

21:56:52 executing program 2:

21:56:52 executing program 2:

21:56:52 executing program 3:

[  569.635962][    T5] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  569.910816][    T5] usb 1-1: Using ep0 maxpacket: 16
[  570.035181][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  570.058900][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  570.088289][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  570.114938][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.133460][    T5] usb 1-1: config 0 descriptor??
[  570.617308][    T5] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  570.633829][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.001A/input/input34
[  570.717540][    T5] microsoft 0003:045E:07DA.001A: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  571.019985][    T5] usb 1-1: USB disconnect, device number 37
21:56:54 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:54 executing program 5:

21:56:54 executing program 2:

21:56:54 executing program 3:

21:56:54 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:54 executing program 5:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r1=>0x0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, 0x0}])
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
fdatasync(0xffffffffffffffff)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)

21:56:54 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x2005000, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$bpf(0x20000000, &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x141404, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
dup(r0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180), 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x7c, 0x0, 0x100, 0x0, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={[], [], @empty}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1={0xfc, 0x1, [], 0x1}}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, '\xf4^e&++\x00'}]}, 0x7c}}, 0x0)
syz_genetlink_get_family_id$nbd(0x0)
mount$bpf(0x20000000, &(0x7f0000000200)='./file0/file0/file0\x00', 0x0, 0x5890, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
umount2(&(0x7f0000000340)='./file0/file0/file0\x00', 0x0)

21:56:54 executing program 3:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1a022, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
set_tid_address(0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000029000/0x18000)=nil, 0x0, 0x0, 0x52, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000080)={0x400, 0x20001000, 0x4000, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, 0x10)
clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1d}, 0x40)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0xfffffffffffffea1)
ioctl$VIDIOC_DBG_G_CHIP_INFO(0xffffffffffffffff, 0xc0c85666, &(0x7f0000000180)={{0x4, @addr=0x4}, "f555528696fa7a47a3b720e75826327768716a4d235196f3f6530ab80bb07d6b", 0x4})
clone3(&(0x7f0000001680)={0x8800, 0x0, 0x0, 0x0, {0x29}, 0x0, 0xffffffffffffff78, 0x0, 0x0}, 0x58)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  571.743941][   T29] audit: type=1804 audit(1593035814.719:7253): pid=29271 uid=0 auid=0 ses=4 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir242895963/syzkaller.4yf2vy/884/bus" dev="sda1" ino=16375 res=1
21:56:54 executing program 5:
r0 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10)
sendmmsg(r0, &(0x7f0000003800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000001c0)=@tipc=@id={0x1e, 0x3, 0x0, {0x0, 0x1}}, 0xfe0e, 0x0}}], 0x2, 0x0)

[  571.855815][   T29] audit: type=1804 audit(1593035814.779:7254): pid=29275 uid=0 auid=0 ses=4 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir242895963/syzkaller.4yf2vy/884/bus" dev="sda1" ino=16375 res=1
[  571.884929][T27672] usb 1-1: new high-speed USB device number 38 using dummy_hcd
21:56:55 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  572.124829][T29287] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  572.137825][T27672] usb 1-1: Using ep0 maxpacket: 16
[  572.162782][T29288] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:55 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  572.265319][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  572.356033][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  572.443682][T29292] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  572.458955][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  572.502313][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  572.547177][T27672] usb 1-1: config 0 descriptor??
[  572.600541][T29274] debugfs: Directory '29274-5' with parent 'kvm' already present!
[  572.739126][    T0] NOHZ: local_softirq_pending 08
[  573.046444][T27672] microsoft 0003:045E:07DA.001B: unknown main item tag 0x0
[  573.062955][T27672] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.001B/input/input35
[  573.149383][T27672] microsoft 0003:045E:07DA.001B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  573.455439][ T2474] usb 1-1: USB disconnect, device number 38
21:56:56 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:56:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:56 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x2005000, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$bpf(0x20000000, &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x141404, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
dup(r0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180), 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x7c, 0x0, 0x100, 0x0, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={[], [], @empty}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1={0xfc, 0x1, [], 0x1}}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, '\xf4^e&++\x00'}]}, 0x7c}}, 0x0)
syz_genetlink_get_family_id$nbd(0x0)
mount$bpf(0x20000000, &(0x7f0000000200)='./file0/file0/file0\x00', 0x0, 0x5890, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
umount2(&(0x7f0000000340)='./file0/file0/file0\x00', 0x0)

21:56:56 executing program 3:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x2005000, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$bpf(0x20000000, &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x141404, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
r1 = dup(r0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x40801)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000340)='NLBL_MGMT\x00')
sendmsg$NLBL_MGMT_C_LISTDEF(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040050}, 0x4081)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x70, r3, 0x100, 0x0, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={[], [], @empty}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1={0xfc, 0x1, [], 0x1}}]}, 0x70}}, 0x40)
syz_genetlink_get_family_id$nbd(0x0)
mount$bpf(0x20000000, 0x0, 0x0, 0x5890, 0x0)
getpid()
umount2(&(0x7f0000000340)='./file0/file0/file0\x00', 0x0)

21:56:56 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  574.030427][T29333] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:57 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:56:57 executing program 3:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='cpuset\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='notify_on_release\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x7fff)

[  574.273851][T29352] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:57 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  574.403377][ T8150] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  574.435349][T29355] new mount options do not match the existing superblock, will be ignored
21:56:57 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  574.493517][T29355] new mount options do not match the existing superblock, will be ignored
21:56:57 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="200000006219"], 0x20}}, 0x0)
r0 = fsopen(&(0x7f0000000140)='gfs2\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x3, &(0x7f0000000000)='ro\x00', &(0x7f0000000040), 0x0)

21:56:57 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  574.664792][ T8150] usb 1-1: Using ep0 maxpacket: 16
[  574.786010][ T8150] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  574.803538][ T8150] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  574.825685][ T8150] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  574.840099][ T8150] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  574.852363][ T8150] usb 1-1: config 0 descriptor??
[  575.336273][ T8150] microsoft 0003:045E:07DA.001C: unknown main item tag 0x0
[  575.349516][ T8150] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.001C/input/input36
[  575.431662][ T8150] microsoft 0003:045E:07DA.001C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  575.757009][   T23] usb 1-1: USB disconnect, device number 39
21:56:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:59 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:56:59 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
syz_open_procfs(r1, &(0x7f0000000000)='net/ip6_tables_names\x00')

21:56:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:59 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x17, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

21:56:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
pipe(&(0x7f0000000080))
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

[  576.314859][T29400] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:59 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:56:59 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000000), 0x4)

21:56:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
pipe(&(0x7f0000000080))
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

21:56:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  576.451005][T29413] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:59 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x21, 0x0, 0x0)

21:56:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:56:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
pipe(&(0x7f0000000080))
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

21:56:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:56:59 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
eventfd2(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
socket$bt_cmtp(0x1f, 0x3, 0x5)
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:56:59 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:56:59 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
syz_open_procfs(r1, &(0x7f0000000000)='net/ip6_tables_names\x00')

[  576.894220][T29428] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:56:59 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:00 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
eventfd2(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
socket$bt_cmtp(0x1f, 0x3, 0x5)
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:00 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:00 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:00 executing program 5:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
eventfd2(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
socket$bt_cmtp(0x1f, 0x3, 0x5)
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:00 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
syz_open_procfs(r1, &(0x7f0000000000)='net/ip6_tables_names\x00')

21:57:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:00 executing program 5:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x100000002, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)

21:57:00 executing program 5:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:01 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:01 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:01 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000380))
get_robust_list(0x0, &(0x7f00000002c0)=&(0x7f0000000240)={&(0x7f0000000200)={&(0x7f00000001c0)}}, &(0x7f0000000300)=0xc)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000001b80)='asymmetric\x00', 0x0)

21:57:01 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
syz_open_procfs(r1, &(0x7f0000000000)='net/ip6_tables_names\x00')

21:57:01 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:01 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:01 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:01 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x83, &(0x7f00000000c0)={'broute\x00'}, &(0x7f0000000140)=0x50)

21:57:01 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:01 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r1, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

21:57:01 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0x1})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = dup(r1)
dup2(r2, r0)

[  578.384595][T27672] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  578.664498][T27672] usb 1-1: device descriptor read/64, error 18
[  579.054453][T27672] usb 1-1: device descriptor read/64, error 18
[  579.324426][T27672] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  579.605971][T27672] usb 1-1: device descriptor read/64, error 18
[  579.994366][T27672] usb 1-1: device descriptor read/64, error 18
[  580.115063][T27672] usb usb1-port1: attempt power cycle
[  580.834323][T27672] usb 1-1: new high-speed USB device number 42 using dummy_hcd
21:57:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:04 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:04 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xd3, &(0x7f0000000000)={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, {0xa, 0x0, 0x0, @mcast1}}, 0x5c)

21:57:04 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:04 executing program 2:

[  581.025739][T27672] usb 1-1: device descriptor read/8, error -61
21:57:04 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:04 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:04 executing program 2:

21:57:04 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/kcm\x00')
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:04 executing program 2:
unshare(0x40000000)
r0 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000340)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce003d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x2b2, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0)='\x00', 0x1, r1)
r3 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r0, r3}, &(0x7f0000000440)=""/243, 0x23d, &(0x7f0000000240)={&(0x7f0000000080)={'tgr128-generic\x00'}})
keyctl$revoke(0x3, r3)
r4 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0)='\x00', 0x1, r4)
keyctl$reject(0x13, r3, 0xfe3, 0x80000001, r4)
socket(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x3a)
r5 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_MRT6_ADD_MIF(r5, 0x29, 0xcb, &(0x7f0000000000), 0x3)

[  581.234490][T27672] usb 1-1: device descriptor read/8, error -71
21:57:04 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  581.387315][T29542] IPVS: ftp: loaded support on port[0] = 21
[  581.505921][T29542] IPVS: ftp: loaded support on port[0] = 21
[  581.764327][T27672] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[  581.814279][T10176] tipc: TX() has been purged, node left!
[  581.953041][T27672] usb 1-1: device descriptor read/8, error -61
[  582.234411][T27672] usb 1-1: device descriptor read/8, error -61
[  582.354384][T27672] usb usb1-port1: unable to enumerate USB device
[  584.014338][T10176] tipc: TX() has been purged, node left!
21:57:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040), 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:07 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:07 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000001b80)='asymmetric\x00', &(0x7f00000000c0)=@builtin='builtin_trusted\x00')
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0)
select(0x40, &(0x7f0000000140), &(0x7f00000001c0), 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r0, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

21:57:07 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:07 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:07 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040), 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:07 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040), 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:07 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:07 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  584.562199][T29624] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  584.664387][T27672] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  584.934122][T27672] usb 1-1: device descriptor read/64, error 18
[  585.334106][T27672] usb 1-1: device descriptor read/64, error 18
[  585.604053][T27672] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[  585.884056][T27672] usb 1-1: device descriptor read/64, error 18
[  586.314031][T27672] usb 1-1: device descriptor read/64, error 18
[  586.434240][T27672] usb usb1-port1: attempt power cycle
21:57:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:10 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:10 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:10 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:10 executing program 3:

[  587.174013][T27672] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  587.232729][T29639] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:10 executing program 3:

21:57:10 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:10 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f00000021c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00')
preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0)

21:57:10 executing program 3:

21:57:10 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  587.403110][T29650] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:10 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  587.576641][T29657] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  587.684121][T27672] usb 1-1: device not accepting address 46, error -71
[  588.084058][T27672] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  588.264050][T27672] usb 1-1: device descriptor read/8, error -61
[  588.544235][T27672] usb 1-1: device descriptor read/8, error -61
[  588.678676][T27672] usb usb1-port1: unable to enumerate USB device
21:57:13 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:13 executing program 3:

21:57:13 executing program 2:

21:57:13 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:13 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  590.299094][T29668] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:13 executing program 2:

21:57:13 executing program 3:
perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000a00)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x6018, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
getdents64(r0, &(0x7f0000000140)=""/145, 0x91)
getdents64(r0, &(0x7f0000000080)=""/167, 0xa7)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/protocols\x00')
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0)
sendfile(r2, r1, 0x0, 0x20000000000000d8)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
getdents64(r3, &(0x7f0000000080)=""/167, 0xa7)
ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000080)={0x0, {0x2, 0x4e21, @multicast1}, {0x2, 0x4e23, @private=0xa010106}, {0x2, 0x4e20, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x9})
getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0)
sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004080}, 0x8010)

21:57:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:13 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:13 executing program 2:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0x37)
syz_open_procfs(0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x1, 0x2, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
tkill(r1, 0x4)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
wait4(0x0, 0x0, 0x0, 0x0)

[  590.502423][T29685] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:13 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  590.631485][T29696] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  590.646053][   T23] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  590.913751][   T23] usb 1-1: device descriptor read/64, error 18
[  591.303737][   T23] usb 1-1: device descriptor read/64, error 18
[  591.573691][   T23] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  591.843660][   T23] usb 1-1: device descriptor read/64, error 18
[  592.233665][   T23] usb 1-1: device descriptor read/64, error 18
[  592.354277][   T23] usb usb1-port1: attempt power cycle
[  593.063640][   T23] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  593.233707][   T23] usb 1-1: device descriptor read/8, error -61
21:57:16 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:16 executing program 2:
mknod(&(0x7f0000000100)='./file0\x00', 0x1000, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000400), &(0x7f0000000440)=0x14)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x400, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x87)

21:57:16 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:16 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x5c, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x20, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
lseek(0xffffffffffffffff, 0x0, 0x3)
ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x80404532, &(0x7f0000000440)=""/142)
socketpair(0x11, 0x4, 0x1, &(0x7f0000000100))
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000380)={0x20, 0x0, 0xc8ef0a4335e6829f, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x20}}, 0x0)

21:57:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  593.358242][T29708] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  593.368059][    C1] scsi_io_completion_action: 2 callbacks suppressed
[  593.368098][    C1] sd 0:0:1:0: [sg0] tag#5181 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  593.386355][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB: Test Unit Ready
[  593.392785][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.402533][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.412151][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.421753][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.431345][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.440935][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:57:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  593.450531][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.460120][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.462122][T29718] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  593.469706][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.469730][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.469753][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.469775][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.469793][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[c0]: 00 00 00 00 00 00 00 00
21:57:16 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000), 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  593.618175][T29724] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  593.633889][   T23] usb 1-1: device descriptor read/8, error -71
21:57:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000), 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  593.742513][T29734] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  593.760525][    C1] sd 0:0:1:0: [sg0] tag#5182 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  593.771033][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB: Test Unit Ready
[  593.777512][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.787116][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.796710][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.806311][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.815914][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.825511][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.835125][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.844724][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.854320][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.863940][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.873541][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.883082][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  593.892789][    C1] sd 0:0:1:0: [sg0] tag#5182 CDB[c0]: 00 00 00 00 00 00 00 00
[  594.213568][   T23] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  594.383581][   T23] usb 1-1: device descriptor read/8, error -61
[  594.653472][   T23] usb 1-1: device descriptor read/8, error -61
[  594.773577][   T23] usb usb1-port1: unable to enumerate USB device
21:57:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:19 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:19 executing program 3:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00')
mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="0100000001385d460076f6af", @ANYBLOB="ef12836643a16236636e8ccc70796b059e83ce89395998e5f31aaf75898992cf4ec05908d5a5cd0941367c5fdadca678f641d90955c5cb5ff0cf99d9b6", @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000500", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="1000"], 0x64, 0x2)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000801, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
perf_event_open(&(0x7f0000000340)={0x2, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'veth1_to_bridge\x00', &(0x7f0000000040)=@ethtool_sset_info={0x37, 0x8, 0xa96, [0x1ff, 0x0, 0x3f, 0x0]}})
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f196be0", 0x24)
pivot_root(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

21:57:19 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000), 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:19 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  596.423956][T29755] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  596.447859][T29758] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:19 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:19 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:19 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:19 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:19 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  596.743206][ T2506] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  596.993437][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  597.113934][ T2506] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  597.136713][ T2506] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  597.174253][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  597.203475][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  597.221988][ T2506] usb 1-1: config 0 descriptor??
21:57:22 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:22 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:22 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:22 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:22 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  599.432213][   T23] usb 1-1: USB disconnect, device number 52
21:57:22 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:22 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:22 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

21:57:22 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

21:57:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  599.952791][   T23] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  600.214062][   T23] usb 1-1: Using ep0 maxpacket: 16
[  600.332944][   T23] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  600.343166][   T23] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  600.352197][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  600.362202][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.371274][   T23] usb 1-1: config 0 descriptor??
21:57:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:25 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

21:57:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:25 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  602.508177][ T2494] usb 1-1: USB disconnect, device number 53
21:57:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:25 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  603.012498][ T2494] usb 1-1: new high-speed USB device number 54 using dummy_hcd
21:57:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  603.262658][ T2494] usb 1-1: Using ep0 maxpacket: 16
21:57:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  603.382717][ T2494] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  603.406919][ T2494] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  603.446306][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  603.460025][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  603.491482][ T2494] usb 1-1: config 0 descriptor??
21:57:28 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:28 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  605.563601][    T5] usb 1-1: USB disconnect, device number 54
21:57:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

21:57:28 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x2}]}}}}}}}}, 0x0)

[  606.032179][    T5] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[  606.273555][    T5] usb 1-1: Using ep0 maxpacket: 16
[  606.392479][    T5] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  606.402774][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  606.416023][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  606.425396][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.438684][    T5] usb 1-1: config 0 descriptor??
[  606.485299][    T5] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:31 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:31 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:31 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x8, 0x4)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "028200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)

21:57:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:31 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  608.624401][    T5] usb 1-1: USB disconnect, device number 55
21:57:31 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  608.716850][T29951] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
21:57:31 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:31 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:32 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  609.111970][    T5] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[  609.362107][    T5] usb 1-1: Using ep0 maxpacket: 16
[  609.491973][    T5] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  609.515313][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  609.555903][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  609.574698][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.591658][    T5] usb 1-1: config 0 descriptor??
[  609.642963][    T5] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:34 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:34 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:34 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:34 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  611.685700][ T2474] usb 1-1: USB disconnect, device number 56
21:57:34 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:34 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:35 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  612.201868][ T2474] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[  612.481649][ T2474] usb 1-1: Using ep0 maxpacket: 16
[  612.621756][ T2474] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  612.632395][ T2474] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  612.647058][ T2474] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  612.657135][ T2474] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  612.667354][ T2474] usb 1-1: config 0 descriptor??
[  612.727196][ T2474] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  613.693029][    T0] NOHZ: local_softirq_pending 08
21:57:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:37 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:37 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:37 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  614.751822][T29588] usb 1-1: USB disconnect, device number 57
21:57:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:37 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:38 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:38 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:38 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  615.231488][T29588] usb 1-1: new high-speed USB device number 58 using dummy_hcd
[  615.501416][T29588] usb 1-1: Using ep0 maxpacket: 16
[  615.641695][T29588] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  615.651818][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  615.665060][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  615.674236][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  615.683517][T29588] usb 1-1: config 0 descriptor??
[  615.732514][T29588] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:40 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:40 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:40 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:40 executing program 2:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:40 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  617.813379][T27672] usb 1-1: USB disconnect, device number 58
21:57:40 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:40 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:40 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:41 executing program 2:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  618.271361][T27672] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[  618.511183][T27672] usb 1-1: Using ep0 maxpacket: 16
[  618.631275][T27672] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  618.641809][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  618.655851][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  618.665434][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  618.675268][T27672] usb 1-1: config 0 descriptor??
[  618.714190][T27672] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
socket$packet(0x11, 0x0, 0x300)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:43 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:43 executing program 2:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  620.862470][ T2474] usb 1-1: USB disconnect, device number 59
21:57:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:44 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:44 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:44 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:44 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  621.341260][ T2474] usb 1-1: new high-speed USB device number 60 using dummy_hcd
[  621.620976][ T2474] usb 1-1: Using ep0 maxpacket: 16
[  621.751046][ T2474] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  621.761287][ T2474] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  621.774578][ T2474] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  621.783718][ T2474] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.796855][ T2474] usb 1-1: config 0 descriptor??
[  621.851938][ T2474] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:57:46 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:46 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  623.909048][T27672] usb 1-1: USB disconnect, device number 60
21:57:47 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:57:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:47 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

[  624.460945][T27672] usb 1-1: new high-speed USB device number 61 using dummy_hcd
[  624.700799][T27672] usb 1-1: Using ep0 maxpacket: 16
[  624.820892][T27672] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  624.831412][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  624.845949][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  624.855906][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.866112][T27672] usb 1-1: config 0 descriptor??
[  624.913861][T27672] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:50 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:50 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:50 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  627.007702][ T2494] usb 1-1: USB disconnect, device number 61
21:57:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:50 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  627.340627][T29588] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  627.510637][ T2494] usb 1-1: new high-speed USB device number 62 using dummy_hcd
[  627.580647][T29588] usb 2-1: Using ep0 maxpacket: 16
[  627.710913][T29588] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  627.721242][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  627.736192][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  627.745951][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  627.750649][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  627.764529][T29588] usb 2-1: config 0 descriptor??
[  627.804510][T29588] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  627.870723][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  627.881645][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  627.895852][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  627.905744][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  627.915316][ T2494] usb 1-1: config 0 descriptor??
[  627.953695][ T2494] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
21:57:53 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:53 executing program 3:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:53 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  630.049710][T27672] usb 2-1: USB disconnect, device number 4
[  630.073413][ T2506] usb 1-1: USB disconnect, device number 62
21:57:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:53 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:53 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  630.620552][ T2506] usb 1-1: new high-speed USB device number 63 using dummy_hcd
[  630.628405][T27672] usb 2-1: new high-speed USB device number 5 using dummy_hcd
21:57:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:53 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:53 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  630.880539][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  630.885955][T27672] usb 2-1: Using ep0 maxpacket: 16
[  631.020639][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  631.031257][T27672] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  631.042280][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  631.057052][T27672] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  631.070775][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  631.079912][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  631.089056][T27672] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  631.098828][T27672] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  631.110684][ T2506] usb 1-1: config 0 descriptor??
[  631.116203][T27672] usb 2-1: config 0 descriptor??
[  631.151406][ T2506] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  631.602169][T27672] microsoft 0003:045E:07DA.001D: unknown main item tag 0x0
[  631.619635][T27672] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.001D/input/input37
[  631.702386][T27672] microsoft 0003:045E:07DA.001D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  632.032928][T29588] usb 2-1: USB disconnect, device number 5
21:57:55 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  632.840375][T29588] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  633.080289][T29588] usb 2-1: Using ep0 maxpacket: 16
21:57:56 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:56 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  633.138257][ T2506] usb 1-1: USB disconnect, device number 63
21:57:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  633.200666][T29588] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  633.231571][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:57:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  633.289067][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:57:56 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  633.341638][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
21:57:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:56 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  633.385292][T29588] usb 2-1: config 0 descriptor??
21:57:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  633.650324][ T2506] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[  633.891769][T29588] microsoft 0003:045E:07DA.001E: unknown main item tag 0x0
[  633.910318][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  633.911120][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.001E/input/input38
[  633.993066][T29588] microsoft 0003:045E:07DA.001E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  634.033708][ T2506] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  634.047861][ T2506] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  634.058843][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  634.072573][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  634.082262][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  634.115719][ T2506] usb 1-1: config 0 descriptor??
[  634.175129][    T0] NOHZ: local_softirq_pending 08
[  634.309936][ T2474] usb 2-1: USB disconnect, device number 6
[  634.632024][ T2506] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  634.645445][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.001F/input/input39
[  634.735761][ T2506] microsoft 0003:045E:07DA.001F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
21:57:57 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  634.833291][T29588] usb 1-1: USB disconnect, device number 64
[  635.130198][ T2474] usb 2-1: new high-speed USB device number 7 using dummy_hcd
21:57:58 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:57:58 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:57:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  635.380114][ T2474] usb 2-1: Using ep0 maxpacket: 16
21:57:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  635.500416][ T2474] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  635.536832][ T2474] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:57:58 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:57:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  635.587268][ T2474] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  635.598481][ T2474] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  635.646578][ T2474] usb 2-1: config 0 descriptor??
21:57:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  635.692898][T27672] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[  635.960102][T27672] usb 1-1: Using ep0 maxpacket: 16
[  636.080340][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  636.091316][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  636.102884][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  636.116808][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  636.121726][ T2474] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0
[  636.129972][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  636.154451][ T2474] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0020/input/input40
[  636.154603][T27672] usb 1-1: config 0 descriptor??
[  636.232304][ T2474] microsoft 0003:045E:07DA.0020: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  636.539128][ T2506] usb 2-1: USB disconnect, device number 7
[  636.675900][T27672] microsoft 0003:045E:07DA.0021: unknown main item tag 0x0
[  636.689243][T27672] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0021/input/input41
[  636.784754][T27672] microsoft 0003:045E:07DA.0021: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  636.873365][ T2506] usb 1-1: USB disconnect, device number 65
21:58:00 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

21:58:00 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(0xffffffffffffffff, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:00 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  637.340031][    T5] usb 2-1: new high-speed USB device number 8 using dummy_hcd
21:58:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(0xffffffffffffffff, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  637.610573][    T5] usb 2-1: Using ep0 maxpacket: 16
21:58:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  637.740190][    T5] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  637.751128][T29588] usb 1-1: new high-speed USB device number 66 using dummy_hcd
21:58:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  637.778134][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  637.831193][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  637.865672][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  637.881941][    T5] usb 2-1: config 0 descriptor??
[  638.000044][T29588] usb 1-1: Using ep0 maxpacket: 16
[  638.130258][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  638.141533][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  638.152612][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  638.166197][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  638.175941][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.189198][T29588] usb 1-1: config 0 descriptor??
[  638.351777][    T5] microsoft 0003:045E:07DA.0022: unknown main item tag 0x0
[  638.368482][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0022/input/input42
[  638.460822][    T5] microsoft 0003:045E:07DA.0022: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  638.552276][    T5] usb 2-1: USB disconnect, device number 8
[  638.662140][T29588] microsoft 0003:045E:07DA.0023: unknown main item tag 0x0
[  638.686731][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0023/input/input43
[  638.768131][T29588] microsoft 0003:045E:07DA.0023: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  638.871441][ T2494] usb 1-1: USB disconnect, device number 66
21:58:02 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

21:58:02 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:02 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(0xffffffffffffffff, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:02 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  639.339996][ T2506] usb 2-1: new high-speed USB device number 9 using dummy_hcd
21:58:02 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  639.580112][ T2506] usb 2-1: Using ep0 maxpacket: 16
21:58:02 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  639.700256][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  639.723505][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:58:02 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

[  639.758606][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  639.787642][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.800140][    T5] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[  639.859019][ T2506] usb 2-1: config 0 descriptor??
21:58:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  640.070584][    T5] usb 1-1: Using ep0 maxpacket: 16
[  640.149949][ T2494] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  640.200227][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  640.229994][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  640.312801][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  640.351809][ T2506] microsoft 0003:045E:07DA.0024: unknown main item tag 0x0
[  640.357843][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.389939][ T2494] usb 3-1: Using ep0 maxpacket: 16
[  640.396571][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0024/input/input44
[  640.419996][    T5] usb 1-1: config 0 descriptor??
[  640.510085][ T2494] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  640.536579][ T2506] microsoft 0003:045E:07DA.0024: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  640.559927][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  640.605425][ T2506] usb 2-1: USB disconnect, device number 9
[  640.617188][ T2494] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  640.631676][ T2494] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.646373][ T2494] usb 3-1: config 0 descriptor??
21:58:04 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

[  641.151608][ T2494] microsoft 0003:045E:07DA.0025: unknown main item tag 0x0
[  641.173216][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0025/input/input45
[  641.210056][    T5] usbhid 1-1:0.0: can't add hid device: -71
[  641.216232][    T5] usbhid: probe of 1-1:0.0 failed with error -71
[  641.224582][    T5] usb 1-1: USB disconnect, device number 67
[  641.256012][ T2494] microsoft 0003:045E:07DA.0025: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  641.349843][ T2506] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  641.570901][ T2494] usb 3-1: USB disconnect, device number 11
[  641.589855][ T2506] usb 2-1: Using ep0 maxpacket: 16
21:58:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:04 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:04 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:04 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  641.710145][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.772069][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:58:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:04 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  641.840016][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  641.853851][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  641.868219][ T2506] usb 2-1: config 0 descriptor??
21:58:04 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:05 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  642.050994][T27672] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[  642.309754][T27672] usb 1-1: Using ep0 maxpacket: 16
[  642.351175][ T2506] microsoft 0003:045E:07DA.0026: unknown main item tag 0x0
[  642.370236][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0026/input/input46
[  642.439926][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  642.451344][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  642.465101][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  642.474585][ T2506] microsoft 0003:045E:07DA.0026: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  642.496710][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  642.522699][T27672] usb 1-1: config 0 descriptor??
[  642.554850][ T2506] usb 2-1: USB disconnect, device number 10
21:58:06 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  643.269762][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  643.276304][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  643.285281][T27672] usb 1-1: USB disconnect, device number 68
[  643.359765][    T5] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  643.630190][    T5] usb 2-1: Using ep0 maxpacket: 16
21:58:06 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:06 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:06 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  643.769971][    T5] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  643.788175][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  643.811410][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:58:06 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:06 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  643.853106][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.889969][    T5] usb 2-1: config 0 descriptor??
21:58:06 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  644.039884][ T8150] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  644.059687][T27672] usb 1-1: new high-speed USB device number 69 using dummy_hcd
[  644.299674][T27672] usb 1-1: Using ep0 maxpacket: 16
[  644.299679][ T8150] usb 3-1: Using ep0 maxpacket: 16
[  644.421085][ T8150] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.430658][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.432829][ T8150] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  644.448702][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  644.459427][ T8150] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  644.474276][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  644.480164][ T8150] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.486963][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.497214][ T8150] usb 3-1: config 0 descriptor??
[  644.516938][T27672] usb 1-1: config 0 descriptor??
[  644.649779][    T5] usbhid 2-1:0.0: can't add hid device: -71
[  644.657130][    T5] usbhid: probe of 2-1:0.0 failed with error -71
[  644.673091][    T5] usb 2-1: USB disconnect, device number 11
[  644.981230][ T8150] microsoft 0003:045E:07DA.0027: unknown main item tag 0x0
[  644.998891][ T8150] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0027/input/input47
21:58:08 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  645.091686][ T8150] microsoft 0003:045E:07DA.0027: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  645.259607][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  645.265834][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  645.279275][T27672] usb 1-1: USB disconnect, device number 69
[  645.389665][ T2506] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  645.423858][    T5] usb 3-1: USB disconnect, device number 12
[  645.629588][ T2506] usb 2-1: Using ep0 maxpacket: 16
21:58:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:08 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  645.754270][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  645.765231][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  645.783667][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  645.793376][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  645.806970][ T2506] usb 2-1: config 0 descriptor??
21:58:08 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21:58:08 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:08 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:09 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  645.989965][T27672] usb 1-1: new high-speed USB device number 70 using dummy_hcd
21:58:09 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:09 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:09 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  646.239544][T27672] usb 1-1: Using ep0 maxpacket: 16
[  646.275489][    T5] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  646.364577][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.375600][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  646.393647][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  646.403415][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.419324][T27672] usb 1-1: config 0 descriptor??
[  646.559484][    T5] usb 3-1: Using ep0 maxpacket: 16
[  646.559556][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  646.575488][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  646.583987][ T2506] usb 2-1: USB disconnect, device number 12
[  646.679715][    T5] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  646.694684][    T5] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  646.708148][    T5] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  646.720678][    T5] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  646.732995][    T5] usb 3-1: config 0 descriptor??
21:58:10 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  647.159527][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  647.165561][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  647.181563][T27672] usb 1-1: USB disconnect, device number 70
[  647.212690][    T5] microsoft 0003:045E:07DA.0028: unknown main item tag 0x0
[  647.228104][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0028/input/input48
[  647.299609][ T2474] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  647.329903][    T5] microsoft 0003:045E:07DA.0028: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  647.539515][ T2474] usb 2-1: Using ep0 maxpacket: 16
21:58:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:10 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  647.638173][T29588] usb 3-1: USB disconnect, device number 13
[  647.679527][ T2474] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  647.691080][ T2474] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  647.704923][ T2474] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  647.718458][ T2474] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  647.741805][ T2474] usb 2-1: config 0 descriptor??
[  647.890130][    T5] usb 1-1: new high-speed USB device number 71 using dummy_hcd
21:58:11 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

21:58:11 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

21:58:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  648.149468][    T5] usb 1-1: Using ep0 maxpacket: 16
21:58:11 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  648.290128][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  648.311460][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:58:11 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

21:58:11 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

[  648.336758][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  648.372071][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  648.408202][    T5] usb 1-1: config 0 descriptor??
[  648.480050][ T2474] usbhid 2-1:0.0: can't add hid device: -71
[  648.489804][ T2474] usbhid: probe of 2-1:0.0 failed with error -71
[  648.530941][ T2474] usb 2-1: USB disconnect, device number 13
[  648.549523][T29588] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  648.819408][T29588] usb 3-1: Using ep0 maxpacket: 16
21:58:11 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  648.959616][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  648.970665][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  648.984931][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  648.995006][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  649.005294][T29588] usb 3-1: config 0 descriptor??
[  649.169484][    T5] usbhid 1-1:0.0: can't add hid device: -71
[  649.175713][    T5] usbhid: probe of 1-1:0.0 failed with error -71
[  649.185063][    T5] usb 1-1: USB disconnect, device number 71
[  649.189952][ T2506] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  649.439361][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  649.490804][T29588] microsoft 0003:045E:07DA.0029: unknown main item tag 0x0
[  649.505731][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0029/input/input49
[  649.559644][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  649.570842][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  649.594082][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:58:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:12 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

[  649.594356][T29588] microsoft 0003:045E:07DA.0029: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  649.627381][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  649.655214][ T2506] usb 2-1: config 0 descriptor??
[  649.693253][T29588] usb 3-1: USB disconnect, device number 14
[  649.939329][T27672] usb 1-1: new high-speed USB device number 72 using dummy_hcd
21:58:13 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

21:58:13 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

21:58:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005740)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x11d000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x70, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

21:58:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x0, 0x0)

[  650.179288][T27672] usb 1-1: Using ep0 maxpacket: 16
21:58:13 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:13 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:13 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  650.315410][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  650.362142][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  650.408987][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  650.419260][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  650.425776][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
21:58:13 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:13 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  650.450983][ T2506] usb 2-1: USB disconnect, device number 14
[  650.458684][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.484342][T27672] usb 1-1: config 0 descriptor??
[  650.629416][ T2693] usb 3-1: new high-speed USB device number 15 using dummy_hcd
21:58:13 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  650.899508][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  651.029389][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  651.040431][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  651.054793][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  651.064956][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.075200][ T2693] usb 3-1: config 0 descriptor??
[  651.129446][T29588] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  651.229356][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  651.235577][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  651.251295][T27672] usb 1-1: USB disconnect, device number 72
[  651.399345][T29588] usb 2-1: Using ep0 maxpacket: 16
[  651.561083][ T2693] microsoft 0003:045E:07DA.002A: unknown main item tag 0x0
[  651.569395][T29588] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  651.569413][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  651.598993][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.002A/input/input50
21:58:14 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  651.611009][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  651.621547][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.636717][T29588] usb 2-1: config 0 descriptor??
[  651.695269][ T2693] microsoft 0003:045E:07DA.002A: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  651.779419][ T2693] usb 3-1: USB disconnect, device number 15
[  651.999195][   T23] usb 1-1: new high-speed USB device number 73 using dummy_hcd
[  652.239191][   T23] usb 1-1: Using ep0 maxpacket: 16
21:58:15 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)

21:58:15 executing program 3:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000140))
socket$nl_audit(0x10, 0x3, 0x9)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f00000000c0)={[{0x2d, 'io'}]}, 0x4)
r2 = socket(0x10, 0x80002, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$IOC_PR_PREEMPT_ABORT(r3, 0x401870cc, &(0x7f0000000100)={0x1ff, 0x6, 0x4, 0x36})
sendmmsg$alg(r2, &(0x7f00000000c0), 0x492492492492627, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0x10, &(0x7f0000000780)={@in={{0x2, 0x0, @local}}, 0x0, 0x9}, 0xd8)

21:58:15 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:15 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:15 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  652.359915][   T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  652.378904][   T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  652.399583][T29588] usbhid 2-1:0.0: can't add hid device: -71
[  652.410370][T29588] usbhid: probe of 2-1:0.0 failed with error -71
21:58:15 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)

21:58:15 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[@ANYRES64], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  652.466709][T29588] usb 2-1: USB disconnect, device number 15
[  652.467524][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:58:15 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  652.516727][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  652.536762][   T23] usb 1-1: config 0 descriptor??
21:58:15 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  652.659480][ T2693] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  652.729970][    T0] NOHZ: local_softirq_pending 08
21:58:15 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  652.949147][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  653.079291][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  653.090841][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  653.099166][ T2506] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  653.104266][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  653.121894][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.140288][ T2693] usb 3-1: config 0 descriptor??
[  653.269272][   T23] usbhid 1-1:0.0: can't add hid device: -71
[  653.275508][   T23] usbhid: probe of 1-1:0.0 failed with error -71
[  653.287307][   T23] usb 1-1: USB disconnect, device number 73
[  653.359189][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  653.489484][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  653.501169][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  653.515461][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  653.525259][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.534727][ T2506] usb 2-1: config 0 descriptor??
[  653.611009][ T2693] microsoft 0003:045E:07DA.002B: unknown main item tag 0x0
[  653.629828][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.002B/input/input51
21:58:16 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:16 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  653.715528][ T2693] microsoft 0003:045E:07DA.002B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  653.822723][ T2693] usb 3-1: USB disconnect, device number 16
[  654.049126][T27672] usb 1-1: new high-speed USB device number 74 using dummy_hcd
21:58:17 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:17 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0xd, &(0x7f00000001c0)=@raw=[@ldst={0x3, 0x0, 0x6, 0x9, 0x8, 0x10, 0x4}, @jmp={0x5, 0x1, 0x8, 0xa, 0x1, 0xfffffffffffffffe, 0x10}, @map={0x18, 0xb, 0x1, 0x0, r0}, @alu={0x4, 0x1, 0x0, 0xa, 0x7, 0x2, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, @map_val={0x18, 0xb, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800000}, @map_val={0x18, 0x7, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1ff}, @call={0x85, 0x0, 0x0, 0x17}, @jmp={0x5, 0x1, 0x3, 0x8, 0x5, 0xc, 0x1}], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0xf], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0xd880, 0x0)
ioctl$RTC_WIE_ON(r2, 0x700f)
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$ASHMEM_PURGE_ALL_CACHES(r3, 0x770a, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r1, 0x0, 0x3, 0x0, &(0x7f0000000040))

21:58:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)

21:58:17 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  654.279162][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  654.285457][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  654.295281][T27672] usb 1-1: Using ep0 maxpacket: 16
[  654.302016][ T2506] usb 2-1: USB disconnect, device number 16
21:58:17 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:17 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  654.419466][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  654.435054][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  654.451290][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  654.462147][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.476040][T27672] usb 1-1: config 0 descriptor??
21:58:17 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:17 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100))
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x0, 0x0, 0x80000001}]})
syz_open_procfs(0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

21:58:17 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  654.650277][   T23] usb 3-1: new high-speed USB device number 17 using dummy_hcd
21:58:17 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

[  654.889133][   T23] usb 3-1: Using ep0 maxpacket: 16
[  655.009345][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  655.020424][   T23] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  655.034573][   T23] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  655.044406][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  655.057155][   T23] usb 3-1: config 0 descriptor??
[  655.209209][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  655.215481][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  655.227647][T27672] usb 1-1: USB disconnect, device number 74
21:58:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:18 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  655.809071][   T23] usbhid 3-1:0.0: can't add hid device: -71
[  655.815206][   T23] usbhid: probe of 3-1:0.0 failed with error -71
[  655.826656][   T23] usb 3-1: USB disconnect, device number 17
[  655.979028][T29588] usb 1-1: new high-speed USB device number 75 using dummy_hcd
21:58:19 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:19 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:58:19 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)

21:58:19 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  656.258960][T29588] usb 1-1: Using ep0 maxpacket: 16
21:58:19 executing program 4:
syz_open_dev$sg(0x0, 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  656.307627][    C1] sd 0:0:1:0: [sg0] tag#5181 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  656.318073][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB: Test Unit Ready
[  656.324570][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.334266][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.343879][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.353581][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.363186][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.372797][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.382399][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.389369][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
21:58:19 executing program 4:
syz_open_dev$sg(0x0, 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:19 executing program 4:
syz_open_dev$sg(0x0, 0x0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  656.391985][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.405909][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  656.412384][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.412408][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.412442][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  656.412464][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  656.412485][    C1] sd 0:0:1:0: [sg0] tag#5181 CDB[c0]: 00 00 00 00 00 00 00 00
[  656.425873][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  656.481663][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.508474][T29588] usb 1-1: config 0 descriptor??
21:58:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(0x0)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  656.649042][ T2693] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  656.918905][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  657.049469][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  657.060446][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  657.074925][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  657.084909][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.099775][ T2693] usb 3-1: config 0 descriptor??
[  657.218998][T29588] usbhid 1-1:0.0: can't add hid device: -71
[  657.225075][T29588] usbhid: probe of 1-1:0.0 failed with error -71
[  657.237412][T29588] usb 1-1: USB disconnect, device number 75
21:58:20 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[@ANYRES64], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:20 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  657.858998][ T2693] usbhid 3-1:0.0: can't add hid device: -71
[  657.865000][ T2693] usbhid: probe of 3-1:0.0 failed with error -71
[  657.874904][ T2693] usb 3-1: USB disconnect, device number 18
[  657.968829][T29588] usb 1-1: new high-speed USB device number 76 using dummy_hcd
[  658.228839][T29588] usb 1-1: Using ep0 maxpacket: 16
21:58:21 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(0x0)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

21:58:21 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:21 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:21 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[@ANYRES64], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(0x0)
r0 = syz_open_dev$video(0x0, 0x40000003, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  658.369231][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  658.380756][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  658.400683][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:58:21 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:58:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  658.426589][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  658.456438][T29588] usb 1-1: config 0 descriptor??
[  658.477612][    C0] sd 0:0:1:0: [sg0] tag#5182 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  658.488035][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB: Test Unit Ready
[  658.494536][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.504121][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.513708][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  658.523317][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.532895][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.542503][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.552080][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.561688][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  658.571285][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.580878][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.590470][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.600057][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.609656][    C0] sd 0:0:1:0: [sg0] tag#5182 CDB[c0]: 00 00 00 00 00 00 00 00
21:58:21 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  658.734929][    C0] sd 0:0:1:0: [sg0] tag#5183 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  658.745406][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB: Test Unit Ready
[  658.751872][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.761470][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.771062][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.780663][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.790251][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.799837][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.809417][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.819009][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.828577][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.838173][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.847766][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.857366][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.866972][    C0] sd 0:0:1:0: [sg0] tag#5183 CDB[c0]: 00 00 00 00 00 00 00 00
[  658.948680][ T2693] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  659.218627][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  659.348785][T29588] usbhid 1-1:0.0: can't add hid device: -71
[  659.354883][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  659.365864][T29588] usbhid: probe of 1-1:0.0 failed with error -71
[  659.376487][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  659.392305][T29588] usb 1-1: USB disconnect, device number 76
[  659.402432][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  659.414191][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  659.426776][ T2693] usb 3-1: config 0 descriptor??
21:58:22 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:22 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:22 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:22 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100))
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x0, 0x0, 0x80000001}]})
syz_open_procfs(0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

[  660.108534][ T2506] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  660.168658][ T2693] usbhid 3-1:0.0: can't add hid device: -71
[  660.174744][T29588] usb 1-1: new high-speed USB device number 77 using dummy_hcd
[  660.182520][ T2693] usbhid: probe of 3-1:0.0 failed with error -71
[  660.191616][ T2693] usb 3-1: USB disconnect, device number 19
[  660.348510][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  660.448515][T29588] usb 1-1: Using ep0 maxpacket: 16
[  660.468733][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  660.479677][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  660.492760][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  660.502599][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.511956][ T2506] usb 2-1: config 0 descriptor??
21:58:23 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:23 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
r0 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

21:58:23 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100))
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x0, 0x0, 0x80000001}]})
syz_open_procfs(0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)

[  660.588564][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  660.599802][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  660.614329][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  660.624206][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.648244][T29588] usb 1-1: config 0 descriptor??
21:58:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
r0 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

21:58:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
r0 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

21:58:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x0, 0x0)

21:58:23 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  660.863349][    C0] sd 0:0:1:0: [sg0] tag#5120 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  660.873777][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB: Test Unit Ready
[  660.880256][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.889830][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.899416][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.909021][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.918625][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.928186][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.937796][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.947405][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.957006][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.966598][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.976232][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.985860][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  660.995467][    C0] sd 0:0:1:0: [sg0] tag#5120 CDB[c0]: 00 00 00 00 00 00 00 00
[  661.010251][ T2506] microsoft 0003:045E:07DA.002C: unknown main item tag 0x0
[  661.023844][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.002C/input/input52
[  661.088484][ T2693] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  661.106217][ T2506] microsoft 0003:045E:07DA.002C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  661.358390][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  661.426458][ T2506] usb 2-1: USB disconnect, device number 17
[  661.488683][T29588] usbhid 1-1:0.0: can't add hid device: -71
[  661.494715][T29588] usbhid: probe of 1-1:0.0 failed with error -71
[  661.503723][T29588] usb 1-1: USB disconnect, device number 77
[  661.511169][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  661.529921][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  661.549651][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  661.563198][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.579363][ T2693] usb 3-1: config 0 descriptor??
21:58:24 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:24 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x0, 0x0)

21:58:24 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:58:24 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  661.994476][    C1] sd 0:0:1:0: [sg0] tag#5121 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  662.004925][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB: Test Unit Ready
[  662.011433][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.021041][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.030637][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.040247][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.049849][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.059434][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.069023][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.078613][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.088209][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.097799][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.107483][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.117187][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.126788][    C1] sd 0:0:1:0: [sg0] tag#5121 CDB[c0]: 00 00 00 00 00 00 00 00
[  662.238262][T29588] usb 1-1: new high-speed USB device number 78 using dummy_hcd
[  662.288455][    T5] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  662.338976][ T2693] usbhid 3-1:0.0: can't add hid device: -71
[  662.345359][ T2693] usbhid: probe of 3-1:0.0 failed with error -71
[  662.354642][ T2693] usb 3-1: USB disconnect, device number 20
[  662.498308][T29588] usb 1-1: Using ep0 maxpacket: 16
[  662.568286][    T5] usb 2-1: Using ep0 maxpacket: 16
[  662.638469][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  662.649477][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  662.665005][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  662.674792][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  662.687519][T29588] usb 1-1: config 0 descriptor??
[  662.698479][    T5] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  662.710611][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  662.724856][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:58:25 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:25 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:25 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x0, 0x0)

21:58:25 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
r1 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x1000000008, 0x0)

[  662.735527][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  662.753930][    T5] usb 2-1: config 0 descriptor??
21:58:25 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  662.858104][    C1] sd 0:0:1:0: [sg0] tag#5151 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  662.867608][    C0] sd 0:0:1:0: [sg0] tag#5152 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  662.868643][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB: Test Unit Ready
[  662.879050][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB: Test Unit Ready
[  662.879072][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.885456][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.885478][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.891882][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.901426][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.910954][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.910975][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.920511][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.930132][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.939685][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.949201][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.958751][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.968280][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.977897][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.987434][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  662.996973][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.006503][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.016040][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.016061][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.025590][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.035128][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.044664][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:26 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  663.054208][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.063736][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.073272][    C1] sd 0:0:1:0: [sg0] tag#5151 CDB[c0]: 00 00 00 00 00 00 00 00
[  663.082809][    C0] sd 0:0:1:0: [sg0] tag#5152 CDB[c0]: 00 00 00 00 00 00 00 00
[  663.183165][    C0] sd 0:0:1:0: [sg0] tag#5153 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  663.193599][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB: Test Unit Ready
[  663.200072][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.209670][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.219255][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.228854][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.238433][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.247982][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.257588][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.267186][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.276772][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.286384][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.295995][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.305583][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.315159][    C0] sd 0:0:1:0: [sg0] tag#5153 CDB[c0]: 00 00 00 00 00 00 00 00
21:58:26 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  663.369878][    T5] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  663.388159][ T2474] usb 3-1: new high-speed USB device number 21 using dummy_hcd
21:58:26 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  663.421738][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.002D/input/input53
[  663.453989][    C0] sd 0:0:1:0: [sg0] tag#5154 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  663.464466][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB: Test Unit Ready
[  663.470940][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.480563][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.490169][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.495174][    C1] sd 0:0:1:0: [sg0] tag#5155 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  663.499763][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.510094][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB: Test Unit Ready
[  663.519622][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.526009][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.535660][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.545216][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.554769][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.564329][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.573973][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.573994][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.583528][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.593064][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.602598][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.612133][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.621677][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.631218][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.640762][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.650305][    C0] sd 0:0:1:0: [sg0] tag#5154 CDB[c0]: 00 00 00 00 00 00 00 00
[  663.659840][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.686358][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.695972][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.705570][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.715171][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  663.724788][    C1] sd 0:0:1:0: [sg0] tag#5155 CDB[c0]: 00 00 00 00 00 00 00 00
[  663.739481][T29588] usbhid 1-1:0.0: can't add hid device: -71
[  663.745746][    T5] microsoft 0003:045E:07DA.002D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  663.788134][T29588] usbhid: probe of 1-1:0.0 failed with error -71
[  663.808036][ T2474] usb 3-1: Using ep0 maxpacket: 16
[  663.822269][T29588] usb 1-1: USB disconnect, device number 78
[  663.935022][   T23] usb 2-1: USB disconnect, device number 18
[  663.941366][ T2474] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  663.959594][ T2474] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  663.975433][ T2474] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  663.987099][ T2474] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.999851][ T2474] usb 3-1: config 0 descriptor??
21:58:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:27 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:27 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140))
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
r2 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  664.231713][    C0] sd 0:0:1:0: [sg0] tag#5156 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  664.242187][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB: Test Unit Ready
[  664.248691][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.258409][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.268032][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.277585][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.287172][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.296775][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.306429][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.316025][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.325640][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.335720][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.345314][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.354910][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  664.364628][    C0] sd 0:0:1:0: [sg0] tag#5156 CDB[c0]: 00 00 00 00 00 00 00 00
21:58:27 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  664.521728][T29588] usb 1-1: new high-speed USB device number 79 using dummy_hcd
[  664.767917][ T2506] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  664.787896][T29588] usb 1-1: Using ep0 maxpacket: 16
[  664.849120][ T2474] usbhid 3-1:0.0: can't add hid device: -71
[  664.855088][ T2474] usbhid: probe of 3-1:0.0 failed with error -71
[  664.863879][ T2474] usb 3-1: USB disconnect, device number 21
[  664.918457][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  664.929780][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  664.942937][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  664.952177][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  664.964788][T29588] usb 1-1: config 0 descriptor??
[  665.007905][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  665.128042][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  665.142191][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  665.155145][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  665.167607][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.181098][ T2506] usb 2-1: config 0 descriptor??
21:58:28 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:28 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000080), &(0x7f0000000100)=0x8)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0xd, 0x0, &(0x7f0000000040))
setsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f0000000000)=0x7, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
lseek(r2, 0x2, 0x1)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
write$UHID_INPUT2(r3, &(0x7f00000001c0)={0xc, {0x8c, "c5ec50f6471a0f6894f23f835820efb826d5c20162fd5ff3219bfc4bae7ab9e6077b73fd3c2fa8f9175de0325e3e7779e8d9e88c15242082f4720779882f89c45ebc4c73f77110fe9ea43e61db95fef75c68f24a65142ca78fb5bb0304667e0fca1281c685b6c1017c4d70b59f889bf5255dd7f6c1626e2ca873885e859abfc1c2a4ba250e9cab1e4328bd53"}}, 0x92)

21:58:28 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:28 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r3 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)

[  665.325292][    C1] sd 0:0:1:0: [sg0] tag#5157 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  665.335736][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB: Test Unit Ready
[  665.342231][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.351826][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.361432][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:28 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

[  665.371090][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.380692][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.390304][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.399931][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.409550][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:28 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  665.419185][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.428887][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.438474][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.448117][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.457664][    C1] sd 0:0:1:0: [sg0] tag#5157 CDB[c0]: 00 00 00 00 00 00 00 00
[  665.477604][    C1] sd 0:0:1:0: [sg0] tag#5158 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  665.488045][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB: Test Unit Ready
[  665.494469][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.504125][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.513707][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:28 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

[  665.523297][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.532904][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.542488][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.552078][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.561668][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:28 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

[  665.571258][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.580848][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.590440][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.600028][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.609613][    C1] sd 0:0:1:0: [sg0] tag#5158 CDB[c0]: 00 00 00 00 00 00 00 00
[  665.647764][    C1] sd 0:0:1:0: [sg0] tag#5159 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  665.658152][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB: Test Unit Ready
[  665.664575][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.669652][ T2474] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  665.674194][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.691246][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.700838][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.710430][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.720013][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.729601][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.739228][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.748857][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.758475][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.768227][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.777826][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  665.787358][    C1] sd 0:0:1:0: [sg0] tag#5159 CDB[c0]: 00 00 00 00 00 00 00 00
[  665.787846][T29588] usbhid 1-1:0.0: can't add hid device: -71
[  665.801198][T29588] usbhid: probe of 1-1:0.0 failed with error -71
[  665.811424][T29588] usb 1-1: USB disconnect, device number 79
[  665.819009][ T2506] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  665.837092][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.002E/input/input54
[  665.938844][ T2474] usb 3-1: Using ep0 maxpacket: 16
[  665.939039][ T2506] microsoft 0003:045E:07DA.002E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  666.067981][ T2474] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  666.078900][ T2474] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  666.091728][ T2474] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  666.100815][ T2474] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.110041][ T2474] usb 3-1: config 0 descriptor??
21:58:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:29 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:29 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

[  666.220368][ T2506] usb 2-1: USB disconnect, device number 19
[  666.557707][T27672] usb 1-1: new high-speed USB device number 80 using dummy_hcd
21:58:29 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  666.797738][T27672] usb 1-1: Using ep0 maxpacket: 16
[  666.857749][ T2474] usbhid 3-1:0.0: can't add hid device: -71
[  666.857854][ T2474] usbhid: probe of 3-1:0.0 failed with error -71
[  666.873170][ T2474] usb 3-1: USB disconnect, device number 22
[  666.918701][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  666.929783][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  666.943849][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  666.953584][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.963168][T27672] usb 1-1: config 0 descriptor??
21:58:30 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
lseek(0xffffffffffffffff, 0x0, 0x3)
ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x80404532, &(0x7f0000000440)=""/142)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x1000000008, 0x0)

21:58:30 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:30 executing program 3:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
lseek(0xffffffffffffffff, 0x0, 0x3)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

21:58:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:30 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  667.342020][    C0] scsi_io_completion_action: 2 callbacks suppressed
[  667.342049][    C0] sd 0:0:1:0: [sg0] tag#5162 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  667.343228][    C1] sd 0:0:1:0: [sg0] tag#5163 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  667.348746][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB: Test Unit Ready
[  667.359024][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB: Test Unit Ready
[  667.369354][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.375726][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.382134][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.391694][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.401221][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.410756][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.420313][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.429876][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.439410][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.439431][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.448995][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.458532][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.468068][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.477596][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.487121][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.496653][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.506185][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.515719][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.525254][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.534801][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.544341][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.553881][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
21:58:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  667.563419][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.572968][    C0] sd 0:0:1:0: [sg0] tag#5162 CDB[c0]: 00 00 00 00 00 00 00 00
[  667.582490][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.618604][    C1] sd 0:0:1:0: [sg0] tag#5163 CDB[c0]: 00 00 00 00 00 00 00 00
21:58:30 executing program 4:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98200000"], 0x1c3)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f00000000c0))
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)={0x54, 0x0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x54}}, 0x8080)
sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf25070000006c00028008000100ff070000040003803c0003800800020050ffffff07000000000000000800010008000000080002000600000008000200010100000800010001251d60ff00010000fcffff04000400140003800800010401000000080002008100000000020003000000"], 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)={0x50, 0x1, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x101}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x800}}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000580)=0x9646)
lseek(0xffffffffffffffff, 0x0, 0x3)
ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x80404532, &(0x7f0000000440)=""/142)
r4 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40000003, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')

21:58:30 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100))
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x0, 0x0, 0x80000001}]})
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

[  667.739593][    C0] sd 0:0:1:0: [sg0] tag#5164 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  667.750000][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB: Test Unit Ready
[  667.756434][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.766034][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.775622][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.785226][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.794828][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.804414][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.813994][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.823593][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.833180][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.842758][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.852338][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.861922][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  667.871502][    C0] sd 0:0:1:0: [sg0] tag#5164 CDB[c0]: 00 00 00 00 00 00 00 00
[  667.877918][T27672] usbhid 1-1:0.0: can't add hid device: -71
[  667.898043][T27672] usbhid: probe of 1-1:0.0 failed with error -71
[  667.965505][T27672] usb 1-1: USB disconnect, device number 80
21:58:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:31 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:31 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:31 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:31 executing program 4:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x10, 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB="0000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001080000000000000100008000"/180])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100))
creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x801, 0x0, 0x80000001}]})
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0x12, 0x0, &(0x7f0000000040))

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0xf, 0x0, &(0x7f0000000040))

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0xc, 0x0, &(0x7f0000000040))

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0x9, 0x0, &(0x7f0000000040))

21:58:31 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0x7, 0x0, &(0x7f0000000040))

21:58:31 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0x4, 0x0, &(0x7f0000000040))

[  668.687784][ T2474] usb 1-1: new high-speed USB device number 81 using dummy_hcd
[  668.937544][ T2474] usb 1-1: Using ep0 maxpacket: 16
[  669.087744][ T2474] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  669.098802][ T2474] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  669.113171][ T2474] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  669.122820][ T2474] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  669.132701][ T2474] usb 1-1: config 0 descriptor??
[  669.857458][ T2474] usbhid 1-1:0.0: can't add hid device: -71
[  669.863454][ T2474] usbhid: probe of 1-1:0.0 failed with error -71
[  669.872800][ T2474] usb 1-1: USB disconnect, device number 81
21:58:33 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:33 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
getsockopt$inet_int(r0, 0x0, 0x2, 0x0, &(0x7f0000000040))

21:58:33 executing program 4:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x10, 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB="0000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001080000000000000100008000"/180])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, 0x0)
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x801, 0x0, 0x80000001}]})
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

21:58:33 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:33 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:33 executing program 3:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x10, 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB="0000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001080000000000000100008000"/180])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, 0x0)
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x801, 0x0, 0x80000001}]})
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

21:58:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:33 executing program 3:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket(0x10, 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)=ANY=[@ANYBLOB="0000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001080000000000000100008000"/180])
ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, 0x0)
r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x925, 0x0, [], [{}, {0x801, 0x0, 0x80000001}]})
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

21:58:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:33 executing program 4 (fault-call:3 fault-nth:0):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  670.617356][ T2506] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  670.667342][ T3370] usb 1-1: new high-speed USB device number 82 using dummy_hcd
[  670.708976][T31843] FAULT_INJECTION: forcing a failure.
[  670.708976][T31843] name failslab, interval 1, probability 0, space 0, times 0
[  670.732917][T31843] CPU: 1 PID: 31843 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  670.741255][T31843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  670.751444][T31843] Call Trace:
[  670.754750][T31843]  dump_stack+0x1e9/0x30e
[  670.759089][T31843]  should_fail+0x433/0x5b0
[  670.763505][T31843]  should_failslab+0x5/0x20
[  670.768002][T31843]  kmem_cache_alloc_node_trace+0x69/0x2b0
[  670.773702][T31843]  ? __kmalloc_node+0x37/0x60
[  670.778351][T31843]  __kmalloc_node+0x37/0x60
[  670.782947][T31843]  kvmalloc_node+0x81/0x110
[  670.787425][T31843]  iov_iter_get_pages_alloc+0xbda/0x1170
[  670.793048][T31843]  default_file_splice_read+0x125/0xa40
[  670.798614][T31843]  ? __mutex_lock_common+0x582/0x2fc0
[  670.803976][T31843]  ? memset+0x1f/0x40
[  670.807931][T31843]  ? fsnotify+0x12c3/0x1370
[  670.812418][T31843]  do_splice+0x15de/0x1a40
[  670.816808][T31843]  ? __fget_files+0x4b9/0x4e0
[  670.821472][T31843]  ? __fdget+0x199/0x220
[  670.825791][T31843]  __x64_sys_splice+0x14f/0x1f0
[  670.830615][T31843]  do_syscall_64+0xf3/0x1b0
[  670.835092][T31843]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  670.840954][T31843] RIP: 0033:0x45ca59
[  670.844826][T31843] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  670.864448][T31843] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  670.872834][T31843] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  670.880784][T31843] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  670.888745][T31843] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  670.896706][T31843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  670.904682][T31843] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  671.037236][ T3370] usb 1-1: Using ep0 maxpacket: 16
[  671.067204][ T2506] usb 2-1: device descriptor read/64, error 18
[  671.157265][ T3370] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  671.171481][ T3370] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  671.185551][ T3370] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  671.195442][ T3370] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.208046][ T3370] usb 1-1: config 0 descriptor??
[  671.457252][ T2506] usb 2-1: device descriptor read/64, error 18
[  671.727189][ T2506] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  671.928405][ T3370] usbhid 1-1:0.0: can't add hid device: -71
[  671.934433][ T3370] usbhid: probe of 1-1:0.0 failed with error -71
[  671.945792][ T3370] usb 1-1: USB disconnect, device number 82
[  672.007389][ T2506] usb 2-1: device descriptor read/64, error 18
21:58:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:35 executing program 2:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:35 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:35 executing program 4 (fault-call:3 fault-nth:1):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:35 executing program 3 (fault-call:4 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  672.397065][ T2506] usb 2-1: device descriptor read/64, error 18
[  672.436750][T31871] FAULT_INJECTION: forcing a failure.
[  672.436750][T31871] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  672.444168][T31873] FAULT_INJECTION: forcing a failure.
[  672.444168][T31873] name failslab, interval 1, probability 0, space 0, times 0
[  672.466530][T31873] CPU: 1 PID: 31873 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  672.474862][T31873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  672.484910][T31873] Call Trace:
[  672.488191][T31873]  dump_stack+0x1e9/0x30e
[  672.492511][T31873]  should_fail+0x433/0x5b0
[  672.496916][T31873]  ? sock_kmalloc+0x98/0x100
[  672.501490][T31873]  should_failslab+0x5/0x20
[  672.505970][T31873]  __kmalloc+0x74/0x330
[  672.510107][T31873]  sock_kmalloc+0x98/0x100
[  672.514510][T31873]  hash_recvmsg+0x1bd/0x810
[  672.518996][T31873]  ? hash_sendmsg+0xb40/0xb40
[  672.523651][T31873]  ____sys_recvmsg+0x24a/0x510
[  672.528403][T31873]  ? import_iovec+0x12a/0x2c0
[  672.533065][T31873]  do_recvmmsg+0x429/0x1500
[  672.537544][T31873]  ? rcu_lock_release+0x5/0x20
[  672.542303][T31873]  ? ksys_write+0x1b1/0x220
[  672.546785][T31873]  ? ksys_write+0x1b1/0x220
[  672.551276][T31873]  ? check_preemption_disabled+0xb0/0x240
[  672.556969][T31873]  ? debug_smp_processor_id+0x5/0x20
[  672.562234][T31873]  __x64_sys_recvmmsg+0x11d/0x1a0
[  672.567242][T31873]  do_syscall_64+0xf3/0x1b0
[  672.571727][T31873]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  672.577598][T31873] RIP: 0033:0x45ca59
[  672.581467][T31873] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  672.601153][T31873] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  672.609540][T31873] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  672.617494][T31873] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  672.625549][T31873] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  672.633514][T31873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  672.641464][T31873] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  672.649444][T31871] CPU: 0 PID: 31871 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  672.657760][T31871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  672.661833][ T2506] usb usb2-port1: attempt power cycle
[  672.667905][T31871] Call Trace:
[  672.667936][T31871]  dump_stack+0x1e9/0x30e
[  672.667951][T31871]  should_fail+0x433/0x5b0
[  672.667969][T31871]  prepare_alloc_pages+0x28c/0x4a0
[  672.667984][T31871]  __alloc_pages_nodemask+0xbc/0x5e0
[  672.668001][T31871]  ? trace_kmalloc_node+0xd7/0x130
[  672.700762][T31871]  push_pipe+0x37a/0x630
[  672.704993][T31871]  iov_iter_get_pages_alloc+0xc70/0x1170
[  672.710604][T31871]  default_file_splice_read+0x125/0xa40
[  672.716252][T31871]  ? __mutex_lock_common+0x582/0x2fc0
[  672.721598][T31871]  ? memset+0x1f/0x40
[  672.725646][T31871]  ? fsnotify+0x12c3/0x1370
[  672.730127][T31871]  do_splice+0x15de/0x1a40
[  672.734521][T31871]  ? __fget_files+0x4b9/0x4e0
[  672.739176][T31871]  ? __fdget+0x199/0x220
[  672.743411][T31871]  __x64_sys_splice+0x14f/0x1f0
[  672.748236][T31871]  do_syscall_64+0xf3/0x1b0
[  672.752710][T31871]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  672.758570][T31871] RIP: 0033:0x45ca59
[  672.762433][T31871] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  672.782013][T31871] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  672.790408][T31871] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  672.798351][T31871] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  672.806299][T31871] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  672.809122][   T23] usb 1-1: new high-speed USB device number 83 using dummy_hcd
[  672.814257][T31871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  672.814268][T31871] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  673.007027][ T2474] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  673.056999][   T23] usb 1-1: Using ep0 maxpacket: 16
[  673.178293][   T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  673.189403][   T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  673.202283][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  673.211642][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.225968][   T23] usb 1-1: config 0 descriptor??
[  673.247133][ T2474] usb 3-1: Using ep0 maxpacket: 16
21:58:36 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:36 executing program 3 (fault-call:4 fault-nth:1):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:36 executing program 4 (fault-call:3 fault-nth:2):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:36 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  673.374543][T31888] FAULT_INJECTION: forcing a failure.
[  673.374543][T31888] name failslab, interval 1, probability 0, space 0, times 0
[  673.387967][ T2506] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  673.399480][T31890] FAULT_INJECTION: forcing a failure.
[  673.399480][T31890] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  673.402686][ T2474] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  673.413364][T31888] CPU: 1 PID: 31888 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  673.427623][ T2474] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  673.431920][T31888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.431925][T31888] Call Trace:
[  673.431941][T31888]  dump_stack+0x1e9/0x30e
[  673.431958][T31888]  should_fail+0x433/0x5b0
[  673.431977][T31888]  ? sock_kmalloc+0x98/0x100
[  673.431988][T31888]  should_failslab+0x5/0x20
[  673.432003][T31888]  __kmalloc+0x74/0x330
[  673.445527][ T2474] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  673.454887][T31888]  sock_kmalloc+0x98/0x100
[  673.454903][T31888]  hash_recvmsg+0x1bd/0x810
[  673.454919][T31888]  ? hash_sendmsg+0xb40/0xb40
[  673.454932][T31888]  ____sys_recvmsg+0x24a/0x510
[  673.454957][T31888]  ? import_iovec+0x12a/0x2c0
[  673.454973][T31888]  do_recvmmsg+0x429/0x1500
[  673.454994][T31888]  ? trace_lock_release+0x119/0x1a0
[  673.458395][ T2474] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.462559][T31888]  ? retint_kernel+0x2b/0x2b
[  673.462578][T31888]  ? do_syscall_64+0xb5/0x1b0
[  673.462595][T31888]  __x64_sys_recvmmsg+0x11d/0x1a0
[  673.462610][T31888]  do_syscall_64+0xf3/0x1b0
[  673.462623][T31888]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  673.472763][ T2474] usb 3-1: config 0 descriptor??
[  673.476049][T31888] RIP: 0033:0x45ca59
[  673.476060][T31888] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  673.476066][T31888] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  673.591195][T31888] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  673.599143][T31888] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  673.607091][T31888] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  673.615043][T31888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  673.622988][T31888] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  673.630957][T31890] CPU: 0 PID: 31890 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  673.639265][T31890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.649315][T31890] Call Trace:
[  673.652599][T31890]  dump_stack+0x1e9/0x30e
[  673.656920][T31890]  should_fail+0x433/0x5b0
[  673.661323][T31890]  prepare_alloc_pages+0x28c/0x4a0
[  673.666405][T31890]  __alloc_pages_nodemask+0xbc/0x5e0
[  673.671671][T31890]  push_pipe+0x37a/0x630
[  673.675889][T31890]  iov_iter_get_pages_alloc+0xc70/0x1170
[  673.681506][T31890]  default_file_splice_read+0x125/0xa40
[  673.687027][T31890]  ? __mutex_lock_common+0x582/0x2fc0
[  673.692369][T31890]  ? memset+0x1f/0x40
[  673.696324][T31890]  ? fsnotify+0x12c3/0x1370
[  673.700802][T31890]  do_splice+0x15de/0x1a40
[  673.705205][T31890]  ? __fget_files+0x4b9/0x4e0
[  673.709857][T31890]  ? __fdget+0x199/0x220
[  673.714087][T31890]  __x64_sys_splice+0x14f/0x1f0
[  673.718932][T31890]  do_syscall_64+0xf3/0x1b0
[  673.723411][T31890]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  673.729273][T31890] RIP: 0033:0x45ca59
[  673.733137][T31890] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  673.752718][T31890] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  673.761107][T31890] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
21:58:36 executing program 3 (fault-call:4 fault-nth:2):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  673.769153][T31890] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  673.777096][T31890] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  673.785037][T31890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  673.793018][T31890] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
21:58:36 executing program 4 (fault-call:3 fault-nth:3):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  673.860254][T31901] FAULT_INJECTION: forcing a failure.
[  673.860254][T31901] name failslab, interval 1, probability 0, space 0, times 0
[  673.876923][ T2506] usb 2-1: device not accepting address 22, error -71
[  673.878370][T31901] CPU: 0 PID: 31901 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  673.891991][T31901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.902125][T31901] Call Trace:
[  673.905390][T31901]  dump_stack+0x1e9/0x30e
[  673.909737][T31901]  should_fail+0x433/0x5b0
[  673.914157][T31901]  ? sock_kmalloc+0x98/0x100
[  673.918734][T31901]  should_failslab+0x5/0x20
[  673.923215][T31901]  __kmalloc+0x74/0x330
[  673.927356][T31901]  sock_kmalloc+0x98/0x100
[  673.931766][T31901]  hash_recvmsg+0x1bd/0x810
[  673.936271][T31901]  ? check_preemption_disabled+0xa2/0x240
[  673.941986][T31901]  ? hash_sendmsg+0xb40/0xb40
[  673.946649][T31901]  ____sys_recvmsg+0x24a/0x510
[  673.951417][T31901]  ? __sanitizer_cov_trace_const_cmp8+0x31/0x90
[  673.957647][T31901]  ? import_iovec+0x12a/0x2c0
[  673.962325][T31901]  do_recvmmsg+0x429/0x1500
[  673.966852][T31901]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  673.972307][T31901]  ? check_preemption_disabled+0xa2/0x240
[  673.978007][T31901]  ? retint_kernel+0x2b/0x2b
[  673.982582][T31901]  __x64_sys_recvmmsg+0x11d/0x1a0
[  673.987594][T31901]  do_syscall_64+0xf3/0x1b0
[  673.992091][T31901]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  673.997971][T31901] RIP: 0033:0x45ca59
[  673.999593][T31903] FAULT_INJECTION: forcing a failure.
[  673.999593][T31903] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  674.001862][T31901] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  674.034597][T31901] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  674.043000][T31901] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  674.050989][T31901] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  674.058953][T31901] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  674.066913][T31901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  674.074870][T31901] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  674.082925][T31903] CPU: 1 PID: 31903 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  674.091240][T31903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  674.101279][T31903] Call Trace:
[  674.104562][T31903]  dump_stack+0x1e9/0x30e
[  674.108882][T31903]  should_fail+0x433/0x5b0
[  674.113272][T31903]  prepare_alloc_pages+0x28c/0x4a0
[  674.118367][T31903]  __alloc_pages_nodemask+0xbc/0x5e0
[  674.123623][T31903]  push_pipe+0x37a/0x630
[  674.127840][T31903]  iov_iter_get_pages_alloc+0xc70/0x1170
[  674.133445][T31903]  default_file_splice_read+0x125/0xa40
[  674.139102][T31903]  ? __mutex_lock_common+0x582/0x2fc0
[  674.144443][T31903]  ? memset+0x1f/0x40
[  674.148394][T31903]  ? fsnotify+0x12c3/0x1370
[  674.152887][T31903]  do_splice+0x15de/0x1a40
[  674.157279][T31903]  ? __fget_files+0x4b9/0x4e0
[  674.162149][T31903]  ? __fdget+0x199/0x220
[  674.166411][T31903]  __x64_sys_splice+0x14f/0x1f0
[  674.171230][T31903]  do_syscall_64+0xf3/0x1b0
[  674.175701][T31903]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  674.181557][T31903] RIP: 0033:0x45ca59
[  674.185416][T31903] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  674.204987][T31903] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  674.213362][T31903] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  674.221302][T31903] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  674.229242][T31903] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  674.237183][T31903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  674.245122][T31903] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  674.254316][   T23] usbhid 1-1:0.0: can't add hid device: -71
21:58:37 executing program 3 (fault-call:4 fault-nth:3):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  674.263960][   T23] usbhid: probe of 1-1:0.0 failed with error -71
[  674.308721][   T23] usb 1-1: USB disconnect, device number 83
[  674.336207][T31908] FAULT_INJECTION: forcing a failure.
[  674.336207][T31908] name failslab, interval 1, probability 0, space 0, times 0
[  674.336408][ T2506] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  674.349744][T31908] CPU: 0 PID: 31908 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  674.364886][T31908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  674.374929][T31908] Call Trace:
[  674.378217][T31908]  dump_stack+0x1e9/0x30e
[  674.382531][T31908]  should_fail+0x433/0x5b0
[  674.386937][T31908]  ? sock_kmalloc+0x98/0x100
[  674.391509][T31908]  should_failslab+0x5/0x20
[  674.395986][T31908]  __kmalloc+0x74/0x330
[  674.400133][T31908]  sock_kmalloc+0x98/0x100
[  674.404541][T31908]  hash_recvmsg+0x1bd/0x810
[  674.409035][T31908]  ? hash_sendmsg+0xb40/0xb40
[  674.413685][T31908]  ____sys_recvmsg+0x24a/0x510
[  674.418437][T31908]  ? retint_kernel+0x2b/0x2b
[  674.423014][T31908]  ? import_iovec+0x12a/0x2c0
[  674.427707][T31908]  do_recvmmsg+0x429/0x1500
[  674.432188][T31908]  ? retint_kernel+0x2b/0x2b
[  674.436788][T31908]  ? ksys_write+0x1b1/0x220
[  674.441284][T31908]  ? ksys_write+0x1b1/0x220
[  674.445786][T31908]  ? check_preemption_disabled+0xb0/0x240
[  674.451530][T31908]  ? debug_smp_processor_id+0x5/0x20
[  674.456818][T31908]  __x64_sys_recvmmsg+0x11d/0x1a0
[  674.461839][T31908]  do_syscall_64+0xf3/0x1b0
[  674.466323][T31908]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  674.472193][T31908] RIP: 0033:0x45ca59
[  674.476059][T31908] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  674.495633][T31908] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  674.504027][T31908] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  674.511980][T31908] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  674.519933][T31908] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  674.527935][T31908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  674.535880][T31908] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  674.537041][ T2506] usb 2-1: device descriptor read/8, error -61
[  674.559157][ T2474] microsoft 0003:045E:07DA.002F: unknown main item tag 0x0
[  674.584738][ T2474] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.002F/input/input55
21:58:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  674.662491][ T2474] microsoft 0003:045E:07DA.002F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  674.836946][ T2506] usb 2-1: device descriptor read/8, error -61
[  674.956863][ T2506] usb usb2-port1: unable to enumerate USB device
[  674.972119][    T5] usb 3-1: USB disconnect, device number 23
[  674.976847][   T23] usb 1-1: new high-speed USB device number 84 using dummy_hcd
[  675.216735][   T23] usb 1-1: Using ep0 maxpacket: 16
[  675.336983][   T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  675.351286][   T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  675.364521][   T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  675.374006][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  675.386543][   T23] usb 1-1: config 0 descriptor??
21:58:38 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:38 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:38 executing program 4 (fault-call:3 fault-nth:4):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:38 executing program 3 (fault-call:4 fault-nth:4):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  675.527446][T31950] FAULT_INJECTION: forcing a failure.
[  675.527446][T31950] name failslab, interval 1, probability 0, space 0, times 0
[  675.536313][T31951] FAULT_INJECTION: forcing a failure.
[  675.536313][T31951] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  675.541670][T31950] CPU: 0 PID: 31950 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  675.561734][T31950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  675.571775][T31950] Call Trace:
[  675.575061][T31950]  dump_stack+0x1e9/0x30e
[  675.579390][T31950]  should_fail+0x433/0x5b0
[  675.583800][T31950]  ? sock_kmalloc+0x98/0x100
[  675.588381][T31950]  should_failslab+0x5/0x20
[  675.592881][T31950]  __kmalloc+0x74/0x330
[  675.597044][T31950]  sock_kmalloc+0x98/0x100
[  675.601448][T31950]  hash_recvmsg+0x1bd/0x810
[  675.605931][T31950]  ? hash_sendmsg+0xb40/0xb40
[  675.610594][T31950]  ____sys_recvmsg+0x24a/0x510
[  675.615362][T31950]  ? import_iovec+0x12a/0x2c0
[  675.620033][T31950]  do_recvmmsg+0x429/0x1500
[  675.624534][T31950]  ? ksys_write+0x1b1/0x220
[  675.629025][T31950]  ? ksys_write+0x1b1/0x220
[  675.633520][T31950]  ? check_preemption_disabled+0xb0/0x240
[  675.639228][T31950]  ? debug_smp_processor_id+0x5/0x20
[  675.644495][T31950]  __x64_sys_recvmmsg+0x11d/0x1a0
[  675.649508][T31950]  do_syscall_64+0xf3/0x1b0
[  675.653997][T31950]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  675.659960][T31950] RIP: 0033:0x45ca59
[  675.663834][T31950] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  675.683411][T31950] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  675.691798][T31950] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  675.699746][T31950] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  675.707701][T31950] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  675.715653][T31950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  675.723605][T31950] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  675.731575][T31951] CPU: 1 PID: 31951 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  675.739886][T31951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  675.749926][T31951] Call Trace:
[  675.753203][T31951]  dump_stack+0x1e9/0x30e
[  675.757529][T31951]  should_fail+0x433/0x5b0
[  675.761940][T31951]  prepare_alloc_pages+0x28c/0x4a0
[  675.767054][T31951]  __alloc_pages_nodemask+0xbc/0x5e0
[  675.772334][T31951]  push_pipe+0x37a/0x630
[  675.776550][T31951]  iov_iter_get_pages_alloc+0xc70/0x1170
[  675.782163][T31951]  default_file_splice_read+0x125/0xa40
[  675.787710][T31951]  ? __mutex_lock_common+0x582/0x2fc0
[  675.793060][T31951]  ? memset+0x1f/0x40
[  675.797023][T31951]  ? fsnotify+0x12c3/0x1370
[  675.801507][T31951]  do_splice+0x15de/0x1a40
[  675.805899][T31951]  ? __fget_files+0x4b9/0x4e0
[  675.810551][T31951]  ? __fdget+0x199/0x220
[  675.814767][T31951]  __x64_sys_splice+0x14f/0x1f0
[  675.819604][T31951]  do_syscall_64+0xf3/0x1b0
[  675.824100][T31951]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  675.829968][T31951] RIP: 0033:0x45ca59
[  675.833831][T31951] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  675.853401][T31951] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  675.861778][T31951] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  675.869753][T31951] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  675.877696][T31951] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  675.885639][T31951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  675.893595][T31951] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  675.996731][    T5] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  676.176818][   T23] usbhid 1-1:0.0: can't add hid device: -71
[  676.182928][   T23] usbhid: probe of 1-1:0.0 failed with error -71
[  676.194610][   T23] usb 1-1: USB disconnect, device number 84
[  676.246760][    T5] usb 3-1: Using ep0 maxpacket: 16
21:58:39 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:39 executing program 3 (fault-call:4 fault-nth:5):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:39 executing program 4 (fault-call:3 fault-nth:5):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

[  676.376887][    T5] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  676.399236][    T5] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  676.430847][    T5] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  676.449214][T31970] FAULT_INJECTION: forcing a failure.
[  676.449214][T31970] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  676.469397][    T5] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.483821][T31970] CPU: 0 PID: 31970 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  676.489813][T31974] FAULT_INJECTION: forcing a failure.
[  676.489813][T31974] name failslab, interval 1, probability 0, space 0, times 0
[  676.492141][T31970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  676.492146][T31970] Call Trace:
[  676.492161][T31970]  dump_stack+0x1e9/0x30e
[  676.492188][T31970]  should_fail+0x433/0x5b0
[  676.492205][T31970]  prepare_alloc_pages+0x28c/0x4a0
[  676.492221][T31970]  __alloc_pages_nodemask+0xbc/0x5e0
[  676.537158][T31970]  push_pipe+0x37a/0x630
[  676.541398][T31970]  iov_iter_get_pages_alloc+0xc70/0x1170
[  676.547034][T31970]  default_file_splice_read+0x125/0xa40
[  676.552582][T31970]  ? __mutex_lock_common+0x582/0x2fc0
[  676.557954][T31970]  ? memset+0x1f/0x40
[  676.561922][T31970]  ? fsnotify+0x12c3/0x1370
[  676.566423][T31970]  do_splice+0x15de/0x1a40
[  676.570840][T31970]  ? __fget_files+0x4b9/0x4e0
[  676.575511][T31970]  ? __fdget+0x199/0x220
[  676.579765][T31970]  __x64_sys_splice+0x14f/0x1f0
[  676.584609][T31970]  do_syscall_64+0xf3/0x1b0
[  676.589101][T31970]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  676.594975][T31970] RIP: 0033:0x45ca59
[  676.598855][T31970] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  676.618444][T31970] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  676.626840][T31970] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
21:58:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

[  676.634799][T31970] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  676.642759][T31970] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  676.650718][T31970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  676.658674][T31970] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
21:58:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

[  676.679261][T31974] CPU: 0 PID: 31974 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  676.687584][T31974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  676.697626][T31974] Call Trace:
[  676.700910][T31974]  dump_stack+0x1e9/0x30e
[  676.705253][T31974]  should_fail+0x433/0x5b0
[  676.709723][T31974]  ? sock_kmalloc+0x98/0x100
[  676.714309][T31974]  should_failslab+0x5/0x20
[  676.718802][T31974]  __kmalloc+0x74/0x330
[  676.722959][T31974]  sock_kmalloc+0x98/0x100
[  676.727375][T31974]  hash_recvmsg+0x1bd/0x810
21:58:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  676.731877][T31974]  ? hash_sendmsg+0xb40/0xb40
[  676.736550][T31974]  ____sys_recvmsg+0x24a/0x510
[  676.741332][T31974]  ? import_iovec+0x12a/0x2c0
[  676.746016][T31974]  do_recvmmsg+0x429/0x1500
[  676.750515][T31974]  ? rcu_lock_release+0x5/0x20
[  676.755282][T31974]  ? lockdep_hardirqs_on_prepare+0x425/0x6e0
[  676.761279][T31974]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  676.766815][T31974]  ? check_preemption_disabled+0xb0/0x240
[  676.772523][T31974]  ? debug_smp_processor_id+0x5/0x20
[  676.777799][T31974]  __x64_sys_recvmmsg+0x11d/0x1a0
[  676.782818][T31974]  do_syscall_64+0xf3/0x1b0
[  676.787321][T31974]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  676.793203][T31974] RIP: 0033:0x45ca59
[  676.797090][T31974] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  676.816680][T31974] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  676.825079][T31974] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
21:58:39 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c2"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  676.833131][T31974] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  676.841086][T31974] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  676.846600][ T3370] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  676.849033][T31974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  676.849040][T31974] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  676.862147][    T5] usb 3-1: config 0 descriptor??
[  677.156552][ T3370] usb 2-1: device descriptor read/64, error 18
[  677.196579][ T2506] usb 1-1: new high-speed USB device number 85 using dummy_hcd
[  677.388310][    T5] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0
[  677.402054][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0030/input/input56
[  677.436586][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  677.480839][    T5] microsoft 0003:045E:07DA.0030: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  677.546638][ T3370] usb 2-1: device descriptor read/64, error 18
[  677.557433][ T2506] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  677.568426][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  677.582875][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  677.592626][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  677.616273][ T2506] usb 1-1: config 0 descriptor??
[  677.805316][    T5] usb 3-1: USB disconnect, device number 24
[  677.818528][ T3370] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  678.086430][ T3370] usb 2-1: device descriptor read/64, error 18
[  678.098015][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.105554][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.113514][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.123060][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.134633][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.144323][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.152421][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.159852][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.167268][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.174505][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.181817][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.189172][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.196522][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.203801][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.211236][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.218536][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.225722][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.233231][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.240534][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.248163][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.255376][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.263186][ T2506] microsoft 0003:045E:07DA.0031: unknown main item tag 0x0
[  678.273110][ T2506] microsoft 0003:045E:07DA.0031: No inputs registered, leaving
21:58:41 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:41 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

21:58:41 executing program 4 (fault-call:3 fault-nth:6):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:41 executing program 3 (fault-call:4 fault-nth:6):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  678.288019][ T2506] microsoft 0003:045E:07DA.0031: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  678.299449][ T2506] microsoft 0003:045E:07DA.0031: no inputs found
[  678.305770][ T2506] microsoft 0003:045E:07DA.0031: could not initialize ff, continuing anyway
[  678.370562][T32028] FAULT_INJECTION: forcing a failure.
[  678.370562][T32028] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  678.402466][T32028] CPU: 0 PID: 32028 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  678.410806][T32028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  678.410893][T32030] FAULT_INJECTION: forcing a failure.
[  678.410893][T32030] name failslab, interval 1, probability 0, space 0, times 0
[  678.420851][T32028] Call Trace:
[  678.420870][T32028]  dump_stack+0x1e9/0x30e
[  678.420886][T32028]  should_fail+0x433/0x5b0
[  678.420905][T32028]  prepare_alloc_pages+0x28c/0x4a0
[  678.420922][T32028]  __alloc_pages_nodemask+0xbc/0x5e0
[  678.420945][T32028]  push_pipe+0x37a/0x630
[  678.420965][T32028]  iov_iter_get_pages_alloc+0xc70/0x1170
21:58:41 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  678.420988][T32028]  default_file_splice_read+0x125/0xa40
[  678.421015][T32028]  ? __mutex_lock_common+0x582/0x2fc0
[  678.421031][T32028]  ? memset+0x1f/0x40
[  678.421044][T32028]  ? fsnotify+0x12c3/0x1370
[  678.421069][T32028]  do_splice+0x15de/0x1a40
[  678.421094][T32028]  ? __fget_files+0x4b9/0x4e0
[  678.421112][T32028]  ? __fdget+0x199/0x220
[  678.421126][T32028]  __x64_sys_splice+0x14f/0x1f0
[  678.421144][T32028]  do_syscall_64+0xf3/0x1b0
[  678.421158][T32028]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  678.421168][T32028] RIP: 0033:0x45ca59
[  678.421179][T32028] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  678.421185][T32028] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  678.421196][T32028] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  678.421202][T32028] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  678.421209][T32028] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  678.421216][T32028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  678.421223][T32028] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  678.502187][ T2474] usb 1-1: USB disconnect, device number 85
[  678.523126][T32030] CPU: 1 PID: 32030 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  678.603633][T32030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  678.613666][T32030] Call Trace:
[  678.616928][T32030]  dump_stack+0x1e9/0x30e
[  678.621229][T32030]  should_fail+0x433/0x5b0
[  678.625626][T32030]  ? sock_kmalloc+0x98/0x100
[  678.630183][T32030]  should_failslab+0x5/0x20
[  678.634668][T32030]  __kmalloc+0x74/0x330
[  678.638797][T32030]  sock_kmalloc+0x98/0x100
[  678.643226][T32030]  hash_recvmsg+0x1bd/0x810
[  678.647753][T32030]  ? hash_sendmsg+0xb40/0xb40
[  678.652400][T32030]  ____sys_recvmsg+0x24a/0x510
[  678.657146][T32030]  ? __sanitizer_cov_trace_const_cmp8+0xd/0x90
[  678.663404][T32030]  ? import_iovec+0x12a/0x2c0
[  678.668104][T32030]  do_recvmmsg+0x429/0x1500
[  678.672596][T32030]  ? rcu_lock_release+0x5/0x20
[  678.677348][T32030]  ? retint_kernel+0x2b/0x2b
[  678.681950][T32030]  ? do_syscall_64+0xb5/0x1b0
[  678.686601][T32030]  __x64_sys_recvmmsg+0x11d/0x1a0
[  678.691594][T32030]  do_syscall_64+0xf3/0x1b0
[  678.696065][T32030]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  678.701937][T32030] RIP: 0033:0x45ca59
[  678.705811][T32030] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  678.725395][T32030] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  678.733815][T32030] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  678.741758][T32030] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  678.749698][T32030] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  678.757638][T32030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  678.765580][T32030] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  678.775478][ T3370] usb 2-1: device descriptor read/64, error 18
[  678.896951][ T3370] usb usb2-port1: attempt power cycle
21:58:42 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:42 executing program 4 (fault-call:3 fault-nth:7):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:42 executing program 3 (fault-call:4 fault-nth:7):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c2"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:42 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  679.489951][T32058] FAULT_INJECTION: forcing a failure.
[  679.489951][T32058] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  679.514984][T32058] CPU: 1 PID: 32058 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  679.523325][T32058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  679.528932][T32057] FAULT_INJECTION: forcing a failure.
[  679.528932][T32057] name failslab, interval 1, probability 0, space 0, times 0
[  679.533367][T32058] Call Trace:
[  679.533385][T32058]  dump_stack+0x1e9/0x30e
[  679.533401][T32058]  should_fail+0x433/0x5b0
[  679.533421][T32058]  prepare_alloc_pages+0x28c/0x4a0
[  679.533437][T32058]  __alloc_pages_nodemask+0xbc/0x5e0
[  679.533462][T32058]  push_pipe+0x37a/0x630
[  679.533482][T32058]  iov_iter_get_pages_alloc+0xc70/0x1170
[  679.533503][T32058]  default_file_splice_read+0x125/0xa40
[  679.583949][T32058]  ? __mutex_lock_common+0x582/0x2fc0
[  679.589313][T32058]  ? memset+0x1f/0x40
[  679.593286][T32058]  ? fsnotify+0x12c3/0x1370
[  679.597902][T32058]  do_splice+0x15de/0x1a40
[  679.602316][T32058]  ? __fget_files+0x4b9/0x4e0
[  679.606993][T32058]  ? __fdget+0x199/0x220
[  679.611230][T32058]  __x64_sys_splice+0x14f/0x1f0
[  679.616076][T32058]  do_syscall_64+0xf3/0x1b0
[  679.620568][T32058]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  679.626447][T32058] RIP: 0033:0x45ca59
[  679.630415][T32058] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  679.650102][T32058] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  679.658502][T32058] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  679.666470][T32058] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  679.674428][T32058] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  679.682387][T32058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  679.690363][T32058] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  679.701956][T32057] CPU: 0 PID: 32057 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  679.710281][T32057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  679.720325][T32057] Call Trace:
[  679.723608][T32057]  dump_stack+0x1e9/0x30e
[  679.727940][T32057]  should_fail+0x433/0x5b0
[  679.732358][T32057]  ? sock_kmalloc+0x98/0x100
[  679.736944][T32057]  should_failslab+0x5/0x20
[  679.741438][T32057]  __kmalloc+0x74/0x330
[  679.745594][T32057]  sock_kmalloc+0x98/0x100
[  679.750005][T32057]  hash_recvmsg+0x1bd/0x810
[  679.754490][T32057]  ? hash_sendmsg+0xb40/0xb40
[  679.759148][T32057]  ____sys_recvmsg+0x24a/0x510
[  679.763893][T32057]  ? import_iovec+0x12a/0x2c0
[  679.768544][T32057]  do_recvmmsg+0x429/0x1500
[  679.773015][T32057]  ? rcu_lock_release+0x5/0x20
[  679.777760][T32057]  ? retint_kernel+0x2b/0x2b
[  679.782323][T32057]  ? __x64_sys_recvmmsg+0x109/0x1a0
[  679.787494][T32057]  __x64_sys_recvmmsg+0x11d/0x1a0
[  679.792490][T32057]  do_syscall_64+0xf3/0x1b0
[  679.796977][T32057]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  679.802995][T32057] RIP: 0033:0x45ca59
[  679.806860][T32057] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  679.826437][T32057] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
21:58:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:42 executing program 3 (fault-call:4 fault-nth:8):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  679.834821][T32057] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  679.843030][T32057] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  679.850975][T32057] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  679.858915][T32057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  679.866291][T27672] usb 1-1: new high-speed USB device number 86 using dummy_hcd
[  679.866856][T32057] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:58:42 executing program 4 (fault-call:3 fault-nth:8):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r2 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

21:58:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r2 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  679.974694][T32068] FAULT_INJECTION: forcing a failure.
[  679.974694][T32068] name failslab, interval 1, probability 0, space 0, times 0
[  679.996388][T32069] FAULT_INJECTION: forcing a failure.
[  679.996388][T32069] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  680.015867][ T3370] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  680.023659][T32068] CPU: 1 PID: 32068 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  680.031972][T32068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  680.042011][T32068] Call Trace:
[  680.045286][T32068]  dump_stack+0x1e9/0x30e
[  680.049601][T32068]  should_fail+0x433/0x5b0
[  680.054003][T32068]  ? sock_kmalloc+0x98/0x100
[  680.058582][T32068]  should_failslab+0x5/0x20
[  680.063065][T32068]  __kmalloc+0x74/0x330
[  680.067206][T32068]  sock_kmalloc+0x98/0x100
[  680.071616][T32068]  hash_recvmsg+0x1bd/0x810
[  680.076097][T32068]  ? check_preemption_disabled+0xa2/0x240
[  680.081800][T32068]  ? hash_sendmsg+0xb40/0xb40
[  680.086462][T32068]  ____sys_recvmsg+0x24a/0x510
[  680.091214][T32068]  ? import_iovec+0x12a/0x2c0
[  680.095869][T32068]  do_recvmmsg+0x429/0x1500
[  680.100371][T32068]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  680.105822][T32068]  ? check_preemption_disabled+0xa2/0x240
[  680.111520][T32068]  ? retint_kernel+0x2b/0x2b
[  680.116098][T32068]  __x64_sys_recvmmsg+0x11d/0x1a0
[  680.121114][T32068]  do_syscall_64+0xf3/0x1b0
[  680.125599][T32068]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  680.131471][T32068] RIP: 0033:0x45ca59
[  680.135347][T32068] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  680.154930][T32068] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  680.163313][T32068] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  680.171261][T32068] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  680.179288][T32068] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  680.187254][T32068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  680.195220][T32068] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  680.203181][T32069] CPU: 0 PID: 32069 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  680.211494][T32069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  680.221537][T32069] Call Trace:
[  680.224817][T32069]  dump_stack+0x1e9/0x30e
[  680.229243][T32069]  should_fail+0x433/0x5b0
[  680.233661][T32069]  prepare_alloc_pages+0x28c/0x4a0
[  680.238771][T32069]  __alloc_pages_nodemask+0xbc/0x5e0
[  680.244066][T32069]  push_pipe+0x37a/0x630
[  680.248312][T32069]  iov_iter_get_pages_alloc+0xc70/0x1170
[  680.253943][T32069]  default_file_splice_read+0x125/0xa40
[  680.259578][T32069]  ? __mutex_lock_common+0x582/0x2fc0
[  680.264934][T32069]  ? memset+0x1f/0x40
[  680.268908][T32069]  ? fsnotify+0x12c3/0x1370
[  680.273390][T32069]  do_splice+0x15de/0x1a40
[  680.277813][T32069]  ? __fget_files+0x4b9/0x4e0
[  680.282602][T32069]  ? __fdget+0x199/0x220
[  680.286829][T32069]  __x64_sys_splice+0x14f/0x1f0
[  680.291778][T32069]  do_syscall_64+0xf3/0x1b0
[  680.296271][T32069]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  680.302239][T32069] RIP: 0033:0x45ca59
[  680.306103][T32069] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  680.325680][T32069] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  680.334068][T32069] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  680.342022][T32069] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  680.346225][T27672] usb 1-1: Using ep0 maxpacket: 16
[  680.349979][T32069] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  680.349985][T32069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  680.349992][T32069] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  680.416508][ T3370] usb 2-1: device descriptor read/8, error -61
[  680.506292][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  680.520392][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  680.534409][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  680.544318][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.558635][T27672] usb 1-1: config 0 descriptor??
[  680.686245][ T3370] usb 2-1: device descriptor read/8, error -61
[  680.956159][ T3370] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  681.037652][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.045008][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.060312][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.070368][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.077971][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.085177][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.092958][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.100487][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.107816][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.115108][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.122587][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.129878][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.137342][ T3370] usb 2-1: device descriptor read/8, error -61
[  681.143510][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.150776][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.158054][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.165248][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.172503][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.179800][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.187101][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.194308][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.201579][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.208871][T27672] microsoft 0003:045E:07DA.0032: unknown main item tag 0x0
[  681.216417][T27672] microsoft 0003:045E:07DA.0032: No inputs registered, leaving
[  681.232182][T27672] microsoft 0003:045E:07DA.0032: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  681.244002][T27672] microsoft 0003:045E:07DA.0032: no inputs found
[  681.256281][T27672] microsoft 0003:045E:07DA.0032: could not initialize ff, continuing anyway
[  681.406222][ T3370] usb 2-1: device descriptor read/8, error -61
[  681.445871][ T2474] usb 1-1: USB disconnect, device number 86
[  681.526314][ T3370] usb usb2-port1: unable to enumerate USB device
21:58:45 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r2 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

21:58:45 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:45 executing program 3 (fault-call:4 fault-nth:9):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:45 executing program 4 (fault-call:3 fault-nth:9):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:45 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c2"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  682.549517][T32108] FAULT_INJECTION: forcing a failure.
[  682.549517][T32108] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  682.552078][T32106] FAULT_INJECTION: forcing a failure.
[  682.552078][T32106] name failslab, interval 1, probability 0, space 0, times 0
[  682.575012][T32108] CPU: 0 PID: 32108 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  682.584140][T32108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  682.594190][T32108] Call Trace:
[  682.597473][T32108]  dump_stack+0x1e9/0x30e
[  682.601792][T32108]  should_fail+0x433/0x5b0
[  682.606204][T32108]  prepare_alloc_pages+0x28c/0x4a0
[  682.611309][T32108]  __alloc_pages_nodemask+0xbc/0x5e0
[  682.616593][T32108]  push_pipe+0x37a/0x630
[  682.620831][T32108]  iov_iter_get_pages_alloc+0xc70/0x1170
[  682.626462][T32108]  default_file_splice_read+0x125/0xa40
[  682.632027][T32108]  ? __mutex_lock_common+0x582/0x2fc0
[  682.637391][T32108]  ? memset+0x1f/0x40
[  682.641361][T32108]  ? fsnotify+0x12c3/0x1370
[  682.645858][T32108]  do_splice+0x15de/0x1a40
[  682.650274][T32108]  ? __fget_files+0x4b9/0x4e0
[  682.654966][T32108]  ? __fdget+0x199/0x220
[  682.659197][T32108]  __x64_sys_splice+0x14f/0x1f0
[  682.664043][T32108]  do_syscall_64+0xf3/0x1b0
[  682.668537][T32108]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  682.674419][T32108] RIP: 0033:0x45ca59
[  682.678315][T32108] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  682.697902][T32108] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  682.706295][T32108] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  682.714254][T32108] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  682.722213][T32108] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  682.730171][T32108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  682.738129][T32108] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
21:58:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(r0, 0x4000000000000002)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  682.746217][T32106] CPU: 1 PID: 32106 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  682.754531][T32106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  682.764576][T32106] Call Trace:
[  682.767874][T32106]  dump_stack+0x1e9/0x30e
[  682.772199][T32106]  should_fail+0x433/0x5b0
[  682.776610][T32106]  ? sock_kmalloc+0x98/0x100
[  682.781192][T32106]  should_failslab+0x5/0x20
[  682.785681][T32106]  __kmalloc+0x74/0x330
[  682.789831][T32106]  sock_kmalloc+0x98/0x100
[  682.794253][T32106]  hash_recvmsg+0x1bd/0x810
21:58:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(r0, 0x4000000000000002)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  682.798752][T32106]  ? hash_sendmsg+0xb40/0xb40
[  682.803421][T32106]  ____sys_recvmsg+0x24a/0x510
[  682.808194][T32106]  ? import_iovec+0x12a/0x2c0
[  682.812881][T32106]  do_recvmmsg+0x429/0x1500
[  682.817382][T32106]  ? rcu_lock_release+0x5/0x20
[  682.822162][T32106]  ? ksys_write+0x1b1/0x220
[  682.826668][T32106]  ? ksys_write+0x1b1/0x220
[  682.831167][T32106]  ? check_preemption_disabled+0xb0/0x240
[  682.836874][T32106]  ? debug_smp_processor_id+0x5/0x20
[  682.842157][T32106]  __x64_sys_recvmmsg+0x11d/0x1a0
21:58:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(r0, 0x4000000000000002)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  682.847176][T32106]  do_syscall_64+0xf3/0x1b0
[  682.851698][T32106]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  682.857577][T32106] RIP: 0033:0x45ca59
[  682.861477][T32106] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  682.881072][T32106] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  682.889476][T32106] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
21:58:45 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:45 executing program 4 (fault-call:3 fault-nth:10):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:45 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  682.897440][T32106] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  682.905404][T32106] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  682.913368][T32106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  682.921428][T32106] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  682.936023][ T2494] usb 1-1: new high-speed USB device number 87 using dummy_hcd
[  682.974235][T32122] FAULT_INJECTION: forcing a failure.
[  682.974235][T32122] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  682.992478][T32122] CPU: 1 PID: 32122 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  683.000804][T32122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  683.010849][T32122] Call Trace:
[  683.014155][T32122]  dump_stack+0x1e9/0x30e
[  683.018483][T32122]  should_fail+0x433/0x5b0
[  683.022905][T32122]  prepare_alloc_pages+0x28c/0x4a0
[  683.028001][T32122]  __alloc_pages_nodemask+0xbc/0x5e0
[  683.033356][T32122]  push_pipe+0x37a/0x630
[  683.037707][T32122]  iov_iter_get_pages_alloc+0xc70/0x1170
[  683.043327][T32122]  default_file_splice_read+0x125/0xa40
[  683.048906][T32122]  ? __mutex_lock_common+0x582/0x2fc0
[  683.054307][T32122]  ? memset+0x1f/0x40
[  683.058261][T32122]  ? fsnotify+0x12c3/0x1370
[  683.062743][T32122]  do_splice+0x15de/0x1a40
[  683.067139][T32122]  ? __fget_files+0x4b9/0x4e0
[  683.071805][T32122]  ? __fdget+0x199/0x220
[  683.076030][T32122]  __x64_sys_splice+0x14f/0x1f0
[  683.080945][T32122]  do_syscall_64+0xf3/0x1b0
[  683.085480][T32122]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  683.091351][T32122] RIP: 0033:0x45ca59
[  683.095235][T32122] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  683.114856][T32122] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  683.123264][T32122] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  683.131342][T32122] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  683.139282][T32122] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  683.147224][T32122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  683.155167][T32122] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  683.366459][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  683.385974][    T5] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  683.486597][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.500709][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  683.513770][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  683.523079][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.537188][ T2494] usb 1-1: config 0 descriptor??
[  683.665895][    T5] usb 2-1: device descriptor read/64, error 18
[  684.017320][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.024547][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.031876][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.039175][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.052518][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.059931][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.067304][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.074516][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.075956][    T5] usb 2-1: device descriptor read/64, error 18
[  684.081834][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.095074][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.102356][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.109638][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.117151][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.124461][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.131887][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.139239][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.146602][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.153807][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.161065][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.168425][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.175617][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.182878][ T2494] microsoft 0003:045E:07DA.0033: unknown main item tag 0x0
[  684.190857][ T2494] microsoft 0003:045E:07DA.0033: No inputs registered, leaving
[  684.202618][ T2494] microsoft 0003:045E:07DA.0033: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  684.214108][ T2494] microsoft 0003:045E:07DA.0033: no inputs found
[  684.220512][ T2494] microsoft 0003:045E:07DA.0033: could not initialize ff, continuing anyway
[  684.365836][    T5] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  684.431696][ T2474] usb 1-1: USB disconnect, device number 87
[  684.645815][    T5] usb 2-1: device descriptor read/64, error 18
[  685.055800][    T5] usb 2-1: device descriptor read/64, error 18
[  685.176011][    T5] usb usb2-port1: attempt power cycle
21:58:48 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:48 executing program 3 (fault-call:4 fault-nth:10):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:48 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:48 executing program 4 (fault-call:3 fault-nth:11):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:48 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:48 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  685.624649][T32162] FAULT_INJECTION: forcing a failure.
[  685.624649][T32162] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  685.654009][T32161] FAULT_INJECTION: forcing a failure.
[  685.654009][T32161] name failslab, interval 1, probability 0, space 0, times 0
[  685.672181][T32161] CPU: 0 PID: 32161 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  685.680611][T32161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  685.690646][T32161] Call Trace:
[  685.693945][T32161]  dump_stack+0x1e9/0x30e
[  685.698278][T32161]  should_fail+0x433/0x5b0
[  685.702688][T32161]  ? sock_kmalloc+0x98/0x100
[  685.707268][T32161]  should_failslab+0x5/0x20
[  685.711755][T32161]  __kmalloc+0x74/0x330
[  685.715906][T32161]  sock_kmalloc+0x98/0x100
[  685.720311][T32161]  hash_recvmsg+0x1bd/0x810
[  685.724810][T32161]  ? hash_sendmsg+0xb40/0xb40
[  685.729483][T32161]  ____sys_recvmsg+0x24a/0x510
[  685.734254][T32161]  ? import_iovec+0x12a/0x2c0
[  685.738932][T32161]  do_recvmmsg+0x429/0x1500
[  685.743429][T32161]  ? rcu_lock_release+0x5/0x20
[  685.748212][T32161]  ? retint_kernel+0x2b/0x2b
[  685.752803][T32161]  ? do_syscall_64+0xb5/0x1b0
[  685.757478][T32161]  __x64_sys_recvmmsg+0x11d/0x1a0
[  685.762501][T32161]  do_syscall_64+0xf3/0x1b0
[  685.766996][T32161]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  685.772874][T32161] RIP: 0033:0x45ca59
[  685.776749][T32161] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  685.796339][T32161] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  685.804732][T32161] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  685.812681][T32161] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
21:58:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  685.820630][T32161] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  685.828576][T32161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  685.836546][T32161] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  685.844519][T32162] CPU: 1 PID: 32162 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  685.852834][T32162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  685.862875][T32162] Call Trace:
[  685.866157][T32162]  dump_stack+0x1e9/0x30e
[  685.870499][T32162]  should_fail+0x433/0x5b0
21:58:48 executing program 3 (fault-call:4 fault-nth:11):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  685.874925][T32162]  prepare_alloc_pages+0x28c/0x4a0
[  685.880033][T32162]  __alloc_pages_nodemask+0xbc/0x5e0
[  685.885321][T32162]  push_pipe+0x37a/0x630
[  685.889570][T32162]  iov_iter_get_pages_alloc+0xc70/0x1170
[  685.895223][T32162]  default_file_splice_read+0x125/0xa40
[  685.900772][T32162]  ? __mutex_lock_common+0x582/0x2fc0
[  685.906145][T32162]  ? memset+0x1f/0x40
[  685.909404][T32170] FAULT_INJECTION: forcing a failure.
[  685.909404][T32170] name failslab, interval 1, probability 0, space 0, times 0
[  685.910118][T32162]  ? fsnotify+0x12c3/0x1370
[  685.910144][T32162]  do_splice+0x15de/0x1a40
[  685.910168][T32162]  ? __fget_files+0x4b9/0x4e0
[  685.910186][T32162]  ? __fdget+0x199/0x220
[  685.910202][T32162]  __x64_sys_splice+0x14f/0x1f0
[  685.945323][T32162]  do_syscall_64+0xf3/0x1b0
[  685.949821][T32162]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  685.955696][T32162] RIP: 0033:0x45ca59
[  685.959578][T32162] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  685.979168][T32162] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  685.987581][T32162] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  685.995535][T32162] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  686.003502][T32162] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  686.011455][T32162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  686.019410][T32162] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  686.027400][T32170] CPU: 0 PID: 32170 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  686.033934][ T2494] usb 1-1: new high-speed USB device number 88 using dummy_hcd
[  686.035707][T32170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  686.035712][T32170] Call Trace:
[  686.035726][T32170]  dump_stack+0x1e9/0x30e
[  686.035738][T32170]  should_fail+0x433/0x5b0
[  686.035754][T32170]  ? sock_kmalloc+0x98/0x100
[  686.069824][T32170]  should_failslab+0x5/0x20
[  686.074319][T32170]  __kmalloc+0x74/0x330
[  686.078471][T32170]  sock_kmalloc+0x98/0x100
[  686.082882][T32170]  hash_recvmsg+0x1bd/0x810
[  686.087381][T32170]  ? hash_sendmsg+0xb40/0xb40
[  686.092049][T32170]  ____sys_recvmsg+0x24a/0x510
[  686.096804][T32170]  ? lock_release+0x3d1/0x760
[  686.101499][T32170]  ? import_iovec+0x12a/0x2c0
[  686.106178][T32170]  do_recvmmsg+0x429/0x1500
[  686.110709][T32170]  ? retint_kernel+0x2b/0x2b
[  686.115300][T32170]  ? __x64_sys_recvmmsg+0x109/0x1a0
[  686.120493][T32170]  __x64_sys_recvmmsg+0x11d/0x1a0
21:58:49 executing program 4 (fault-call:3 fault-nth:12):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  686.125522][T32170]  do_syscall_64+0xf3/0x1b0
[  686.130036][T32170]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  686.135918][T32170] RIP: 0033:0x45ca59
[  686.139821][T32170] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  686.152975][T32173] FAULT_INJECTION: forcing a failure.
[  686.152975][T32173] name fail_page_alloc, interval 1, probability 0, space 0, times 0
21:58:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  686.159405][T32170] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  686.159416][T32170] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  686.159422][T32170] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  686.159429][T32170] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  686.159435][T32170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  686.159441][T32170] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  686.234408][T32173] CPU: 0 PID: 32173 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  686.242756][T32173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  686.252798][T32173] Call Trace:
[  686.256125][T32173]  dump_stack+0x1e9/0x30e
[  686.260481][T32173]  should_fail+0x433/0x5b0
[  686.264897][T32173]  prepare_alloc_pages+0x28c/0x4a0
[  686.270006][T32173]  __alloc_pages_nodemask+0xbc/0x5e0
[  686.275296][T32173]  push_pipe+0x37a/0x630
[  686.279607][T32173]  iov_iter_get_pages_alloc+0xc70/0x1170
[  686.285339][T32173]  default_file_splice_read+0x125/0xa40
[  686.290878][T32173]  ? __mutex_lock_common+0x582/0x2fc0
[  686.296234][T32173]  ? memset+0x1f/0x40
[  686.300187][T32173]  ? fsnotify+0x12c3/0x1370
[  686.304714][T32173]  do_splice+0x15de/0x1a40
[  686.309127][T32173]  ? __fget_files+0x4b9/0x4e0
[  686.313863][T32173]  ? __fdget+0x199/0x220
[  686.318090][T32173]  __x64_sys_splice+0x14f/0x1f0
[  686.322943][T32173]  do_syscall_64+0xf3/0x1b0
[  686.327440][T32173]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  686.333327][T32173] RIP: 0033:0x45ca59
[  686.336468][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  686.337214][T32173] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  686.361877][T32173] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  686.370280][T32173] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  686.378237][T32173] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  686.386192][T32173] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  686.394149][T32173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  686.402094][T32173] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  686.417168][    T5] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  686.424807][T29588] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  686.456814][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  686.468507][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  686.482535][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  686.492420][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  686.506987][ T2494] usb 1-1: config 0 descriptor??
[  686.605783][    T5] usb 2-1: device descriptor read/8, error -61
[  686.705648][T29588] usb 3-1: device descriptor read/64, error 18
[  686.906747][    T5] usb 2-1: device descriptor read/8, error -61
[  686.987014][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  686.994245][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.008395][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.018746][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.026333][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.033523][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.041329][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.048863][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.056329][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.063566][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.071166][ T2494] microsoft 0003:045E:07DA.0034: unknown main item tag 0x0
[  687.078772][ T2494] microsoft 0003:045E:07DA.0034: No inputs registered, leaving
[  687.094327][ T2494] microsoft 0003:045E:07DA.0034: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  687.111259][ T2494] microsoft 0003:045E:07DA.0034: no inputs found
[  687.121485][ T2494] microsoft 0003:045E:07DA.0034: could not initialize ff, continuing anyway
[  687.135645][T29588] usb 3-1: device descriptor read/64, error 18
[  687.195684][    T5] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  687.385778][    T5] usb 2-1: device descriptor read/8, error -61
[  687.392653][T27672] usb 1-1: USB disconnect, device number 88
[  687.425605][T29588] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  687.665685][    T5] usb 2-1: device descriptor read/8, error -61
[  687.715530][T29588] usb 3-1: device descriptor read/64, error 18
[  687.785690][    T5] usb usb2-port1: unable to enumerate USB device
[  688.115484][T29588] usb 3-1: device descriptor read/64, error 18
[  688.236259][T29588] usb usb3-port1: attempt power cycle
21:58:51 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:51 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:51 executing program 3 (fault-call:4 fault-nth:12):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:51 executing program 4 (fault-call:3 fault-nth:13):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:51 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  688.677808][T32218] FAULT_INJECTION: forcing a failure.
[  688.677808][T32218] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  688.711377][T32217] FAULT_INJECTION: forcing a failure.
[  688.711377][T32217] name failslab, interval 1, probability 0, space 0, times 0
[  688.712373][T32218] CPU: 0 PID: 32218 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  688.732764][T32218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  688.743763][T32218] Call Trace:
[  688.747046][T32218]  dump_stack+0x1e9/0x30e
[  688.751387][T32218]  should_fail+0x433/0x5b0
[  688.755798][T32218]  prepare_alloc_pages+0x28c/0x4a0
[  688.760900][T32218]  __alloc_pages_nodemask+0xbc/0x5e0
[  688.766184][T32218]  push_pipe+0x37a/0x630
[  688.770420][T32218]  iov_iter_get_pages_alloc+0xc70/0x1170
[  688.776051][T32218]  default_file_splice_read+0x125/0xa40
[  688.781594][T32218]  ? __mutex_lock_common+0x582/0x2fc0
[  688.786963][T32218]  ? memset+0x1f/0x40
[  688.790939][T32218]  ? fsnotify+0x12c3/0x1370
[  688.795556][T32218]  do_splice+0x15de/0x1a40
[  688.799974][T32218]  ? __fget_files+0x4b9/0x4e0
[  688.804644][T32218]  ? __fdget+0x199/0x220
[  688.808879][T32218]  __x64_sys_splice+0x14f/0x1f0
[  688.813725][T32218]  do_syscall_64+0xf3/0x1b0
[  688.818221][T32218]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  688.824118][T32218] RIP: 0033:0x45ca59
[  688.828009][T32218] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  688.847600][T32218] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  688.855992][T32218] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  688.863951][T32218] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
21:58:51 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  688.871905][T32218] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  688.879871][T32218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  688.887829][T32218] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  688.895823][T32217] CPU: 1 PID: 32217 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  688.904143][T32217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  688.914189][T32217] Call Trace:
[  688.917474][T32217]  dump_stack+0x1e9/0x30e
[  688.921803][T32217]  should_fail+0x433/0x5b0
[  688.926235][T32217]  ? sock_kmalloc+0x98/0x100
[  688.930822][T32217]  should_failslab+0x5/0x20
[  688.935316][T32217]  __kmalloc+0x74/0x330
[  688.939470][T32217]  sock_kmalloc+0x98/0x100
[  688.943880][T32217]  hash_recvmsg+0x1bd/0x810
[  688.948370][T32217]  ? hash_sendmsg+0xb40/0xb40
[  688.953021][T32217]  ____sys_recvmsg+0x24a/0x510
[  688.957779][T32217]  ? import_iovec+0x12a/0x2c0
[  688.962442][T32217]  do_recvmmsg+0x429/0x1500
[  688.965437][T29588] usb 3-1: new high-speed USB device number 27 using dummy_hcd
21:58:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  688.966955][T32217]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  688.966972][T32217]  __x64_sys_recvmmsg+0x11d/0x1a0
[  688.985034][T32217]  do_syscall_64+0xf3/0x1b0
[  688.989532][T32217]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  688.995413][T32217] RIP: 0033:0x45ca59
[  688.999301][T32217] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  689.018893][T32217] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
21:58:52 executing program 4 (fault-call:3 fault-nth:14):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  689.027285][T32217] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  689.035246][T32217] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  689.043207][T32217] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  689.045378][    T5] usb 1-1: new high-speed USB device number 89 using dummy_hcd
[  689.051163][T32217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  689.051170][T32217] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:58:52 executing program 3 (fault-call:4 fault-nth:13):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  689.100645][T32230] FAULT_INJECTION: forcing a failure.
[  689.100645][T32230] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  689.121065][T32230] CPU: 1 PID: 32230 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  689.129403][T32230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  689.139449][T32230] Call Trace:
[  689.142735][T32230]  dump_stack+0x1e9/0x30e
21:58:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  689.147062][T32230]  should_fail+0x433/0x5b0
[  689.151476][T32230]  prepare_alloc_pages+0x28c/0x4a0
[  689.156583][T32230]  __alloc_pages_nodemask+0xbc/0x5e0
[  689.159028][T29588] usb 3-1: device descriptor read/8, error -61
[  689.161896][T32230]  push_pipe+0x37a/0x630
[  689.161918][T32230]  iov_iter_get_pages_alloc+0xc70/0x1170
[  689.177880][T32230]  default_file_splice_read+0x125/0xa40
[  689.183431][T32230]  ? __mutex_lock_common+0x582/0x2fc0
[  689.188806][T32230]  ? memset+0x1f/0x40
[  689.192781][T32230]  ? fsnotify+0x12c3/0x1370
[  689.197293][T32230]  do_splice+0x15de/0x1a40
[  689.199113][T32235] FAULT_INJECTION: forcing a failure.
[  689.199113][T32235] name failslab, interval 1, probability 0, space 0, times 0
[  689.201739][T32230]  ? __fget_files+0x4b9/0x4e0
[  689.201759][T32230]  ? __fdget+0x199/0x220
[  689.201774][T32230]  __x64_sys_splice+0x14f/0x1f0
[  689.201791][T32230]  do_syscall_64+0xf3/0x1b0
[  689.232535][T32230]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  689.238418][T32230] RIP: 0033:0x45ca59
[  689.242301][T32230] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  689.261890][T32230] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  689.270290][T32230] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  689.278247][T32230] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  689.286216][T32230] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  689.294176][T32230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  689.302136][T32230] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  689.310126][T32235] CPU: 0 PID: 32235 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  689.318440][T32235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  689.328481][T32235] Call Trace:
[  689.331764][T32235]  dump_stack+0x1e9/0x30e
[  689.336092][T32235]  should_fail+0x433/0x5b0
[  689.340507][T32235]  ? sock_kmalloc+0x98/0x100
[  689.345085][T32235]  should_failslab+0x5/0x20
[  689.349575][T32235]  __kmalloc+0x74/0x330
[  689.353729][T32235]  sock_kmalloc+0x98/0x100
[  689.358139][T32235]  hash_recvmsg+0x1bd/0x810
[  689.362637][T32235]  ? hash_sendmsg+0xb40/0xb40
[  689.367409][T32235]  ____sys_recvmsg+0x24a/0x510
[  689.372183][T32235]  ? import_iovec+0x12a/0x2c0
[  689.376849][T32235]  do_recvmmsg+0x429/0x1500
[  689.381338][T32235]  ? rcu_lock_release+0x5/0x20
[  689.386086][T32235]  ? ksys_write+0x1b1/0x220
[  689.390559][T32235]  ? ksys_write+0x1b1/0x220
[  689.395034][T32235]  ? check_preemption_disabled+0xb0/0x240
[  689.400729][T32235]  ? debug_smp_processor_id+0x5/0x20
[  689.405984][T32235]  __x64_sys_recvmmsg+0x11d/0x1a0
[  689.411079][T32235]  do_syscall_64+0xf3/0x1b0
[  689.415557][T32235]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  689.421467][T32235] RIP: 0033:0x45ca59
[  689.425335][T32235] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  689.444918][T32235] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  689.453301][T32235] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  689.461243][T32235] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  689.469182][T32235] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  689.477121][T32235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  689.485063][T32235] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  689.495434][    T5] usb 1-1: Using ep0 maxpacket: 16
[  689.615623][T29588] usb 3-1: device descriptor read/8, error -61
[  689.621879][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  689.632793][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  689.645899][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  689.654942][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  689.667350][    T5] usb 1-1: config 0 descriptor??
[  689.725519][ T3370] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  689.895314][T29588] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  689.965360][ T3370] usb 2-1: Using ep0 maxpacket: 16
[  690.085594][ T3370] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  690.095752][ T3370] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  690.104680][ T3370] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  690.105412][T29588] usb 3-1: device descriptor read/8, error -61
[  690.116531][ T3370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  690.132850][ T3370] usb 2-1: config 0 descriptor??
[  690.149742][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.159988][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.179591][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.190564][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.198031][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.209177][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.216928][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.224145][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.231686][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.239251][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.246922][    T5] microsoft 0003:045E:07DA.0035: unknown main item tag 0x0
[  690.254421][    T5] microsoft 0003:045E:07DA.0035: No inputs registered, leaving
[  690.263700][    T5] microsoft 0003:045E:07DA.0035: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  690.275590][    T5] microsoft 0003:045E:07DA.0035: no inputs found
[  690.281948][    T5] microsoft 0003:045E:07DA.0035: could not initialize ff, continuing anyway
[  690.416937][T29588] usb 3-1: device descriptor read/8, error -61
[  690.548294][ T2494] usb 1-1: USB disconnect, device number 89
[  690.550763][T29588] usb usb3-port1: unable to enumerate USB device
21:58:55 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:55 executing program 4 (fault-call:3 fault-nth:15):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:55 executing program 3 (fault-call:4 fault-nth:14):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:55 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:55 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  692.085295][T29588] usb 2-1: USB disconnect, device number 32
[  692.184586][T32284] FAULT_INJECTION: forcing a failure.
[  692.184586][T32284] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  692.199621][T32283] FAULT_INJECTION: forcing a failure.
[  692.199621][T32283] name failslab, interval 1, probability 0, space 0, times 0
[  692.214011][T32283] CPU: 0 PID: 32283 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  692.222348][T32283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  692.232385][T32283] Call Trace:
[  692.235666][T32283]  dump_stack+0x1e9/0x30e
[  692.240006][T32283]  should_fail+0x433/0x5b0
[  692.244433][T32283]  ? sock_kmalloc+0x98/0x100
[  692.249003][T32283]  should_failslab+0x5/0x20
[  692.253492][T32283]  __kmalloc+0x74/0x330
[  692.257663][T32283]  sock_kmalloc+0x98/0x100
[  692.262074][T32283]  hash_recvmsg+0x1bd/0x810
[  692.266581][T32283]  ? hash_sendmsg+0xb40/0xb40
[  692.271248][T32283]  ____sys_recvmsg+0x24a/0x510
[  692.276009][T32283]  ? import_iovec+0x12a/0x2c0
[  692.280676][T32283]  do_recvmmsg+0x429/0x1500
[  692.285162][T32283]  ? rcu_lock_release+0x5/0x20
[  692.289932][T32283]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  692.295377][T32283]  ? check_preemption_disabled+0xa2/0x240
[  692.301082][T32283]  ? retint_kernel+0x2b/0x2b
[  692.305659][T32283]  __x64_sys_recvmmsg+0x11d/0x1a0
[  692.310689][T32283]  do_syscall_64+0xf3/0x1b0
[  692.315180][T32283]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  692.321098][T32283] RIP: 0033:0x45ca59
[  692.324999][T32283] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  692.344588][T32283] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  692.352992][T32283] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  692.360952][T32283] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  692.368903][T32283] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  692.376862][T32283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  692.384817][T32283] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  692.392785][T32284] CPU: 1 PID: 32284 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  692.401120][T32284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  692.411163][T32284] Call Trace:
[  692.414451][T32284]  dump_stack+0x1e9/0x30e
[  692.418776][T32284]  should_fail+0x433/0x5b0
[  692.423278][T32284]  prepare_alloc_pages+0x28c/0x4a0
[  692.428390][T32284]  __alloc_pages_nodemask+0xbc/0x5e0
21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, 0x0)
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  692.433679][T32284]  push_pipe+0x37a/0x630
[  692.437929][T32284]  iov_iter_get_pages_alloc+0xc70/0x1170
[  692.443565][T32284]  default_file_splice_read+0x125/0xa40
[  692.449122][T32284]  ? __mutex_lock_common+0x582/0x2fc0
[  692.454843][T32284]  ? memset+0x1f/0x40
[  692.458819][T32284]  ? fsnotify+0x12c3/0x1370
[  692.463330][T32284]  do_splice+0x15de/0x1a40
[  692.467841][T32284]  ? __fget_files+0x4b9/0x4e0
[  692.472529][T32284]  ? __fdget+0x199/0x220
[  692.476768][T32284]  __x64_sys_splice+0x14f/0x1f0
21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  692.481719][T32284]  do_syscall_64+0xf3/0x1b0
[  692.486222][T32284]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  692.492102][T32284] RIP: 0033:0x45ca59
[  692.495992][T32284] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  692.515582][T32284] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  692.523987][T32284] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
21:58:55 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(0xffffffffffffffff, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:55 executing program 3 (fault-call:4 fault-nth:15):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  692.531950][T32284] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  692.539911][T32284] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  692.547998][T32284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  692.555962][T32284] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  692.633592][T32298] FAULT_INJECTION: forcing a failure.
[  692.633592][T32298] name failslab, interval 1, probability 0, space 0, times 0
[  692.648262][T32298] CPU: 1 PID: 32298 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  692.656575][T32298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  692.666609][T32298] Call Trace:
[  692.669874][T32298]  dump_stack+0x1e9/0x30e
[  692.674189][T32298]  should_fail+0x433/0x5b0
[  692.678578][T32298]  ? sock_kmalloc+0x98/0x100
[  692.683134][T32298]  should_failslab+0x5/0x20
[  692.687605][T32298]  __kmalloc+0x74/0x330
[  692.691734][T32298]  sock_kmalloc+0x98/0x100
[  692.696120][T32298]  hash_recvmsg+0x1bd/0x810
[  692.700681][T32298]  ? hash_sendmsg+0xb40/0xb40
[  692.705327][T32298]  ____sys_recvmsg+0x24a/0x510
[  692.710071][T32298]  ? import_iovec+0x12a/0x2c0
[  692.714725][T32298]  do_recvmmsg+0x429/0x1500
[  692.719201][T32298]  ? rcu_lock_release+0x5/0x20
[  692.723955][T32298]  ? ksys_write+0x1b1/0x220
[  692.728432][T32298]  ? ksys_write+0x1b1/0x220
[  692.732953][T32298]  ? check_preemption_disabled+0xb0/0x240
[  692.738640][T32298]  ? debug_smp_processor_id+0x5/0x20
[  692.743984][T32298]  __x64_sys_recvmmsg+0x11d/0x1a0
[  692.748986][T32298]  do_syscall_64+0xf3/0x1b0
[  692.753467][T32298]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  692.759354][T32298] RIP: 0033:0x45ca59
[  692.763230][T32298] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  692.782800][T32298] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  692.791185][T32298] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  692.799246][T32298] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  692.807236][T32298] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  692.815184][T32298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  692.823228][T32298] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  692.837540][ T8150] usb 1-1: new high-speed USB device number 90 using dummy_hcd
[  692.845171][    T5] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  693.005078][T29588] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  693.115035][ T8150] usb 1-1: Using ep0 maxpacket: 16
[  693.135041][    T5] usb 3-1: device descriptor read/64, error 18
[  693.245350][ T8150] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  693.256497][ T8150] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  693.269371][ T8150] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  693.278793][T29588] usb 2-1: Using ep0 maxpacket: 16
[  693.284010][ T8150] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.294331][ T8150] usb 1-1: config 0 descriptor??
[  693.405231][T29588] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  693.415405][T29588] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  693.424377][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  693.433482][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.442349][T29588] usb 2-1: config 0 descriptor??
[  693.535033][    T5] usb 3-1: device descriptor read/64, error 18
[  693.766456][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.773776][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.794082][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.801606][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.812335][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.819804][    T5] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  693.830622][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.838159][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.849549][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.856898][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.864097][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.874675][ T8150] microsoft 0003:045E:07DA.0036: unknown main item tag 0x0
[  693.882340][ T8150] microsoft 0003:045E:07DA.0036: No inputs registered, leaving
[  693.894250][ T8150] microsoft 0003:045E:07DA.0036: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  693.911431][ T8150] microsoft 0003:045E:07DA.0036: no inputs found
[  693.917851][ T8150] microsoft 0003:045E:07DA.0036: could not initialize ff, continuing anyway
[  694.134952][    T5] usb 3-1: device descriptor read/64, error 18
[  694.174850][ T8150] usb 1-1: USB disconnect, device number 90
[  694.564957][    T5] usb 3-1: device descriptor read/64, error 18
[  694.685114][    T5] usb usb3-port1: attempt power cycle
21:58:58 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:58 executing program 4 (fault-call:3 fault-nth:16):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:58 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:58:58 executing program 3 (fault-call:4 fault-nth:16):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:58:58 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:58:58 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  695.422462][T27672] usb 2-1: USB disconnect, device number 33
[  695.483711][T32333] FAULT_INJECTION: forcing a failure.
[  695.483711][T32333] name failslab, interval 1, probability 0, space 0, times 0
[  695.518381][T32342] FAULT_INJECTION: forcing a failure.
[  695.518381][T32342] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  695.540704][T32333] CPU: 1 PID: 32333 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  695.549041][T32333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  695.559088][T32333] Call Trace:
[  695.562367][T32333]  dump_stack+0x1e9/0x30e
[  695.566689][T32333]  should_fail+0x433/0x5b0
[  695.571102][T32333]  ? sock_kmalloc+0x98/0x100
[  695.575672][T32333]  should_failslab+0x5/0x20
[  695.580150][T32333]  __kmalloc+0x74/0x330
[  695.584294][T32333]  sock_kmalloc+0x98/0x100
[  695.588706][T32333]  hash_recvmsg+0x1bd/0x810
[  695.593200][T32333]  ? hash_sendmsg+0xb40/0xb40
[  695.597852][T32333]  ____sys_recvmsg+0x24a/0x510
[  695.602601][T32333]  ? import_iovec+0x12a/0x2c0
[  695.607262][T32333]  do_recvmmsg+0x429/0x1500
[  695.611786][T32333]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  695.617234][T32333]  ? check_preemption_disabled+0xa2/0x240
[  695.622935][T32333]  ? retint_kernel+0x2b/0x2b
[  695.627508][T32333]  __x64_sys_recvmmsg+0x11d/0x1a0
[  695.632513][T32333]  do_syscall_64+0xf3/0x1b0
[  695.636999][T32333]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  695.642876][T32333] RIP: 0033:0x45ca59
[  695.646748][T32333] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  695.666329][T32333] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  695.674719][T32333] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  695.682672][T32333] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  695.690618][T32333] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  695.698567][T32333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  695.706521][T32333] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  695.714502][T32342] CPU: 0 PID: 32342 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  695.722828][T32342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  695.732875][T32342] Call Trace:
[  695.736161][T32342]  dump_stack+0x1e9/0x30e
[  695.740487][T32342]  should_fail+0x433/0x5b0
[  695.744899][T32342]  prepare_alloc_pages+0x28c/0x4a0
[  695.750009][T32342]  __alloc_pages_nodemask+0xbc/0x5e0
[  695.755300][T32342]  push_pipe+0x37a/0x630
[  695.759544][T32342]  iov_iter_get_pages_alloc+0xc70/0x1170
[  695.765196][T32342]  default_file_splice_read+0x125/0xa40
[  695.770753][T32342]  ? __mutex_lock_common+0x582/0x2fc0
[  695.776121][T32342]  ? memset+0x1f/0x40
[  695.780097][T32342]  ? fsnotify+0x12c3/0x1370
[  695.784605][T32342]  do_splice+0x15de/0x1a40
21:58:58 executing program 3 (fault-call:4 fault-nth:17):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  695.789025][T32342]  ? __fget_files+0x4b9/0x4e0
[  695.793702][T32342]  ? __fdget+0x199/0x220
[  695.797937][T32342]  __x64_sys_splice+0x14f/0x1f0
[  695.798896][T32351] FAULT_INJECTION: forcing a failure.
[  695.798896][T32351] name failslab, interval 1, probability 0, space 0, times 0
[  695.802786][T32342]  do_syscall_64+0xf3/0x1b0
[  695.802802][T32342]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  695.802812][T32342] RIP: 0033:0x45ca59
21:58:58 executing program 4 (fault-call:3 fault-nth:17):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:58:58 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  695.802823][T32342] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  695.802829][T32342] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  695.802839][T32342] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  695.802845][T32342] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  695.802852][T32342] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  695.802858][T32342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[  695.802864][T32342] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  695.895664][T32354] FAULT_INJECTION: forcing a failure.
[  695.895664][T32354] name failslab, interval 1, probability 0, space 0, times 0
[  695.921281][T32354] CPU: 0 PID: 32354 Comm: syz-executor.4 Not tainted 5.7.0-syzkaller #0
[  695.929611][T32354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  695.939678][T32354] Call Trace:
[  695.942967][T32354]  dump_stack+0x1e9/0x30e
[  695.947288][T32354]  should_fail+0x433/0x5b0
[  695.951696][T32354]  ? kmalloc_array+0x2b/0x50
[  695.956271][T32354]  should_failslab+0x5/0x20
[  695.960757][T32354]  __kmalloc+0x74/0x330
[  695.964906][T32354]  kmalloc_array+0x2b/0x50
[  695.969307][T32354]  rw_copy_check_uvector+0x95/0x380
[  695.974499][T32354]  import_iovec+0x8a/0x2c0
[  695.979253][T32354]  vfs_readv+0x90/0x120
[  695.983406][T32354]  ? iov_iter_get_pages_alloc+0xea4/0x1170
[  695.989223][T32354]  default_file_splice_read+0x579/0xa40
[  695.994804][T32354]  do_splice+0x15de/0x1a40
[  695.999226][T32354]  ? __fget_files+0x4b9/0x4e0
[  696.003900][T32354]  ? __fdget+0x199/0x220
[  696.008135][T32354]  __x64_sys_splice+0x14f/0x1f0
[  696.012992][T32354]  do_syscall_64+0xf3/0x1b0
[  696.017481][T32354]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  696.023377][T32354] RIP: 0033:0x45ca59
[  696.027278][T32354] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  696.046862][T32354] RSP: 002b:00007f2fddc65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  696.055258][T32354] RAX: ffffffffffffffda RBX: 0000000000508b00 RCX: 000000000045ca59
[  696.063217][T32354] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006
[  696.071173][T32354] RBP: 000000000078bf00 R08: 0000001000000008 R09: 0000000000000000
[  696.079131][T32354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
21:58:59 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  696.087090][T32354] R13: 0000000000000bde R14: 00000000004cedbb R15: 00007f2fddc666d4
[  696.095078][T32351] CPU: 1 PID: 32351 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  696.103392][T32351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  696.113438][T32351] Call Trace:
[  696.114779][T29588] usb 1-1: new high-speed USB device number 91 using dummy_hcd
[  696.116714][T32351]  dump_stack+0x1e9/0x30e
[  696.128543][T32351]  should_fail+0x433/0x5b0
[  696.132963][T32351]  ? sock_kmalloc+0x98/0x100
[  696.137547][T32351]  should_failslab+0x5/0x20
21:58:59 executing program 4 (fault-call:3 fault-nth:18):
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  696.142046][T32351]  __kmalloc+0x74/0x330
[  696.146208][T32351]  sock_kmalloc+0x98/0x100
[  696.150619][T32351]  hash_recvmsg+0x1bd/0x810
[  696.155124][T32351]  ? hash_sendmsg+0xb40/0xb40
[  696.159825][T32351]  ____sys_recvmsg+0x24a/0x510
[  696.164600][T32351]  ? import_iovec+0x12a/0x2c0
[  696.169305][T32351]  do_recvmmsg+0x429/0x1500
[  696.173843][T32351]  ? ksys_write+0x1b1/0x220
[  696.178344][T32351]  ? ksys_write+0x1b1/0x220
[  696.182849][T32351]  ? check_preemption_disabled+0xb0/0x240
21:58:59 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  696.188571][T32351]  ? debug_smp_processor_id+0x5/0x20
[  696.193862][T32351]  __x64_sys_recvmmsg+0x11d/0x1a0
[  696.198888][T32351]  do_syscall_64+0xf3/0x1b0
[  696.203382][T32351]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  696.209264][T32351] RIP: 0033:0x45ca59
[  696.213150][T32351] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  696.232749][T32351] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  696.241143][T32351] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  696.249121][T32351] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  696.257085][T32351] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  696.265050][T32351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  696.273015][T32351] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  696.287081][T27672] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  696.294747][    T5] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  696.504873][    T5] usb 3-1: device descriptor read/8, error -61
[  696.514774][T29588] usb 1-1: Using ep0 maxpacket: 16
[  696.534760][T27672] usb 2-1: Using ep0 maxpacket: 16
[  696.645822][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.654876][T27672] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  696.662004][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  696.669016][T27672] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  696.680102][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  696.690797][T27672] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  696.704175][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.709071][T27672] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.721565][T29588] usb 1-1: config 0 descriptor??
[  696.735613][T27672] usb 2-1: config 0 descriptor??
[  696.796290][    T5] usb 3-1: device descriptor read/8, error -61
[  697.064726][    T5] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  697.226183][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.233418][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.250564][    T5] usb 3-1: device descriptor read/8, error -61
[  697.256849][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.264050][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.276944][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.284177][T29588] microsoft 0003:045E:07DA.0037: unknown main item tag 0x0
[  697.297657][T29588] microsoft 0003:045E:07DA.0037: No inputs registered, leaving
[  697.306626][T29588] microsoft 0003:045E:07DA.0037: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  697.318638][T29588] microsoft 0003:045E:07DA.0037: no inputs found
[  697.325286][T29588] microsoft 0003:045E:07DA.0037: could not initialize ff, continuing anyway
[  697.524820][    T5] usb 3-1: device descriptor read/8, error -61
[  697.634376][T29588] usb 1-1: USB disconnect, device number 91
[  697.654820][    T5] usb usb3-port1: unable to enumerate USB device
21:59:01 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:01 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

21:59:01 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:01 executing program 3 (fault-call:4 fault-nth:18):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:01 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:01 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  698.688783][    T5] usb 2-1: USB disconnect, device number 34
21:59:01 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000010, 0x0)

[  698.795904][T32406] FAULT_INJECTION: forcing a failure.
[  698.795904][T32406] name failslab, interval 1, probability 0, space 0, times 0
[  698.810142][T32406] CPU: 1 PID: 32406 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  698.818483][T32406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  698.828529][T32406] Call Trace:
[  698.831816][T32406]  dump_stack+0x1e9/0x30e
[  698.836166][T32406]  should_fail+0x433/0x5b0
[  698.840581][T32406]  ? sock_kmalloc+0x98/0x100
21:59:01 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
syz_open_pts(r1, 0x4000000000000002)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r2, 0x540a, 0x1)

[  698.845163][T32406]  should_failslab+0x5/0x20
[  698.849655][T32406]  __kmalloc+0x74/0x330
[  698.853809][T32406]  sock_kmalloc+0x98/0x100
[  698.858223][T32406]  hash_recvmsg+0x1bd/0x810
[  698.862738][T32406]  ? hash_sendmsg+0xb40/0xb40
[  698.867424][T32406]  ____sys_recvmsg+0x24a/0x510
[  698.872199][T32406]  ? import_iovec+0x12a/0x2c0
[  698.876887][T32406]  do_recvmmsg+0x429/0x1500
[  698.881411][T32406]  ? retint_kernel+0x2b/0x2b
[  698.886020][T32406]  ? do_syscall_64+0xb5/0x1b0
[  698.890708][T32406]  __x64_sys_recvmmsg+0x11d/0x1a0
21:59:01 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:01 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  698.895728][T32406]  do_syscall_64+0xf3/0x1b0
[  698.900230][T32406]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  698.906115][T32406] RIP: 0033:0x45ca59
[  698.909998][T32406] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  698.929607][T32406] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  698.938096][T32406] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
21:59:01 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, 0xffffffffffffffff, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:02 executing program 3 (fault-call:4 fault-nth:19):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  698.946062][T32406] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  698.954027][T32406] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  698.961989][T32406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  698.969951][T32406] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  699.068340][T32426] FAULT_INJECTION: forcing a failure.
[  699.068340][T32426] name failslab, interval 1, probability 0, space 0, times 0
[  699.081626][T32426] CPU: 1 PID: 32426 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  699.089934][T32426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  699.099981][T32426] Call Trace:
[  699.103246][T32426]  dump_stack+0x1e9/0x30e
[  699.107555][T32426]  should_fail+0x433/0x5b0
[  699.111948][T32426]  ? sock_kmalloc+0x98/0x100
[  699.116509][T32426]  should_failslab+0x5/0x20
[  699.120982][T32426]  __kmalloc+0x74/0x330
[  699.125127][T32426]  sock_kmalloc+0x98/0x100
[  699.129516][T32426]  hash_recvmsg+0x1bd/0x810
[  699.133991][T32426]  ? hash_sendmsg+0xb40/0xb40
[  699.138636][T32426]  ____sys_recvmsg+0x24a/0x510
[  699.143391][T32426]  ? import_iovec+0x12a/0x2c0
[  699.148047][T32426]  do_recvmmsg+0x429/0x1500
[  699.152541][T32426]  ? rcu_lock_release+0x5/0x20
[  699.157288][T32426]  ? ksys_write+0x1b1/0x220
[  699.161802][T32426]  ? ksys_write+0x1b1/0x220
[  699.166284][T32426]  ? check_preemption_disabled+0xb0/0x240
[  699.171972][T32426]  ? debug_smp_processor_id+0x5/0x20
[  699.177229][T32426]  __x64_sys_recvmmsg+0x11d/0x1a0
[  699.182242][T32426]  do_syscall_64+0xf3/0x1b0
[  699.186740][T32426]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  699.192629][T32426] RIP: 0033:0x45ca59
[  699.196493][T32426] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  699.216071][T32426] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  699.224458][T32426] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  699.232411][T32426] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  699.240354][T32426] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  699.248293][T32426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  699.256242][T32426] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  699.278164][ T2494] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  699.285909][ T2506] usb 1-1: new high-speed USB device number 92 using dummy_hcd
[  699.464577][    T5] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  699.524558][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  699.564746][ T2494] usb 3-1: device descriptor read/64, error 18
[  699.644938][ T2506] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  699.655883][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  699.669877][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  699.679771][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  699.689791][ T2506] usb 1-1: config 0 descriptor??
[  699.744820][    T5] usb 2-1: Using ep0 maxpacket: 16
[  699.884660][    T5] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  699.894824][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  699.908054][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  699.917188][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  699.926865][    T5] usb 2-1: config 0 descriptor??
[  699.954610][ T2494] usb 3-1: device descriptor read/64, error 18
[  699.968037][    T5] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  700.175695][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.182932][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.201092][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.211214][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.224497][ T2494] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  700.232109][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.243974][ T2506] microsoft 0003:045E:07DA.0038: unknown main item tag 0x0
[  700.254190][ T2506] microsoft 0003:045E:07DA.0038: No inputs registered, leaving
[  700.270210][ T2506] microsoft 0003:045E:07DA.0038: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  700.286207][ T2506] microsoft 0003:045E:07DA.0038: no inputs found
[  700.292537][ T2506] microsoft 0003:045E:07DA.0038: could not initialize ff, continuing anyway
[  700.494465][ T2494] usb 3-1: device descriptor read/64, error 18
[  700.577414][    T5] usb 1-1: USB disconnect, device number 92
[  700.884449][ T2494] usb 3-1: device descriptor read/64, error 18
[  701.004615][ T2494] usb usb3-port1: attempt power cycle
[  701.722631][ T2494] usb 3-1: new high-speed USB device number 35 using dummy_hcd
21:59:04 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:04 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x2)

21:59:04 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:04 executing program 3 (fault-call:4 fault-nth:20):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:04 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  701.870205][ T3370] usb 2-1: USB disconnect, device number 35
21:59:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0xf)

[  701.992201][T32475] FAULT_INJECTION: forcing a failure.
[  701.992201][T32475] name failslab, interval 1, probability 0, space 0, times 0
[  702.014053][T32475] CPU: 0 PID: 32475 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  702.022403][T32475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  702.032469][T32475] Call Trace:
[  702.035757][T32475]  dump_stack+0x1e9/0x30e
21:59:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x10)

[  702.040084][T32475]  should_fail+0x433/0x5b0
[  702.044520][T32475]  ? sock_kmalloc+0x98/0x100
[  702.049095][T32475]  should_failslab+0x5/0x20
[  702.053594][T32475]  __kmalloc+0x74/0x330
[  702.057749][T32475]  sock_kmalloc+0x98/0x100
[  702.062150][T32475]  hash_recvmsg+0x1bd/0x810
[  702.066629][T32475]  ? hash_sendmsg+0xb40/0xb40
[  702.071289][T32475]  ____sys_recvmsg+0x24a/0x510
[  702.076044][T32475]  ? import_iovec+0x12a/0x2c0
[  702.080705][T32475]  do_recvmmsg+0x429/0x1500
[  702.085250][T32475]  ? rcu_read_lock_sched_held+0x2f/0xa0
21:59:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0xf00)

[  702.090781][T32475]  ? check_preemption_disabled+0xb0/0x240
[  702.096490][T32475]  ? debug_smp_processor_id+0x5/0x20
[  702.101779][T32475]  __x64_sys_recvmmsg+0x11d/0x1a0
[  702.106807][T32475]  do_syscall_64+0xf3/0x1b0
[  702.111309][T32475]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  702.117191][T32475] RIP: 0033:0x45ca59
[  702.121057][T32475] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x1000000)

[  702.140641][T32475] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  702.149043][T32475] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  702.157004][T32475] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  702.164981][T32475] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  702.172945][T32475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  702.181038][T32475] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:05 executing program 3 (fault-call:4 fault-nth:21):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x2000000)

[  702.204578][ T2494] usb 3-1: device not accepting address 35, error -71
[  702.270155][T32498] FAULT_INJECTION: forcing a failure.
[  702.270155][T32498] name failslab, interval 1, probability 0, space 0, times 0
[  702.283794][T32498] CPU: 0 PID: 32498 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  702.292123][T32498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  702.302152][T32498] Call Trace:
[  702.305421][T32498]  dump_stack+0x1e9/0x30e
[  702.309738][T32498]  should_fail+0x433/0x5b0
[  702.314149][T32498]  ? sock_kmalloc+0x98/0x100
[  702.318710][T32498]  should_failslab+0x5/0x20
[  702.323336][T32498]  __kmalloc+0x74/0x330
[  702.324319][ T3370] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  702.327474][T32498]  sock_kmalloc+0x98/0x100
[  702.327488][T32498]  hash_recvmsg+0x1bd/0x810
[  702.327502][T32498]  ? hash_sendmsg+0xb40/0xb40
[  702.327514][T32498]  ____sys_recvmsg+0x24a/0x510
[  702.327538][T32498]  ? import_iovec+0x12a/0x2c0
[  702.327552][T32498]  do_recvmmsg+0x429/0x1500
[  702.327582][T32498]  ? ksys_write+0x1b1/0x220
[  702.366898][T32498]  ? ksys_write+0x1b1/0x220
[  702.371450][T32498]  ? check_preemption_disabled+0xb0/0x240
[  702.377142][T32498]  ? debug_smp_processor_id+0x5/0x20
[  702.382402][T32498]  __x64_sys_recvmmsg+0x11d/0x1a0
[  702.387404][T32498]  do_syscall_64+0xf3/0x1b0
[  702.391880][T32498]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  702.397747][T32498] RIP: 0033:0x45ca59
[  702.401612][T32498] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  702.421197][T32498] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  702.429679][T32498] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  702.437665][T32498] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  702.445645][T32498] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  702.453613][T32498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  702.461588][T32498] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  702.475546][    T5] usb 1-1: new high-speed USB device number 93 using dummy_hcd
[  702.574296][ T3370] usb 2-1: Using ep0 maxpacket: 16
[  702.585364][ T2494] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  702.695933][ T3370] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  702.706068][ T3370] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  702.719491][ T3370] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  702.728985][ T3370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  702.734337][    T5] usb 1-1: Using ep0 maxpacket: 16
[  702.742413][ T3370] usb 2-1: config 0 descriptor??
[  702.754414][ T2494] usb 3-1: device descriptor read/8, error -61
[  702.785009][ T3370] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  702.874329][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  702.885284][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  702.899759][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  702.909445][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  702.923047][    T5] usb 1-1: config 0 descriptor??
[  703.024372][ T2494] usb 3-1: device descriptor read/8, error -61
[  703.144388][ T2494] usb usb3-port1: unable to enumerate USB device
[  703.395780][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.403018][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.418789][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.426455][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.433789][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.441335][    T5] microsoft 0003:045E:07DA.0039: unknown main item tag 0x0
[  703.449225][    T5] microsoft 0003:045E:07DA.0039: No inputs registered, leaving
[  703.462646][    T5] microsoft 0003:045E:07DA.0039: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  703.479186][    T5] microsoft 0003:045E:07DA.0039: no inputs found
[  703.489457][    T5] microsoft 0003:045E:07DA.0039: could not initialize ff, continuing anyway
[  703.799004][    T5] usb 1-1: USB disconnect, device number 93
21:59:07 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:07 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0xf000000)

21:59:07 executing program 3 (fault-call:4 fault-nth:22):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:07 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:07 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be80"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:07 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  704.908180][    T5] usb 2-1: USB disconnect, device number 36
[  705.038892][T32544] FAULT_INJECTION: forcing a failure.
[  705.038892][T32544] name failslab, interval 1, probability 0, space 0, times 0
[  705.059579][T32544] CPU: 1 PID: 32544 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  705.067905][T32544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  705.077935][T32544] Call Trace:
[  705.081212][T32544]  dump_stack+0x1e9/0x30e
[  705.085519][T32544]  should_fail+0x433/0x5b0
[  705.089912][T32544]  ? sock_kmalloc+0x98/0x100
[  705.094481][T32544]  should_failslab+0x5/0x20
[  705.098954][T32544]  __kmalloc+0x74/0x330
[  705.103083][T32544]  sock_kmalloc+0x98/0x100
[  705.107472][T32544]  hash_recvmsg+0x1bd/0x810
[  705.111951][T32544]  ? hash_sendmsg+0xb40/0xb40
[  705.116602][T32544]  ____sys_recvmsg+0x24a/0x510
[  705.121343][T32544]  ? import_iovec+0x12a/0x2c0
[  705.126014][T32544]  do_recvmmsg+0x429/0x1500
[  705.130489][T32544]  ? rcu_lock_release+0x5/0x20
[  705.135241][T32544]  ? ksys_write+0x1b1/0x220
[  705.139712][T32544]  ? ksys_write+0x1b1/0x220
[  705.144186][T32544]  ? check_preemption_disabled+0xb0/0x240
[  705.149879][T32544]  ? debug_smp_processor_id+0x5/0x20
[  705.155146][T32544]  __x64_sys_recvmmsg+0x11d/0x1a0
[  705.160151][T32544]  do_syscall_64+0xf3/0x1b0
[  705.164671][T32544]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  705.170534][T32544] RIP: 0033:0x45ca59
[  705.174455][T32544] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  705.194036][T32544] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  705.202430][T32544] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  705.210373][T32544] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  705.218314][T32544] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  705.226256][T32544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
21:59:08 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x10000000)

[  705.234204][T32544] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:08 executing program 3 (fault-call:4 fault-nth:23):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:08 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x10000000000)

[  705.338525][T32558] FAULT_INJECTION: forcing a failure.
[  705.338525][T32558] name failslab, interval 1, probability 0, space 0, times 0
[  705.352510][T32558] CPU: 0 PID: 32558 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  705.360837][T32558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  705.370881][T32558] Call Trace:
[  705.374168][T32558]  dump_stack+0x1e9/0x30e
[  705.378508][T32558]  should_fail+0x433/0x5b0
[  705.382925][T32558]  ? sock_kmalloc+0x98/0x100
21:59:08 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x100000000000000)

21:59:08 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x200000000000000)

[  705.387523][T32558]  should_failslab+0x5/0x20
[  705.392015][T32558]  __kmalloc+0x74/0x330
[  705.396168][T32558]  sock_kmalloc+0x98/0x100
[  705.400582][T32558]  hash_recvmsg+0x1bd/0x810
[  705.405082][T32558]  ? hash_sendmsg+0xb40/0xb40
[  705.409747][T32558]  ____sys_recvmsg+0x24a/0x510
[  705.414514][T32558]  ? import_iovec+0x12a/0x2c0
[  705.419203][T32558]  do_recvmmsg+0x429/0x1500
[  705.423719][T32558]  ? rcu_lock_release+0x5/0x20
[  705.428498][T32558]  ? check_preemption_disabled+0xa2/0x240
[  705.434228][T32558]  ? retint_kernel+0x2b/0x2b
21:59:08 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0xf00000000000000)

[  705.438816][T32558]  ? check_preemption_disabled+0xb0/0x240
[  705.444524][T32558]  ? debug_smp_processor_id+0x5/0x20
[  705.449801][T32558]  __x64_sys_recvmmsg+0x11d/0x1a0
[  705.454837][T32558]  do_syscall_64+0xf3/0x1b0
[  705.459335][T32558]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  705.465213][T32558] RIP: 0033:0x45ca59
[  705.469096][T32558] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  705.488690][T32558] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  705.497090][T32558] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  705.505065][T32558] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  705.513028][T32558] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  705.520970][T32558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  705.529066][T32558] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  705.541702][ T8150] usb 1-1: new high-speed USB device number 94 using dummy_hcd
[  705.756780][    T5] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  705.764579][T29588] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  705.814257][ T8150] usb 1-1: Using ep0 maxpacket: 16
[  705.934574][ T8150] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  705.945554][ T8150] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  705.958800][ T8150] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  705.968100][ T8150] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  705.977909][ T8150] usb 1-1: config 0 descriptor??
[  706.014762][    T5] usb 2-1: Using ep0 maxpacket: 16
[  706.020871][T29588] usb 3-1: Using ep0 maxpacket: 16
[  706.174139][T29588] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.184318][    T5] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.194448][T29588] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  706.203379][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  706.215049][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  706.228587][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  706.238237][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.246637][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.259614][T29588] usb 3-1: config 0 descriptor??
[  706.270263][    T5] usb 2-1: config 0 descriptor??
[  706.324983][    T5] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  706.455577][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.462832][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.472180][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.489947][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.497513][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.505055][ T8150] microsoft 0003:045E:07DA.003A: unknown main item tag 0x0
[  706.512659][ T8150] microsoft 0003:045E:07DA.003A: No inputs registered, leaving
[  706.521122][ T8150] microsoft 0003:045E:07DA.003A: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  706.535579][ T8150] microsoft 0003:045E:07DA.003A: no inputs found
[  706.541909][ T8150] microsoft 0003:045E:07DA.003A: could not initialize ff, continuing anyway
[  706.859896][T27672] usb 1-1: USB disconnect, device number 94
21:59:11 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:11 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x1000000000000000)

21:59:11 executing program 3 (fault-call:4 fault-nth:24):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:11 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:11 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be80"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:11 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  708.216081][ T8150] usb 3-1: USB disconnect, device number 37
[  708.251678][T29588] usb 2-1: USB disconnect, device number 37
21:59:11 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0xffffffff00000000)

[  708.380787][T32624] FAULT_INJECTION: forcing a failure.
[  708.380787][T32624] name failslab, interval 1, probability 0, space 0, times 0
[  708.407011][T32624] CPU: 0 PID: 32624 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  708.415353][T32624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  708.425401][T32624] Call Trace:
21:59:11 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.capability\x00', &(0x7f0000000100)=@v1={0x1000000, [{0x7, 0x40}]}, 0xc, 0x3)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)

[  708.428690][T32624]  dump_stack+0x1e9/0x30e
[  708.433012][T32624]  should_fail+0x433/0x5b0
[  708.437435][T32624]  ? sock_kmalloc+0x98/0x100
[  708.442020][T32624]  should_failslab+0x5/0x20
[  708.446526][T32624]  __kmalloc+0x74/0x330
[  708.450681][T32624]  sock_kmalloc+0x98/0x100
[  708.455095][T32624]  hash_recvmsg+0x1bd/0x810
[  708.459598][T32624]  ? hash_sendmsg+0xb40/0xb40
[  708.464270][T32624]  ____sys_recvmsg+0x24a/0x510
[  708.469045][T32624]  ? import_iovec+0x12a/0x2c0
[  708.473720][T32624]  do_recvmmsg+0x429/0x1500
21:59:11 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SCSI_IOCTL_START_UNIT(r0, 0x5)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000000c0)=@raw={'raw\x00', 0x9, 0x3, 0x298, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x200, 0xffffffff, 0xffffffff, 0x200, 0xffffffff, 0x3, &(0x7f0000000080), {[{{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast, 0x0, 0xffffff00, '\x00', 'ipvlan1\x00', {}, {}, 0x6c, 0x2, 0xa}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x5, 0xcab, 0x3, 0x2, 'snmp\x00', 'syz1\x00', {0x3}}}}, {{@uncond, 0x0, 0xc0, 0x128, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}, {0x6}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x2, 0x4, 0x5, 'syz0\x00', 'syz1\x00', {0xfe9e}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f8)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
set_thread_area(&(0x7f0000000400)={0xc, 0x20000000, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1})
write$tun(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="0000809b032609b6702edf784a89c4384221f3485fe7ec42bdd09cd36c3ee888e6157fd7fe57f7f23a9879907555ced302cc"], 0x32)

21:59:11 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000100)={0x9, &(0x7f0000000080)=[{0x2d, 0x0, 0xfb, 0x5}, {0x9, 0x1, 0x80, 0x6}, {0x400, 0x9, 0x7, 0x4}, {0x20, 0x7, 0xbe, 0x8}, {0x0, 0xaa, 0x81, 0xe63}, {0x3c, 0x76, 0xa3, 0x7}, {0x7, 0x1, 0x23, 0x400}, {0x2, 0x0, 0xcb, 0x4b}, {0x3, 0x5, 0x4, 0x1}]}, 0x10)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  708.478341][T32624]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  708.483787][T32624]  ? check_preemption_disabled+0xa2/0x240
[  708.489501][T32624]  ? retint_kernel+0x2b/0x2b
[  708.494100][T32624]  __x64_sys_recvmmsg+0x11d/0x1a0
[  708.499126][T32624]  do_syscall_64+0xf3/0x1b0
[  708.503628][T32624]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  708.509511][T32624] RIP: 0033:0x45ca59
21:59:11 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x44, 0xb00c0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x111500, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  708.513397][T32624] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  708.532992][T32624] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  708.541397][T32624] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  708.549358][T32624] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  708.557321][T32624] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  708.565286][T32624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  708.573252][T32624] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:11 executing program 3 (fault-call:4 fault-nth:25):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  708.648535][T32651] FAULT_INJECTION: forcing a failure.
[  708.648535][T32651] name failslab, interval 1, probability 0, space 0, times 0
[  708.662829][T32651] CPU: 1 PID: 32651 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  708.671162][T32651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  708.681201][T32651] Call Trace:
[  708.684475][T32651]  dump_stack+0x1e9/0x30e
[  708.688791][T32651]  should_fail+0x433/0x5b0
[  708.693196][T32651]  ? sock_kmalloc+0x98/0x100
[  708.697753][T32651]  should_failslab+0x5/0x20
[  708.702223][T32651]  __kmalloc+0x74/0x330
[  708.706365][T32651]  sock_kmalloc+0x98/0x100
[  708.710762][T32651]  hash_recvmsg+0x1bd/0x810
[  708.715264][T32651]  ? hash_sendmsg+0xb40/0xb40
[  708.719910][T32651]  ____sys_recvmsg+0x24a/0x510
[  708.724656][T32651]  ? import_iovec+0x12a/0x2c0
[  708.729308][T32651]  do_recvmmsg+0x429/0x1500
[  708.733796][T32651]  ? ksys_write+0x1b1/0x220
[  708.738279][T32651]  ? ksys_write+0x1b1/0x220
[  708.742755][T32651]  ? check_preemption_disabled+0xb0/0x240
[  708.748443][T32651]  ? debug_smp_processor_id+0x5/0x20
[  708.753705][T32651]  __x64_sys_recvmmsg+0x11d/0x1a0
[  708.758719][T32651]  do_syscall_64+0xf3/0x1b0
[  708.763205][T32651]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  708.769066][T32651] RIP: 0033:0x45ca59
[  708.772936][T32651] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  708.792515][T32651] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  708.800903][T32651] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  708.808858][T32651] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  708.816799][T32651] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  708.824880][T32651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  708.832821][T32651] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  708.913797][    T5] usb 1-1: new high-speed USB device number 95 using dummy_hcd
[  709.053840][T29588] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  709.053931][ T8150] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  709.173811][    T5] usb 1-1: Using ep0 maxpacket: 16
[  709.303898][ T8150] usb 3-1: Using ep0 maxpacket: 16
[  709.309184][T29588] usb 2-1: Using ep0 maxpacket: 16
[  709.314354][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  709.325433][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  709.340435][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  709.350197][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.360425][    T5] usb 1-1: config 0 descriptor??
[  709.454027][T29588] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  709.464547][ T8150] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  709.474861][ T8150] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  709.485710][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  709.499526][ T8150] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  709.509213][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  709.518932][ T8150] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.527532][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.537616][ T8150] usb 3-1: config 0 descriptor??
[  709.548484][T29588] usb 2-1: config 0 descriptor??
[  709.584828][T29588] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  709.845186][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.852539][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.873048][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.883149][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.894323][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.901527][    T5] microsoft 0003:045E:07DA.003B: unknown main item tag 0x0
[  709.914514][    T5] microsoft 0003:045E:07DA.003B: No inputs registered, leaving
[  709.927675][    T5] microsoft 0003:045E:07DA.003B: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  709.939463][    T5] microsoft 0003:045E:07DA.003B: no inputs found
[  709.953727][    T5] microsoft 0003:045E:07DA.003B: could not initialize ff, continuing anyway
[  710.247690][    T5] usb 1-1: USB disconnect, device number 95
21:59:14 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="070000000c00000000000203000008000300", @ANYRES32=r3, @ANYBLOB='\n\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\v\x00\x00\x00\x00\x00'], 0x30}}, 0x0)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r4, 0x1c02, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="8ae5f3898b43"}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r6, 0x0, r5, 0x0, 0x1000000008, 0x0)

21:59:14 executing program 3 (fault-call:4 fault-nth:26):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:14 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:14 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be80"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  711.501692][ T3370] usb 3-1: USB disconnect, device number 38
[  711.511706][    T5] usb 2-1: USB disconnect, device number 38
21:59:14 executing program 4:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  711.664581][T32707] FAULT_INJECTION: forcing a failure.
[  711.664581][T32707] name failslab, interval 1, probability 0, space 0, times 0
[  711.678841][T32707] CPU: 1 PID: 32707 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  711.687337][T32707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  711.697383][T32707] Call Trace:
[  711.700659][T32707]  dump_stack+0x1e9/0x30e
[  711.704989][T32707]  should_fail+0x433/0x5b0
[  711.709406][T32707]  ? sock_kmalloc+0x98/0x100
21:59:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x802)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  711.713990][T32707]  should_failslab+0x5/0x20
[  711.718484][T32707]  __kmalloc+0x74/0x330
[  711.722636][T32707]  sock_kmalloc+0x98/0x100
[  711.727052][T32707]  hash_recvmsg+0x1bd/0x810
[  711.731554][T32707]  ? hash_sendmsg+0xb40/0xb40
[  711.736215][T32707]  ____sys_recvmsg+0x24a/0x510
[  711.740970][T32707]  ? retint_kernel+0x2b/0x2b
[  711.745563][T32707]  ? import_iovec+0x12a/0x2c0
[  711.750253][T32707]  do_recvmmsg+0x429/0x1500
[  711.754758][T32707]  ? trace_hardirqs_on_thunk+0x1a/0x1c
21:59:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  711.760240][T32707]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  711.765701][T32707]  ? check_preemption_disabled+0xa2/0x240
[  711.771423][T32707]  ? retint_kernel+0x2b/0x2b
[  711.776010][T32707]  __x64_sys_recvmmsg+0x11d/0x1a0
[  711.781037][T32707]  do_syscall_64+0xf3/0x1b0
[  711.785543][T32707]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  711.791426][T32707] RIP: 0033:0x45ca59
[  711.795309][T32707] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0xffffffff, 0x101200)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  711.814900][T32707] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  711.823303][T32707] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  711.831265][T32707] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  711.839227][T32707] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  711.847190][T32707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  711.855154][T32707] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  712.023531][T27672] usb 1-1: new high-speed USB device number 96 using dummy_hcd
[  712.123578][ T3370] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  712.153498][    T5] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  712.263517][T27672] usb 1-1: Using ep0 maxpacket: 16
[  712.363819][ T3370] usb 3-1: Using ep0 maxpacket: 16
[  712.384105][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  712.400878][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  712.420981][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  712.423584][    T5] usb 2-1: Using ep0 maxpacket: 16
[  712.430742][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.452162][T27672] usb 1-1: config 0 descriptor??
[  712.493794][ T3370] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  712.508568][ T3370] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  712.518537][ T3370] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  712.528048][ T3370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.542050][ T3370] usb 3-1: config 0 descriptor??
[  712.573803][    T5] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  712.588548][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  712.613695][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  712.622737][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  712.655884][    T5] usb 2-1: config 0 descriptor??
[  712.694404][    T5] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  712.944965][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  712.967076][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  712.996962][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  713.013554][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  713.020941][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  713.035834][T27672] microsoft 0003:045E:07DA.003C: unknown main item tag 0x0
[  713.049820][T27672] microsoft 0003:045E:07DA.003C: No inputs registered, leaving
[  713.066210][T27672] microsoft 0003:045E:07DA.003C: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  713.089072][T27672] microsoft 0003:045E:07DA.003C: no inputs found
[  713.115879][T27672] microsoft 0003:045E:07DA.003C: could not initialize ff, continuing anyway
[  713.356250][T27672] usb 1-1: USB disconnect, device number 96
[  714.551957][T27672] usb 3-1: USB disconnect, device number 39
21:59:17 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:17 executing program 3 (fault-call:4 fault-nth:27):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:17 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x410402, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f00000017c0)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001780)={&(0x7f0000001800)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="00012bbd7000fddbdf25030000364358e1e02db200140006006772653000000000000000000087000000000500e000000105000100000000002000070073797374656d04733a125175d668038de54a5f753a6f626a6563745f723a636572745f743a73300014000200fe8000000000000000000080000000aa2700070073797374656d5f753a6f626afd63745f723a6c986d5f636f6e74726f6c5f743a07000000080004000a01010114000200ff0100000000000000000000000000013af6d9659dba5e84ad771490492e22343cd17d34c80fb4990aa832fa81db688b5a2ce8cc654190f3b874583461d0b706e7aded4b38314c43bf4a11"], 0xb0}, 0x1, 0x0, 0x0, 0x20044040}, 0x20000)
pipe(&(0x7f0000001280)={<r4=>0xffffffffffffffff})
ioctl$KDDISABIO(r4, 0x4b37)
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x7, 0xa, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff}, [@map={0x18, 0xb, 0x1, 0x0, r0}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffe}, @generic={0x8, 0x2, 0xd, 0x401, 0xffffffc0}, @exit, @call={0x85, 0x0, 0x0, 0x7e}, @func={0x85, 0x0, 0x1, 0x0, 0x8}]}, &(0x7f0000000140)='GPL\x00', 0xfd04, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x0, [], 0x0, 0x1f, r1, 0x8, &(0x7f00000012c0)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000011c0)={0x4, 0x8, 0x3, 0x3}, 0x10, 0x0, r2}, 0x78)
ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000001480)={0x1, 0x2, 0x1000, 0xef, &(0x7f0000001300)="2b2d91cb0ba2e5bb00e51bda5b0bf01133c49a0cb1ee772aa99bfa35758f2cdc01a4380ad01c167e9c8de3f3d0a76d529eff5c5bbfbd5a8a17c2b3aef2f94e7242c123865df7737092ae8d8c29bf77fcec09c7b37ec2d7ff5c5fbae58f2c4e1699b6bd0b92460ee3e45dfc39882572472fb025030811beb71e0a1675db28b193f4fb4e068bab2567a21f15387be387b75652834b186293ae72b476065adb98e012cf93d6ce64b9d817eab753c914869705f49f1d80b0203ab83064448152dd09ce632926c21603b1d335590660e810f4fa8a287120510ae9a18e799d171198c29e3c9a7279a9418f0c0c044498fbbc", 0x80, 0x0, &(0x7f0000001400)="137f54b0f07d80597e10ca321c3bbfa259d3ad47d47e985b44d142f60b9ee84edda5e8d9d3547a394db99e1984d52745336d10d9ed1101aaa8cbe9e0f1fd6d2bea223e1cd1769d2e8b71ed611f5a601260dab16b492384545bd76367845cd8bd3d97191072d3830750b4f2234ac45134030e6c251704e467bfbf4fca536c611e"})
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
r5 = syz_open_dev$video(0x0, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x3a8, 0x3600)
stat(&(0x7f0000001180)='./file0\x00', &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f0000001580)={{{@in6=@loopback, @in6=@rand_addr=' \x01\x00', 0x4e21, 0x6, 0x4e21, 0x0, 0xa, 0x20, 0x80, 0xf7, 0x0, r7}, {0x5f8, 0x100000001, 0xfffffffffffffffb, 0xffffffffffff0000, 0x7fff, 0xffffffffffffff7e, 0x100000001, 0x10000}, {0x3, 0x0, 0x8, 0xffffffff}, 0x3f, 0x6e6bba, 0x0, 0x0, 0x1, 0x2}, {{@in6=@mcast2, 0x4d6, 0x6c}, 0xa, @in6=@mcast2, 0x3503, 0x1, 0x1, 0x3, 0x7, 0x1, 0x6}}, 0xe8)
splice(r5, 0x0, r3, 0x0, 0x81, 0xa)

21:59:17 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:17 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  714.615723][ T2494] usb 2-1: USB disconnect, device number 39
[  714.736739][  T318] FAULT_INJECTION: forcing a failure.
[  714.736739][  T318] name failslab, interval 1, probability 0, space 0, times 0
[  714.759303][  T318] CPU: 0 PID: 318 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  714.767457][  T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  714.777501][  T318] Call Trace:
[  714.780792][  T318]  dump_stack+0x1e9/0x30e
[  714.785122][  T318]  should_fail+0x433/0x5b0
[  714.789561][  T318]  ? sock_kmalloc+0x98/0x100
[  714.794147][  T318]  should_failslab+0x5/0x20
[  714.798634][  T318]  __kmalloc+0x74/0x330
[  714.802788][  T318]  sock_kmalloc+0x98/0x100
[  714.807198][  T318]  hash_recvmsg+0x1bd/0x810
[  714.811699][  T318]  ? hash_sendmsg+0xb40/0xb40
[  714.816370][  T318]  ____sys_recvmsg+0x24a/0x510
[  714.821125][  T318]  ? import_iovec+0x12a/0x2c0
[  714.825792][  T318]  do_recvmmsg+0x429/0x1500
[  714.830319][  T318]  ? trace_hardirqs_on_thunk+0x1a/0x1c
21:59:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:17 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
fcntl$setsig(r1, 0xa, 0x35)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  714.835772][  T318]  ? check_preemption_disabled+0xa2/0x240
[  714.841490][  T318]  ? retint_kernel+0x2b/0x2b
[  714.846190][  T318]  __x64_sys_recvmmsg+0x11d/0x1a0
[  714.851207][  T318]  do_syscall_64+0xf3/0x1b0
[  714.855695][  T318]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  714.861591][  T318] RIP: 0033:0x45ca59
[  714.865487][  T318] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:17 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
write$P9_RWALK(r2, &(0x7f0000000080)={0x71, 0x6f, 0x1, {0x8, [{0x10, 0x4, 0x1}, {0x1, 0x2, 0x6}, {0x4, 0x0, 0x3}, {0x10, 0x0, 0x8}, {0x8, 0x3, 0x7}, {0x20, 0x2, 0x2}, {0x40, 0x3, 0x8}, {0x0, 0x4, 0x8}]}}, 0x71)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$VIDIOC_SUBDEV_S_CROP(r3, 0xc038563c, &(0x7f0000000100)={0x0, 0x0, {0xb55, 0x401, 0x7fff, 0x675}})

21:59:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  714.885081][  T318] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  714.893487][  T318] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  714.901448][  T318] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  714.909416][  T318] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  714.917381][  T318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  714.925346][  T318] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:17 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x1)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:18 executing program 3 (fault-call:4 fault-nth:28):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  715.055546][  T344] FAULT_INJECTION: forcing a failure.
[  715.055546][  T344] name failslab, interval 1, probability 0, space 0, times 0
[  715.063357][T27672] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  715.070661][  T344] CPU: 0 PID: 344 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  715.076274][ T2494] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  715.084086][  T344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  715.084092][  T344] Call Trace:
[  715.084109][  T344]  dump_stack+0x1e9/0x30e
[  715.084142][  T344]  should_fail+0x433/0x5b0
[  715.084161][  T344]  ? sock_kmalloc+0x98/0x100
[  715.084172][  T344]  should_failslab+0x5/0x20
[  715.084181][  T344]  __kmalloc+0x74/0x330
[  715.084198][  T344]  sock_kmalloc+0x98/0x100
[  715.084213][  T344]  hash_recvmsg+0x1bd/0x810
[  715.136078][  T344]  ? hash_sendmsg+0xb40/0xb40
[  715.140757][  T344]  ____sys_recvmsg+0x24a/0x510
[  715.145532][  T344]  ? import_iovec+0x12a/0x2c0
[  715.150193][  T344]  do_recvmmsg+0x429/0x1500
[  715.154709][  T344]  ? ksys_write+0x1b1/0x220
[  715.159208][  T344]  ? ksys_write+0x1b1/0x220
[  715.163712][  T344]  ? check_preemption_disabled+0xb0/0x240
[  715.169512][  T344]  ? debug_smp_processor_id+0x5/0x20
[  715.174795][  T344]  __x64_sys_recvmmsg+0x11d/0x1a0
[  715.179813][  T344]  do_syscall_64+0xf3/0x1b0
[  715.184310][  T344]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  715.190295][  T344] RIP: 0033:0x45ca59
[  715.194171][  T344] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  715.213763][  T344] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  715.222154][  T344] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  715.230097][  T344] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  715.238068][  T344] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  715.246023][  T344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  715.253977][  T344] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  715.264356][    T5] usb 1-1: new high-speed USB device number 97 using dummy_hcd
[  715.343313][T27672] usb 3-1: Using ep0 maxpacket: 16
[  715.403429][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  715.464889][T27672] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  715.475027][T27672] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  715.490967][T27672] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  715.500116][T27672] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  715.512741][T27672] usb 3-1: config 0 descriptor??
[  715.523304][    T5] usb 1-1: Using ep0 maxpacket: 16
[  715.528874][ T2494] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  715.540317][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  715.554580][T27672] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  715.563030][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  715.572809][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  715.585070][ T2494] usb 2-1: config 0 descriptor??
[  715.624290][ T2494] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  715.673375][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  715.684537][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  715.699312][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  715.709118][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  715.720814][    T5] usb 1-1: config 0 descriptor??
[  716.195001][    T5] microsoft 0003:045E:07DA.003D: unknown main item tag 0x0
[  716.212797][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.003D/input/input57
[  716.302292][    T5] microsoft 0003:045E:07DA.003D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  716.610836][    T5] usb 1-1: USB disconnect, device number 97
21:59:20 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:20 executing program 4:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = getpid()
r4 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r5)
setfsuid(r5)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x3a8, 0x3600)
epoll_pwait(r6, &(0x7f0000000100)=[{}], 0x1, 0x9, &(0x7f0000000140)={[0x400]}, 0x8)
r7 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r8=>0x0}, &(0x7f0000cab000)=0xc)
setresgid(0x0, r8, 0x0)
setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={r3, r5, r8}, 0xc)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000080)={0x6, 0x1, 0x8001, {0x7f, 0x8000}, 0x4, 0x101})
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:20 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:20 executing program 3 (fault-call:4 fault-nth:29):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:20 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:20 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  717.655811][T29588] usb 3-1: USB disconnect, device number 40
[  717.685970][    T5] usb 2-1: USB disconnect, device number 40
[  717.811274][  T409] FAULT_INJECTION: forcing a failure.
[  717.811274][  T409] name failslab, interval 1, probability 0, space 0, times 0
[  717.835757][  T409] CPU: 1 PID: 409 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  717.843925][  T409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.854068][  T409] Call Trace:
[  717.857377][  T409]  dump_stack+0x1e9/0x30e
21:59:20 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xddb, 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f00000000c0))
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r2, 0x0, r0, 0x0, 0x401, 0x5dfee978224a9a9a)

21:59:20 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x1000000000000016, 0x0, 0x40001, 0x1}, 0x2e)
bpf$MAP_UPDATE_ELEM(0x15, &(0x7f0000000140)={r0, 0x0, 0x0}, 0x20)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
ioctl$TCSETX(r1, 0x5433, &(0x7f0000000080)={0x8, 0x2, [0x80, 0x1, 0x1ff, 0x75d8, 0x8], 0x81})
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
clock_nanosleep(0x3, 0x1, &(0x7f0000000240)={0x77359400}, &(0x7f0000000280))
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="500000001114000429bd7000fbdbdf25080003000300000800004b0013000000080001000100000008004f00040000000800ff0000000000000003000000000008004f00020000000800010002000000"], 0x50}, 0x1, 0x0, 0x0, 0x20004814}, 0x4004000)

[  717.861715][  T409]  should_fail+0x433/0x5b0
[  717.866128][  T409]  ? sock_kmalloc+0x98/0x100
[  717.870707][  T409]  should_failslab+0x5/0x20
[  717.875200][  T409]  __kmalloc+0x74/0x330
[  717.879384][  T409]  sock_kmalloc+0x98/0x100
[  717.883792][  T409]  hash_recvmsg+0x1bd/0x810
[  717.888297][  T409]  ? hash_sendmsg+0xb40/0xb40
[  717.893064][  T409]  ____sys_recvmsg+0x24a/0x510
[  717.897807][  T409]  ? import_iovec+0x12a/0x2c0
[  717.902470][  T409]  do_recvmmsg+0x429/0x1500
[  717.906963][  T409]  ? rcu_lock_release+0x5/0x20
[  717.911743][  T409]  ? ksys_write+0x1b1/0x220
[  717.916236][  T409]  ? ksys_write+0x1b1/0x220
[  717.920734][  T409]  ? check_preemption_disabled+0xb0/0x240
[  717.926446][  T409]  ? debug_smp_processor_id+0x5/0x20
[  717.931729][  T409]  __x64_sys_recvmmsg+0x11d/0x1a0
[  717.936752][  T409]  do_syscall_64+0xf3/0x1b0
[  717.941253][  T409]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  717.947135][  T409] RIP: 0033:0x45ca59
21:59:20 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
fcntl$setown(r3, 0x8, r4)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000180)='mptcp_pm\x00')
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x58, r5, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010101}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, [], 0x20}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000044}, 0x1)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="10002abd7000fddbdf2506000000040001802800018014000400fe880000008000000000000000000101060001000a000000060005004e210000"], 0x40}, 0x1, 0x0, 0x0, 0x404c800}, 0x4000004)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r5, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x717b4c60e71ed1d6)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:59:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  717.951020][  T409] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  717.970700][  T409] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  717.979099][  T409] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  717.987063][  T409] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  717.995023][  T409] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  718.002984][  T409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
21:59:21 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:21 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
open_tree(r0, &(0x7f0000000080)='./file0\x00', 0x8000)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  718.010946][  T409] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  718.193210][ T2693] usb 1-1: new high-speed USB device number 98 using dummy_hcd
[  718.363154][    T5] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  718.370799][T29588] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  718.463033][ T2693] usb 1-1: Using ep0 maxpacket: 16
[  718.583411][ T2693] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  718.594508][ T2693] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  718.607942][ T2693] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  718.617074][ T2693] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  718.630748][ T2693] usb 1-1: config 0 descriptor??
[  718.635791][T29588] usb 3-1: Using ep0 maxpacket: 16
[  718.640989][    T5] usb 2-1: Using ep0 maxpacket: 16
[  718.773155][T29588] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  718.783452][    T5] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  718.793942][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  718.807718][    T5] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  718.820586][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  718.830149][    T5] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  718.839646][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  718.848187][    T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  718.858702][T29588] usb 3-1: config 0 descriptor??
[  718.867423][    T5] usb 2-1: config 0 descriptor??
[  718.907712][    T5] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  718.933924][T29588] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  719.116173][ T2693] microsoft 0003:045E:07DA.003E: unknown main item tag 0x0
[  719.129821][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.003E/input/input58
[  719.230455][ T2693] microsoft 0003:045E:07DA.003E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  719.517025][T29588] usb 1-1: USB disconnect, device number 98
21:59:23 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:23 executing program 3 (fault-call:4 fault-nth:30):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vsock\x00', 0x400, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000280)=r1)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000080)={0x9, {{0x2, 0x4e22, @empty}}, {{0x2, 0x4e24, @empty}}}, 0x108)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet_sctp_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r5, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$RTC_SET_TIME(r5, 0x4024700a, &(0x7f00000002c0)={0x3a, 0xd, 0xb, 0x9, 0x6, 0x2ee, 0x0, 0xa, 0xffffffffffffffff})

21:59:23 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:23 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  720.810776][ T2693] usb 2-1: USB disconnect, device number 41
21:59:23 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  720.870025][  T494] Unknown ioctl -2147199776
[  720.879625][ T2494] usb 3-1: USB disconnect, device number 41
[  720.885171][  T496] Unknown ioctl -2147199776
21:59:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
syz_mount_image$afs(&(0x7f0000000080)='afs\x00', &(0x7f00000000c0)='./file0\x00', 0x1, 0x9, &(0x7f0000001780)=[{&(0x7f0000000100)="43b4109f57844ee0c577bb404350655042299132b8a817eb8d01e965b8419c6c10bd69aef602bd9816a23c08f8a19adf5e0bd7c4b4cf500e738a218b677a477cf39cc505829080a6", 0x48, 0x81}, {&(0x7f0000000180)="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", 0x1000, 0x3ea4}, {&(0x7f0000001180)="361f45957030ed17a450dbbfb1f4408ddb11bcdf107edd98002d50b2aeabb4ed371e42eaf4c68171f2bbd1d68e1be6a033c0edc30f47bbdead515e3b75009b7eab5629f4ad4b2cc6c4c3f99e8c7706e8117d45bb030f9ff96ea29ae6d1d5ecf00eb138fa50bdd503302fc33a27d41aeca2305666d2d7d4699c02574c95f6cfc3b390a073cbac8f7951b935b0747ea04731ce2c473f925a42fb3f6a2d815cb62dab92dd496ff3a68f76401c94739525c75aa55853d974b5809265699fcc5d854d8fcd2a2eb454a83d30782c2186", 0xcd, 0x5a}, {&(0x7f0000001280)="f35cbed50376c2323b304e1bd5b5cab820df8902cd1675bc91820f2dce511d99a02cf10e3baf08b22a5e934e81d236fb0f28cbc2b9dc3edc4e5491b22f236fb9e548c7affbedeeb434f1eaf2d743e09503534e2796f3ba4e886be025e106a010bd12c60d9c44c9b01873e4875a3afd0fe441e2d843e5d51be63b2a18ba02571745b1730e3fac03d2aacde67b64a8e0ee7b7f88d1dc0d", 0x96, 0x4}, {&(0x7f0000001340)="4b20b6b49b703a644cdd5f1468424014bdf43e9b3d90a989d88362a1f0aa0e9bd14ac8a43cbe45316775ef89a84b5ee26295d63f298aca9d7078d7543cdd5cfd3eb2407fd33dc77f2fa1bb3b9337642f46bc77dabc1e460ba6cd5088de9f5fcab2b239e2089fa0d01e5f170d812332aa672bb457820ca8c011a0de7ec2a76fd5e8308118a5879b199a1db01d3fd55da49bb315eb186762e02ae8465256541fb25aa2d50f7ac7bb2daae72e6882e460b9c47ef35c8da5d0b8c074f39436ed0397c3d7dae003bab2b2", 0xc8, 0xd9c}, {&(0x7f0000001440)="7ed4c844e2e59bc98c635efbcc786ca77470988e78b43316", 0x18, 0xeb78}, {&(0x7f0000001480)="024fcef0a1445f85dfa25b7527be867badd9838ab9043a544996d9bc11a228a6574110f267c400482930042305b01d488feee5fed91fe04d47d403491c768f6900b8e4bede7cd79b25911ae67234d0adcb24b06f4564c863ee16564dfc8844b0020102a704bba7dec48eca021e91e077be7592a09c9c143c6e40d2955e41b233c2d550459d005e3f4f4f79e9fa85f752c277d6416e560b2a5484b944dbd7108fe5a3308d30437878e52eb07e0f69967e7dd101ad886d94e1247e4d67af4b1340f3f4dcb3d01947c582f1b4615b71501b63a9477bf3af24e252c2b8627bf8ba690687c927890ae61dbea9", 0xea, 0x4}, {&(0x7f0000001580)="7f92ed4ef4ebf7ac7d9fae68b69d3c5b4854f21064947bcf8a931de4188df69afe3cbca5d5354a78b6e63b0a2a11d4a244cc3ed842701b792a9d79cccfb4efb4f386daa38037e4cf836a0133e9f2ff20d2d4bb19bf5a0b6601d65a60622803773f64e790884abe17893afbd4edb4597fa73200bc628f1c52b6617704b023b5ea664ddf071824ea1fd84cbf40b9cf7121474d16033e8dbe4b0a111c5e037e7178f33cc63426a8aa9e32b10fc039af811c60e74e19c293e88652c26c855baa4e5765d3d1496bd6b0dc15746df5e925b4c48977cefe114c33", 0xd7, 0xffffffff}, {&(0x7f0000001680)="c4123bcbde9b6af72d59df16b2f45dc324bae7597171cb5227aae9e4939d41052021e6d8a649bc7a62448bc4aed11327b8aa7a34a04b40165fd84284783165f789f23b2179e678dc884e111040a633c752beb0af3a0c224d0f79be15eb2ecb87551145a2e6d24ba10b54b5f7a097f9d2998f4f6706de33b148f01276a3828178d505eafa03dcb57b132c099f8f4c2a524530062bf00e296172ff61b95b6861320232eb05f7b6d8b22b7272192d567bf6fa59b5a307604d1a23fb52705d025e5f06462635e48cd4934e532e92ee6c7f295cb11b420cc1cd3cb819234490e77ba6", 0xe0, 0x59}], 0x80008, &(0x7f0000001880)={[{@flock_write='flock=write'}, {@autocell='autocell'}, {@flock_write='flock=write'}, {@flock_openafs='flock=openafs'}, {@autocell='autocell'}, {@flock_strict='flock=strict'}, {@flock_write='flock=write'}, {@flock_strict='flock=strict'}], [{@obj_type={'obj_type', 0x3d, '/dev/sg#\x00'}}, {@dont_measure='dont_measure'}]})
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  720.930139][  T495] FAULT_INJECTION: forcing a failure.
[  720.930139][  T495] name failslab, interval 1, probability 0, space 0, times 0
21:59:23 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  720.985920][  T495] CPU: 0 PID: 495 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  720.994194][  T495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  721.004232][  T495] Call Trace:
[  721.007508][  T495]  dump_stack+0x1e9/0x30e
[  721.011817][  T495]  should_fail+0x433/0x5b0
[  721.016214][  T495]  ? sock_kmalloc+0x98/0x100
[  721.020778][  T495]  should_failslab+0x5/0x20
[  721.025270][  T495]  __kmalloc+0x74/0x330
[  721.029407][  T495]  sock_kmalloc+0x98/0x100
[  721.033801][  T495]  hash_recvmsg+0x1bd/0x810
[  721.038281][  T495]  ? hash_sendmsg+0xb40/0xb40
[  721.042935][  T495]  ____sys_recvmsg+0x24a/0x510
[  721.047680][  T495]  ? import_iovec+0x12a/0x2c0
[  721.052335][  T495]  do_recvmmsg+0x429/0x1500
[  721.056835][  T495]  ? ksys_write+0x1b1/0x220
[  721.061311][  T495]  ? ksys_write+0x1b1/0x220
[  721.065790][  T495]  ? check_preemption_disabled+0xb0/0x240
[  721.071483][  T495]  ? debug_smp_processor_id+0x5/0x20
[  721.076763][  T495]  __x64_sys_recvmmsg+0x11d/0x1a0
[  721.081869][  T495]  do_syscall_64+0xf3/0x1b0
[  721.086351][  T495]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  721.092214][  T495] RIP: 0033:0x45ca59
[  721.096082][  T495] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  721.115659][  T495] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  721.124040][  T495] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  721.131984][  T495] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  721.139928][  T495] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  721.147888][  T495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  721.155835][  T495] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:24 executing program 3 (fault-call:4 fault-nth:31):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:24 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x0, 0x3600)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000280)={0x53, 0x0, 0x95, 0x3, @buffer={0x0, 0x54, &(0x7f0000000080)=""/84}, &(0x7f0000000100)="e16dde88b68ddd683307400a9910fc273791629d7d80fcc3ef994f8d590d9bf11bdbdde0de4601b570c85cee4aee0bd3177472ae33078ec5b516643756e97a90e7f7558f46ea0c3c68bacc219bdbb91333d4bb4d4b37bcfa3b09ac2ca652e68fafe855e54ce3d9a401df2bf7762f6e21642045701c8526826e4a0e2e8114738293f775897b341d95c0e1ac0ce1b55ff9383a4d2cae", &(0x7f00000001c0)=""/123, 0xfffffeff, 0x10012, 0x0, &(0x7f0000000240)})
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:59:24 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  721.306696][  T518] FAULT_INJECTION: forcing a failure.
[  721.306696][  T518] name failslab, interval 1, probability 0, space 0, times 0
[  721.321874][  T518] CPU: 0 PID: 518 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  721.330025][  T518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  721.340065][  T518] Call Trace:
[  721.343346][  T518]  dump_stack+0x1e9/0x30e
[  721.347670][  T518]  should_fail+0x433/0x5b0
[  721.352101][  T518]  ? sock_kmalloc+0x98/0x100
[  721.356675][  T518]  should_failslab+0x5/0x20
[  721.361162][  T518]  __kmalloc+0x74/0x330
[  721.365308][  T518]  sock_kmalloc+0x98/0x100
[  721.369726][  T518]  hash_recvmsg+0x1bd/0x810
[  721.374236][  T518]  ? hash_sendmsg+0xb40/0xb40
[  721.378893][  T518]  ____sys_recvmsg+0x24a/0x510
[  721.383640][  T518]  ? lock_release+0x3d1/0x760
[  721.388328][  T518]  ? import_iovec+0x12a/0x2c0
[  721.393011][  T518]  do_recvmmsg+0x429/0x1500
[  721.397507][  T518]  ? check_preemption_disabled+0xa2/0x240
[  721.403226][  T518]  ? retint_kernel+0x2b/0x2b
[  721.407815][  T518]  ? __x64_sys_recvmmsg+0xcb/0x1a0
[  721.412913][  T518]  ? __x64_sys_recvmmsg+0x109/0x1a0
[  721.418096][  T518]  __x64_sys_recvmmsg+0x11d/0x1a0
[  721.423110][  T518]  do_syscall_64+0xf3/0x1b0
[  721.427698][  T518]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  721.433565][  T518] RIP: 0033:0x45ca59
[  721.437432][  T518] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:24 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  721.457019][  T518] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  721.465529][  T518] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  721.473499][  T518] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  721.481464][  T518] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  721.489422][  T518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  721.497381][  T518] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  721.502891][T27672] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  721.516541][T29588] usb 1-1: new high-speed USB device number 99 using dummy_hcd
[  721.612880][ T2494] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  721.752817][T27672] usb 2-1: Using ep0 maxpacket: 16
[  721.792799][T29588] usb 1-1: Using ep0 maxpacket: 16
[  721.853032][ T2494] usb 3-1: Using ep0 maxpacket: 16
[  721.873312][T27672] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  721.883896][T27672] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  721.897338][T27672] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  721.906771][T27672] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  721.916157][T27672] usb 2-1: config 0 descriptor??
[  721.927625][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  721.946870][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  721.964460][T27672] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  721.971252][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  721.972986][ T2494] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  721.991928][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  721.995856][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  722.014356][ T2494] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  722.018838][T29588] usb 1-1: config 0 descriptor??
[  722.023847][ T2494] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  722.052440][ T2494] usb 3-1: config 0 descriptor??
[  722.093760][ T2494] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  722.534609][T29588] microsoft 0003:045E:07DA.003F: unknown main item tag 0x0
[  722.546728][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.003F/input/input59
[  722.638681][T29588] microsoft 0003:045E:07DA.003F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  722.939673][T29588] usb 1-1: USB disconnect, device number 99
21:59:27 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
r0 = syz_open_dev$video(0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r0, 0x0, r1, 0x0, 0x1000000006, 0x0)

21:59:27 executing program 3 (fault-call:4 fault-nth:32):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:27 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:27 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  724.220870][T29588] usb 3-1: USB disconnect, device number 42
[  724.260477][ T3370] usb 2-1: USB disconnect, device number 42
21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
sendto$netrom(r2, &(0x7f00000000c0)="afbfd93f6396dbcaf8d92739089bfcb42a7220bc704ebfed7b26803babeaa5dda0bb5f7f1c71be5e71ed8aaa216c2bc088a16b6f462e3de0f693d11bcdc78751adfe9b0d2c6bf0", 0x47, 0x80, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  724.390780][  T595] FAULT_INJECTION: forcing a failure.
[  724.390780][  T595] name failslab, interval 1, probability 0, space 0, times 0
[  724.430973][  T595] CPU: 0 PID: 595 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x50080)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  724.439249][  T595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  724.449297][  T595] Call Trace:
[  724.452582][  T595]  dump_stack+0x1e9/0x30e
[  724.456928][  T595]  should_fail+0x433/0x5b0
[  724.461372][  T595]  ? sock_kmalloc+0x98/0x100
[  724.465958][  T595]  should_failslab+0x5/0x20
[  724.470463][  T595]  __kmalloc+0x74/0x330
[  724.474617][  T595]  sock_kmalloc+0x98/0x100
[  724.479025][  T595]  hash_recvmsg+0x1bd/0x810
[  724.483529][  T595]  ? hash_sendmsg+0xb40/0xb40
21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$EVIOCGBITKEY(r2, 0x80404521, &(0x7f0000000080)=""/208)

[  724.488201][  T595]  ____sys_recvmsg+0x24a/0x510
[  724.492973][  T595]  ? import_iovec+0x12a/0x2c0
[  724.497648][  T595]  do_recvmmsg+0x429/0x1500
[  724.502193][  T595]  ? lockdep_hardirqs_on_prepare+0x425/0x6e0
[  724.508199][  T595]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  724.513660][  T595]  ? check_preemption_disabled+0xa2/0x240
[  724.519510][  T595]  ? retint_kernel+0x2b/0x2b
[  724.524110][  T595]  __x64_sys_recvmmsg+0x11d/0x1a0
[  724.529148][  T595]  do_syscall_64+0xf3/0x1b0
[  724.533654][  T595]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x4)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  724.539649][  T595] RIP: 0033:0x45ca59
[  724.543535][  T595] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  724.563134][  T595] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  724.571533][  T595] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  724.579489][  T595] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
21:59:27 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  724.587453][  T595] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  724.595420][  T595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  724.602769][ T2494] usb 1-1: new high-speed USB device number 100 using dummy_hcd
[  724.603377][  T595] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  724.772647][ T3370] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  724.872601][T29588] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  724.892622][ T2494] usb 1-1: Using ep0 maxpacket: 16
[  725.012693][ T2494] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  725.023644][ T3370] usb 2-1: Using ep0 maxpacket: 16
[  725.028819][ T2494] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  725.044127][ T2494] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  725.053735][ T2494] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  725.072636][ T2494] usb 1-1: config 0 descriptor??
[  725.122601][T29588] usb 3-1: Using ep0 maxpacket: 16
[  725.142673][ T3370] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  725.153395][ T3370] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  725.166526][ T3370] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  725.178173][ T3370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  725.187503][ T3370] usb 2-1: config 0 descriptor??
[  725.237136][ T3370] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  725.256300][T29588] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  725.266674][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  725.279860][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  725.288994][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  725.300736][T29588] usb 3-1: config 0 descriptor??
[  725.343576][T29588] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  725.554255][ T2494] microsoft 0003:045E:07DA.0040: unknown main item tag 0x0
[  725.572187][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0040/input/input60
[  725.660086][ T2494] microsoft 0003:045E:07DA.0040: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  725.768668][T29588] usb 1-1: USB disconnect, device number 100
21:59:30 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:30 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
dup(r1)

21:59:30 executing program 3 (fault-call:4 fault-nth:33):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:30 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:30 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  727.307530][ T2693] usb 3-1: USB disconnect, device number 43
[  727.329042][ T2494] usb 2-1: USB disconnect, device number 43
[  727.436467][  T680] FAULT_INJECTION: forcing a failure.
[  727.436467][  T680] name failslab, interval 1, probability 0, space 0, times 0
[  727.456244][  T680] CPU: 0 PID: 680 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  727.464399][  T680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  727.474447][  T680] Call Trace:
[  727.477734][  T680]  dump_stack+0x1e9/0x30e
[  727.482154][  T680]  should_fail+0x433/0x5b0
[  727.486571][  T680]  ? sock_kmalloc+0x98/0x100
[  727.491145][  T680]  should_failslab+0x5/0x20
[  727.495630][  T680]  __kmalloc+0x74/0x330
[  727.499769][  T680]  sock_kmalloc+0x98/0x100
[  727.504184][  T680]  hash_recvmsg+0x1bd/0x810
[  727.508731][  T680]  ? hash_sendmsg+0xb40/0xb40
[  727.513391][  T680]  ____sys_recvmsg+0x24a/0x510
[  727.518140][  T680]  ? import_iovec+0x12a/0x2c0
[  727.522805][  T680]  do_recvmmsg+0x429/0x1500
[  727.527380][  T680]  ? trace_hardirqs_on_thunk+0x1a/0x1c
21:59:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, 0x0, 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  727.532828][  T680]  ? check_preemption_disabled+0xa2/0x240
[  727.538547][  T680]  ? retint_kernel+0x2b/0x2b
[  727.543137][  T680]  __x64_sys_recvmmsg+0x11d/0x1a0
[  727.548160][  T680]  do_syscall_64+0xf3/0x1b0
[  727.552660][  T680]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  727.558534][  T680] RIP: 0033:0x45ca59
[  727.562414][  T680] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:30 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SG_GET_VERSION_NUM(r2, 0x2282, &(0x7f0000000080))

[  727.582006][  T680] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  727.590402][  T680] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  727.598347][  T680] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  727.606290][  T680] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  727.614244][  T680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  727.622200][  T680] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, 0x0, 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:30 executing program 3 (fault-call:4 fault-nth:34):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:30 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
getsockname(r0, &(0x7f0000000080)=@hci, &(0x7f0000000100)=0x80)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:59:30 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$VIDIOC_DBG_G_CHIP_INFO(r2, 0xc0c85666, &(0x7f0000000080)={{0x4, @addr=0x3}, "8ceb0ce838294cea28dc4495a59fd41e30037e85de6f125d1ac61cfdea00710c", 0x3})
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  727.773192][  T704] FAULT_INJECTION: forcing a failure.
[  727.773192][  T704] name failslab, interval 1, probability 0, space 0, times 0
[  727.793142][  T704] CPU: 1 PID: 704 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  727.797257][T29588] usb 1-1: new high-speed USB device number 101 using dummy_hcd
[  727.801286][  T704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  727.801291][  T704] Call Trace:
[  727.801319][  T704]  dump_stack+0x1e9/0x30e
[  727.801334][  T704]  should_fail+0x433/0x5b0
[  727.801352][  T704]  ? sock_kmalloc+0x98/0x100
[  727.801366][  T704]  should_failslab+0x5/0x20
[  727.840134][  T704]  __kmalloc+0x74/0x330
[  727.844265][  T704]  sock_kmalloc+0x98/0x100
[  727.848656][  T704]  hash_recvmsg+0x1bd/0x810
[  727.853171][  T704]  ? hash_sendmsg+0xb40/0xb40
[  727.857833][  T704]  ____sys_recvmsg+0x24a/0x510
[  727.862589][  T704]  ? import_iovec+0x12a/0x2c0
[  727.867268][  T704]  do_recvmmsg+0x429/0x1500
[  727.871762][  T704]  ? rcu_lock_release+0x5/0x20
[  727.876535][  T704]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  727.881996][  T704]  ? check_preemption_disabled+0xa2/0x240
[  727.887776][  T704]  ? retint_kernel+0x2b/0x2b
[  727.892356][  T704]  __x64_sys_recvmmsg+0x11d/0x1a0
[  727.897381][  T704]  do_syscall_64+0xf3/0x1b0
[  727.902638][  T704]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  727.908515][  T704] RIP: 0033:0x45ca59
[  727.912387][  T704] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  727.932323][  T704] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  727.940721][  T704] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  727.948673][  T704] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  727.956621][  T704] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  727.964566][  T704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  727.972509][  T704] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  727.982708][ T2494] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  728.062483][ T2693] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  728.213949][T29588] usb 1-1: Using ep0 maxpacket: 16
[  728.232411][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  728.324072][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  728.342707][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  728.352442][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  728.359103][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  728.367020][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  728.378192][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  728.389598][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  728.401918][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  728.410966][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  728.420155][T29588] usb 1-1: config 0 descriptor??
[  728.442583][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  728.459453][ T2494] usb 2-1: config 0 descriptor??
[  728.475651][ T2693] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  728.490274][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  728.518001][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  728.528079][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  728.538092][ T2693] usb 3-1: config 0 descriptor??
[  728.603209][ T2693] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  728.913648][T29588] microsoft 0003:045E:07DA.0041: unknown main item tag 0x0
[  728.931093][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0041/input/input61
[  728.946835][ T2494] microsoft 0003:045E:07DA.0042: unknown main item tag 0x0
[  728.967726][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0042/input/input62
[  729.019040][T29588] microsoft 0003:045E:07DA.0041: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  729.094685][ T2494] microsoft 0003:045E:07DA.0042: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  729.118800][T29588] usb 1-1: USB disconnect, device number 101
[  729.145781][ T2693] usb 2-1: USB disconnect, device number 44
21:59:32 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:32 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, 0x0, 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:32 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1, 0x0)

21:59:32 executing program 3 (fault-call:4 fault-nth:35):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)="c8")

[  729.753663][  T775] FAULT_INJECTION: forcing a failure.
[  729.753663][  T775] name failslab, interval 1, probability 0, space 0, times 0
[  729.767635][  T775] CPU: 0 PID: 775 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  729.775790][  T775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  729.785834][  T775] Call Trace:
[  729.789121][  T775]  dump_stack+0x1e9/0x30e
[  729.793449][  T775]  should_fail+0x433/0x5b0
[  729.797854][  T775]  ? sock_kmalloc+0x98/0x100
[  729.802424][  T775]  should_failslab+0x5/0x20
[  729.806917][  T775]  __kmalloc+0x74/0x330
[  729.811086][  T775]  sock_kmalloc+0x98/0x100
[  729.815490][  T775]  hash_recvmsg+0x1bd/0x810
[  729.819976][  T775]  ? hash_sendmsg+0xb40/0xb40
[  729.824646][  T775]  ____sys_recvmsg+0x24a/0x510
[  729.829405][  T775]  ? import_iovec+0x12a/0x2c0
[  729.834068][  T775]  do_recvmmsg+0x429/0x1500
[  729.838558][  T775]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  729.844003][  T775]  ? check_preemption_disabled+0xa2/0x240
[  729.849714][  T775]  ? retint_kernel+0x2b/0x2b
[  729.854290][  T775]  __x64_sys_recvmmsg+0x11d/0x1a0
[  729.859306][  T775]  do_syscall_64+0xf3/0x1b0
[  729.863797][  T775]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  729.869668][  T775] RIP: 0033:0x45ca59
[  729.873532][  T775] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  729.893133][  T775] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  729.901525][  T775] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  729.909469][  T775] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  729.917415][  T775] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  729.925487][  T775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  729.933441][  T775] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  729.982374][T27672] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[  730.102273][ T2693] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  730.222269][T27672] usb 1-1: Using ep0 maxpacket: 16
[  730.344202][T27672] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  730.355220][T27672] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  730.362167][ T2693] usb 2-1: Using ep0 maxpacket: 16
[  730.370086][T27672] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  730.382269][T27672] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  730.394627][T27672] usb 1-1: config 0 descriptor??
21:59:33 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:33 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000480)='/dev/loop#\x00', 0x0, 0x0)
r2 = memfd_create(&(0x7f0000000200)='\vem1\xc1\xf8\xa6\xea\x8dN\xc0\xa3w\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff\x1d\a+\x1e\xb8\xe8\x86@V\x03\xb6\xb1\xc03\x1e,`\x02\xae\xba\xebg\x17\x92\xad\b\x16\xb6.\x01%\xaf\xe1<U`\xd8\xf2ZW\apC\xbf\x0f*\x19\xa7q\xdb\x8b\xe8\xa1M!\x9b]\xc5\x14\a\x037Wn1~\x03\xa2\x83^\x81\xf1\x9cyg\xbe\xbb\x19yu', 0x0)
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000100)=ANY=[@ANYRESOCT=r1], 0x291)
sendfile(r2, r2, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r2, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000500)={[0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xac, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)
ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000080)={{r0}, 0x1, 0x1, 0x10000})

21:59:33 executing program 3 (fault-call:4 fault-nth:36):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  730.492524][ T2693] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  730.511986][ T2693] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  730.533331][ T2693] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  730.568046][ T2693] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:59:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  730.615977][ T2693] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  730.629020][  T795] FAULT_INJECTION: forcing a failure.
[  730.629020][  T795] name failslab, interval 1, probability 0, space 0, times 0
[  730.655059][ T2693] usb 2-1: config 0 descriptor??
[  730.667908][    T5] usb 3-1: USB disconnect, device number 44
[  730.675446][  T795] CPU: 0 PID: 795 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  730.683593][  T795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  730.693659][  T795] Call Trace:
[  730.696946][  T795]  dump_stack+0x1e9/0x30e
[  730.701275][  T795]  should_fail+0x433/0x5b0
[  730.705697][  T795]  ? sock_kmalloc+0x98/0x100
[  730.710279][  T795]  should_failslab+0x5/0x20
[  730.714776][  T795]  __kmalloc+0x74/0x330
[  730.718936][  T795]  sock_kmalloc+0x98/0x100
[  730.723362][  T795]  hash_recvmsg+0x1bd/0x810
[  730.727870][  T795]  ? hash_sendmsg+0xb40/0xb40
[  730.732545][  T795]  ____sys_recvmsg+0x24a/0x510
[  730.737320][  T795]  ? import_iovec+0x12a/0x2c0
[  730.741994][  T795]  do_recvmmsg+0x429/0x1500
[  730.746531][  T795]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  730.752062][  T795]  ? check_preemption_disabled+0xb0/0x240
[  730.757808][  T795]  ? debug_smp_processor_id+0x5/0x20
[  730.763078][  T795]  __x64_sys_recvmmsg+0x11d/0x1a0
[  730.768101][  T795]  do_syscall_64+0xf3/0x1b0
[  730.772602][  T795]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  730.778566][  T795] RIP: 0033:0x45ca59
[  730.782439][  T795] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  730.802025][  T795] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  730.810415][  T795] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
21:59:33 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:33 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f00000000c0)={0x4bc, 0x0, 0x5, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [{{0x254, 0x1, {{0x0, 0x5}, 0x5, 0x2, 0x3fd, 0xff, 0x28, 'syz1\x00', "4b9f064a81820029616fe1fa223d5940aa1c2d93cf2c6559887265d0a47b95d7", "c8042957143f6f9b8260f098c61ec030908b3063a582ee97f083aff68a747a02", [{0x2, 0x7f, {0x0, 0x6}}, {0x633, 0x3, {0x0, 0x2}}, {0xff7f, 0x101, {0x0, 0x400}}, {0x7ff, 0x3, {0x2, 0x99f}}, {0xe48, 0x1, {0x2, 0x6}}, {0x3, 0x2, {0x1, 0xffffffff}}, {0x1ff, 0x7, {0x1, 0x400}}, {0x401, 0xb7, {0x0, 0x8000}}, {0x4, 0xd5, {0x0, 0x7}}, {0x4, 0x8, {0x2, 0x9}}, {0x7fff, 0x6, {0x2, 0x6}}, {0x1cf3, 0x401, {0x0, 0x2}}, {0x1000, 0x75a, {0x3, 0x6}}, {0x1, 0xff, {0x0, 0x8000}}, {0x3, 0x3, {0x2, 0x8}}, {0x0, 0x3, {0x3, 0x100}}, {0x60, 0x7f, {0x3, 0x3}}, {0x7, 0x3, {0x1, 0xfff}}, {0x6, 0x5, {0x0, 0x2}}, {0x2, 0x0, {0x0, 0x9}}, {0xff, 0x8, {0x0, 0xffffffff}}, {0x7fff, 0xf000, {0x0, 0x1}}, {0x6, 0x7f, {0x1, 0x5}}, {0x401, 0x8, {0x0, 0xff}}, {0x9, 0x8, {0x0, 0xc0}}, {0x8001, 0x5, {0x0, 0x80}}, {0x0, 0x80, {0x0, 0xd60}}, {0x4, 0x5, {0x1, 0xd1}}, {0x7f, 0x9, {0x0, 0xffffffff}}, {0x5, 0x3, {0x0, 0xfffffff9}}, {0x20, 0x40, {0x2, 0xa635}}, {0x5, 0x1, {0x3, 0xffffffff}}, {0x5, 0x3, {0xcf9fab2f4efefb36, 0x3}}, {0x20, 0x4, {0x2, 0xb01d}}, {0x2f10, 0x1, {0x1, 0x1}}, {0x6, 0x1ff, {0x1, 0x3}}, {0x87, 0x8001, {0x0, 0xfffffffc}}, {0x0, 0x7ff, {0x2, 0x1f}}, {0x5, 0x4, {0x3, 0x3ff}}, {0x9, 0x4, {0x1, 0x3f}}]}}}, {{0x254, 0x1, {{0x0, 0x100}, 0x9, 0x80, 0x9, 0x6, 0x27, 'syz0\x00', "f3492e0628108d3de2d3a9890b4ed76a2c28b998d16a9bf3831a97dce7ea32e7", "c03abf6370831adc9ec4ba88d42afbf191970096ea636f02e474e633bfe0d924", [{0x1000, 0x2, {0x0, 0x10001}}, {0x1ff, 0x68}, {0x1000, 0xc8eb, {0x1}}, {0x1000, 0x2, {0x2, 0xe50}}, {0x6, 0x1000, {0x1}}, {0x391c, 0x6, {0x0, 0x1}}, {0x6, 0x20, {0x2, 0x5}}, {0x3, 0x2, {0x2, 0x1}}, {0x5, 0x450c, {0x1, 0x400}}, {0x200, 0x5, {0x1, 0x1}}, {0x9, 0x9, {0x2, 0x4}}, {0x1, 0x3, {0x3, 0x7fffffff}}, {0xa15, 0x4, {0x1, 0x2}}, {0x6fae, 0x200, {0x2, 0xeaa3}}, {0x5, 0x0, {0x1, 0x4}}, {0x40, 0xc, {0x1, 0x1ff}}, {0x100, 0xadb9, {0x2, 0x8}}, {0xd8, 0xfff7, {0x0, 0x2}}, {0x7ff, 0x5, {0x3, 0x7}}, {0x81, 0x7, {0x2, 0x20}}, {0x4, 0xc9, {0x2, 0x3}}, {0x3, 0x1ff, {0x1, 0x7}}, {0x1bf, 0xb9ef, {0x0, 0x80000000}}, {0x9, 0x7c, {0x0, 0x3}}, {0x81, 0x4, {0x0, 0x80000000}}, {0x15, 0x3, {0x1, 0x81}}, {0x4, 0x6, {0x0, 0xfffffffa}}, {0x0, 0x4, {0x0, 0x5}}, {0xffe0, 0x100, {0x0, 0xcc}}, {0xb6, 0x0, {0x0, 0x1}}, {0x6, 0xf899, {0x1, 0x7d81}}, {0xb8, 0x9, {0x2, 0x1f}}, {0x8d9, 0x6, {0x0, 0x4}}, {0x2, 0x9, {0x2, 0x8000}}, {0x1, 0x7, {0x0, 0x2}}, {0xfff7, 0x5, {0x2, 0x4}}, {0x1, 0x2f6a, {0x2, 0x6}}, {0x81, 0x4, {0x3, 0x20}}, {0x100, 0x20, {0x1, 0x10001}}, {0x3, 0x6, {0x3, 0xe091}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
r2 = syz_open_dev$video(0x0, 0x8, 0x63c342)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  730.818376][  T795] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  730.826331][  T795] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  730.834283][  T795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  730.842239][  T795] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  730.893986][T27672] microsoft 0003:045E:07DA.0043: unknown main item tag 0x0
[  730.937326][T27672] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0043/input/input63
[  731.036467][T27672] microsoft 0003:045E:07DA.0043: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  731.100117][  T426] usb 1-1: USB disconnect, device number 102
[  731.232229][    T5] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  731.313973][ T2693] microsoft 0003:045E:07DA.0044: unknown main item tag 0x0
[  731.331849][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0044/input/input64
[  731.421416][ T2693] microsoft 0003:045E:07DA.0044: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  731.492274][    T5] usb 3-1: Using ep0 maxpacket: 16
[  731.521076][T27672] usb 2-1: USB disconnect, device number 45
[  731.632443][    T5] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  731.642772][    T5] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  731.656648][    T5] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  731.666165][    T5] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.678743][    T5] usb 3-1: config 0 descriptor??
[  731.723229][    T5] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
21:59:35 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:35 executing program 3 (fault-call:4 fault-nth:37):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:35 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000003c0)='devlink\x00')
sendmsg$DEVLINK_CMD_PORT_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002700)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000210000000e0073696d0000000f0002006e657464657673696d300000080003000000000006000400"/62], 0x44}}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xc8, r3, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x87, 'l2_drops\x00'}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4040000}, 0x40000)

21:59:35 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0)

[  732.065859][  T873] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[  732.129594][  T882] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[  732.140807][  T877] FAULT_INJECTION: forcing a failure.
[  732.140807][  T877] name failslab, interval 1, probability 0, space 0, times 0
[  732.160282][  T877] CPU: 0 PID: 877 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  732.168435][  T877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  732.178486][  T877] Call Trace:
[  732.181786][  T877]  dump_stack+0x1e9/0x30e
[  732.186116][  T877]  should_fail+0x433/0x5b0
[  732.190524][  T877]  ? sock_kmalloc+0x98/0x100
[  732.195099][  T877]  should_failslab+0x5/0x20
[  732.199582][  T877]  __kmalloc+0x74/0x330
[  732.203725][  T877]  sock_kmalloc+0x98/0x100
[  732.208124][  T877]  hash_recvmsg+0x1bd/0x810
[  732.212700][  T877]  ? hash_sendmsg+0xb40/0xb40
[  732.217360][  T877]  ____sys_recvmsg+0x24a/0x510
[  732.222122][  T877]  ? import_iovec+0x12a/0x2c0
[  732.226783][  T877]  do_recvmmsg+0x429/0x1500
[  732.231282][  T877]  ? ksys_write+0x1b1/0x220
[  732.235776][  T877]  ? ksys_write+0x1b1/0x220
[  732.240263][  T877]  ? check_preemption_disabled+0xb0/0x240
[  732.245979][  T877]  ? debug_smp_processor_id+0x5/0x20
[  732.251266][  T877]  __x64_sys_recvmmsg+0x11d/0x1a0
[  732.256270][  T877]  do_syscall_64+0xf3/0x1b0
[  732.260748][  T877]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  732.266613][  T877] RIP: 0033:0x45ca59
[  732.270569][  T877] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  732.290194][  T877] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  732.298579][  T877] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  732.306525][  T877] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  732.314478][  T877] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  732.322542][  T877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  732.330495][  T877] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  732.392209][ T2494] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  732.512084][    T5] usb 1-1: new high-speed USB device number 103 using dummy_hcd
[  732.632019][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  732.753993][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  732.765051][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  732.775301][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  732.788276][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  732.792018][    T5] usb 1-1: Using ep0 maxpacket: 16
[  732.797615][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.815400][ T2494] usb 2-1: config 0 descriptor??
[  732.932175][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  732.943209][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  732.957815][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  732.967701][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.981170][    T5] usb 1-1: config 0 descriptor??
[  733.293718][ T2494] microsoft 0003:045E:07DA.0045: unknown main item tag 0x0
[  733.311148][ T2494] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0045/input/input65
[  733.401692][ T2494] microsoft 0003:045E:07DA.0045: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  733.463839][    T5] microsoft 0003:045E:07DA.0046: unknown main item tag 0x0
[  733.480963][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0046/input/input66
[  733.504202][ T2693] usb 2-1: USB disconnect, device number 46
[  733.574527][    T5] microsoft 0003:045E:07DA.0046: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
21:59:36 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:36 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:36 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x3, 0x331e00)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r1, 0x0, r0, 0x0, 0xffffffffffffffdd, 0x0)
setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x7)

21:59:36 executing program 3 (fault-call:4 fault-nth:38):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  733.640546][ T2494] usb 3-1: USB disconnect, device number 45
21:59:36 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  733.739582][  T934] FAULT_INJECTION: forcing a failure.
[  733.739582][  T934] name failslab, interval 1, probability 0, space 0, times 0
[  733.754116][  T934] CPU: 1 PID: 934 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  733.762264][  T934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  733.772308][  T934] Call Trace:
[  733.775593][  T934]  dump_stack+0x1e9/0x30e
[  733.779921][  T934]  should_fail+0x433/0x5b0
[  733.784338][  T934]  ? sock_kmalloc+0x98/0x100
21:59:36 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  733.788932][  T934]  should_failslab+0x5/0x20
[  733.793443][  T934]  __kmalloc+0x74/0x330
[  733.797591][  T934]  sock_kmalloc+0x98/0x100
[  733.802000][  T934]  hash_recvmsg+0x1bd/0x810
[  733.806608][  T934]  ? hash_sendmsg+0xb40/0xb40
[  733.811282][  T934]  ____sys_recvmsg+0x24a/0x510
[  733.816052][  T934]  ? import_iovec+0x12a/0x2c0
[  733.820724][  T934]  do_recvmmsg+0x429/0x1500
[  733.825246][  T934]  ? retint_kernel+0x2b/0x2b
[  733.829848][  T934]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  733.835309][  T934]  ? check_preemption_disabled+0xa2/0x240
[  733.841028][  T934]  ? retint_kernel+0x2b/0x2b
[  733.845617][  T934]  __x64_sys_recvmmsg+0x11d/0x1a0
[  733.850628][  T934]  do_syscall_64+0xf3/0x1b0
[  733.855107][  T934]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  733.860979][  T934] RIP: 0033:0x45ca59
[  733.864969][  T934] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:36 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
syz_open_dev$video(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r3, 0x0, r2, 0x0, 0x100000000c, 0x0)

[  733.884555][  T934] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  733.892934][  T934] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  733.900895][  T934] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  733.908847][  T934] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  733.916811][  T934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  733.924761][  T934] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  733.957677][    T5] usb 1-1: USB disconnect, device number 103
21:59:37 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:37 executing program 3 (fault-call:4 fault-nth:39):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  734.129307][  T958] FAULT_INJECTION: forcing a failure.
[  734.129307][  T958] name failslab, interval 1, probability 0, space 0, times 0
[  734.143604][  T958] CPU: 0 PID: 958 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  734.151859][  T958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  734.161997][  T958] Call Trace:
[  734.165281][  T958]  dump_stack+0x1e9/0x30e
[  734.169614][  T958]  should_fail+0x433/0x5b0
[  734.174032][  T958]  ? sock_kmalloc+0x98/0x100
[  734.178615][  T958]  should_failslab+0x5/0x20
[  734.183108][  T958]  __kmalloc+0x74/0x330
[  734.187269][  T958]  sock_kmalloc+0x98/0x100
[  734.191685][  T958]  hash_recvmsg+0x1bd/0x810
[  734.196192][  T958]  ? hash_sendmsg+0xb40/0xb40
[  734.200864][  T958]  ____sys_recvmsg+0x24a/0x510
[  734.205635][  T958]  ? import_iovec+0x12a/0x2c0
[  734.210312][  T958]  do_recvmmsg+0x429/0x1500
[  734.214839][  T958]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  734.220291][  T958]  ? check_preemption_disabled+0xa2/0x240
[  734.226004][  T958]  ? retint_kernel+0x2b/0x2b
[  734.230593][  T958]  __x64_sys_recvmmsg+0x11d/0x1a0
[  734.235617][  T958]  do_syscall_64+0xf3/0x1b0
[  734.240116][  T958]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  734.246000][  T958] RIP: 0033:0x45ca59
[  734.249884][  T958] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  734.254642][ T2494] usb 3-1: new high-speed USB device number 46 using dummy_hcd
21:59:37 executing program 3 (fault-call:4 fault-nth:40):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:37 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockname$packet(r1, &(0x7f0000000d00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000d40)=0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0)='ethtool\x00')
r4 = socket(0x11, 0x800000003, 0x0)
bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r4, &(0x7f0000000040)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x9)
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x34}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0)='ethtool\x00')
r7 = socket(0x11, 0x800000003, 0x0)
bind(r7, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r7, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x9)
sendmsg$ETHTOOL_MSG_STRSET_GET(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)={0x18, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001780)={&(0x7f0000000d80)={0x9f8, 0x0, 0xd00, 0x70bd2c, 0x25dfdbfd}, 0xfffffffffffffdac}, 0x1, 0x0, 0x0, 0x20040811}, 0x4000811)
r8 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r8, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  734.269584][  T958] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  734.269595][  T958] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  734.269602][  T958] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  734.269608][  T958] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  734.269613][  T958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  734.269619][  T958] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  734.360013][  T970] FAULT_INJECTION: forcing a failure.
[  734.360013][  T970] name failslab, interval 1, probability 0, space 0, times 0
[  734.374372][  T970] CPU: 0 PID: 970 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  734.382527][  T970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  734.392566][  T970] Call Trace:
[  734.395832][  T970]  dump_stack+0x1e9/0x30e
[  734.400149][  T970]  should_fail+0x433/0x5b0
[  734.404646][  T970]  ? sock_kmalloc+0x98/0x100
[  734.409240][  T970]  should_failslab+0x5/0x20
[  734.413722][  T970]  __kmalloc+0x74/0x330
[  734.417858][  T970]  sock_kmalloc+0x98/0x100
[  734.422267][  T970]  hash_recvmsg+0x1bd/0x810
[  734.426766][  T970]  ? hash_sendmsg+0xb40/0xb40
[  734.431428][  T970]  ____sys_recvmsg+0x24a/0x510
[  734.436174][  T970]  ? import_iovec+0x12a/0x2c0
[  734.440832][  T970]  do_recvmmsg+0x429/0x1500
[  734.445332][  T970]  ? check_preemption_disabled+0x33/0x240
[  734.451041][  T970]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  734.456473][  T970]  ? check_preemption_disabled+0xa2/0x240
[  734.462206][  T970]  ? retint_kernel+0x2b/0x2b
[  734.466798][  T970]  __x64_sys_recvmmsg+0x11d/0x1a0
[  734.471825][  T970]  do_syscall_64+0xf3/0x1b0
[  734.476317][  T970]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  734.482196][  T970] RIP: 0033:0x45ca59
[  734.486098][  T970] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  734.505783][  T970] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  734.514186][  T970] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  734.522139][  T970] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  734.530092][  T970] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  734.538075][  T970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  734.546030][  T970] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  734.592001][ T2494] usb 3-1: Using ep0 maxpacket: 16
[  734.701897][ T2693] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  734.712244][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  734.722760][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  734.735866][ T2494] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
21:59:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0)

[  734.745507][ T2494] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  734.757870][ T2494] usb 3-1: config 0 descriptor??
[  734.822959][ T2494] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  734.941866][ T2693] usb 2-1: Using ep0 maxpacket: 16
[  735.071986][ T2693] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  735.082941][    T5] usb 1-1: new high-speed USB device number 104 using dummy_hcd
[  735.090670][ T2693] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  735.105403][ T2693] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  735.115121][ T2693] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  735.127578][ T2693] usb 2-1: config 0 descriptor??
[  735.331891][    T5] usb 1-1: Using ep0 maxpacket: 16
[  735.464304][    T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  735.475287][    T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  735.488431][    T5] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  735.497619][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  735.508101][    T5] usb 1-1: config 0 descriptor??
[  735.871881][ T2693] usbhid 2-1:0.0: can't add hid device: -71
[  735.878002][ T2693] usbhid: probe of 2-1:0.0 failed with error -71
[  735.889502][ T2693] usb 2-1: USB disconnect, device number 47
[  736.003529][    T5] microsoft 0003:045E:07DA.0047: unknown main item tag 0x0
[  736.021040][    T5] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0047/input/input67
[  736.104803][    T5] microsoft 0003:045E:07DA.0047: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  736.410654][    T5] usb 1-1: USB disconnect, device number 104
21:59:39 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:39 executing program 3 (fault-call:4 fault-nth:41):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:39 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:39 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f00000000c0)='./file0\x00', 0xfffffffffffff725, 0x6, &(0x7f0000002480)=[{&(0x7f0000000100)="f39ea8e49c86972577019d837defd6cbd24e1daa82e12f6fe42564b76f1debf75664ec1be35aa122cb10817cc8c08a8afcd57a461d71f30e78bcc71a2f83675e1e23604c01b3776978877edd5e30d165adc60521e8d45cacd60ee4d1a6675471f3852f7c0e69f432b73f0964fefddc68474cd7d6a1f69194895c807e74f7240c718b352d1ab9ada660055113bccfbea4e45e3c928fa5413ee7bf42adc69cd6da7abbd9114450ec419b940180a4c885086668e8bbb7fca0a1e9a52f21747b3e8f0fbe160f38f23b3d8cac7c8a62dded71e3c5f3f8de6e7a0d54187bce098b2775f1668d859ea38fdc270a44742b31ac256d2260dbba1980b5d513de6a71c4e767f31bee52bccca8da9283e652746b765cd7b4b77b4690790bdc42ff9f2a278480642515f166a4913c603d5b778fd32a272e0710f663ae261edea2c3f852c6a93502dae669d06bdfa4e61b221cd7a5a06f73b8f8a9f14afa066463ab076225963c542d5a462c59c08cd99dbf80833d1da77711c7028d4d0fdf1cbb452aee45ee9b064068146593b67fb9af30ba403fc92a14031708a3ee67013bcfa6915efae9e7e34edde90980cd69a15ca61add308a2a31249c2941308d08372fc18cac7523d4e03ff9df83b60cca3fdd09f392ae2028371988d5696d87cd8600b53057f4719a2f1e538cc6a1f18564137856a3c079ecb856b580e2eed722bdbf55c5ba8f452e57d6c3ef51a9f88ff3d3846f5ff77c840cf749f7d80a5f9477023b4640b2ac7530b9d28c1ee93b569f98571fa424eaa7f7b7fc461d5f1ba021a9af1b3d5d5a1888232b39e0e317894edda29d7b194fd9fb44d58120352885a6d1629ba2ff78940e1c9c952f8870710702e628f638f1688a72d8dd285bc8a5b13e542e9d6f34740b632cab5d2e6fdaef9e370eea79cfeb708187858659a22f3b81ca5f3da89ee84d755019bb1a58e089baac04c1306097aee96fc6bd662da477852d4d8232a27daf60a0ab92366344484193bf8a88de6a21b7169bd6144b9526bf5c7deab7ba92b46c46a28e1714e7d3d8147200169956f86cb1e33108e0d845a6c03ff2799af4a89167f9d0ce3073b7bf3ff98e3f97ab9740917bebf24ae23423f4f9ea9d868c42220782ea1448ec41f38d9d242e248f3a24b1b0fa98f78f6f1b6761aacb9adc0d843c9be9ad3c42ab651dda4dea82c83be8fee5526099ed9c2c481362638142f5e996914dc80fba088d24d707195b4f48c698e326a9934cb307a111507bb9558e9f643f82b99828e20cb5e402c896637b1c5a905a834d4e7db2968ad593afd2c557ea57f165fe884a5e9da205de1812a0461e4164b520bc4334c10e2a576cb4c4082f9b1f7df306413605b18a9fd9198f77622ef8a11580ff8d6b81047924e5ab8acc7c2f8d93044557799cbdb4e1cf95cb74e991f61850b67969726ce9fd7ca4d655bb63ff718235ecc19e6f7da4cb1844baa92a5ed768a2784ceb6fb11478eb90201431f8bc89c03e1687a70bc6bda5caf771f071e1ceecf624e59295c854ae8db17752eb1d5ba3e8710b2123b85232c2041f8ac1cff902002bd7699218d99efed8508f4bef8cc0219ba70bdee78d393ee16f9cad5d87bd43d46489b48e8c081b52b6cd610033e50b2646353b23b00c8be6819f9d5ab9d19128f3415de01e86a7553a73710c9b2b1f5012a3246daa169bd80a8c19eaa45aadfa40a17d73262e3ddc4ecad42728be2a5db8471bc0f7269de658f7e723a4449665a321bf13e57cbb22bf5d677c041e379c56fbd4649466320f52d5d1bccf8510b7b7445b9c2f44e6e43004e9d6a10a637e2aa2cc80ac66149c122190a3e807633943d111fb542cb9f04ddf8da31faa3538d6744d1c362f012cf6287d8ee3491cbb013f619d7a2aec6d86880459b5a6006824fb2becc1c06070e38033c4630264276485bc1760e49abcd5eebb3487b841fab916013eaf1a2f7ac342da2d24afb41a8644916a2ab041c0cb83e4999e7b4be1f993ae44c8b0b9cc4d4ec4f16f4f4d6cd011d01730344826d02edbe0061fee6c75ddc4251b06858da89a0d5ea9c87332b27625666294ad2d25d39cd4f3327f840159fdcdbcedc62002f75e21db2f603cad3300704e978bdc6811900f05b1fa7a676bb7228f01d74c7d43aab5f9b7b5c171eaaaa62aeb518a01b7d35a072d23b2bd965d6d3c76622748e625a51ad6cb71a8820f8145b596afbb901497e51f0d15c3e3aa2b8acc8fe7e8eff40da3ad15b73d509832c8c0fb7d5b84bc82d43ac3b978b6203033459ed6fe7ca155102f1073d50df9a89198151bd4e2f1b5f94fc30297e12a8730a59f43e634c523d600042d696b2b7929403a44acbcff64ee62c63cc1920b4f10f4a8b2b13c65b385949f30738f5c02f25661311e386c209558c0598ef4ca2349f33968b191fed4e2064ac5d508f59ec31adfd61df38a991eca631a3d915db2a0a1751cc9d33023923707e30eb5e889d5d7407ded64f79207e656a671e856b07cd97d0c7c066c4ae097daedbcc44cd5a9375711bfee4f46e11807c765965754bdc5c45c171aa278b4b52863533a09839c7952b0f21d0d4d64443383b9c34206a8e39beea7a2b4b9dc7b84b13683f790a846ef4f444f6bf92cda496cb311b52d99fad04e532d418c07e4f27afed3535074192acfdae852425f73ad3b15a18ea50ea534283c6586dabd5c8806d4a9dc7eb4e995ed2274d7e5cd0c38dba1b78761a92b6d316d294ae2ad0a1ec87b2330857afc622e3bb5961b5a86fcc32c9f7b1dc252c745b152fdcf23f97f24de4a0c2a07e3b00f566cc5868d240003dcd746a5b8f394a219f721af49d3e5ea5fcffb8763e26240a0ae6cce9edd180077bcf9b13a8fa38dccb25667e1545327b7420087e5c5004d3b57e67269cf0450ca80ea68dc2ec4ffaccd4df80e544bba3d8afcbae86af3e92fb3ef95ab333929bd5008c571639a55a8503ee87dc480e1b7b934909d33bf040038b2b96bd6f6ec1ceda586927f926c92ef0565b0e19cbb565db8df18eb85d106268748ba2b96af115b418fc6d74173b5ff8d6c192be556bd2423d45aa454efb950fd6bf9ca714cea7ed4674b43d07edc17827b92e3c4752c3aea4f22a5a9c8b529ab1e1d70c3967f9c5463cb18d261abdc0aa64a6af9d1d125470cb6d86e9c27a207f61ee6fc160608d23cd0a72697431b8f9c8692516a6e075170e5f237415f185c0f111010a77c6a1f0b7c0b94137d0661f2633d0d8c8fd3bfec079cc0c2c638d3ebbfa1ade11b8165497b1e2db1df3a2cc979b394da58c01fad82bb05e2f337666bc3726f894b9b3d9d5b5e87bcbc5fd681ccb21748dfa5dadd9cb1e087ba9fe245cfd36af2ca0e6ab06a1b403b0a6c82925145c3b3b169c34ebee990525be235e67eb8a90251aeb176a5dd479ceca89f3bfee28eeaea1adfdd0919883391c34df2b14caf9e1aff2bcbb7f693fc926d0ad9e67e7ba7cfe10f7cad3a9215cd4811ae56dc4f7787e167844af2f3fdf5f6b6b3020febc26ad2ecc87df6e8ac49fd1f6a1af8a50f7360cb55b1ea01aa02ad7cc453a7edd0bfe38786256694490b1b015da9be6ef322f669fa9c5324a46aaafb091a30d88bcaacf09908df39cfc91421bc7860013a2b0bf1823fcfe17214c308f6e53ec68c2c27ac6d2d2b2d831ea4c0b9ed7ab671b19e65d7a1175e1eda14e6b03fa85cce594723a07fbd9e276b292e755ee5b38f05d956146c403fac3a1007c39a22fa2234ca9650766a697b93f0dfeb6155958e349bd1a07d83e83d1fa8da433bc972e78c4e689ae099c6774fdb3d4a6f380c4c3bf2e05040a36e3084d0abcbb6322e66584e8fc9fe77fa9334442775b0dd6b98957568a1fb40a72504d3adc290f298a6d540c1806fcfc4f9247d3f70de99bffd1dac62b2a0bf699dacd76a3895ff4e6334963526fa06dabbfbff19768ec4f3d74f944ad2caf6e470618d9693406e349a2d0c458ba0451cd9ce16c9197addc658271e10bbb2da40e4abd3ba6c267232d3607317a75bad6c08141bba27dde155cc94fe637d1454c3719fae41474c3ee42578020f4bcad858be373624f8c04f4fd9397853a0ab14d11c2ecd1b91b36c714262c4c55eb02d0206e40dfcc665480416a49a13116ea31c48b6bfb9589ff630ee4e5349545c8265db7486139db6aa53be82caebc4f8675683d6265c0afd8780ebf115d07d02202b29d066157b9e2125f875c2fffae43fb30400b7d779ba73901d0258c4268a8c92020739ba2b7a39f5ea5586b6675db76cb0a2c3b93d536d83a917fc896bcb28f3fa60f9c91c85449d69625f62ec1c8d036c2905d900f40a6cc3b85e11f80d5c0bb2b9723cec7090e5bb7b9590907d934312d084c9cb29669f312a14e78eb29a868ae2cb3ed564cc81a5332bc9c9915c586eb691e00dcecbb215af1b8489e3a99dce8ca00bea05ba32061be1fdab9eee7dc36832403e2899da1a8629125b7fe5e39a30508994f1b4a69d4e5346052e919f17caed04e1042bd4303e5107403d9c273aed7778a7d35567e18cb32bea6bbba13ff05a3753461278ac05a56a6a82978fc1ad059cbbefb01686c4482a3cbd42cd6639d72ab09d99445ac20b1275644dba46f5dfa239cf5002c4b8d3f942a973c9b2aae27df5f5ed208238be219600242ebc8cdf0e29755fb9be9cf84dca0f3a5877ca0cc4804eb3abf6b7f2286163172138b1517a89dd60a3013920000c38b4820f856634ccdf0937bafb3c150060428d678f0ff5a765e863bddd8cc6874e1b3833624d03d3d4b22fb53c6852c4cf6b18536ecf086fd2c2a302a9faee4e7fc71aff5c23344c5839545f13616d9df1bac84cd9314bbb1ceef2023897e5c435c0ca8f6debbcb0062487061066fba2b39a9ab4338414e1c35af7682ea2ce1c95000dc6e82ebec5e5b77be0e49cfef6c3c479d8751452f7a296ecb1255845167e53b3bd8ec9964f2760f3794a8aa6db6ac048b273359d8ff8a2b0e9f4d61d811980957105af38412fff3e5018022755c50f4e3d39be80339f48aca34c23821afe56a805e2e8ea0bb0f64aaad46c7550ea3b6328dee08763a274ac21b9b7ec0da0171c21ef88cb35fd6e7da55afd478b98cbb789494092af06d4f38d41b1a473b7ccf22f2a484d4815e8927bb967f892b04116992d2c698818721c91159f556f51d3d8425848cffc7a3e865c61baf2fbab8a7ad372990fa5dd3ef5d0f5a3f1eb3134cc98d1a2fd7421bc201c162025975fbb4aad5aabc0207c88c9bb32da2f8dfe0b0951461392e2ac766fa784b32bb2c633cf9a66f419c37f18be96c2e2479de44187e20bb5537a917db072db37b3c5fb62ede30d185d8803cefe41cd9190d56d09d7129f7817a2bbcdd2ee3afc175b1e40bb82e87e560b9796e1cb0443ec9311664e3e977011c64618f5b148b78e04b18d17550a7ea4d9bbc77c0ff3fea93392b8a19d00089125fde7ce6e2ccb2c505b5b5d110192c19b85ff3235795340f0fe627e626bc635879d26562b4b6348a498e5887e0f3971c3a7cea72e74073108cd08b9e1a5f1acb83cc468d3843e00b986720b8993d2d1ad5c1d40bf7d61c72bb02d9a003aa766efae14f9f00c0ba3522dbe9b5ba8c74a625d8579fea9dda874b397efacfa5e7f94d3ac3e0624859efff9175e78214e8264a5507819a17202aa7ae0322cbd9a4072fdd377d2f82f7f3957ad8e601356707069837fe909c0fce885c6f25bcec9c864ac8bd50fa7c833436f07bd0a97b359dafcb23501910919ac5c2b06a4b1a6433cc31277c6670339b057", 0x1000, 0x8}, {&(0x7f0000001100)="5c32c91a0a8ecd0d57644ba61ea1cecc3aaf40c79999d913f3db6a15d39d988ac8add1c3444a4d46d1f1cc63c139d3f19bc4504a38a1a905004c9fb720ebf9d4cf49c9a34fcd7d46fa40ea6b67f94422b9f2797c9be9571c43303198c22d554f2ce8e5218b704ba0d0a294fa125f07cf1bd9c39abdc4ec60f767b7e340cc566cc3a1a13ba2b07e5b1e1feec6a4f50f5f4bef013366a26f58b6ca301cd864e79806ef3e53a679f4efd2d159b7c0f04afda32bacd9", 0xb4, 0x3}, {&(0x7f00000011c0)="a4c5cc3f1db1f2a36c76ea1ab06d24455f0211cb922c8aa096092f575ba4d0734d078fea44ed764708e9d755324f7959031e2a9606506c5abab5bcbbdfdf2bc66c98cb6ac25482a939a8afa01ef2de6c497aa764f9310ca4a551bd54c970444859bf7c2ad19a38f00e59296e461ccbee098dea4053579b9c0cbf5ca56b868d74b5e217456b887c8f548e2534ba6b4f8b372732b240edc4fb125aded22ed41296f4ea0bd200e936016c7a441ce9d4e5ce31a05453", 0xb4, 0x15c}, {&(0x7f0000001280)="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", 0x1000, 0x80000001}, {&(0x7f0000002280)="73f7e76afef4ce26b4895a4c713a09150ccfbacde4f4d13b10b165dd4d1d8ab783d0796881a7508a294709747716e1c1eda3fa1f53964ed2966f107b1b9ce84f929e00d4d18006d70e0b294913419e8c866b1620502094df6ff2cd5c24fc90ca185f26e91898ee40a46d25ac0c9b6ca187315cbb1d681cda83f8fd4cd1f3a70c8a2e46833c4090de4bb5b65a045ab52e1481dff4672589d3f5208634c825a1535f0b772642526a3c3d9d0d613224c5e10ad087f8c421cc4816a3d55848e70c03058db5d3b738f15c4157b2eeb8bffaa6ffa5", 0xd2, 0x6}, {&(0x7f0000002380)="c1eee84b33408b330facc518af084860b8b4ebcd4d51f08a0fc4663041c12c21d3d638306ecc7cad2e7e634179d0550042c0316463e483939a905ab7e5d46063d8856063e9bc330c3d6b46e8e22f94aff8cd9fc8a01453778961f97b6a44b1898a9ed9aaae14c2160db47b383a23155aafc188c8c028f67a661e16649dd8584891666265bae9a7101772053c02c575fa2404e6a70fec569d82eb93efd2c9cc50431e0f70766ebdc4e135accf1190d5896d93f3b40dbcb662eb01dab804b7b6405bc19e3235df30498105feff1cda8b733ab321be4b050bf4", 0xd8, 0x6}], 0x40001, &(0x7f00000025c0)={[{@nolargeio='nolargeio'}, {@uquota='uquota'}, {@largeio='largeio'}], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/sg#\x00'}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@appraise_type='appraise_type=imasig'}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@smackfsdef={'smackfsdef', 0x3d, ',\''}}]})
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$USBDEVFS_GETDRIVER(r3, 0x41045508, &(0x7f0000002640)={0x8000, "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"})
ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f0000002580)={0x0, 0x3, 0xc, [], &(0x7f0000002540)=0xff})

21:59:39 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  736.725079][ T3370] usb 3-1: USB disconnect, device number 46
21:59:39 executing program 4:
prctl$PR_SET_TIMERSLACK(0x1d, 0x3)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0xfff, 0x20000)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x8010, r3, 0x85bea000)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000140)={r2, @in={{0x2, 0x0, @empty}}}, 0x90)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000540)={r2, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000080)={r2, @in6={{0xa, 0x4e23, 0x3f, @ipv4={[], [], @private=0xa010100}, 0x7}}}, 0x84)
r4 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r4, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  736.840654][ T1035] FAULT_INJECTION: forcing a failure.
[  736.840654][ T1035] name failslab, interval 1, probability 0, space 0, times 0
[  736.863182][ T1035] CPU: 0 PID: 1035 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  736.871424][ T1035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  736.881471][ T1035] Call Trace:
[  736.884760][ T1035]  dump_stack+0x1e9/0x30e
[  736.889095][ T1035]  should_fail+0x433/0x5b0
[  736.893524][ T1035]  ? sock_kmalloc+0x98/0x100
[  736.898106][ T1035]  should_failslab+0x5/0x20
[  736.902603][ T1035]  __kmalloc+0x74/0x330
[  736.906759][ T1035]  sock_kmalloc+0x98/0x100
[  736.911181][ T1035]  hash_recvmsg+0x1bd/0x810
[  736.915685][ T1035]  ? hash_sendmsg+0xb40/0xb40
[  736.920359][ T1035]  ____sys_recvmsg+0x24a/0x510
[  736.925131][ T1035]  ? import_iovec+0x12a/0x2c0
[  736.929811][ T1035]  do_recvmmsg+0x429/0x1500
[  736.934339][ T1035]  ? trace_hardirqs_on_thunk+0x1a/0x1c
21:59:39 executing program 4:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  736.939791][ T1035]  ? check_preemption_disabled+0xa2/0x240
[  736.945514][ T1035]  ? retint_kernel+0x2b/0x2b
[  736.950108][ T1035]  __x64_sys_recvmmsg+0x11d/0x1a0
[  736.955132][ T1035]  do_syscall_64+0xf3/0x1b0
[  736.959633][ T1035]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  736.965523][ T1035] RIP: 0033:0x45ca59
[  736.969402][ T1035] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:40 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r2)
setfsuid(r2)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private2}, 0x0, @in6}}, &(0x7f0000000180)=0xe8)
write$P9_RSTATu(r0, &(0x7f00000001c0)={0x60, 0x7d, 0x2, {{0x0, 0x4a, 0xccb, 0x7, {0x20, 0x0, 0x6}, 0x0, 0x200, 0x1, 0x3, 0x9, '/dev/sg#\x00', 0x2, '*{', 0x9, '/dev/sg#\x00', 0x3, '-*@'}, 0x1, ')', r2, 0xee01, r4}}, 0x60)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r6, 0x0, r5, 0x0, 0x1000000008, 0x0)

[  736.988985][ T1035] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  736.997385][ T1035] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  737.005349][ T1035] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  737.013315][ T1035] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  737.021278][ T1035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  737.029242][ T1035] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:40 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0)

21:59:40 executing program 3 (fault-call:4 fault-nth:42):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:40 executing program 4:
syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0xae, 0x240800)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  737.081977][ T2494] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  737.173542][ T1057] FAULT_INJECTION: forcing a failure.
[  737.173542][ T1057] name failslab, interval 1, probability 0, space 0, times 0
[  737.186669][ T3370] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  737.194617][ T1057] CPU: 1 PID: 1057 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  737.202868][ T1057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  737.212913][ T1057] Call Trace:
[  737.216196][ T1057]  dump_stack+0x1e9/0x30e
21:59:40 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x3)

[  737.220526][ T1057]  should_fail+0x433/0x5b0
[  737.224952][ T1057]  ? sock_kmalloc+0x98/0x100
[  737.229540][ T1057]  should_failslab+0x5/0x20
[  737.234031][ T1057]  __kmalloc+0x74/0x330
[  737.238185][ T1057]  sock_kmalloc+0x98/0x100
[  737.242606][ T1057]  hash_recvmsg+0x1bd/0x810
[  737.247111][ T1057]  ? hash_sendmsg+0xb40/0xb40
[  737.251788][ T1057]  ____sys_recvmsg+0x24a/0x510
[  737.256565][ T1057]  ? import_iovec+0x12a/0x2c0
[  737.261247][ T1057]  do_recvmmsg+0x429/0x1500
[  737.265731][ T1057]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  737.271170][ T1057]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  737.276604][ T1057]  ? check_preemption_disabled+0xa2/0x240
[  737.282347][ T1057]  ? retint_kernel+0x2b/0x2b
[  737.286918][ T1057]  __x64_sys_recvmmsg+0x11d/0x1a0
[  737.291922][ T1057]  do_syscall_64+0xf3/0x1b0
[  737.296402][ T1057]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  737.302268][ T1057] RIP: 0033:0x45ca59
[  737.306134][ T1057] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  737.325837][ T1057] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  737.334274][ T1057] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  737.342217][ T1057] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  737.350164][ T1057] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  737.358148][ T1057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  737.366095][ T1057] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  737.501726][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  737.531755][ T2506] usb 1-1: new high-speed USB device number 105 using dummy_hcd
[  737.591734][ T3370] usb 3-1: Using ep0 maxpacket: 16
[  737.621899][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  737.633067][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  737.646068][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  737.655841][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  737.665063][ T2494] usb 2-1: config 0 descriptor??
[  737.717965][ T3370] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  737.728718][ T3370] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  737.742232][ T3370] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  737.751257][ T3370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  737.760591][ T3370] usb 3-1: config 0 descriptor??
[  737.771791][ T2506] usb 1-1: Using ep0 maxpacket: 16
[  737.802478][ T3370] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  737.891910][ T2506] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  737.906328][ T2506] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  737.919530][ T2506] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  737.932747][ T2506] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  737.949411][ T2506] usb 1-1: config 0 descriptor??
[  738.391721][ T2494] usbhid 2-1:0.0: can't add hid device: -71
[  738.397703][ T2494] usbhid: probe of 2-1:0.0 failed with error -71
[  738.406676][ T2494] usb 2-1: USB disconnect, device number 48
[  738.414438][ T2506] microsoft 0003:045E:07DA.0048: unknown main item tag 0x0
[  738.445008][ T2506] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0048/input/input68
[  738.530131][ T2506] microsoft 0003:045E:07DA.0048: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  738.818101][ T2693] usb 1-1: USB disconnect, device number 105
21:59:42 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:42 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000080)={{0x4, 0x2}, {0x6, 0x14}, 0x3, 0x7, 0x1})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:59:42 executing program 3 (fault-call:4 fault-nth:43):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:42 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, &(0x7f0000000500))

[  739.764259][T29588] usb 3-1: USB disconnect, device number 47
21:59:42 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r3, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xcc, 0x3, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@CTA_NAT_DST={0xc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xf, 0x1, 'tftp-20000\x00'}}, @CTA_NAT_DST={0x5c, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0x2c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010101}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @empty}]}, @CTA_SEQ_ADJ_ORIG={0x3c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x401}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xffff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x800}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x100}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4008084}, 0x80)
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00')
sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r4, 0x2, 0x70bd2d, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x1c}}, 0x8800)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  739.878637][ T1127] FAULT_INJECTION: forcing a failure.
[  739.878637][ T1127] name failslab, interval 1, probability 0, space 0, times 0
[  739.898611][ T1127] CPU: 1 PID: 1127 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  739.906852][ T1127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  739.916897][ T1127] Call Trace:
[  739.920180][ T1127]  dump_stack+0x1e9/0x30e
[  739.924510][ T1127]  should_fail+0x433/0x5b0
21:59:42 executing program 4:
socket(0x3, 0x3, 0x8)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f0000000080)={0x7, 0xffff, 0x7, 0x6, 0x1a, "6590b9d183a22121"})
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  739.928931][ T1127]  ? sock_kmalloc+0x98/0x100
[  739.933513][ T1127]  should_failslab+0x5/0x20
[  739.938003][ T1127]  __kmalloc+0x74/0x330
[  739.942172][ T1127]  sock_kmalloc+0x98/0x100
[  739.946585][ T1127]  hash_recvmsg+0x1bd/0x810
[  739.951085][ T1127]  ? hash_sendmsg+0xb40/0xb40
[  739.955762][ T1127]  ____sys_recvmsg+0x24a/0x510
[  739.960533][ T1127]  ? import_iovec+0x12a/0x2c0
[  739.965227][ T1127]  do_recvmmsg+0x429/0x1500
[  739.969726][ T1127]  ? rcu_lock_release+0x5/0x20
[  739.974504][ T1127]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  739.979978][ T1127]  ? fput_many+0x11/0x1a0
[  739.984299][ T1127]  ? fput_many+0x24/0x1a0
[  739.988626][ T1127]  ? fput_many+0x2b/0x1a0
[  739.992955][ T1127]  ? check_preemption_disabled+0xb0/0x240
[  739.998666][ T1127]  ? debug_smp_processor_id+0x5/0x20
[  740.003950][ T1127]  __x64_sys_recvmmsg+0x11d/0x1a0
[  740.008974][ T1127]  do_syscall_64+0xf3/0x1b0
[  740.013472][ T1127]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  740.019352][ T1127] RIP: 0033:0x45ca59
21:59:43 executing program 4:
userfaultfd(0x180000)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = openat$smackfs_syslog(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/smackfs/syslog\x00', 0x2, 0x0)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000300)="aed2ab9d220d7df6d8599751be5335361dff73d3576af073f19adf0000fce27405f22aa44918c92e3d421b03de270974f6bbf5fb2bcd5738f3011c3c1bcec842e9aa68fe0d671ed0cda8d90d08026440b4bde231086718c0f07585c8988109ef17562f1f9d1ac0984d6390f7c89ea32ca537e63f040956e36f75cdf069ccd9cd22385449beab97127ae42dbc4404ebb0a22417fb069de417dfb3fee01076753f50ea92", 0xa3}, {&(0x7f0000000180)="8012ea207cf79192f6e5513baf733d500046855fc851ef9e87a0b20ecfb5971fe6367398ca6a5d7d5829b796500e2a53a77002e2cbe98fcabc8fc281faff18c7a95c3b670563d45400275597dbbec908312f106ae315a37f970fcd459fa2e35d90f8c85f6eb52a882b6fad236be858f8f19ed5dab9fb9157412dc94b72d3898b9aaeb349d15bd55ba56eee9ca0974350a4d38687b737238f3d75c253576d26b581342a7900e4148036a312db5b2dcc34911ceb77b2b180f10f24dea8a95a503a115be3d28c48b4abae3ea654e3", 0xcd}], 0x1f)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000680)='TIPC\x00')
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="01390c6da21cdf94520001"], 0x34}}, 0x0)
sendmsg$TIPC_CMD_SHOW_PORTS(r3, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x1c, r4, 0x200, 0x70bd2b, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)

[  740.023244][ T1127] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  740.042835][ T1127] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  740.051235][ T1127] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  740.059194][ T1127] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  740.067155][ T1127] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
21:59:43 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$EVIOCGLED(r3, 0x80404519, &(0x7f0000000100)=""/144)
r4 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x80000)
dup(r4)
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000080)=0x5, 0x4)

[  740.075122][ T1127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  740.083084][ T1127] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:43 executing program 3 (fault-call:4 fault-nth:44):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  740.125076][ T2693] usb 1-1: new high-speed USB device number 106 using dummy_hcd
[  740.157866][ T1149] FAULT_INJECTION: forcing a failure.
[  740.157866][ T1149] name failslab, interval 1, probability 0, space 0, times 0
[  740.171926][ T1149] CPU: 1 PID: 1149 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  740.180156][ T1149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  740.190187][ T1149] Call Trace:
[  740.193464][ T1149]  dump_stack+0x1e9/0x30e
[  740.197826][ T1149]  should_fail+0x433/0x5b0
[  740.202246][ T1149]  ? sock_kmalloc+0x98/0x100
[  740.206861][ T1149]  should_failslab+0x5/0x20
[  740.211339][ T1149]  __kmalloc+0x74/0x330
[  740.215485][ T1149]  sock_kmalloc+0x98/0x100
[  740.219898][ T1149]  hash_recvmsg+0x1bd/0x810
[  740.224402][ T1149]  ? hash_sendmsg+0xb40/0xb40
[  740.229106][ T1149]  ____sys_recvmsg+0x24a/0x510
[  740.233876][ T1149]  ? import_iovec+0x12a/0x2c0
[  740.238543][ T1149]  do_recvmmsg+0x429/0x1500
[  740.243040][ T1149]  ? retint_kernel+0x2b/0x2b
[  740.247644][ T1149]  ? ksys_write+0x1b1/0x220
[  740.252146][ T1149]  ? ksys_write+0x1b1/0x220
[  740.256663][ T1149]  ? check_preemption_disabled+0xb0/0x240
[  740.261553][T29588] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  740.262368][ T1149]  ? debug_smp_processor_id+0x5/0x20
[  740.262384][ T1149]  __x64_sys_recvmmsg+0x11d/0x1a0
[  740.262403][ T1149]  do_syscall_64+0xf3/0x1b0
[  740.262417][ T1149]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  740.262427][ T1149] RIP: 0033:0x45ca59
[  740.262438][ T1149] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  740.262445][ T1149] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  740.262455][ T1149] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  740.262465][ T1149] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  740.338855][ T1149] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  740.346817][ T1149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  740.354773][ T1149] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:43 executing program 3 (fault-call:4 fault-nth:45):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  740.370473][ T2506] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  740.371514][ T2693] usb 1-1: Using ep0 maxpacket: 16
[  740.426984][ T1161] FAULT_INJECTION: forcing a failure.
[  740.426984][ T1161] name failslab, interval 1, probability 0, space 0, times 0
[  740.440241][ T1161] CPU: 1 PID: 1161 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  740.448457][ T1161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  740.458488][ T1161] Call Trace:
[  740.461764][ T1161]  dump_stack+0x1e9/0x30e
[  740.466088][ T1161]  should_fail+0x433/0x5b0
[  740.470479][ T1161]  ? sock_kmalloc+0x98/0x100
[  740.475052][ T1161]  should_failslab+0x5/0x20
[  740.479545][ T1161]  __kmalloc+0x74/0x330
[  740.483689][ T1161]  sock_kmalloc+0x98/0x100
[  740.488080][ T1161]  hash_recvmsg+0x1bd/0x810
[  740.492580][ T1161]  ? hash_sendmsg+0xb40/0xb40
[  740.497252][ T1161]  ____sys_recvmsg+0x24a/0x510
[  740.502027][ T1161]  ? import_iovec+0x12a/0x2c0
[  740.506702][ T1161]  do_recvmmsg+0x429/0x1500
[  740.511194][ T1161]  ? rcu_lock_release+0x5/0x20
[  740.511894][ T2693] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  740.515969][ T1161]  ? ksys_write+0x1b1/0x220
[  740.515982][ T1161]  ? ksys_write+0x1b1/0x220
[  740.515999][ T1161]  ? check_preemption_disabled+0xb0/0x240
[  740.516009][ T1161]  ? debug_smp_processor_id+0x5/0x20
[  740.516025][ T1161]  __x64_sys_recvmmsg+0x11d/0x1a0
[  740.516043][ T1161]  do_syscall_64+0xf3/0x1b0
[  740.516058][ T1161]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  740.533958][ T2693] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  740.535822][ T1161] RIP: 0033:0x45ca59
[  740.535834][ T1161] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  740.535841][ T1161] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  740.535852][ T1161] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  740.535859][ T1161] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  740.535865][ T1161] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  740.535872][ T1161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  740.535879][ T1161] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  740.647192][T29588] usb 3-1: Using ep0 maxpacket: 16
[  740.652464][ T2693] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  740.661487][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  740.666676][ T2693] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  740.679418][ T2693] usb 1-1: config 0 descriptor??
[  740.771649][T29588] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  740.782432][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  740.796342][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  740.805970][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  740.811761][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  740.816279][T29588] usb 3-1: config 0 descriptor??
[  740.836475][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  740.850907][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  740.863406][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  740.880876][ T2506] usb 2-1: config 0 descriptor??
[  740.884727][T29588] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  741.172857][ T2693] microsoft 0003:045E:07DA.0049: unknown main item tag 0x0
[  741.194832][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0049/input/input69
[  741.286211][ T2693] microsoft 0003:045E:07DA.0049: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  741.578575][T27672] usb 1-1: USB disconnect, device number 106
[  741.631547][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  741.637590][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  741.649644][ T2506] usb 2-1: USB disconnect, device number 49
21:59:45 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:45 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0xc0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:45 executing program 3 (fault-call:4 fault-nth:46):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x1)

21:59:45 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:45 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, &(0x7f0000000500))

[  742.801017][T29588] usb 3-1: USB disconnect, device number 48
[  742.923867][ T1226] FAULT_INJECTION: forcing a failure.
[  742.923867][ T1226] name failslab, interval 1, probability 0, space 0, times 0
[  742.947723][ T1226] CPU: 0 PID: 1226 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  742.955976][ T1226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  742.966224][ T1226] Call Trace:
[  742.969510][ T1226]  dump_stack+0x1e9/0x30e
[  742.973847][ T1226]  should_fail+0x433/0x5b0
[  742.978267][ T1226]  ? sock_kmalloc+0x98/0x100
[  742.982852][ T1226]  should_failslab+0x5/0x20
[  742.987351][ T1226]  __kmalloc+0x74/0x330
[  742.991523][ T1226]  sock_kmalloc+0x98/0x100
[  742.995962][ T1226]  hash_recvmsg+0x1bd/0x810
[  743.000468][ T1226]  ? hash_sendmsg+0xb40/0xb40
[  743.005136][ T1226]  ____sys_recvmsg+0x24a/0x510
[  743.009907][ T1226]  ? import_iovec+0x12a/0x2c0
[  743.014581][ T1226]  do_recvmmsg+0x429/0x1500
[  743.019101][ T1226]  ? lockdep_hardirqs_on_prepare+0x425/0x6e0
[  743.025090][ T1226]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  743.030547][ T1226]  ? check_preemption_disabled+0xa2/0x240
[  743.036262][ T1226]  ? retint_kernel+0x2b/0x2b
[  743.040854][ T1226]  __x64_sys_recvmmsg+0x11d/0x1a0
[  743.045893][ T1226]  do_syscall_64+0xf3/0x1b0
[  743.050395][ T1226]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  743.056285][ T1226] RIP: 0033:0x45ca59
[  743.060172][ T1226] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  743.079765][ T1226] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  743.088168][ T1226] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  743.096148][ T1226] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  743.104134][ T1226] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  743.112100][ T1226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  743.120067][ T1226] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  743.154533][ T2494] usb 2-1: new high-speed USB device number 50 using dummy_hcd
21:59:46 executing program 3 (fault-call:4 fault-nth:47):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  743.287145][ T2693] usb 1-1: new high-speed USB device number 107 using dummy_hcd
[  743.313007][ T1238] FAULT_INJECTION: forcing a failure.
[  743.313007][ T1238] name failslab, interval 1, probability 0, space 0, times 0
[  743.326356][ T1238] CPU: 1 PID: 1238 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  743.334586][ T1238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  743.344630][ T1238] Call Trace:
[  743.347915][ T1238]  dump_stack+0x1e9/0x30e
[  743.352242][ T1238]  should_fail+0x433/0x5b0
[  743.356770][ T1238]  ? sock_kmalloc+0x98/0x100
[  743.361352][ T1238]  should_failslab+0x5/0x20
[  743.365846][ T1238]  __kmalloc+0x74/0x330
[  743.370003][ T1238]  sock_kmalloc+0x98/0x100
[  743.374415][ T1238]  hash_recvmsg+0x1bd/0x810
[  743.378919][ T1238]  ? hash_sendmsg+0xb40/0xb40
[  743.383594][ T1238]  ____sys_recvmsg+0x24a/0x510
[  743.388364][ T1238]  ? import_iovec+0x12a/0x2c0
[  743.393039][ T1238]  do_recvmmsg+0x429/0x1500
[  743.397532][ T1238]  ? rcu_lock_release+0x5/0x20
[  743.402333][ T1238]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  743.407888][ T1238]  __x64_sys_recvmmsg+0x11d/0x1a0
[  743.412919][ T1238]  do_syscall_64+0xf3/0x1b0
[  743.417418][ T1238]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  743.423300][ T1238] RIP: 0033:0x45ca59
[  743.427188][ T1238] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  743.446784][ T1238] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  743.455541][ T1238] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  743.463614][ T1238] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  743.471581][ T1238] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  743.479545][ T1238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  743.487507][ T1238] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:46 executing program 3 (fault-call:4 fault-nth:48):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  743.551363][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  743.571273][T29588] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[  743.658680][ T1240] FAULT_INJECTION: forcing a failure.
[  743.658680][ T1240] name failslab, interval 1, probability 0, space 0, times 0
[  743.682238][ T1240] CPU: 0 PID: 1240 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  743.688745][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  743.690469][ T1240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  743.690477][ T1240] Call Trace:
[  743.709130][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  743.711335][ T1240]  dump_stack+0x1e9/0x30e
[  743.711351][ T1240]  should_fail+0x433/0x5b0
[  743.711370][ T1240]  ? sock_kmalloc+0x98/0x100
[  743.711380][ T1240]  should_failslab+0x5/0x20
[  743.711389][ T1240]  __kmalloc+0x74/0x330
[  743.711404][ T1240]  sock_kmalloc+0x98/0x100
[  743.711417][ T1240]  hash_recvmsg+0x1bd/0x810
[  743.711431][ T1240]  ? hash_sendmsg+0xb40/0xb40
[  743.711443][ T1240]  ____sys_recvmsg+0x24a/0x510
[  743.711466][ T1240]  ? import_iovec+0x12a/0x2c0
[  743.725874][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  743.727568][ T1240]  do_recvmmsg+0x429/0x1500
[  743.727608][ T1240]  ? retint_kernel+0x2b/0x2b
[  743.727627][ T1240]  ? do_syscall_64+0xb5/0x1b0
[  743.737295][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  743.740881][ T1240]  ? __x64_sys_recvmmsg+0x2e/0x1a0
[  743.740899][ T1240]  __x64_sys_recvmmsg+0x11d/0x1a0
[  743.740918][ T1240]  do_syscall_64+0xf3/0x1b0
[  743.740931][ T1240]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  743.740944][ T1240] RIP: 0033:0x45ca59
[  743.758330][ T2494] usb 2-1: config 0 descriptor??
[  743.758417][ T1240] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  743.851899][ T1240] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  743.860303][ T1240] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  743.868270][ T1240] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  743.876233][ T1240] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  743.884201][ T1240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  743.892162][ T1240] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  743.901476][ T2693] usb 1-1: Using ep0 maxpacket: 16
[  744.021262][T29588] usb 3-1: Using ep0 maxpacket: 16
[  744.041634][ T2693] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  744.059999][ T2693] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  744.087570][ T2693] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  744.106851][ T2693] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.132526][ T2693] usb 1-1: config 0 descriptor??
[  744.155165][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  744.173113][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  744.197444][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  744.225325][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  744.246197][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.271719][T29588] usb 3-1: config 0 descriptor??
21:59:47 executing program 3 (fault-call:4 fault-nth:49):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  744.393672][ T1255] FAULT_INJECTION: forcing a failure.
[  744.393672][ T1255] name failslab, interval 1, probability 0, space 0, times 0
[  744.406771][ T1255] CPU: 0 PID: 1255 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  744.415007][ T1255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  744.425053][ T1255] Call Trace:
[  744.428347][ T1255]  dump_stack+0x1e9/0x30e
[  744.432676][ T1255]  should_fail+0x433/0x5b0
[  744.437097][ T1255]  ? sock_kmalloc+0x98/0x100
[  744.441798][ T1255]  should_failslab+0x5/0x20
[  744.446293][ T1255]  __kmalloc+0x74/0x330
[  744.450448][ T1255]  sock_kmalloc+0x98/0x100
[  744.454860][ T1255]  hash_recvmsg+0x1bd/0x810
[  744.459363][ T1255]  ? hash_sendmsg+0xb40/0xb40
[  744.464148][ T1255]  ____sys_recvmsg+0x24a/0x510
[  744.468909][ T1255]  ? check_preemption_disabled+0xa2/0x240
[  744.474626][ T1255]  ? retint_kernel+0x2b/0x2b
[  744.479216][ T1255]  ? do_recvmmsg+0x3cd/0x1500
[  744.483893][ T1255]  do_recvmmsg+0x429/0x1500
[  744.488392][ T1255]  ? rcu_lock_release+0x5/0x20
[  744.493178][ T1255]  ? ksys_write+0x1b1/0x220
[  744.497677][ T1255]  ? ksys_write+0x1b1/0x220
[  744.502178][ T1255]  ? check_preemption_disabled+0xb0/0x240
[  744.503133][ T2494] usbhid 2-1:0.0: can't add hid device: -71
[  744.507877][ T1255]  ? debug_smp_processor_id+0x5/0x20
[  744.507893][ T1255]  __x64_sys_recvmmsg+0x11d/0x1a0
[  744.524174][ T1255]  do_syscall_64+0xf3/0x1b0
[  744.526305][ T2494] usbhid: probe of 2-1:0.0 failed with error -71
[  744.528668][ T1255]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  744.528679][ T1255] RIP: 0033:0x45ca59
[  744.528691][ T1255] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  744.528697][ T1255] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  744.528708][ T1255] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  744.528715][ T1255] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  744.528725][ T1255] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  744.582972][ T2494] usb 2-1: USB disconnect, device number 50
[  744.588760][ T1255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  744.588772][ T1255] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  744.613062][ T2693] microsoft 0003:045E:07DA.004A: unknown main item tag 0x0
21:59:47 executing program 3 (fault-call:4 fault-nth:50):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  744.638005][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.004A/input/input70
[  744.726056][ T2693] microsoft 0003:045E:07DA.004A: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
21:59:47 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  744.808541][ T1263] FAULT_INJECTION: forcing a failure.
[  744.808541][ T1263] name failslab, interval 1, probability 0, space 0, times 0
[  744.824793][ T1263] CPU: 1 PID: 1263 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  744.833028][ T1263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  744.839314][T29588] microsoft 0003:045E:07DA.004B: unknown main item tag 0x0
[  744.843069][ T1263] Call Trace:
[  744.843086][ T1263]  dump_stack+0x1e9/0x30e
[  744.843102][ T1263]  should_fail+0x433/0x5b0
[  744.843120][ T1263]  ? sock_kmalloc+0x98/0x100
[  744.843135][ T1263]  should_failslab+0x5/0x20
[  744.871401][ T1263]  __kmalloc+0x74/0x330
[  744.875558][ T1263]  sock_kmalloc+0x98/0x100
[  744.879979][ T1263]  hash_recvmsg+0x1bd/0x810
[  744.882366][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.004B/input/input71
[  744.884478][ T1263]  ? hash_sendmsg+0xb40/0xb40
[  744.884494][ T1263]  ____sys_recvmsg+0x24a/0x510
[  744.884520][ T1263]  ? import_iovec+0x12a/0x2c0
[  744.884538][ T1263]  do_recvmmsg+0x429/0x1500
[  744.884581][ T1263]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  744.920032][ T1263]  ? check_preemption_disabled+0xb0/0x240
[  744.925745][ T1263]  ? debug_smp_processor_id+0x5/0x20
[  744.931027][ T1263]  __x64_sys_recvmmsg+0x11d/0x1a0
[  744.936051][ T1263]  do_syscall_64+0xf3/0x1b0
[  744.940553][ T1263]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  744.946435][ T1263] RIP: 0033:0x45ca59
[  744.950320][ T1263] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  744.969914][ T1263] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  744.978315][ T1263] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  744.986278][ T1263] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  744.994249][ T1263] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  745.002212][ T1263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  745.010177][ T1263] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  745.018027][ T2693] usb 1-1: USB disconnect, device number 107
[  745.064048][T29588] microsoft 0003:045E:07DA.004B: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  745.137976][T29588] usb 3-1: USB disconnect, device number 49
21:59:48 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

21:59:48 executing program 3 (fault-call:4 fault-nth:51):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:48 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:48 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, &(0x7f0000000500))

[  745.680951][ T1318] FAULT_INJECTION: forcing a failure.
[  745.680951][ T1318] name failslab, interval 1, probability 0, space 0, times 0
[  745.702160][ T1318] CPU: 0 PID: 1318 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  745.710398][ T1318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  745.720442][ T1318] Call Trace:
[  745.723737][ T1318]  dump_stack+0x1e9/0x30e
[  745.728071][ T1318]  should_fail+0x433/0x5b0
[  745.732501][ T1318]  ? sock_kmalloc+0x98/0x100
[  745.737085][ T1318]  should_failslab+0x5/0x20
[  745.741678][ T1318]  __kmalloc+0x74/0x330
[  745.745836][ T1318]  sock_kmalloc+0x98/0x100
[  745.750249][ T1318]  hash_recvmsg+0x1bd/0x810
[  745.754753][ T1318]  ? hash_sendmsg+0xb40/0xb40
[  745.759428][ T1318]  ____sys_recvmsg+0x24a/0x510
[  745.764268][ T1318]  ? import_iovec+0x12a/0x2c0
[  745.768946][ T1318]  do_recvmmsg+0x429/0x1500
[  745.773452][ T1318]  ? do_raw_spin_unlock+0x134/0x8d0
[  745.778657][ T1318]  ? retint_kernel+0x2b/0x2b
[  745.783243][ T1318]  ? __x64_sys_recvmmsg+0x109/0x1a0
[  745.788436][ T1318]  __x64_sys_recvmmsg+0x11d/0x1a0
[  745.793459][ T1318]  do_syscall_64+0xf3/0x1b0
[  745.797963][ T1318]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  745.803848][ T1318] RIP: 0033:0x45ca59
[  745.807748][ T1318] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  745.827338][ T1318] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  745.835754][ T1318] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  745.843824][ T1318] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  745.851889][ T1318] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  745.859850][ T1318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  745.867812][ T1318] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:48 executing program 3 (fault-call:4 fault-nth:52):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  745.891133][ T2494] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  746.021175][ T2693] usb 1-1: new high-speed USB device number 108 using dummy_hcd
[  746.024482][ T1329] FAULT_INJECTION: forcing a failure.
[  746.024482][ T1329] name failslab, interval 1, probability 0, space 0, times 0
[  746.028928][T29588] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  746.053276][ T1329] CPU: 1 PID: 1329 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  746.061509][ T1329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  746.071554][ T1329] Call Trace:
[  746.074842][ T1329]  dump_stack+0x1e9/0x30e
[  746.079166][ T1329]  should_fail+0x433/0x5b0
[  746.083587][ T1329]  ? sock_kmalloc+0x98/0x100
[  746.088169][ T1329]  should_failslab+0x5/0x20
[  746.092665][ T1329]  __kmalloc+0x74/0x330
[  746.096815][ T1329]  sock_kmalloc+0x98/0x100
[  746.101226][ T1329]  hash_recvmsg+0x1bd/0x810
[  746.105724][ T1329]  ? check_preemption_disabled+0xa2/0x240
[  746.111434][ T1329]  ? hash_sendmsg+0xb40/0xb40
[  746.116104][ T1329]  ____sys_recvmsg+0x24a/0x510
[  746.120871][ T1329]  ? import_iovec+0x12a/0x2c0
[  746.125545][ T1329]  do_recvmmsg+0x429/0x1500
[  746.130058][ T1329]  ? check_preemption_disabled+0x33/0x240
[  746.135780][ T1329]  ? ksys_write+0x1b1/0x220
[  746.140273][ T1329]  ? ksys_write+0x1b1/0x220
[  746.144774][ T1329]  ? check_preemption_disabled+0xb0/0x240
[  746.150481][ T1329]  ? debug_smp_processor_id+0x5/0x20
[  746.155759][ T1329]  __x64_sys_recvmmsg+0x11d/0x1a0
[  746.160778][ T1329]  do_syscall_64+0xf3/0x1b0
[  746.165274][ T1329]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  746.171154][ T1329] RIP: 0033:0x45ca59
[  746.175041][ T1329] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  746.194632][ T1329] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  746.203036][ T1329] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  746.210999][ T1329] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  746.218960][ T1329] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  746.227102][ T1329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  746.235065][ T1329] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:49 executing program 3 (fault-call:4 fault-nth:53):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  746.311098][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  746.396575][ T1331] FAULT_INJECTION: forcing a failure.
[  746.396575][ T1331] name failslab, interval 1, probability 0, space 0, times 0
[  746.412310][ T1331] CPU: 1 PID: 1331 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  746.420551][ T1331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  746.430620][ T1331] Call Trace:
[  746.433908][ T1331]  dump_stack+0x1e9/0x30e
[  746.438248][ T1331]  should_fail+0x433/0x5b0
[  746.442667][ T1331]  ? sock_kmalloc+0x98/0x100
[  746.447248][ T1331]  should_failslab+0x5/0x20
[  746.451742][ T1331]  __kmalloc+0x74/0x330
[  746.455896][ T1331]  sock_kmalloc+0x98/0x100
[  746.460303][ T1331]  hash_recvmsg+0x1bd/0x810
[  746.464800][ T1331]  ? hash_sendmsg+0xb40/0xb40
[  746.469470][ T1331]  ____sys_recvmsg+0x24a/0x510
[  746.474238][ T1331]  ? import_iovec+0x12a/0x2c0
[  746.478910][ T1331]  do_recvmmsg+0x429/0x1500
[  746.483414][ T1331]  ? trace_hardirqs_on+0x30/0x80
[  746.488362][ T1331]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  746.494031][ T1331]  __x64_sys_recvmmsg+0x11d/0x1a0
[  746.499051][ T1331]  do_syscall_64+0xf3/0x1b0
[  746.503545][ T1331]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  746.509429][ T1331] RIP: 0033:0x45ca59
[  746.513312][ T1331] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  746.532906][ T1331] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  746.541309][ T1331] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  746.549270][ T1331] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  746.557233][ T1331] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  746.565197][ T1331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  746.573158][ T1331] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  746.591283][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  746.621075][ T2693] usb 1-1: Using ep0 maxpacket: 16
[  746.626315][T29588] usb 3-1: Using ep0 maxpacket: 16
[  746.630095][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
21:59:49 executing program 3 (fault-call:4 fault-nth:54):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

[  746.664933][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  746.680393][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  746.694547][ T2494] usb 2-1: config 0 descriptor??
[  746.761361][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  746.772592][ T2693] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  746.813606][ T2693] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  746.826831][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  746.855202][ T1336] FAULT_INJECTION: forcing a failure.
[  746.855202][ T1336] name failslab, interval 1, probability 0, space 0, times 0
[  746.873490][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  746.889726][ T2693] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  746.899160][ T1336] CPU: 0 PID: 1336 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  746.907412][ T1336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  746.917454][ T1336] Call Trace:
[  746.920739][ T1336]  dump_stack+0x1e9/0x30e
[  746.925066][ T1336]  should_fail+0x433/0x5b0
[  746.929486][ T1336]  ? sock_kmalloc+0x98/0x100
[  746.934072][ T1336]  should_failslab+0x5/0x20
[  746.938564][ T1336]  __kmalloc+0x74/0x330
[  746.942738][ T1336]  sock_kmalloc+0x98/0x100
[  746.947153][ T1336]  hash_recvmsg+0x1bd/0x810
[  746.951744][ T1336]  ? hash_sendmsg+0xb40/0xb40
[  746.956419][ T1336]  ____sys_recvmsg+0x24a/0x510
[  746.961184][ T1336]  ? retint_kernel+0x2b/0x2b
[  746.965771][ T1336]  ? import_iovec+0x12a/0x2c0
[  746.970560][ T1336]  do_recvmmsg+0x429/0x1500
[  746.975088][ T1336]  ? ksys_write+0x1b1/0x220
[  746.979585][ T1336]  ? ksys_write+0x1b1/0x220
[  746.984093][ T1336]  ? check_preemption_disabled+0xb0/0x240
[  746.989813][ T1336]  ? debug_smp_processor_id+0x5/0x20
[  746.995095][ T1336]  __x64_sys_recvmmsg+0x11d/0x1a0
[  747.000114][ T1336]  do_syscall_64+0xf3/0x1b0
[  747.004615][ T1336]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  747.010509][ T1336] RIP: 0033:0x45ca59
[  747.014398][ T1336] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  747.033995][ T1336] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  747.042425][ T1336] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  747.050395][ T1336] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  747.058356][ T1336] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  747.066318][ T1336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  747.074282][ T1336] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  747.092625][ T2693] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  747.100700][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  747.118229][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  747.132510][ T2693] usb 1-1: config 0 descriptor??
21:59:50 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
ptrace(0x4208, r4)

[  747.157479][T29588] usb 3-1: config 0 descriptor??
21:59:50 executing program 3 (fault-call:4 fault-nth:55):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:50 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x24)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000001c0)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f0000000180)='net/ip_mr_cache\x00')
preadv(r5, &(0x7f00000017c0), 0x3a8, 0x3600)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x0, 0xff)
ioctl$VIDIOC_TRY_EXT_CTRLS(r5, 0xc0205649, &(0x7f00000000c0)={0xfffffff, 0x9, 0x69fb, <r7=>r6, 0x0, &(0x7f0000000080)={0x9a0909, 0xce6e, [], @value64=0x40}})
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r7, 0x84, 0xc, &(0x7f0000000100)=0x10001, 0x4)

[  747.276069][ T1350] FAULT_INJECTION: forcing a failure.
[  747.276069][ T1350] name failslab, interval 1, probability 0, space 0, times 0
[  747.291196][ T1350] CPU: 0 PID: 1350 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  747.299436][ T1350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  747.309486][ T1350] Call Trace:
[  747.312775][ T1350]  dump_stack+0x1e9/0x30e
[  747.317218][ T1350]  should_fail+0x433/0x5b0
[  747.321631][ T1350]  ? sock_kmalloc+0x98/0x100
[  747.326213][ T1350]  should_failslab+0x5/0x20
[  747.330702][ T1350]  __kmalloc+0x74/0x330
[  747.334850][ T1350]  sock_kmalloc+0x98/0x100
[  747.339253][ T1350]  hash_recvmsg+0x1bd/0x810
[  747.343736][ T1350]  ? hash_sendmsg+0xb40/0xb40
[  747.348384][ T1350]  ____sys_recvmsg+0x24a/0x510
[  747.353146][ T1350]  ? import_iovec+0x12a/0x2c0
[  747.357809][ T1350]  do_recvmmsg+0x429/0x1500
[  747.362449][ T1350]  ? ksys_write+0x1b1/0x220
[  747.366947][ T1350]  ? ksys_write+0x1b1/0x220
[  747.371469][ T1350]  ? check_preemption_disabled+0xb0/0x240
[  747.377185][ T1350]  ? debug_smp_processor_id+0x5/0x20
[  747.382468][ T1350]  __x64_sys_recvmmsg+0x11d/0x1a0
[  747.387500][ T1350]  do_syscall_64+0xf3/0x1b0
[  747.392003][ T1350]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  747.397887][ T1350] RIP: 0033:0x45ca59
[  747.401773][ T1350] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  747.421371][ T1350] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  747.429772][ T1350] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  747.441123][ T1350] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  747.441243][ T2494] usbhid 2-1:0.0: can't add hid device: -71
[  747.449078][ T1350] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  747.449084][ T1350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  747.449090][ T1350] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  747.488950][ T2494] usbhid: probe of 2-1:0.0 failed with error -71
[  747.510645][ T2494] usb 2-1: USB disconnect, device number 51
[  747.702747][ T2693] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0
[  747.713524][T29588] microsoft 0003:045E:07DA.004D: unknown main item tag 0x0
[  747.738915][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.004C/input/input72
[  747.757569][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.004D/input/input73
[  747.850566][ T2693] microsoft 0003:045E:07DA.004C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  747.924428][T29588] microsoft 0003:045E:07DA.004D: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  747.950557][T29588] usb 3-1: USB disconnect, device number 50
[  748.103389][ T2693] usb 1-1: USB disconnect, device number 108
21:59:51 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:51 executing program 3 (fault-call:4 fault-nth:56):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:51 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
writev(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)="1707ab17b1dbff55eb41c1021a78fcb2a65748682647b8ac11e420d173fcf3eeee0e0c11a7bb6ec9289a6d66334d6f99ac64498c7e7fbf2e1e6420171d126c35c6a410a0549399d342e3d9351bab062ec3d68dbbb64b1e96c3c637f95ac943275056ffbf2cdec9ee83f312cdc88086c7c4153aa59fc70c1711529075dcb257fc867c97c921b0680cb877ebdee8ee2060f82eab99fdab809231547cfb958c887e4c627c82f382c7a349a9742fd0f2f1b07e36a2c28726fa8a4d2bade43c138dcf0f928829c31db4856ff2a854d0787f4b0db017e2f0f1f75a6d736f90d8990e443da16b49a17dfee5b17dca315a21f9c25a0da2510836de8975d73a91a9f09cdd17cc2c1056c666b5679dac1781f3657b5212da07bb33c175fd2b7b885552fa9a6c331e7e1d6ae68efb73a2c2dd4e0c295bc1f4686389ef567055868c9375d39462cd9f16f374791ba702001fd7fee494647a5bdc024d199b741e8f49e7692ab550259e2f535bf59c70988874dd94d47552e48c5d769a8219d7c7d57702c080c4f47bf45d9503e054d67eb9fb069fa53295ccde2d193a917074b8fcf16c0be6890ac33b16f9d4612b69c99fe2db78d65f7e7f46587195b5c1252531cea033bb7848da5e56b6d3a3ff8b5bfb61e7135ccfbc0e9ceae0fffc52f2799ae14455d582c580a4bf2569a823d3318bf5de25bb1da2631eabb455fcf033dba04c41f31641335be118c711de31b912611a19b4b9e162255130b1c31453fbf458a402be02c9a1daed2f956d1582f8b28394cf529e31bfcc854d621c7f051e1413ce0f24c76e44724cab6ee5f1f9d1cb173890a4240ccc86724821baf00c6de70852c80b98fc9b10910cb801a305dd3620a9c1e31bd10d988dc5760b070680906afb71d183c3835ff53419e563aab4442e09c472592d293d0773dc5531feb8f795d70e73d56bd7a66c32c1b30dd3544ded189c733aaa60977ff261186b24f2a1c3f9ac1fa027b67e3e72363a8439b538f3fa4e27fb808d8380fe1ec3ebb5521bd1d7143f0fe34b53d7bd9a490cb5c9dd5883cf65b5ceb1711aa16aa5fcd978502d218267a308801ee5112d7bf94599a70b703f32a39578d61d693ec19c2b5c67f69e2ea783c873ea4e154d66488446a449291c820a1079b8bddd208cc883f667425c2dde97dcd32b1627cb61023183e9466eef08e7227be7c454e24d6f66d00b5dc0282d813cd9f997c90f876f58aa1afe89452d87eb0e76174c407976a03158be76fcbb7d87052b17ab305d9a0379235247497efbde8477c858be093cd4003ad1c17f9707bbfbc954fbe85570d900b9176dd6f20739e633826f80da4f82f1e396d581c7298acffec7d24d56b4dcbd7a16a08e8194f20b43dcb50db8545b008aaff6bacfeceffc81e01601fe17c2330c16d876b971a5af2a81f1f72bb9806dc6cfc48fb5eec092ec871476ccd066a31833089959c62287c67756a7e33d1e6bcb76aca4fbaaec70d62dd33ce2c0278757c8deb18a7640d60fd42f154ab83bfee0858e7ff204cf911d78e247c9b09cb5815d2181e9fc3940f1d6cb7cc852350c24358762064a1a7d5d008b66c07e297832267775e10fe4622a29498c24db6b4c03be004848f728c6fca5adba56fc6f52b4ec8ec89bed3d548a797ac7af63b9178df1626c10ec3f51d123363eb0020d9f17726265a3a4d3426d1276b5d862ddc0080be0796feea34a773f3a7023e02cb8118c58b89d9936235cc33ede555d356c28758771114417520077f59a716209a02e93746913fc162d03f5bc6b33fdd0b9c9e3254b4c25494b1c5d42a505fe0dcd5bde6c38c95f4e5811dfe92ce2f1c3076612df2739807da0c638ad912b1cf2575ec5c4d39f7b376ff0d44b9628981342592edc1dc16dc293aecd6e7821ff8218566455f334c1b641acbfe38744a229ece2a2df8825f17c5826020447750debdd189574ba059bc2f19ac73f4c02ecdb906fd1541ef9aa82ceb04077afd5a92110962cdb83525970e183dac63a82daf2d79511196c6078c0686ab145dbcae1e7a25dfce16b5333682715250583ad16d219fdd89b90e7e07dccd93722fe25300cf8bf92510d005afd1a61c480b4e7c311847787891436249e623b08f39c7958d658bf70bf056cf0c98f1a5936fed745624471f0120c70cff8e082ffdd12db0cfd89d136b91853860b7cce8bde1df487f0f164305f3461542e4d1fe42d40e0beae3d1e06a060bc2c8cc07d7b4666e6871d7d07558094c08e77b95006d54aaeeacb1f5931a5968f671ded149fc49a32a16d48e81bf30ae1f453a3c8c036b058aa45411fea3b384f477942d07caae7849479b753c4396f64f20b981e6e04210d297433584d82df95398192a3e055c16810a7029524abce8721eb8e5965218feb1f8f7335b79302699ab8b13f352d0d2dffee0bd8e55ee7b56eb0c627a18bc602d68f043f744d7c9fcb42a8f623c346d9907d10b7bfda9a042921f9bf0f7ed7b05716c67105502401737928dbb5d0a3ff326f644a21dcd0f2ac429ab25197e600e5e57ab7d356b6b0441166f2f9b4b575b9cd0695b1af2906f7d083bc09fc01fe2140027ebde9fdcd98788b105dc2829d162ad7b3a678b2a4d37e8d387216b7c9ef274c117cbe9391d7bc7baf0d7108477ea495027e7df1bbd8b33a4a5744ca99406fc8275453bc6a304c6582b2ec18a11bb2ac53fe1275b9cde8407b7e0ed50477ecd77c1798d8eb9c62fc6d6a052cba206ccd62356b444d57cd2f5f125976c1eb29fd66ea17e08f3e63974e3ded6532140b7116153fb8f4e5f2deb4437da31b19dc06a14c9f648378604a8e66ee8eb3de66ffd693934627229af3e86ed298effba0133d92422cf3750aa4d3864901b1a32eabd78b72b09dc1dce4da20919a84e6d5cd602b8d30035bd457bfb8d445fdd3fee25352633e972d11eb9d14f7d9e682b18c99e7bfb084041231483dbde4c40fa5b78a07d120226bfab39304f93bdb746eea4772abe5a26d6399e76e71eefc2c34993c23882f6389b73f7a8c1f4d15450775cbbc96d178c75582c6287439518931d4f98788b411997d6c49aff2cdd65059d0b2f45fcea1468d65bbc1e4f45d21f4f32dfcac58676356b20242b4b3168640c5ff08cbfaac6a44e1cf24ac8c182e3311185af5f9d5e2e12b5885ed461078552b5c524e8fff6e28c35b5e2a013894d02fcadabc04568f117eb99288fbb82711bf4c59722880a8b43ed43d303ba997fe3638e961ca4edf04640af5163420401764626a8ddc4a56731b19082ebf9973f2adb2bf13439fb421fbf94b7fd71b8dd83d57a1cf0309d9d5070e605bd16a6392684c7481c4d9a5fed141c7146e3bdbd617bdda2cd2949b93d66863a8f96e4bd8b90c24439e92e40815ea7e5572d3e2a6eb6c92da387375efaa382f429406e24c9d277be69dc9484b118bc22a725a928caf91e384554d89258ec90c328fe401270c762aa603a220d3c6d8d279ade4846d066fec903d3023df05bf744bfb31ba1b42447dfa87d360a58f3914ee46cc87f75a666b166029224863de459d8e62c324a92a6fc7085ce8aea44169342f79246c4d4762b3a8a1b98b7ee9bebf431c24f574f4b79dbf7f4dd714502db4f126d29464214fc9f008b17653a2f85b49482cb22d79a22382c13d34275e97ab49d9767993fa522396bb00ffb062e7da32b6828caed1eae8f625a4cdbd76e1f94bcd0b77cffb8fa0753ae44ad1588ac9c5116a86ada2308bc994707f6ef7fafd2de0431839e4995447f9663cc8cebfc45245d1c4fa3ed0d0716685608dbf30092916b86fe584e62c6aa2db7a934e48a7ef82004916b76203a6c1473cb993c3470d0352ec6e7f2210497105b9ba3549c076da181eaa2af81cf3c7e7635a92dfc160403930e6ffdb4e724f29e26bb8ad4e40d0fe5cf0e1ef2028faa68e9113d01274dfbb93d79d893e694eea4d6a66265e92506e18994af3bb1a0bf76b8ec19d71d5c95ce9f47cc0b24a2ac42fa739fdbacc205ae4adbe16499fd3eaddcfd88f3f6bc29e570f7fc83122f1ea0090868999e3dda9a5446eb7567a26cc7fb843ebe3925ac742d9074412689edae2a1fba61da3e2cb41afb85c5aef543e4955c76ebee90629cfe918300cd520078c997625b997a0d2f0cbf8f8ddf4fb1b6236134d96dfdf1e0f1b9c0dd4da4b3b8d6fee1a01748ca921bb5906ab0610a0adbb5b63b7e3ca581707f0e4359841551da51d3bbcb559dc0bf892c3c1a22e791ba3398abc935880048a3c04319068b6919b89d574c8438cd75862e57917ba9b3a6d2ee220a8d25caeedd365446db11f35589d4560f67606c80a02438de18922b0263cdfd44217be748886db31eb3eebfd2b020c99a390e49f2d71764886abcf5468bb2744865417b54a18d57772c11b4dbb14761ea12fe647817f46d08e0b9f8e42fabbb8120849f7eda6215ff833b14b6876022e00b64f3b3790a50492b676ee33cfaf984476772f62ff824d63a1cb92ec4e22b70715b956498b3bb3ce13542fea30216e920d1965eb1e1b8f98f4faccc41ded804c626bcde1058404f97f18f90351e866ce7f03781d4bfa7be5eb5a7205452428c94d5006ba377baec909c0c3149f1b689cf97115f092e70abb086a41ea63fddc01651d7b425b0d769715c94450cb93fe8b80b3725b3e8e501bf2342e89b6d5d1a3a91c726650d70b06b5edd8c81be55363496275482d128cffe742dce56ffc55ae5b35699e80a2cff8d3a1458f0ac46dd9ddc1cb9f09c0e898af8d3b0c1609681485b007973a39fd71194fad618c27eafd5dc2bee40bbeb01e785809f468584d098120e341e1623b6bef9e3f0c05e8d8f85da043b8f843f02e56e51e2731897cb89e5b24ee794821204d7f9b6a7b8d8e7aa56dc9d611bd5ea4b814e5b574c9054c3cb35ed4a27595b56573b30fb0017fda14a444d42518eda3d362baf4aa6e8b4999c0b33079a5ead02434b03974040e2ff21d391fea4351ced1955a393a59b2096fe93d0ee96fdc06d76aa15537faddbb20743917502fe8c2d2a239326bcd078b34a26ecb62ea9460bb9ff08aed6eb99cfcc024634a85704d5bd393f503d89aac40555a070beeb4ba7802e6166f2b8fae2f5fc0a5a3b13237af643dce657e8cb166b4192e8482d8a233eafb69ef37b23b70339ddbfc7ea7af904ea74aa6ec1d600426cdc027989f3940287f45d43c9a64c8f6a8691d134d7a56ecc942199e8c68dcfccdb52e40c99bfeab4dda4f7510d0d053a63dc4f0bae23c9a3aafe09a2fbd61ecef481ce14b6a434756df712cdc0d9534a104f5026dc966b0dc2a11df01362950dbd57a29aaa319c19589a443b201c0c923b2b2c7088b9cb621fe5c2c0c24e84966c55b9d12652300808a5ba8ecc023d5d55b297807d101a32fbe43b7464026ed553f9c542967dbcba58a1ad19b868facbfbac6ddcf7fbb2ea536ae153706ed037a5bdff84f790e1ee833106c75941e5646ecef15aabd25baec49144b2df4cbaaa11cb31a484701f3b5086163090d64d91058bcd49dcad76273b23fc1da5b58e399eeb308855d9d6916c32ffa5067c3796efad3b497867c1d0eee422aeaf69a3194280bec0b201b9b7cd4068678692aa89bd77616d978293ab764e3b8899581d7eae077c262d431e9fbc7d6cb988c801fd1fa06cc00c4c34d3cbf37be365d2d79768267306d5c67a6bde112e9d75ed66d08d3186a58018937e9c61220fb515ce5b89dfad4e7560a37219c8beba6b291b11f7782ba41ca7908b6f55360f4297381a977d0bf2e6d45b4b2", 0x1000}, {&(0x7f0000001080)="915be56bc27b578af7fcc995c050f8a51b354742dd395fb0aef4b46b67193bbc4529242622659f30c6200f6858228cc376e47e5c642f5bcb1c8127c7102443f2074e6904c2f14c9bdc1be93a2521d669ef3db0d3a572425135596ac8ec6120f85dd61c7c47e4742356e030305f1a9ccaa790bd1d8179e9886f108963347e1ad1d81a555ad738da3d23bb85596ae2529338df1e43d620594eb90c6224a3a79b96f3fac91fb3e75f1e71f322d934a2b3f42c9cb24de0f892a60641ed429310fcd223fe53", 0xc3}, {&(0x7f0000001180)="95b4aac44931e8d6809e52b45ba4233714e20656acd611393c22f1cca502227d8eb5b623f045e60137bba8079e80fa3c59ce248512d0e727212f6e8a5d15869e793d88951e21dec3bfc1f9bbacc0403da4012e11be5e1e6493aba7dbff6bf49000683b4baad569c44647e12e728aec7e02b196ea2190f2b3cb798399ba53b88da8639c1d24578553dc8a322e3bbf435f467502", 0x93}, {&(0x7f0000001240)="c540f372ef7eea6f8d6b5012d1f08710fe9b7757ff4ad997d826ddc39d64ff18637087115ec6e6030a708f934595cb76ac48c948c6a3c4f7768a52228525ae3a62cc465ca19cb82e9b93f5f619916fd6d7e36875f24cde630d67f0e47c0e5c399d639d035bef162148b3ad2a2d825efb30d53ae7c8bd30e8ffee7fa1d5c660c605ef5df9087c5cf77b994eee5a2f90", 0x8f}, {&(0x7f0000001300)="f1c5b872a490e2993ff089e80dec0cbdcccf472926707b01095992e7d34e901fe6588d9c03d497edcfe79af03bdb03f1ad9720cf28b59459a8fd03b749a82531858ffc04c1b808ef64e8be4682cb72f5afecf972df91016e38447c0ff2d7854613bfa2f71a63ca894dd6d0e1d1d73746176de61799fe3a9bea3d71cb4ca7dfbee60ea737c1c8a8ed1bfe06865bef2a3958bc812471fcfc7857a3e4adcc573af033fdf6dc224a33663bab146d5cdb9af03bd1962fa887e9c2262f3e6e60d45b3835359a51705da1dee42a5084595c37f7dcc64c0ec92547818b46c5ac3fbb53392e4594190c979a323c1c3bb6e593794ba712011e18", 0xf5}, {&(0x7f0000001400)="2ca35c5b1fcaa8588295d926c03218d4e708fbbd54340bd68ce5c08191577842b8b0e3acc1418fbfb1f86cfa7707680da80f9a7f29665e8cf20a56e072e6672da27aace42224b1848f004b7c744beda93cae53b08e5be16153775ba107e33596a41a0baf8b69cda9b057f498f3dace5b3d5cc98edfdaffa776814a000ca10244c7d66cef02af9bf607102992d8da3bdf9d184f302a6b0c72698deaa7a2b558a9565749b15cc5b3708039eaf4ae5d7aff2aed8d063ebe0a0569b796b030dbd8dbc9d8c839c4e22f767b6dffd2eeece72f3728e725fe25154faa", 0xd9}, {&(0x7f0000001500)="c1fdc9f1f0b61bd89458f7ae4fdc1025a5a24b244529abc4c5a22bdb4a8d0b7a1c160829c681b2062c92dc43946db6c6158e9273fcb1c80b958197efb5243291545cc60dcb019a6a932b18744b7e319ee59fbe682635bf40e55ea52dc30de7821bc0bb1638d592f97b5a3c9974bbc887c871d4e6cf77400cab27140f7d987da774efe53b97", 0x85}], 0x7)
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

21:59:51 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)

[  748.536998][ T1417] FAULT_INJECTION: forcing a failure.
[  748.536998][ T1417] name failslab, interval 1, probability 0, space 0, times 0
[  748.550511][ T1417] CPU: 1 PID: 1417 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  748.558745][ T1417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  748.568849][ T1417] Call Trace:
[  748.572117][ T1417]  dump_stack+0x1e9/0x30e
[  748.576425][ T1417]  should_fail+0x433/0x5b0
[  748.580825][ T1417]  ? sock_kmalloc+0x98/0x100
[  748.585436][ T1417]  should_failslab+0x5/0x20
[  748.589910][ T1417]  __kmalloc+0x74/0x330
[  748.594051][ T1417]  sock_kmalloc+0x98/0x100
[  748.598463][ T1417]  hash_recvmsg+0x1bd/0x810
[  748.602961][ T1417]  ? hash_sendmsg+0xb40/0xb40
[  748.607761][ T1417]  ____sys_recvmsg+0x24a/0x510
[  748.612518][ T1417]  ? lock_release+0x3d1/0x760
[  748.617198][ T1417]  ? import_iovec+0x12a/0x2c0
[  748.621872][ T1417]  do_recvmmsg+0x429/0x1500
[  748.626404][ T1417]  ? ksys_write+0x1b1/0x220
[  748.630925][ T1417]  ? ksys_write+0x1b1/0x220
21:59:51 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:51 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0xd4a5, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:51 executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  748.635428][ T1417]  ? check_preemption_disabled+0xb0/0x240
[  748.641140][ T1417]  ? debug_smp_processor_id+0x5/0x20
[  748.646427][ T1417]  __x64_sys_recvmmsg+0x11d/0x1a0
[  748.651462][ T1417]  do_syscall_64+0xf3/0x1b0
[  748.655965][ T1417]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  748.661847][ T1417] RIP: 0033:0x45ca59
[  748.665744][ T1417] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:51 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x3)

[  748.685350][ T1417] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  748.693752][ T1417] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  748.701714][ T1417] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  748.709678][ T1417] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  748.717641][ T1417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  748.725607][ T1417] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:51 executing program 3 (fault-call:4 fault-nth:57):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:51 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x40000000000, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:51 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0xfffffffffffffffe, 0xc94400)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  748.839785][ T1439] FAULT_INJECTION: forcing a failure.
[  748.839785][ T1439] name failslab, interval 1, probability 0, space 0, times 0
[  748.861948][ T1439] CPU: 1 PID: 1439 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  748.870195][ T1439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  748.880236][ T1439] Call Trace:
[  748.883591][ T1439]  dump_stack+0x1e9/0x30e
21:59:51 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f00000000c0)={0x3, "831714"}, 0x4)

[  748.887895][ T1439]  should_fail+0x433/0x5b0
[  748.892288][ T1439]  ? sock_kmalloc+0x98/0x100
[  748.896850][ T1439]  should_failslab+0x5/0x20
[  748.901336][ T1439]  __kmalloc+0x74/0x330
[  748.905466][ T1439]  sock_kmalloc+0x98/0x100
[  748.909866][ T1439]  hash_recvmsg+0x1bd/0x810
[  748.914361][ T1439]  ? hash_sendmsg+0xb40/0xb40
[  748.919032][ T1439]  ____sys_recvmsg+0x24a/0x510
[  748.923803][ T1439]  ? import_iovec+0x12a/0x2c0
[  748.928480][ T1439]  do_recvmmsg+0x429/0x1500
[  748.933004][ T1439]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  748.938457][ T1439]  ? check_preemption_disabled+0xa2/0x240
[  748.944189][ T1439]  ? retint_kernel+0x2b/0x2b
[  748.948777][ T1439]  __x64_sys_recvmmsg+0x11d/0x1a0
[  748.953801][ T1439]  do_syscall_64+0xf3/0x1b0
[  748.958300][ T1439]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  748.964182][ T1439] RIP: 0033:0x45ca59
[  748.968070][ T1439] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  748.987661][ T1439] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  748.996054][ T1439] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  749.004003][ T1439] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  749.011964][ T1439] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  749.019913][ T1439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  749.027866][ T1439] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  749.042632][ T8150] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  749.050288][ T2693] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  749.057908][T29588] usb 1-1: new high-speed USB device number 109 using dummy_hcd
[  749.290903][ T8150] usb 2-1: Using ep0 maxpacket: 16
[  749.311209][ T2693] usb 3-1: Using ep0 maxpacket: 16
[  749.316433][T29588] usb 1-1: Using ep0 maxpacket: 16
[  749.441709][ T8150] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  749.452645][ T8150] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  749.466881][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  749.477820][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  749.488756][ T8150] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  749.499536][T29588] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  749.510027][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  749.520493][ T8150] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  749.529244][T29588] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  749.542757][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  749.557877][T29588] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  749.567509][ T8150] usb 2-1: config 0 descriptor??
[  749.576082][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  749.585292][T29588] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  749.593865][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  749.608841][T29588] usb 1-1: config 0 descriptor??
[  749.623562][ T2693] usb 3-1: config 0 descriptor??
[  750.092635][ T2693] microsoft 0003:045E:07DA.004E: unknown main item tag 0x0
[  750.106481][T29588] microsoft 0003:045E:07DA.004F: unknown main item tag 0x0
[  750.135768][T29588] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.004F/input/input75
[  750.147849][ T2693] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.004E/input/input74
[  750.232970][T29588] microsoft 0003:045E:07DA.004F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  750.301094][ T8150] usbhid 2-1:0.0: can't add hid device: -71
[  750.307112][ T8150] usbhid: probe of 2-1:0.0 failed with error -71
[  750.323677][ T2494] usb 1-1: USB disconnect, device number 109
[  750.327220][ T2693] microsoft 0003:045E:07DA.004E: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  750.351907][ T8150] usb 2-1: USB disconnect, device number 52
[  750.378091][ T2693] usb 3-1: USB disconnect, device number 51
21:59:53 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:53 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:53 executing program 3 (fault-call:4 fault-nth:58):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:53 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x0)

21:59:53 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:53 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
ptrace(0x4208, r4)

21:59:53 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
read$char_usb(r0, &(0x7f00000000c0)=""/90, 0x5a)
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bluetooth/6lowpan_enable\x00', 0x2, 0x0)
inotify_init1(0x80000)
ioctl$VIDIOC_G_FBUF(r1, 0x8030560a, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000140)="d2304bd846e8cc7c8a3048d9a5549d3516709230505ff4bab2f0095d08998e954149d89dc42a354a796bba50129fa5540b0a0f0d35dc5add6b7ba010", {0x2, 0x3, 0x68641805, 0x0, 0x3, 0x0, 0x1}})
splice(r2, 0x0, r2, 0x0, 0x2, 0x6)

[  750.930247][ T1534] FAULT_INJECTION: forcing a failure.
[  750.930247][ T1534] name failslab, interval 1, probability 0, space 0, times 0
[  750.948061][ T1534] CPU: 1 PID: 1534 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  750.956308][ T1534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  750.966384][ T1534] Call Trace:
[  750.969651][ T1534]  dump_stack+0x1e9/0x30e
[  750.973979][ T1534]  should_fail+0x433/0x5b0
[  750.978451][ T1534]  ? sock_kmalloc+0x98/0x100
[  750.983029][ T1534]  should_failslab+0x5/0x20
[  750.987512][ T1534]  __kmalloc+0x74/0x330
[  750.991644][ T1534]  sock_kmalloc+0x98/0x100
[  750.996044][ T1534]  hash_recvmsg+0x1bd/0x810
[  751.000530][ T1534]  ? hash_sendmsg+0xb40/0xb40
[  751.005184][ T1534]  ____sys_recvmsg+0x24a/0x510
[  751.009953][ T1534]  ? import_iovec+0x12a/0x2c0
[  751.014604][ T1534]  do_recvmmsg+0x429/0x1500
[  751.019090][ T1534]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  751.024558][ T1534]  ? check_preemption_disabled+0xa2/0x240
[  751.030260][ T1534]  ? retint_kernel+0x2b/0x2b
[  751.034832][ T1534]  __x64_sys_recvmmsg+0x11d/0x1a0
[  751.039829][ T1534]  do_syscall_64+0xf3/0x1b0
[  751.044303][ T1534]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  751.050166][ T1534] RIP: 0033:0x45ca59
[  751.054050][ T1534] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:54 executing program 3 (fault-call:4 fault-nth:59):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  751.073672][ T1534] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  751.082060][ T1534] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  751.090007][ T1534] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  751.097997][ T1534] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  751.105958][ T1534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  751.113957][ T1534] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:54 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
ptrace(0x4208, r4)

[  751.198722][ T1544] FAULT_INJECTION: forcing a failure.
[  751.198722][ T1544] name failslab, interval 1, probability 0, space 0, times 0
[  751.211817][ T1544] CPU: 1 PID: 1544 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  751.220048][ T1544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  751.220054][ T1544] Call Trace:
[  751.220071][ T1544]  dump_stack+0x1e9/0x30e
[  751.220087][ T1544]  should_fail+0x433/0x5b0
[  751.220108][ T1544]  ? sock_kmalloc+0x98/0x100
[  751.220119][ T1544]  should_failslab+0x5/0x20
[  751.220151][ T1544]  __kmalloc+0x74/0x330
[  751.220167][ T1544]  sock_kmalloc+0x98/0x100
[  751.259979][ T1544]  hash_recvmsg+0x1bd/0x810
[  751.264458][ T1544]  ? hash_sendmsg+0xb40/0xb40
[  751.269110][ T1544]  ____sys_recvmsg+0x24a/0x510
[  751.273856][ T1544]  ? import_iovec+0x12a/0x2c0
[  751.278505][ T1544]  do_recvmmsg+0x429/0x1500
[  751.282981][ T1544]  ? rcu_lock_release+0x5/0x20
[  751.287796][ T1544]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  751.293225][ T1544]  ? check_preemption_disabled+0xa2/0x240
[  751.299111][ T1544]  ? retint_kernel+0x2b/0x2b
[  751.303830][ T1544]  __x64_sys_recvmmsg+0x11d/0x1a0
[  751.308840][ T1544]  do_syscall_64+0xf3/0x1b0
[  751.313355][ T1544]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  751.319218][ T1544] RIP: 0033:0x45ca59
[  751.323093][ T1544] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  751.342681][ T1544] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  751.351066][ T1544] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  751.359026][ T1544] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  751.366972][ T1544] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  751.374913][ T1544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  751.382861][ T1544] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
21:59:54 executing program 3 (fault-call:4 fault-nth:60):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  751.409775][T29588] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  751.440618][ T1548] FAULT_INJECTION: forcing a failure.
[  751.440618][ T1548] name failslab, interval 1, probability 0, space 0, times 0
21:59:54 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
ptrace(0x4208, r4)

[  751.460383][ T1548] CPU: 0 PID: 1548 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  751.466716][ T2494] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[  751.468612][ T1548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  751.486186][ T1548] Call Trace:
[  751.489451][ T1548]  dump_stack+0x1e9/0x30e
[  751.493774][ T1548]  should_fail+0x433/0x5b0
[  751.498182][ T1548]  ? sock_kmalloc+0x98/0x100
[  751.502756][ T1548]  should_failslab+0x5/0x20
[  751.507245][ T1548]  __kmalloc+0x74/0x330
[  751.511388][ T1548]  sock_kmalloc+0x98/0x100
[  751.515802][ T1548]  hash_recvmsg+0x1bd/0x810
[  751.520291][ T1548]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  751.525734][ T1548]  ? hash_sendmsg+0xb40/0xb40
[  751.530406][ T1548]  ____sys_recvmsg+0x24a/0x510
[  751.535155][ T1548]  ? import_iovec+0x12a/0x2c0
[  751.539807][ T1548]  do_recvmmsg+0x429/0x1500
[  751.544283][ T1548]  ? rcu_lock_release+0x5/0x20
[  751.549033][ T1548]  ? ksys_write+0x1b1/0x220
[  751.553619][ T1548]  ? ksys_write+0x1b1/0x220
[  751.558120][ T1548]  ? check_preemption_disabled+0xb0/0x240
[  751.563831][ T1548]  ? debug_smp_processor_id+0x5/0x20
[  751.569118][ T1548]  __x64_sys_recvmmsg+0x11d/0x1a0
[  751.574149][ T1548]  do_syscall_64+0xf3/0x1b0
[  751.578662][ T1548]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  751.584538][ T1548] RIP: 0033:0x45ca59
[  751.584550][ T1548] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:59:54 executing program 3 (fault-call:4 fault-nth:61):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  751.584557][ T1548] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  751.584568][ T1548] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  751.584575][ T1548] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  751.584582][ T1548] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  751.584588][ T1548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  751.584595][ T1548] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  751.693381][ T1553] FAULT_INJECTION: forcing a failure.
[  751.693381][ T1553] name failslab, interval 1, probability 0, space 0, times 0
[  751.708496][ T1553] CPU: 0 PID: 1553 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  751.716731][ T1553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  751.726769][ T1553] Call Trace:
[  751.730033][ T1553]  dump_stack+0x1e9/0x30e
[  751.734340][ T1553]  should_fail+0x433/0x5b0
[  751.738734][ T1553]  ? sock_kmalloc+0x98/0x100
[  751.743306][ T1553]  should_failslab+0x5/0x20
[  751.747792][ T1553]  __kmalloc+0x74/0x330
[  751.751928][ T1553]  sock_kmalloc+0x98/0x100
[  751.756325][ T1553]  hash_recvmsg+0x1bd/0x810
[  751.760812][ T1553]  ? hash_sendmsg+0xb40/0xb40
[  751.765482][ T1553]  ____sys_recvmsg+0x24a/0x510
[  751.770256][ T1553]  ? import_iovec+0x12a/0x2c0
[  751.774934][ T1553]  do_recvmmsg+0x429/0x1500
[  751.779433][ T1553]  ? rcu_lock_release+0x5/0x20
[  751.784219][ T1553]  ? ksys_write+0x1b1/0x220
[  751.788715][ T1553]  ? ksys_write+0x1b1/0x220
[  751.792587][ T2494] usb 2-1: Using ep0 maxpacket: 16
[  751.793208][ T1553]  ? check_preemption_disabled+0xb0/0x240
[  751.803995][ T1553]  ? debug_smp_processor_id+0x5/0x20
[  751.809276][ T1553]  __x64_sys_recvmmsg+0x11d/0x1a0
[  751.814302][ T1553]  do_syscall_64+0xf3/0x1b0
[  751.818802][ T1553]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  751.824673][ T1553] RIP: 0033:0x45ca59
[  751.828543][ T1553] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  751.848128][ T1553] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  751.856526][ T1553] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  751.864567][ T1553] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  751.872519][ T1553] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  751.880477][ T1553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  751.888420][ T1553] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  751.911403][ T2494] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  751.935550][ T2494] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  751.956074][ T2494] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  751.966008][ T2494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  751.970836][T29588] usb 3-1: Using ep0 maxpacket: 16
[  751.980846][ T2494] usb 2-1: config 0 descriptor??
[  752.120906][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  752.131864][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  752.144734][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  752.154211][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  752.164784][T29588] usb 3-1: config 0 descriptor??
[  752.710796][ T2494] usbhid 2-1:0.0: can't add hid device: -71
[  752.716916][ T2494] usbhid: probe of 2-1:0.0 failed with error -71
[  752.728017][ T2494] usb 2-1: USB disconnect, device number 53
[  752.910855][T29588] usbhid 3-1:0.0: can't add hid device: -71
[  752.916848][T29588] usbhid: probe of 3-1:0.0 failed with error -71
[  752.925830][T29588] usb 3-1: USB disconnect, device number 52
21:59:56 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:56 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x0)

21:59:56 executing program 3 (fault-call:4 fault-nth:62):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:56 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$ASHMEM_GET_PIN_STATUS(r1, 0x7709, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="030b000000000000000012"], 0x14}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x180, r3, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x40}]}]}, @TIPC_NLA_NODE={0x144, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x92, 0x3, "1b526e72c6462f1c17ddc0a4246c68c55bb33c5c090dd80dbf0308c8dc1dba0fb8300696e6f8617dbda9b815398fcfb59b4c4e23de60795e8b1dfeaa5d5e92f65ca673cab95d3bc62e0e0a0b31853928c0947ef86ba3ad20fde903e0b144aa2f25f3e2afbfda1ad3c4958d3ba910dd11a1fe75ebe1960a115223e544b368795a73d62a61b0ddad4a271613b56437"}, @TIPC_NLA_NODE_ID={0x5d, 0x3, "5be8103c2cd36bcc58845cbbd51c6d848d43d0ccf8c2282691310efb79876626b25c12cbfbb2ecdb9a60977c7d97963bf417c76695ba072eeffdfeed8d9c816ad8d6f330d63daa4cfff8aa0f23b07bf0301553333805cf1de2"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "6219a19005ce2eaf03c60987b0ad4ffc3d9165fa7031264c34044d"}}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x180}}, 0x4000000)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:56 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)

21:59:56 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:56 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))

21:59:56 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0xfffffffffffffffd, 0xc2dc3)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000000100)=""/50)
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SG_GET_VERSION_NUM(r1, 0x2282, &(0x7f0000000080))
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r4=>0x0})
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r5, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$CAN_RAW_LOOPBACK(r5, 0x65, 0x3, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r6 = gettid()
ptrace$setopts(0x4206, r6, 0x0, 0x0)
tkill(r6, 0x24)
ptrace$setregs(0xd, r6, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r6, 0x0, 0x0)
kcmp(r4, r6, 0x0, r0, r0)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)

[  753.490064][ T1591] FAULT_INJECTION: forcing a failure.
[  753.490064][ T1591] name failslab, interval 1, probability 0, space 0, times 0
[  753.516253][ T1591] CPU: 1 PID: 1591 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  753.524504][ T1591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  753.534566][ T1591] Call Trace:
[  753.534583][ T1591]  dump_stack+0x1e9/0x30e
[  753.534599][ T1591]  should_fail+0x433/0x5b0
[  753.534618][ T1591]  ? sock_kmalloc+0x98/0x100
[  753.534630][ T1591]  should_failslab+0x5/0x20
[  753.534640][ T1591]  __kmalloc+0x74/0x330
[  753.534655][ T1591]  sock_kmalloc+0x98/0x100
[  753.534669][ T1591]  hash_recvmsg+0x1bd/0x810
[  753.534683][ T1591]  ? hash_sendmsg+0xb40/0xb40
[  753.573385][ T1591]  ____sys_recvmsg+0x24a/0x510
[  753.578159][ T1591]  ? import_iovec+0x12a/0x2c0
[  753.582839][ T1591]  do_recvmmsg+0x429/0x1500
21:59:56 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_inet_SIOCSIFNETMASK(r2, 0x891c, &(0x7f0000000080)={'dummy0\x00', {0x2, 0x4e21, @broadcast}})
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x800, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r3, 0xc0205649, &(0x7f00000001c0)={0xf9c0000, 0x2, 0x9, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x2000b, 0x7, [], @p_u32=&(0x7f0000000140)=0x9}})
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:56 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x102, 0x0)
r2 = getpid()
write$cgroup_pid(r1, &(0x7f00000000c0)=r2, 0x12)
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  753.586047][ T1604] QAT: Invalid ioctl
[  753.587336][ T1591]  ? rcu_lock_release+0x5/0x20
[  753.587377][ T1591]  ? retint_kernel+0x2b/0x2b
[  753.587396][ T1591]  ? do_syscall_64+0xb5/0x1b0
[  753.587412][ T1591]  __x64_sys_recvmmsg+0x11d/0x1a0
[  753.587431][ T1591]  do_syscall_64+0xf3/0x1b0
[  753.587444][ T1591]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  753.595991][ T1605] QAT: Invalid ioctl
[  753.596244][ T1591] RIP: 0033:0x45ca59
[  753.596255][ T1591] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  753.596261][ T1591] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  753.656572][ T1591] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  753.664575][ T1591] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  753.672567][ T1591] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  753.680515][ T1591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
21:59:56 executing program 3 (fault-call:4 fault-nth:63):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:56 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x10, 0xfa00, {&(0x7f0000000140), r6}}, 0x18)

[  753.688473][ T1591] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  753.780888][ T3370] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[  753.803000][ T1612] FAULT_INJECTION: forcing a failure.
[  753.803000][ T1612] name failslab, interval 1, probability 0, space 0, times 0
[  753.817958][ T1612] CPU: 1 PID: 1612 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  753.826180][ T1612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  753.836224][ T1612] Call Trace:
[  753.839499][ T1612]  dump_stack+0x1e9/0x30e
[  753.843805][ T1612]  should_fail+0x433/0x5b0
[  753.848199][ T1612]  ? sock_kmalloc+0x98/0x100
[  753.852769][ T1612]  should_failslab+0x5/0x20
[  753.857290][ T1612]  __kmalloc+0x74/0x330
[  753.861430][ T1612]  sock_kmalloc+0x98/0x100
[  753.865838][ T1612]  hash_recvmsg+0x1bd/0x810
[  753.870336][ T1612]  ? hash_sendmsg+0xb40/0xb40
[  753.874996][ T1612]  ____sys_recvmsg+0x24a/0x510
[  753.879738][ T1612]  ? import_iovec+0x12a/0x2c0
[  753.884389][ T1612]  do_recvmmsg+0x429/0x1500
[  753.888878][ T1612]  ? retint_kernel+0x2b/0x2b
[  753.893442][ T1612]  ? do_syscall_64+0xb5/0x1b0
[  753.898090][ T1612]  __x64_sys_recvmmsg+0x11d/0x1a0
[  753.903090][ T1612]  do_syscall_64+0xf3/0x1b0
[  753.907566][ T1612]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  753.913429][ T1612] RIP: 0033:0x45ca59
[  753.917307][ T1612] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  753.936886][ T1612] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  753.945266][ T1612] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  753.953216][ T1612] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  753.961161][ T1612] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  753.978854][ T1612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  753.986799][ T1612] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  753.996728][T27672] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  754.200627][ T3370] usb 2-1: Using ep0 maxpacket: 16
[  754.240785][T27672] usb 3-1: Using ep0 maxpacket: 16
[  754.321235][ T3370] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  754.332858][ T3370] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  754.346861][ T3370] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  754.356811][ T3370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  754.366227][ T3370] usb 2-1: config 0 descriptor??
[  754.374967][T27672] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  754.386448][T27672] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  754.401319][T27672] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  754.410350][T27672] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  754.422225][T27672] usb 3-1: config 0 descriptor??
[  755.100786][ T3370] usbhid 2-1:0.0: can't add hid device: -71
[  755.106780][ T3370] usbhid: probe of 2-1:0.0 failed with error -71
[  755.118326][ T3370] usb 2-1: USB disconnect, device number 54
[  755.170679][T27672] usbhid 3-1:0.0: can't add hid device: -71
[  755.176776][T27672] usbhid: probe of 3-1:0.0 failed with error -71
[  755.188506][T27672] usb 3-1: USB disconnect, device number 53
21:59:58 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:58 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
r1 = syz_open_dev$video(0x0, 0x9, 0x250c82)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

21:59:58 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000180), 0x3, r5, 0x10, 0x0, @in6={0xa, 0x4e24, 0x6, @private2, 0x8}}}, 0xa0)

21:59:58 executing program 3 (fault-call:4 fault-nth:64):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

21:59:58 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x0)

21:59:58 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

21:59:58 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000140)=@hopopts={0x2f, 0xb, [], [@hao={0xc9, 0x10, @private2}, @enc_lim, @calipso={0x7, 0x18, {0x2, 0x4, 0x80, 0x1, [0x9, 0x7973c4b7]}}, @hao={0xc9, 0x10, @mcast1}, @enc_lim={0x4, 0x1, 0x1}, @ra={0x5, 0x2, 0xad}, @ra={0x5, 0x2, 0x1}, @ra={0x5, 0x2, 0x4}, @ra={0x5, 0x2, 0x1ff}, @jumbo={0xc2, 0x4, 0x8001}]}, 0x68)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000080))
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r1, 0x0, 0x1000000008, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0xb2, 0x4, 0x9, 0x20, 0x80000000}, 0x14)

[  755.715976][ T1643] FAULT_INJECTION: forcing a failure.
[  755.715976][ T1643] name failslab, interval 1, probability 0, space 0, times 0
[  755.747660][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  755.755908][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
21:59:58 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000080)={'mangle\x00', 0x4, [{}, {}, {}, {}]}, 0x68)
splice(r1, 0x0, r0, 0x0, 0x100000000a, 0x0)

21:59:58 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x6f, 0x410902)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  755.765954][ T1643] Call Trace:
[  755.769243][ T1643]  dump_stack+0x1e9/0x30e
[  755.773579][ T1643]  should_fail+0x433/0x5b0
[  755.777998][ T1643]  ? sock_kmalloc+0x98/0x100
[  755.782584][ T1643]  should_failslab+0x5/0x20
[  755.787079][ T1643]  __kmalloc+0x74/0x330
[  755.791236][ T1643]  sock_kmalloc+0x98/0x100
[  755.795650][ T1643]  hash_recvmsg+0x1bd/0x810
[  755.800158][ T1643]  ? hash_sendmsg+0xb40/0xb40
[  755.804831][ T1643]  ____sys_recvmsg+0x24a/0x510
[  755.809673][ T1643]  ? import_iovec+0x12a/0x2c0
21:59:58 executing program 4:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  755.814360][ T1643]  do_recvmmsg+0x429/0x1500
[  755.818883][ T1643]  ? ksys_write+0x1b1/0x220
[  755.823386][ T1643]  ? ksys_write+0x1b1/0x220
[  755.827887][ T1643]  ? check_preemption_disabled+0xb0/0x240
[  755.833600][ T1643]  ? debug_smp_processor_id+0x5/0x20
[  755.838894][ T1643]  __x64_sys_recvmmsg+0x11d/0x1a0
[  755.843918][ T1643]  do_syscall_64+0xf3/0x1b0
[  755.848418][ T1643]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  755.854308][ T1643] RIP: 0033:0x45ca59
21:59:58 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f0000002b80)=[{&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/66, 0x42}, {&(0x7f0000001500)=""/227, 0xe3}, {&(0x7f0000001600)=""/254, 0xfe}, {&(0x7f0000001700)=""/173, 0xad}, {&(0x7f00000017c0)=""/227, 0xe3}, {&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/172, 0xac}, {&(0x7f0000002980)=""/244, 0xf4}, {&(0x7f0000002a80)=""/239, 0xef}], 0xa, 0x3600)
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f00000001c0))
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r4 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ocfs2_control\x00', 0x22000, 0x0)
write$snddsp(r4, &(0x7f0000000400)="f603872aeabaeb63179c5d641a989c67719e66dcf73119ec282c24517e4424be38483ccf58819e5bec99951c4accf548ab0c98e09bba22d554c2c1b9b42c4ff88da9473a6b3b54f2d3e0992f174e0bcc5d979fa9b66024a4de6f58672251d996d72b4054ad1eb6dc310923e874923c1f5c32", 0x72)
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$EBT_SO_GET_ENTRIES(r3, 0x0, 0x81, &(0x7f0000000300)={'broute\x00', 0x0, 0x4, 0x8d, [], 0x4, &(0x7f0000000200)=[{}, {}, {}, {}], &(0x7f0000000240)=""/141}, &(0x7f0000000380)=0x78)
r5 = pidfd_getfd(r1, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r5, 0xc08c5334, &(0x7f0000000100)={0x6, 0x9, 0x1, 'queue0\x00', 0x2})
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r6, 0xc0145401, &(0x7f0000000080)={0x0, 0x0, 0xb44, 0x2, 0x1})
r7 = syz_open_dev$video(0x0, 0x76, 0x0)
splice(r7, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  755.858196][ T1643] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  755.877790][ T1643] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  755.886195][ T1643] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  755.894178][ T1643] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  755.902144][ T1643] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  755.910097][ T1643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
21:59:58 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r5}}, 0x18)

[  755.910556][ T3370] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  755.918043][ T1643] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  756.100496][T29588] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[  756.180515][ T3370] usb 3-1: Using ep0 maxpacket: 16
[  756.300675][ T3370] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  756.311697][ T3370] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  756.324953][ T3370] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  756.334175][ T3370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.343575][ T3370] usb 3-1: config 0 descriptor??
[  756.353753][T29588] usb 2-1: Using ep0 maxpacket: 16
[  756.474146][T29588] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  756.485136][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  756.499753][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  756.509365][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.519744][T29588] usb 2-1: config 0 descriptor??
[  757.080448][ T3370] usbhid 3-1:0.0: can't add hid device: -71
[  757.086430][ T3370] usbhid: probe of 3-1:0.0 failed with error -71
[  757.099362][ T3370] usb 3-1: USB disconnect, device number 54
[  757.240529][T29588] usbhid 2-1:0.0: can't add hid device: -71
[  757.246522][T29588] usbhid: probe of 2-1:0.0 failed with error -71
[  757.255422][T29588] usb 2-1: USB disconnect, device number 55
22:00:00 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:00 executing program 3 (fault-call:4 fault-nth:65):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:00 executing program 4:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
creat(&(0x7f0000000140)='./bus\x00', 0x0)
getsockopt$inet_int(r0, 0x10d, 0xfb, 0x0, &(0x7f0000000080))
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x3, 0x2c0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r5, &(0x7f00000017c0), 0x3a8, 0x3600)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x3a8, 0x3600)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r7, &(0x7f00000017c0), 0x3a8, 0x3600)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000180)={0x91ec, &(0x7f0000000100)=[r4, r5, r6, r7]}, 0x4)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)

22:00:00 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080), 0x106}}, 0x20)

22:00:00 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

[  757.637282][ T1728] FAULT_INJECTION: forcing a failure.
[  757.637282][ T1728] name failslab, interval 1, probability 0, space 0, times 0
[  757.650794][ T1728] CPU: 1 PID: 1728 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  757.659026][ T1728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  757.669068][ T1728] Call Trace:
[  757.672345][ T1728]  dump_stack+0x1e9/0x30e
[  757.676760][ T1728]  should_fail+0x433/0x5b0
[  757.681175][ T1728]  ? sock_kmalloc+0x98/0x100
[  757.685775][ T1728]  should_failslab+0x5/0x20
[  757.690268][ T1728]  __kmalloc+0x74/0x330
[  757.694435][ T1728]  sock_kmalloc+0x98/0x100
[  757.698847][ T1728]  hash_recvmsg+0x1bd/0x810
[  757.703346][ T1728]  ? hash_sendmsg+0xb40/0xb40
[  757.708016][ T1728]  ____sys_recvmsg+0x24a/0x510
[  757.712787][ T1728]  ? import_iovec+0x12a/0x2c0
[  757.717463][ T1728]  do_recvmmsg+0x429/0x1500
[  757.721987][ T1728]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  757.727442][ T1728]  ? check_preemption_disabled+0xa2/0x240
[  757.733156][ T1728]  ? retint_kernel+0x2b/0x2b
[  757.737748][ T1728]  __x64_sys_recvmmsg+0x11d/0x1a0
[  757.742777][ T1728]  do_syscall_64+0xf3/0x1b0
[  757.747275][ T1728]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  757.753150][ T1728] RIP: 0033:0x45ca59
[  757.757037][ T1728] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  757.776634][ T1728] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
22:00:00 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:00 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x24)

[  757.785041][ T1728] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  757.793008][ T1728] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  757.800973][ T1728] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  757.808936][ T1728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  757.816902][ T1728] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
22:00:00 executing program 3 (fault-call:4 fault-nth:66):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:00 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)

[  757.996209][T29588] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  758.041073][ T1742] FAULT_INJECTION: forcing a failure.
[  758.041073][ T1742] name failslab, interval 1, probability 0, space 0, times 0
[  758.071954][ T1742] CPU: 1 PID: 1742 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  758.080321][ T1742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  758.090455][ T1742] Call Trace:
[  758.093741][ T1742]  dump_stack+0x1e9/0x30e
[  758.098179][ T1742]  should_fail+0x433/0x5b0
[  758.102595][ T1742]  ? sock_kmalloc+0x98/0x100
[  758.107184][ T1742]  should_failslab+0x5/0x20
[  758.111680][ T1742]  __kmalloc+0x74/0x330
[  758.115835][ T1742]  sock_kmalloc+0x98/0x100
[  758.120245][ T1742]  hash_recvmsg+0x1bd/0x810
[  758.124750][ T1742]  ? hash_sendmsg+0xb40/0xb40
[  758.129423][ T1742]  ____sys_recvmsg+0x24a/0x510
[  758.134216][ T1742]  ? import_iovec+0x12a/0x2c0
22:00:01 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video(0x0, 0x2, 0x2000)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
r5 = accept4(0xffffffffffffffff, &(0x7f0000001400)=@xdp, &(0x7f0000001480)=0x80, 0x80800)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x3a8, 0x3600)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r7, &(0x7f00000017c0), 0x3a8, 0x3600)
r8 = openat$random(0xffffffffffffff9c, &(0x7f0000001840)='/dev/urandom\x00', 0x400400, 0x0)
r9 = socket$inet6_icmp(0xa, 0x2, 0x3a)
r10 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r10, &(0x7f00000017c0), 0x3a8, 0x3600)
r11 = syz_open_dev$evdev(&(0x7f0000001880)='/dev/input/event#\x00', 0x9, 0x100)
sendmmsg$unix(r1, &(0x7f0000001d80)=[{&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000180)="10f23c4b51308f2866f1cdb1c290a36773ebebac3c68f89bee83e4b1587c8fff33c84aabbc71ee297215abf808768a36bf73e57d5b4642015c", 0x39}], 0x1, &(0x7f0000000740)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r3, r2, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [r1, 0xffffffffffffffff, 0xffffffffffffffff, r1]}}], 0x148, 0x81}, {&(0x7f00000008c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000940)="905be44fec6bd9d5f87ed4c66744f7f4135342a5aaf5419dd886498b8287052e002fe3368511e17c42279016d1e2614053f153569b76e48f4e2dcba193687a7096f0ce669805d5bc1d2f060541dc4d09fbce398708cecb12457000f80adf6f1379b370029f9426a5f3bbda9a68e907b5d3b339afe382ceab889bf50977cc3d34aa457cba610985d5cbfb75e0ad9c85e0be1c72156013e28f55df8d7ef296f321a2787e85710c799b6e9a16a7229ea7415955b953816ea71885c987ca5795f52d8ccf7db7419bc45cb9410bb0f138a1c771e9462afe9b2d9e", 0xd8}, {&(0x7f0000000a40)="04c623e658932520dbc0de27a846ac51038224ee72babf48d36e135f3e4261d03ad1358b7dfd5802dfbd888d713537095fc5a5619adac200ac7e47d491825ddd5ccb937527ab379351e6de131d574fe536e908d0df1ab48aebfbbdfd1be0632cc7c46f192596d8dab953d0df7a1e0e9c79d72779a85a9ebb08e00a7ba9fa7b240444fff2b8c2889d61e9", 0x8a}, {&(0x7f0000000b00)="5e80858db907918ec7e7f81f1dbec4abe766cd88129dc9680a5aea9086ed3b4849b9ca0504d57b83526cd5229d19142ad585d6e0e6daa0d7ded78f247e2b4e376b6af58726debebb6aef9f854e1200c22a042a4e013f0611ae8a7446e0", 0x5d}, {&(0x7f0000000b80)="d989e1a97e2f3993a8376e087493ce3567b0dde030d7f699c9d37f21a1feba1e1fb2ece2331aba4e9adfa37143715b027ef056c4b71955c2b60968e6de924c0021b3bac75e2f8711e3778a8078cf453387218186882d96ee7d457026cf3cbbd5", 0x60}], 0x4, &(0x7f0000000c40)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r3]}}], 0x20, 0x800}, {&(0x7f0000000c80)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000d40)=[{&(0x7f0000000d00)="0bc6c4dc487b68acc38b1c6be89184a7c04f2acd41d9b7f641ab0023d01632e22422395909f069d2", 0x28}], 0x1, &(0x7f0000000d80)=[@cred={{0x1c}}], 0x20, 0xc055}, {&(0x7f0000000dc0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000001140)=[{&(0x7f0000000e40)="2f179e83ead4c55cd2e7916bce19", 0xe}, {&(0x7f0000000e80)="17679c21e7490c9b59cf229fa53eb847554989da90f65c5b23138081ede3db63148f35", 0x23}, {&(0x7f0000000ec0)="ff17f717d2a3575c3544335bfbbff4445fa44b893e5603b7c398968f471d6ef694e94f5569988afd720da888dbc81feefd07f31a634ddbf094ef3ee954845150a0218164937c44ee5edd624916f5852c7cbdb84cc61f36616c155afb6a4702fc2cff640cb4a50f0959237606f51e4b74c4ad11ae326da343bf89cc0d3dcc55cad3f12fe807f5a17ac9dca66dd5e8d9e6d02732a76febc3b304e16d54d4b7bc0e7f8ece10dd3109b57200efc2bff24f29bb4403a4cb68ce6f9ff104cf1705929e7ff710", 0xc3}, {&(0x7f0000000fc0)="d0da3f1b00df8981b6d37642e891da07085eafb85103e3ba6d79ca8697525712796bcbe9db7c2435e785984c4e128e22d056e483b6936bd094be61c6ef9fe46c36946af0ee58877f188ee2f0798085d5de5b", 0x52}, {&(0x7f0000001040)="3ae6ccb715d19296c82b91eadc73d47a61b65b9df67b162cdc4c2af7cb9660bbd97c6cc8a0bc7abb4e7267024cdb5daa", 0x30}, {&(0x7f0000001080)="f9a96d67768e16a19ec9b0019feffcb5e38a8c43f7bab85d51b9c4838df16ba92a5f3f7e8b103f9059379f32a81d929c517c64c4d1f105baccd6ca1d48cc6af3902ad96d30e4107f76769e77e835c3aadbb43f48db6b17905b1d02bd17a80cb2d0a7e3f00d0917fabc093eb852ffd58c3dda0baf23cf0e9efc210a6c9800067c60715fb04206", 0x86}], 0x6, &(0x7f00000014c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r4, r5, r6, r7, r0]}}], 0xd0, 0x4800}, {&(0x7f00000015c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001800)=[{&(0x7f0000001640)="5ad6b5bc4366b7a90b8445c4e1b717a3b6", 0x11}, {&(0x7f0000001680)="d4db2e27a640f79ff98cbf450afa02958677b1e72ec42b7d5e624295375d2b23cde16b0135c9b4579b9c03998faf82d4deafcabae3bac9e8ac4c0c56fcf0e290a23ad8c3a6f358770f2774d24598373e331b71ef0e8a24f116127c9281f20950d7753ac9d724268e66a3b90992507dc6e28ce4bc193594ac5c91c895d54219903c5a370625dc834ea9583c210f538ce93133997ac016d2cf870e8581e1b42dc488", 0xa1}, {&(0x7f0000001740)="e0514548af8930831d53dbe580e2be0abb5a33c466b326d7b6fc2df616260b29ca7fb5ad102dbc0ee36787c8ba91fb03e178ce2671d4d8ff6f42f0cf9e889ac45f8880cb552d3b70f8701cac39d9ae6e5235abf7dc68886ddc13066b9a349d849ad103c1b9821341a75b628215228f019cbde192ac8af768405541343f2bd977df387b8668b84de996fd241f67f3b6135fb77d8965997c838208fa77da94d9e06a0ecf6436e059f430c8ce76331308921e40eb13b8", 0xb5}], 0x3, &(0x7f00000018c0)=ANY=[@ANYBLOB="1c000000003dda000300000004000000", @ANYRES32=r8, @ANYRES32, @ANYRES32=r9, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r10, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r11, @ANYBLOB='\x00\x00\x00\x00'], 0x68, 0x4000801}, {&(0x7f0000001940)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000001d40)=[{&(0x7f00000019c0)="a9694be4b29214e8fa673bad4d5ae9b15c1cf29db4a0a9c35234670ae36130f8f03bf8fffb74bde2172c112f04ae884d9040f64d03ba781ababc431fa4006e060095e3faf696f14e56d7da9ce16f7ab551be2e8301690d32be0602f42c29bca57b4699159ce1411e1d361ce20c48d6b361ad685011ab52b6d484e8d92468b9e4b4087f330a2a0c2a8d76e53d3541d469ee7c2a44e09d7426eaa945903361d3c46410eb1b93ccc7fdfad71cb15f84d3ebeebf7e2f7fa76df002465380b0282ef0bc63ea63086b2d8a562b7a282bb3ca11f78b7f2f655d4ef9ef6a190d23145085b8294843bf598e7d11e3", 0xea}, {&(0x7f0000001ac0)="56a584ba7ee6bf87b746f30403644e4de9bb6a879343bf5010ca3452f22b56cc512fd298481bfe174b6ece73217314a02608e4b3f55171382fa59d134bcc8334f77c1a1981d598e5d6bcd71d8a9d59ecbc6cca7c72b666b4ed709b1e2eb195ca3bd8c92f5d3292ce28e742d9f8a011910872405e936b7dde6f89e10ed2ee23b74f3155d62e544fd6ffde78bd9258384c213624c1c94c9d04b9ee93ea0291e96c1bc48fe99c24a5058dff6bd0116f39d79297365b7a727bc1dc9f028d73e0b3", 0xbf}, {&(0x7f0000001b80)="62690e7bf410bde5b224a63ab9c607d6c5bc799e00d6438c343c5ff3d371bb6b9543a10b45bc53491f34619942f0682520b49b33dcda392fc74266af229c9ba549af7b74f1ac99c2398c7c12f63b23bd1338bde74881c09c3f1f418608d14ef7dccb41218bf6bacb0e0c44edc6118a5f58e35709b0c25fae75c644812a013ee4a44757b78b2165c65f0ec33d24433998cab7abf6f1c10c11753f3cf78d806eec49393cf287f2173b902c6fd5ab1d9e2581327a41e425e210e2aa15a6ee6b7ab9ce5c50301f1d8732db1676dcd185e7472291ce2e4fc393e1f6a4cec25ce7d46e", 0xe0}, {&(0x7f0000001c80)="1650577dd3a8502e2236eadb22c524cd961a3cf6db5542abad50a85147e8f58afd74e4cf0e5e098f670ddd78665ca9022418d552dc02e9408846029cba387224cab0ac28f960b82538173b2ba01f9dc3d5156fc87ed696199fcf84c5d1149cdee0147a4f5f197088f7e384705f0a599a9708be7397bd10a82d727b0f0facd3b6ed66f0efb09f8672c23631ff3fb33fb6a52af724442239876d1879dc9c56e462876f0d11589ddfe052a53e52c39ccd8f9b77e4afe2d743", 0xb7}], 0x4, 0x0, 0x0, 0x8000}], 0x6, 0x44000)
r12 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r12, &(0x7f00000017c0), 0x3a8, 0x3600)
write$FUSE_GETXATTR(r12, &(0x7f0000000080)={0x18, 0x0, 0x4, {0x7}}, 0x18)

[  758.138893][ T1742]  do_recvmmsg+0x429/0x1500
[  758.143414][ T1742]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  758.148864][ T1742]  ? check_preemption_disabled+0xa2/0x240
[  758.154577][ T1742]  ? retint_kernel+0x2b/0x2b
[  758.159172][ T1742]  __x64_sys_recvmmsg+0x11d/0x1a0
[  758.164228][ T1742]  do_syscall_64+0xf3/0x1b0
[  758.168731][ T1742]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  758.174612][ T1742] RIP: 0033:0x45ca59
[  758.174623][ T1742] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  758.174630][ T1742] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  758.174641][ T1742] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  758.174648][ T1742] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  758.174655][ T1742] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  758.174662][ T1742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
22:00:01 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd)
r1 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r1, r0, r1}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'vmac64(aes)\x00'}})
keyctl$instantiate(0xc, r1, &(0x7f00000000c0)=@encrypted_new={'new ', 'default', 0x20, 'user:', '', 0x20, 0x6}, 0x27, 0xfffffffffffffff8)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r3, 0xc0305602, &(0x7f0000000180)={0x0, 0x8, 0x1004, 0x1})
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000080)={0x2, 0x0, [{0x80000007, 0x7f, 0x8147, 0x39, 0x3}, {0x4000000c, 0xfffffff9, 0x9, 0x8000, 0x80000001}]})
add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f0000000280)={'syz', 0x2}, &(0x7f0000000480)="0a22a465f5f211cf5056a11910dd2f8e577d50d158675aab42b4c4e60093cd95586f03340b82b3adb82ae2608faa4d6d2f922ab4b668c799ebbbd77e57b64281c7c14846215cabf98ff5a7fbfc9ecd63bc2354c0f0b6801b6de41bdb5e1dd6077aa897fd10090895087a403e87e442c750eceb4643237c1628a482dc194fedc8d529b33042663eebf89f43ff9b05058c16e7c7039a70f34a4f626e29815e4c77146c6cb059eb100ace467663fe37c4bd2256df3e3f26062411fd0f70a0830e35b3ebfac408e2d9e83a65848f7200abe7e987a648cc6201567d067210f036c291697eca26f77c966765c8b57c64641c8bdef12f966785dceed32b80a893ddae053d59d6b89f5bff39006c91a1acaf94e86427feddec5ad0d83fe800f78eb641c299e33d5ab39aca9d58bd2782f7c8906e91fc605b100617e314533cf79792d20bf40cc0118f2856b547e85b7e81c79b9ab002865f351c708b5476a6624c0134e7f488dac126a4fc2e54560e4a7d97ea460f550e8dda80e06911fa3b8e82ef529d7e2e8cfd7c4576b533a022498d81780f4fda264d7f5ebb00d74915f04ee6b4aa424246d308ff72b8bf45d5cb16ccdb05253c2211ac86e241cb6e3c8762addd465bf2544cf454d016d0f18dd2dc76ce7d8b63a0a24b08b29a12c3e543f5ff96b05b94c324ab74a4808fe191df22b9d7e7fea3ba76f91a2daa5a9d19b1c82b8a61011a94317cdb45445d6af3dc4a66e3e1c4250f3040947c9cecf57f57eb8e49d0f781b9ffb20705bf16d552bb4b5324fffc74ac00b04487babb9e516c821c087bc0097fabad16f9de644eb0a5957985f9cb1f35a86f8e4d78735a1acece36ada6bd55677b5246ebc1e1f690b73f7b8f8c65455a3329814f3ee2193d0fde4a2d42b6128a1a0f8e2d9994f45acb38d05d8230a9e2436644de61700b1f7affd0023fd0972147a92a574af67e44128e1c4a71cd9703378a881adf9ddb2034e9ecd355adbd3a331ab51beabc0cacc36ca5742d3246399870716af9ba52cea621ca3fa3a63f94e3098af4aa3a56c38048fb8cad9722975d959fbff4e2fe0a133e6e30ec546a5313610a25fcf0d10117e98de9acb8e159d457830056426dda9360589b97cdbee91813197cb6017085f158967633579ec98662b45d83c589e642f20de48e7ec79ba47d47acec83711ab5d19fa7e76def9fe6308a05cc0ae5f64483437ec252a2d8d5046ec84de404fbc67d631e12cebc3254d5231f2baae2ee1e6d803e286fa39f0dcdf31ea8fc0a9c34d76eb8be3e166e9b21277142edd1ecf25d0bdb518ef0ba716bbcf9264acc89a0419b6bb34257f756641ab6acc19ce19113c3043ff9a85829db86b76f35ab259ecbd333e2abbc4b15b4fb1f2de5f79a2fb2be42f35cbf43b5dee6269d9add9c5c2899da8e7ecc8c1341c48bccf34f461167fda5cff0def6a05c07577f3ab8c920df19745629777b0099444bf16a2c5863c4c6d3449f0d2d4e282899d048cf3fb70a2fd627fb6d603521c5b48f7ae6b47bf1ef46d2c71ac275fa0635ed64576908fbc9f5e331383d95beabf1068a9c22e3e15b01a90202201bc175ce6236fdc240aa662442e862d21869800bb443645ce755c733169388bce55cdbe23600fc9d397192803b9c1ba4505254adda474d761f50e0ea79c7bdc21cb21a06d6909d77816be304a770c4992a00b9356c81649a58d7ee412809a9d24a9d4fdc98a25154210da24f698453db82ab2bc5998872bb04e8f916e9f536d65ba3e294b42240c3d3ff0f40739c3e02a9fabd4897a8b9579c2c2bd9aa259f14363e990f814a3861d52db26e7366f315812877e6f55a5aecb20cb26f211463aa96b5b52f07fd17f0c40938f4058ad8a69ebf932254231676608249d37c668f516abf166feee63d67fc767e9cdef55f785714bafb17eb6e6aa7772cb5494e844c9f9fe3a7e2d88bb30c70ca08b98a5bd7789fc2cc11d01191229946fef101d17be531e6370c25c855b47dccfa8ab45d0e1e99ba5ea8bfe73e8f465621fe0238bf2298fe41304c620248bef7c8586867a3f2a6b7e710bc86e2fac4e9a65749489a9d99c8061a717d2b18bcf5000fe53cfea86dbc7b867a9070c1a24ccabf0d2461a875cad4c2a425a69372a1b7550064d1f782152481850e3220dedb61cf6357b06e66f3e39263325a993897df1b011df67851f445d01e2bca749931f1681bbf1df108dfe61ba180f9b88640951add5f795f91d4e314ff9746a3834c2b50c4ce8e8484e631bc31c0739efa5cd75149f3a2922e4be2623e2c4fcefa1c4d8cbdebffd45f6c3a35d0b58f49c0ec83dec0c985e6e3ead4110f31ef78d2430fa8c6b8aa00a1389314e00fc99b516f6df95f62069daae676b1f2d94347a4c49ec1a577d20924cfa7c3ff28f03a593c39523640ce7ecd8a05cbcd6f45e3a3c0a0ca5b89836568751a1d0d7ec78d61e92c8eba1c60041ea47d4a7ece6481dfef0b9497a1225a8350f27c8217c9e254228767dab175b3fd23a41b0f1b44f7745d1a7f13c281831189ecb41ffc8f9d04e382d293fc81b0279c6065f6fe8b328779c0e8c5d46793c82d8ce721724dd817e99b76bcf641c81dcd796f8d5c84e1b29d2a8b50b4ba1d4125890554c26b46b3c4bfc88ec7788841cc7dd976895c9fcad407fdf15d29e02c3dcd2d9b9f027c80698fb480d36d284c45629490bd679cfc300d98426b603a9c12f2d129fff6f8b1c64999816d566993c38cb72b56704ce524ecd489b0ccc6b319d45cef59d5bac540a393211dcfe6c31fe7933169d067660e8587d783e06d61746cde56817bb5aeac792b26320222283486ea2f9fa161d35fdb2e5f350192eb55b0a213d483e14dda7ac0f1a6bfbc15e1f8b263c0a7103875208aa09ad30db23e54f17e126302ef3cb682e7b7b5283bf899a93b01f75486aa3bcc1a2d9a1b792eb6d2e2221747278889a525c47cd54f43b306789134ef24e1a8a99b1d9fb792f2901e9434f0f7826af22af022ab3d3266a70e1487e34a211493221f3f35df7c255fe10cd1229436aaf0091ae7d67ad5710eeb5965149bae72d1ab749dc57508336003148976eedc924aebf7bccaf20f7f27f16970a27945dc170e680ff1db4fc480be779ef56aa8bc7635c72c43fb12957c12893e28d0d613cd607f21f22e53fd54b748c1b39153eaed46515c69c35836867c0f46f94ef9bd5440e3d032a35abb4967faf93af3d041593b9066d3ac786107a37b571b27a6eb9b2037c3afe48bbda4f7db53fa004c72c757cb6e19a197b80a2160c3f607c39006110c6a1c1d9d5516a727038e583db338f5e87b31b8c0f77834a046a3f737331d2146471eff2542c0351e41738811ab49835a10d19dda370e9f39d82b64559ce905ed71a5bdc61f1ac60ba324e72ea4e6271fa1f05c7bdd8a56e09703aa0ef692b5dd827a9ea762592f5ea63d2b844ae98ea1b665e24282a2ee60996a288b061d9b9fb2d90c1898857cb3d5b6563d04a5a5d5e09833a8cd9ef748d43ec03fafba6793f10c7039dfc317b28cbba93966c84d34ec4a3f73b592e575b05dafc1618230b1b29705d64a08b07c053eaa144257d5ad3a3ac567e77274bd6a452017bc15e2eb5d2c86c64dbef6fd5111e1674a7fbd3d07aa72047250d661abbb610fd2f99fdaabdb7a15049660a2dc78a4b33cbb2d430e8c4452243f4646c96461b718e1982be90e1d0e70998c082328f0d1b1f30fc7060333e11df523f6c552acfe3236e91e2e1e83db2e288cb29cdb1ba00b1fd0bca399e0b660c856c702f8ab9169700155babd698b31b06d78f7de2b33989cb8795a57c9e25b68d2c19395610d2df385ab416df8d4d2a037235090ed927e310dbd4bef0c72bfa79a03961fd86ad127c4e50bbf155807aeaac96a69746a2fb9d44e6a6be2e147cb1c7dc6276a1b0b123cebf9615272d4b9a76eeb9e3a420c4d7aed7ca4a785fd3b71201f7e84872c50bfe59f15898ae8a6ea13b3d5eddc8ef2dd0e2f583f1c426048342621e8f434abffdf3035fe7059299998143d0f4cfc184bfb436f34b19c80a5a79c2a7162087d9ffd76b2e7009b8b393f81bc35a3115472fefe95877e151415e3234acfdc6dd12bd376ea8ef08615d077f1c59f1ec689015737cfb63ce650894fa8a49eaba71c2b3bd9c13736cd07f05a565a355ec95f587d87727d61036551b31cee155e50bae3ff985a7c0ca2918714351ba70d56b04e967cde472fe372da104fb5e6897c841f7f6308b52b8d85b33e277e4d7c51f84766d5673af2e35d8e42cc15776bfde59757c90813443b772ac2baf2acb40599b3f251dca4d514c31940d8142a415fa8ed2cc688bc400b7aef46d775bc882cd2259f7ed2bd5728e0efbe5173149d97f586ce1b9f911edf5a12d4efcf5b4fbd82dfeb296fa9b4023e9f49f6c4ff71ce2dc9fd9349457eb94cfcaae6473fb4b9dd2bda373c1acf731049a485a1d4f1b8f440cf2b855bd43d0c1266f505b2195c2a0f327de9ee00415c767c3352d471186564ad33b1e5bad246f265c84d57db67d4603ac71e135b76134eb9beb8124e40628a428ba481eefa8f6d75db0dbfc7525f81e903cc3b9a01c6874c66e21ada4440ce7db400ba75586f2476eb6a55f1a94d41c21844be16f3e34db536d30fb6ec524e01233ff26ca350d68621f8481008b55ef1ae93eb6ead0d39bd581cffd9a88a45f55f49b177754ce66ad1c5a7a8736d66381bd2fa7ce7a57d8666afdf8eaff1b7305f932bc505d3a95928c6de43576b44f039fe81d8eafbd8d9fc5aeb6761fa6dd84d7be17d6da9ac8be830060bbe491a46a23acf43ba2a6c1b296ace6b0479c3caefc1c602765d23fd79737e62e496036f276aa19e3485413888ddfae7c45b0940677c59472adaf48bb9429ed1896461a71c6863813b78ed8f8f3ab05f5906d1d6ecaf1eafe7b053cf76f35b24a2b26089d812229702107391c0aae92c997d33f8d391bdc1afd23d79120500e0634698054c6b3da0c6e1becd1a8a15fc0dd4881a844f7b8c1de43ea4106c32d91645cfd574a0a0f6d1f404f274375699caebb5f74b2b9f8e0034226ed9002a568af720c2d4a77994ea4f5c351fb74f232d92edc941d1fe87029be4a504b32c3086f6588c989a860f239415756fa032db28eec20df94d42bd5014be92cca80ef00115ecbeb5f251f64087e9849f137266b3ab75e1ce5f7adabdaa714490e6f2fb3d2a19419dad18eee3651c75718d1015586a641f0fb98981f947593107e42db769a44732af10305c85c924ea4fb8b36dff5362f4f162e61ccd3823d3d6ceee693d84e00912077e91bf3154d9714ae51418e2818c0f34e660a31476689672c44557a9afb1e2c292fe1e264e70cbe7771946c7f3ccb7322610e7b846871b72667cd16d0f4f3897abf19f6b9efc5c23bb723ba1875b79f58e9b863f69e0ff34fea9f94cd4b8c387c5a15488808850f3da6e965974d5c38e1dd1030fc647a075a8f8706e55050effe8f26b4f501a78146a1983d5f87bcc8b06295ff91a366db8b03a9187df71a0e4bcf0cb89d116afcb82b77b460b4c08666ac64227f1bb4a46bbe5d31ae491b4c9db62803b30d7f47074a2edf45b78d4c8731ec18cbf443b4fd167819d5b9e1d9191737dd121568bf24b8fb1d77d94ae918e9d0531550c1b55c472b61a99042ec0a6a1463a544c3ea43af3e3004fd0cad90af4efe32ecd4cefadcaaa1b52a9f7b0d31be5e44dff46905a88a160e9172d3c09bdd913b108b36ab8007ea76f10341bb36188d548d6c1cbd1bf83a344", 0x1000, r1)
splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x1000020008, 0x4)

22:00:01 executing program 3 (fault-call:4 fault-nth:67):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  758.174669][ T1742] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  758.310518][ T2693] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[  758.337864][ T1758] FAULT_INJECTION: forcing a failure.
[  758.337864][ T1758] name failslab, interval 1, probability 0, space 0, times 0
[  758.351495][ T1758] CPU: 1 PID: 1758 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  758.359718][ T1758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  758.369888][ T1758] Call Trace:
[  758.373154][ T1758]  dump_stack+0x1e9/0x30e
[  758.377458][ T1758]  should_fail+0x433/0x5b0
[  758.381849][ T1758]  ? sock_kmalloc+0x98/0x100
[  758.386409][ T1758]  should_failslab+0x5/0x20
[  758.390882][ T1758]  __kmalloc+0x74/0x330
[  758.395012][ T1758]  sock_kmalloc+0x98/0x100
[  758.399422][ T1758]  hash_recvmsg+0x1bd/0x810
[  758.403927][ T1758]  ? check_preemption_disabled+0xa2/0x240
[  758.409626][ T1758]  ? hash_sendmsg+0xb40/0xb40
[  758.414287][ T1758]  ____sys_recvmsg+0x24a/0x510
[  758.419039][ T1758]  ? import_iovec+0x12a/0x2c0
[  758.423707][ T1758]  do_recvmmsg+0x429/0x1500
[  758.428199][ T1758]  ? ksys_write+0x1b1/0x220
[  758.432675][ T1758]  ? ksys_write+0x1b1/0x220
[  758.437154][ T1758]  ? check_preemption_disabled+0xb0/0x240
[  758.442845][ T1758]  ? debug_smp_processor_id+0x5/0x20
[  758.448125][ T1758]  __x64_sys_recvmmsg+0x11d/0x1a0
[  758.453124][ T1758]  do_syscall_64+0xf3/0x1b0
[  758.457601][ T1758]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  758.463517][ T1758] RIP: 0033:0x45ca59
[  758.467383][ T1758] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  758.486996][ T1758] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  758.495380][ T1758] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  758.503330][ T1758] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  758.511275][ T1758] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  758.519217][ T1758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  758.527161][ T1758] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  758.540643][T29588] usb 3-1: Using ep0 maxpacket: 16
[  758.680386][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  758.691460][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  758.704458][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  758.713641][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.727793][T29588] usb 3-1: config 0 descriptor??
[  758.746181][ T2693] usb 2-1: Using ep0 maxpacket: 16
[  758.881613][ T2693] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  758.892632][ T2693] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  758.905473][ T2693] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  758.914584][ T2693] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.924621][ T2693] usb 2-1: config 0 descriptor??
[  759.460323][T29588] usbhid 3-1:0.0: can't add hid device: -71
[  759.466419][T29588] usbhid: probe of 3-1:0.0 failed with error -71
[  759.477668][T29588] usb 3-1: USB disconnect, device number 55
[  759.670312][ T2693] usbhid 2-1:0.0: can't add hid device: -71
[  759.676374][ T2693] usbhid: probe of 2-1:0.0 failed with error -71
[  759.687689][ T2693] usb 2-1: USB disconnect, device number 56
22:00:02 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:02 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x10000, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

22:00:02 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)
gettid()

22:00:02 executing program 3 (fault-call:4 fault-nth:68):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  760.001195][ T1788] FAULT_INJECTION: forcing a failure.
[  760.001195][ T1788] name failslab, interval 1, probability 0, space 0, times 0
[  760.016668][ T1788] CPU: 0 PID: 1788 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  760.024909][ T1788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  760.034949][ T1788] Call Trace:
[  760.038219][ T1788]  dump_stack+0x1e9/0x30e
[  760.042547][ T1788]  should_fail+0x433/0x5b0
[  760.046965][ T1788]  ? sock_kmalloc+0x98/0x100
[  760.051545][ T1788]  should_failslab+0x5/0x20
[  760.056081][ T1788]  __kmalloc+0x74/0x330
[  760.060226][ T1788]  sock_kmalloc+0x98/0x100
[  760.064627][ T1788]  hash_recvmsg+0x1bd/0x810
[  760.069105][ T1788]  ? hash_sendmsg+0xb40/0xb40
[  760.073853][ T1788]  ____sys_recvmsg+0x24a/0x510
[  760.078608][ T1788]  ? import_iovec+0x12a/0x2c0
[  760.083277][ T1788]  do_recvmmsg+0x429/0x1500
[  760.087781][ T1788]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  760.093228][ T1788]  ? check_preemption_disabled+0xa2/0x240
[  760.098931][ T1788]  ? retint_kernel+0x2b/0x2b
[  760.103498][ T1788]  __x64_sys_recvmmsg+0x11d/0x1a0
[  760.108513][ T1788]  do_syscall_64+0xf3/0x1b0
[  760.113009][ T1788]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  760.118892][ T1788] RIP: 0033:0x45ca59
[  760.122791][ T1788] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  760.142390][ T1788] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  760.150811][ T1788] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  760.158772][ T1788] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  760.166728][ T1788] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  760.174672][ T1788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  760.182623][ T1788] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  760.370211][ T2693] usb 3-1: new high-speed USB device number 56 using dummy_hcd
22:00:03 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:03 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_init_net_socket$ax25(0x3, 0x0, 0xcb)
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x3f)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)

22:00:03 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:03 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:03 executing program 3 (fault-call:4 fault-nth:69):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  760.625968][ T2693] usb 3-1: Using ep0 maxpacket: 16
22:00:03 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f00000000c0))
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vsock\x00', 0x40000, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x4e24, 0x7, @empty, 0x3b3}}, 0x0, 0x0, 0x37, 0x0, "78c1e42563b251ddfd65e0358a20a1fb994581f4135ad796b2d7012ee46d2bf95644ab54eb604ee2873b64edfe99e34ca49e963287ff87cf25efb6f41f8dbb781e2cfb6863a99b644cb87ee43330a077"}, 0xd8)
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  760.653227][ T1805] FAULT_INJECTION: forcing a failure.
[  760.653227][ T1805] name failslab, interval 1, probability 0, space 0, times 0
[  760.670514][ T1805] CPU: 1 PID: 1805 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  760.678750][ T1805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  760.688799][ T1805] Call Trace:
[  760.692075][ T1805]  dump_stack+0x1e9/0x30e
[  760.696393][ T1805]  should_fail+0x433/0x5b0
22:00:03 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f0000000080))

[  760.700812][ T1805]  ? sock_kmalloc+0x98/0x100
[  760.705395][ T1805]  should_failslab+0x5/0x20
[  760.709890][ T1805]  __kmalloc+0x74/0x330
[  760.714040][ T1805]  sock_kmalloc+0x98/0x100
[  760.718447][ T1805]  hash_recvmsg+0x1bd/0x810
[  760.722949][ T1805]  ? hash_sendmsg+0xb40/0xb40
[  760.727623][ T1805]  ____sys_recvmsg+0x24a/0x510
[  760.732392][ T1805]  ? import_iovec+0x12a/0x2c0
[  760.737073][ T1805]  do_recvmmsg+0x429/0x1500
[  760.741572][ T1805]  ? rcu_lock_release+0x5/0x20
[  760.746353][ T1805]  ? trace_hardirqs_on_thunk+0x1a/0x1c
22:00:03 executing program 4:
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/mice\x00', 0x80)
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f00000000c0)={0x3d})
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$TIOCMBIC(r3, 0x5417, &(0x7f0000000080)=0x4)
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
setsockopt$RDS_GET_MR(r2, 0x114, 0x2, &(0x7f0000000200)={{&(0x7f0000000100)=""/178, 0xb2}, &(0x7f00000001c0), 0x60}, 0x20)
r4 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r4, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  760.751807][ T1805]  ? check_preemption_disabled+0xa2/0x240
[  760.757517][ T1805]  ? retint_kernel+0x2b/0x2b
[  760.762102][ T1805]  __x64_sys_recvmmsg+0x11d/0x1a0
[  760.767126][ T1805]  do_syscall_64+0xf3/0x1b0
[  760.771629][ T1805]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  760.777524][ T1805] RIP: 0033:0x45ca59
[  760.781414][ T1805] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  760.801044][ T1805] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  760.809425][ T1805] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  760.817366][ T1805] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  760.825313][ T1805] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  760.833258][ T1805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  760.841205][ T1805] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  760.912008][ T2693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  760.923214][ T2693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  760.937535][ T2693] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  760.947164][ T2693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.959472][ T2693] usb 3-1: config 0 descriptor??
[  761.000193][ T2506] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[  761.240143][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  761.360420][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  761.371456][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  761.384751][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  761.394011][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.406160][ T2506] usb 2-1: config 0 descriptor??
[  761.710184][ T2693] usbhid 3-1:0.0: can't add hid device: -71
[  761.716362][ T2693] usbhid: probe of 3-1:0.0 failed with error -71
[  761.727826][ T2693] usb 3-1: USB disconnect, device number 56
22:00:05 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be808376"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:05 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:05 executing program 3 (fault-call:4 fault-nth:70):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:05 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r1, 0xc0a85322, &(0x7f0000000180))
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x1000000008, 0x0)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000080)={0x3, @raw_data="df7c8f5a92a7d6b6b82fdcdd996d21a0b61bc52a664c49793f419012b5dda9527dc318e882b78223fa6f9ca5f7c4479af9732fd700daeac4050a37c6cd037e2514ecb6d941d661c661d24db6ddee63a3e311cb615af06ee5d043ebf13f446653a79745856985b55e978ca2f3fcf89775862776cd1544f59f0b602706fcd063fbab1092fac9abca1ed95d8939b033baa2feaae5c94650f21a0d82a19cb960a12088755cd0fcf8d6d9b2183e1aa03febeb8ae33824e9a0c44e229c5f2438836c59e687cebd59a2b758"})

[  762.130310][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  762.136389][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  762.149877][ T2506] usb 2-1: USB disconnect, device number 57
[  762.281556][ T1851] FAULT_INJECTION: forcing a failure.
[  762.281556][ T1851] name failslab, interval 1, probability 0, space 0, times 0
[  762.294576][ T1851] CPU: 0 PID: 1851 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  762.302907][ T1851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  762.312944][ T1851] Call Trace:
[  762.316231][ T1851]  dump_stack+0x1e9/0x30e
[  762.320697][ T1851]  should_fail+0x433/0x5b0
[  762.325101][ T1851]  ? sock_kmalloc+0x98/0x100
[  762.337349][ T1851]  should_failslab+0x5/0x20
[  762.341935][ T1851]  __kmalloc+0x74/0x330
[  762.346080][ T1851]  sock_kmalloc+0x98/0x100
[  762.350482][ T1851]  hash_recvmsg+0x1bd/0x810
[  762.354985][ T1851]  ? hash_sendmsg+0xb40/0xb40
[  762.359657][ T1851]  ____sys_recvmsg+0x24a/0x510
[  762.364414][ T1851]  ? import_iovec+0x12a/0x2c0
[  762.369074][ T1851]  do_recvmmsg+0x429/0x1500
[  762.373592][ T1851]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  762.379141][ T1851]  ? check_preemption_disabled+0xa2/0x240
[  762.384840][ T1851]  ? retint_kernel+0x2b/0x2b
[  762.389406][ T1851]  __x64_sys_recvmmsg+0x11d/0x1a0
[  762.394420][ T1851]  do_syscall_64+0xf3/0x1b0
[  762.398926][ T1851]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  762.404814][ T1851] RIP: 0033:0x45ca59
[  762.408687][ T1851] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  762.428267][ T1851] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  762.436674][ T1851] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  762.444626][ T1851] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  762.452580][ T1851] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  762.460535][ T1851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  762.468487][ T1851] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  762.520151][ T2494] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  762.759988][ T2494] usb 3-1: Using ep0 maxpacket: 16
[  762.880151][ T2494] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  762.891073][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  762.904202][ T2494] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  762.913558][ T2494] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  762.925996][ T2494] usb 3-1: config 0 descriptor??
22:00:06 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0022220000009623137502091fefad4ac2c206e53f070c0000082a9000170900be8083"], 0x0}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:06 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r4 = syz_open_dev$vcsu(&(0x7f00000001c0)='/dev/vcsu#\x00', 0x4, 0x10020)
setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, &(0x7f0000000200)=[{{0x3, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1}}, {{0x2, 0x1, 0x0, 0x1}, {0x1, 0x1, 0x0, 0x1}}], 0x10)
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, 0x1412, 0x8, 0x70bd26, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040000)
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$RTC_WIE_ON(r2, 0x700f)

22:00:06 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:06 executing program 3 (fault-call:4 fault-nth:71):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:06 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  763.670211][ T2494] usbhid 3-1:0.0: can't add hid device: -71
[  763.676493][ T2494] usbhid: probe of 3-1:0.0 failed with error -71
[  763.678614][ T1872] FAULT_INJECTION: forcing a failure.
[  763.678614][ T1872] name failslab, interval 1, probability 0, space 0, times 0
[  763.705544][ T1872] CPU: 0 PID: 1872 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  763.713793][ T1872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  763.723851][ T1872] Call Trace:
[  763.725794][ T2494] usb 3-1: USB disconnect, device number 57
[  763.727145][ T1872]  dump_stack+0x1e9/0x30e
[  763.727162][ T1872]  should_fail+0x433/0x5b0
[  763.727181][ T1872]  ? sock_kmalloc+0x98/0x100
[  763.727192][ T1872]  should_failslab+0x5/0x20
[  763.727205][ T1872]  __kmalloc+0x74/0x330
[  763.754956][ T1872]  sock_kmalloc+0x98/0x100
[  763.759371][ T1872]  hash_recvmsg+0x1bd/0x810
[  763.763874][ T1872]  ? hash_sendmsg+0xb40/0xb40
22:00:06 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000100))
pipe(&(0x7f0000000040))
syz_open_dev$video(0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r1, 0x0, r2, 0x0, 0x1000000008, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
lseek(r3, 0x3, 0x4)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
preadv(r4, &(0x7f0000000580), 0x0, 0x3602)
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000540)={0x160, 0x8, &(0x7f0000000140)="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"})
write$P9_RMKDIR(r3, &(0x7f0000000080)={0x14, 0x49, 0x2, {0x1, 0x2, 0x1}}, 0x14)

22:00:06 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4$phonet_pipe(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80000)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10000000001f, 0x6)

[  763.768542][ T1872]  ____sys_recvmsg+0x24a/0x510
[  763.773309][ T1872]  ? retint_kernel+0x2b/0x2b
[  763.777894][ T1872]  ? import_iovec+0x12a/0x2c0
[  763.782572][ T1872]  do_recvmmsg+0x429/0x1500
[  763.787091][ T1872]  ? rcu_lock_release+0x5/0x20
[  763.791912][ T1872]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  763.797466][ T1872]  __x64_sys_recvmmsg+0x11d/0x1a0
[  763.802502][ T1872]  do_syscall_64+0xf3/0x1b0
[  763.807002][ T1872]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  763.812887][ T1872] RIP: 0033:0x45ca59
[  763.816772][ T1872] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  763.836362][ T1872] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  763.844785][ T1872] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  763.852751][ T1872] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  763.860725][ T1872] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
22:00:06 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$VHOST_SET_VRING_ENDIAN(r1, 0x4008af13, &(0x7f0000000100)={0x1, 0x3})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r2, 0x0, r0, 0x0, 0x4001000000008, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
write$FUSE_POLL(r0, &(0x7f0000000140)={0x18, 0xfffffffffffffff5, 0x3, {0xe9}}, 0x18)
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$TCGETS2(r4, 0x802c542a, &(0x7f0000000180))
setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000080)={0x16, @multicast1, 0x4e21, 0x1, 'sed\x00', 0x31, 0xfffffffc, 0x59}, 0x2c)

[  763.868690][ T1872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  763.876652][ T1872] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  764.039974][ T8150] usb 2-1: new high-speed USB device number 58 using dummy_hcd
22:00:07 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:07 executing program 3 (fault-call:4 fault-nth:72):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:07 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r3, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:07 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000140))
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$VIDIOC_DBG_G_REGISTER(0xffffffffffffffff, 0xc0385650, &(0x7f0000000080)={{0x4, @addr=0x6}, 0x8, 0xd69, 0x4})
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
getsockname$netlink(r1, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)

[  764.278291][ T1897] FAULT_INJECTION: forcing a failure.
[  764.278291][ T1897] name failslab, interval 1, probability 0, space 0, times 0
[  764.297679][ T1897] CPU: 0 PID: 1897 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  764.305923][ T1897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  764.315968][ T1897] Call Trace:
[  764.319253][ T1897]  dump_stack+0x1e9/0x30e
[  764.323579][ T1897]  should_fail+0x433/0x5b0
[  764.327981][ T1897]  ? sock_kmalloc+0x98/0x100
[  764.332563][ T1897]  should_failslab+0x5/0x20
[  764.337141][ T1897]  __kmalloc+0x74/0x330
[  764.341300][ T1897]  sock_kmalloc+0x98/0x100
[  764.345702][ T1897]  hash_recvmsg+0x1bd/0x810
[  764.350197][ T1897]  ? hash_sendmsg+0xb40/0xb40
[  764.354871][ T1897]  ____sys_recvmsg+0x24a/0x510
[  764.359628][ T1897]  ? import_iovec+0x12a/0x2c0
[  764.364284][ T1897]  do_recvmmsg+0x429/0x1500
[  764.368777][ T1897]  ? rcu_read_lock_sched_held+0x2f/0xa0
[  764.374313][ T1897]  ? check_preemption_disabled+0xb0/0x240
[  764.380023][ T1897]  ? debug_smp_processor_id+0x5/0x20
[  764.385294][ T1897]  __x64_sys_recvmmsg+0x11d/0x1a0
[  764.390310][ T1897]  do_syscall_64+0xf3/0x1b0
[  764.394801][ T1897]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  764.400676][ T1897] RIP: 0033:0x45ca59
[  764.404556][ T1897] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  764.424255][ T1897] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  764.432648][ T1897] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  764.440612][ T1897] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  764.448564][ T1897] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  764.456508][ T1897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  764.464452][ T1897] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  764.473007][ T8150] usb 2-1: Using ep0 maxpacket: 16
[  764.500138][ T2506] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  764.620039][ T8150] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  764.631064][ T8150] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  764.645209][ T8150] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  764.654373][ T8150] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  764.664005][ T8150] usb 2-1: config 0 descriptor??
[  764.739943][ T2506] usb 3-1: Using ep0 maxpacket: 16
[  764.859946][ T2506] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  764.870922][ T2506] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  764.885375][ T2506] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  764.895032][ T2506] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  764.904468][ T2506] usb 3-1: config 0 descriptor??
[  765.389892][ T8150] usbhid 2-1:0.0: can't add hid device: -71
[  765.396089][ T8150] usbhid: probe of 2-1:0.0 failed with error -71
[  765.408135][ T8150] usb 2-1: USB disconnect, device number 58
[  765.619890][ T2506] usbhid 3-1:0.0: can't add hid device: -71
[  765.625945][ T2506] usbhid: probe of 3-1:0.0 failed with error -71
[  765.639112][ T2506] usb 3-1: USB disconnect, device number 58
22:00:09 executing program 5 (fault-call:10 fault-nth:0):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:09 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
accept4(r2, &(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @private1}, &(0x7f0000000100)=0x80, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')

22:00:09 executing program 3 (fault-call:4 fault-nth:73):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:09 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r2 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r2, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:09 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:09 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  766.693187][ T1942] FAULT_INJECTION: forcing a failure.
[  766.693187][ T1942] name failslab, interval 1, probability 0, space 0, times 0
[  766.731979][ T1942] CPU: 1 PID: 1942 Comm: syz-executor.5 Not tainted 5.7.0-syzkaller #0
[  766.740225][ T1942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  766.750270][ T1942] Call Trace:
[  766.753556][ T1942]  dump_stack+0x1e9/0x30e
[  766.757885][ T1942]  should_fail+0x433/0x5b0
[  766.758106][ T1943] FAULT_INJECTION: forcing a failure.
[  766.758106][ T1943] name failslab, interval 1, probability 0, space 0, times 0
[  766.762301][ T1942]  ? tty_write+0x308/0x940
[  766.762331][ T1942]  should_failslab+0x5/0x20
[  766.762342][ T1942]  __kmalloc+0x74/0x330
[  766.762355][ T1942]  ? mutex_trylock+0x1df/0x2a0
[  766.762365][ T1942]  ? tty_write+0x22c/0x940
[  766.762379][ T1942]  tty_write+0x308/0x940
[  766.762394][ T1942]  ? n_tty_read+0x1bc0/0x1bc0
[  766.762407][ T1942]  ? redirected_tty_write+0xb0/0xb0
[  766.762421][ T1942]  __vfs_write+0x9c/0x6e0
[  766.762441][ T1942]  ? __fget_files+0x4b9/0x4e0
[  766.762456][ T1942]  ? fsnotify_perm+0x64/0x390
[  766.824776][ T1942]  vfs_write+0x274/0x580
[  766.829015][ T1942]  ksys_write+0x11b/0x220
[  766.833339][ T1942]  do_syscall_64+0xf3/0x1b0
[  766.837835][ T1942]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  766.843716][ T1942] RIP: 0033:0x45ca59
[  766.847602][ T1942] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  766.867301][ T1942] RSP: 002b:00007f1147e14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  766.875697][ T1942] RAX: ffffffffffffffda RBX: 000000000050c5c0 RCX: 000000000045ca59
[  766.883655][ T1942] RDX: 00000000ffffffde RSI: 00000000200001c0 RDI: 0000000000000003
[  766.891629][ T1942] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  766.899585][ T1942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  766.907542][ T1942] R13: 0000000000000cc9 R14: 00000000004cf26b R15: 00007f1147e156d4
[  766.915525][ T1943] CPU: 0 PID: 1943 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  766.923752][ T1943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  766.933801][ T1943] Call Trace:
[  766.937086][ T1943]  dump_stack+0x1e9/0x30e
22:00:09 executing program 5 (fault-call:10 fault-nth:1):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  766.941421][ T1943]  should_fail+0x433/0x5b0
[  766.945837][ T1943]  ? sock_kmalloc+0x98/0x100
[  766.950417][ T1943]  should_failslab+0x5/0x20
[  766.954913][ T1943]  __kmalloc+0x74/0x330
[  766.959074][ T1943]  sock_kmalloc+0x98/0x100
[  766.963488][ T1943]  hash_recvmsg+0x1bd/0x810
[  766.967993][ T1943]  ? hash_sendmsg+0xb40/0xb40
[  766.972669][ T1943]  ____sys_recvmsg+0x24a/0x510
[  766.977443][ T1943]  ? import_iovec+0x12a/0x2c0
[  766.982149][ T1943]  do_recvmmsg+0x429/0x1500
[  766.986658][ T1943]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  766.992107][ T1943]  ? ksys_write+0x1b1/0x220
[  766.996582][ T1943]  ? ksys_write+0x1b1/0x220
[  767.001061][ T1943]  ? check_preemption_disabled+0xb0/0x240
[  767.006747][ T1943]  ? debug_smp_processor_id+0x5/0x20
[  767.012042][ T1943]  __x64_sys_recvmmsg+0x11d/0x1a0
[  767.017040][ T1943]  do_syscall_64+0xf3/0x1b0
[  767.021008][ T1950] FAULT_INJECTION: forcing a failure.
[  767.021008][ T1950] name failslab, interval 1, probability 0, space 0, times 0
[  767.021541][ T1943]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  767.021550][ T1943] RIP: 0033:0x45ca59
[  767.021560][ T1943] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  767.021566][ T1943] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  767.021575][ T1943] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  767.021581][ T1943] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
22:00:10 executing program 3 (fault-call:4 fault-nth:74):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:10 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000140)={r2, @in={{0x2, 0x0, @empty}}}, 0x90)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000540)={r2, 0x5}, 0x8)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000080)={<r3=>r2, @in={{0x2, 0x4e21, @empty}}, 0xffffffff, 0xfffffddb, 0x5, 0x7, 0x6}, &(0x7f0000000140)=0x98)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000140)={r4, @in={{0x2, 0x0, @empty}}}, 0x90)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000540)={r4, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000280)={r4, @in6={{0xa, 0x4e22, 0x401, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x2}}}, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000180)={r3, 0x3ff}, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r5, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet6_dccp_int(r5, 0x21, 0x5, &(0x7f0000000200), &(0x7f0000000240)=0x4)

22:00:10 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$VIDIOC_S_FBUF(r2, 0x4030560b, &(0x7f0000000180)={0x10, 0xb73dd93bbc66e1a1, &(0x7f0000000080)="2a5bd973649a96c20c09281abc875e434af54245b75772fc40e69f0ad35688da46903a03ea9361d097c0c04689968ebe19fbd2b00973d4dd2adfcc5bc88c635ece3a6110c0f41bb57b5779bcca3175bb2e044fdd44b29a90b26e19086e36fcf9267816c6c5b4efd65940d690fa9e9b5e8291921aefd30e97d927ea79510a2b7b68f63f6d306fddeb2f301e9c6e1fa9712d624f3445f1e7b076cc6041615db75b17534b7560fb4b6d41eef12e2cffda614dda9efbbc36158eebe06e3249c727f1e5f48afca46eb058252bc873c2ffdfcc4ebce6cc73648c95", {0x94, 0xfffff800, 0x494e4f4b, 0x0, 0x1, 0x5, 0x7, 0x4}})

[  767.021587][ T1943] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  767.021593][ T1943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  767.021599][ T1943] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  767.027700][ T1932] caif:caif_disconnect_client(): nothing to disconnect
[  767.034621][ T1950] CPU: 1 PID: 1950 Comm: syz-executor.5 Not tainted 5.7.0-syzkaller #0
[  767.034628][ T1950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  767.034631][ T1950] Call Trace:
[  767.034643][ T1950]  dump_stack+0x1e9/0x30e
[  767.034654][ T1950]  should_fail+0x433/0x5b0
[  767.034669][ T1950]  ? __tty_buffer_request_room+0x1f3/0x540
[  767.131978][ T1958] FAULT_INJECTION: forcing a failure.
[  767.131978][ T1958] name failslab, interval 1, probability 0, space 0, times 0
[  767.137302][ T1950]  should_failslab+0x5/0x20
[  767.137311][ T1950]  __kmalloc+0x74/0x330
[  767.137326][ T1950]  __tty_buffer_request_room+0x1f3/0x540
[  767.137339][ T1950]  tty_insert_flip_string_fixed_flag+0x91/0x2c0
[  767.137354][ T1950]  pty_write+0xda/0x180
[  767.192239][ T1950]  n_tty_write+0xcbf/0x1170
[  767.196736][ T1950]  ? wait_woken+0x240/0x240
[  767.201235][ T1950]  tty_write+0x593/0x940
[  767.205463][ T1950]  ? n_tty_read+0x1bc0/0x1bc0
[  767.210119][ T1950]  ? redirected_tty_write+0xb0/0xb0
[  767.215295][ T1950]  __vfs_write+0x9c/0x6e0
[  767.219605][ T1950]  ? __fget_files+0x4b9/0x4e0
[  767.224262][ T1950]  ? fsnotify_perm+0x64/0x390
[  767.228923][ T1950]  vfs_write+0x274/0x580
[  767.233144][ T1950]  ksys_write+0x11b/0x220
[  767.237456][ T1950]  do_syscall_64+0xf3/0x1b0
[  767.241939][ T1950]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  767.247809][ T1950] RIP: 0033:0x45ca59
[  767.251685][ T1950] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  767.271263][ T1950] RSP: 002b:00007f1147e14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  767.279671][ T1950] RAX: ffffffffffffffda RBX: 000000000050c5c0 RCX: 000000000045ca59
[  767.287621][ T1950] RDX: 00000000ffffffde RSI: 00000000200001c0 RDI: 0000000000000003
[  767.295591][ T1950] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  767.303540][ T1950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  767.311486][ T1950] R13: 0000000000000cc9 R14: 00000000004cf26b R15: 00007f1147e156d4
[  767.319454][ T1958] CPU: 0 PID: 1958 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  767.319456][    C1] 
[  767.319463][    C1] ======================================================
[  767.319466][    C1] WARNING: possible circular locking dependency detected
[  767.319468][    C1] 5.7.0-syzkaller #0 Not tainted
[  767.319471][    C1] ------------------------------------------------------
[  767.319473][    C1] syz-executor.5/1950 is trying to acquire lock:
[  767.319475][    C1] ffffffff892e6e60 (console_owner){-.-.}-{0:0}, at: console_trylock_spinning+0x121/0x380
[  767.319483][    C1] 
[  767.319485][    C1] but task is already holding lock:
[  767.319487][    C1] ffff88809896e158 (&port->lock#2){-.-.}-{2:2}, at: pty_write+0xb6/0x180
[  767.319496][    C1] 
[  767.319499][    C1] which lock already depends on the new lock.
[  767.319500][    C1] 
[  767.319501][    C1] 
[  767.319504][    C1] the existing dependency chain (in reverse order) is:
[  767.319505][    C1] 
[  767.319507][    C1] -> #2 (&port->lock#2){-.-.}-{2:2}:
[  767.319515][    C1]        lock_acquire+0x169/0x480
[  767.319518][    C1]        _raw_spin_lock_irqsave+0x9e/0xc0
[  767.319520][    C1]        tty_port_tty_get+0x21/0xe0
[  767.319522][    C1]        tty_port_default_wakeup+0x11/0x40
[  767.319525][    C1]        serial8250_tx_chars+0x5ea/0x800
[  767.319527][    C1]        serial8250_handle_irq+0x2fd/0x3e0
[  767.319530][    C1]        serial8250_default_handle_irq+0xac/0x190
[  767.319532][    C1]        serial8250_interrupt+0x93/0x180
[  767.319535][    C1]        __handle_irq_event_percpu+0x1b7/0x610
[  767.319537][    C1]        handle_irq_event+0xbd/0x280
[  767.319540][    C1]        handle_edge_irq+0x245/0xbf0
[  767.319542][    C1]        do_IRQ+0xf6/0x1d0
[  767.319544][    C1]        ret_from_intr+0x0/0x2b
[  767.319546][    C1]        native_safe_halt+0xe/0x10
[  767.319549][    C1]        acpi_safe_halt+0x87/0xe0
[  767.319551][    C1]        acpi_idle_enter+0x3f4/0xac0
[  767.319553][    C1]        cpuidle_enter_state+0x2d7/0x7b0
[  767.319556][    C1]        cpuidle_enter+0x59/0x90
[  767.319558][    C1]        do_idle+0x49c/0x650
[  767.319560][    C1]        cpu_startup_entry+0x15/0x20
[  767.319562][    C1]        start_secondary+0x213/0x240
[  767.319565][    C1]        secondary_startup_64+0xa4/0xb0
[  767.319566][    C1] 
[  767.319567][    C1] -> #1 (&port->lock){-.-.}-{2:2}:
[  767.319575][    C1]        lock_acquire+0x169/0x480
[  767.319577][    C1]        _raw_spin_lock_irqsave+0x9e/0xc0
[  767.319580][    C1]        serial8250_console_write+0x13e/0xd50
[  767.319582][    C1]        console_unlock+0x90c/0xec0
[  767.319584][    C1]        vprintk_emit+0x1f8/0x3c0
[  767.319586][    C1]        printk+0x62/0x83
[  767.319589][    C1]        register_console+0x7ca/0xad0
[  767.319591][    C1]        univ8250_console_init+0x41/0x43
[  767.319593][    C1]        console_init+0x52/0x97
[  767.319596][    C1]        start_kernel+0x426/0x777
[  767.319598][    C1]        secondary_startup_64+0xa4/0xb0
[  767.319599][    C1] 
[  767.319601][    C1] -> #0 (console_owner){-.-.}-{0:0}:
[  767.319609][    C1]        validate_chain+0x1b09/0x8920
[  767.319611][    C1]        __lock_acquire+0x116c/0x2c30
[  767.319614][    C1]        lock_acquire+0x169/0x480
[  767.319616][    C1]        console_trylock_spinning+0x141/0x380
[  767.319619][    C1]        vprintk_emit+0x1db/0x3c0
[  767.319621][    C1]        printk+0x62/0x83
[  767.319623][    C1]        should_fail+0x414/0x5b0
[  767.319625][    C1]        should_failslab+0x5/0x20
[  767.319627][    C1]        __kmalloc+0x74/0x330
[  767.319630][    C1]        __tty_buffer_request_room+0x1f3/0x540
[  767.319633][    C1]        tty_insert_flip_string_fixed_flag+0x91/0x2c0
[  767.319635][    C1]        pty_write+0xda/0x180
[  767.319637][    C1]        n_tty_write+0xcbf/0x1170
[  767.319639][    C1]        tty_write+0x593/0x940
[  767.319641][    C1]        __vfs_write+0x9c/0x6e0
[  767.319643][    C1]        vfs_write+0x274/0x580
[  767.319646][    C1]        ksys_write+0x11b/0x220
[  767.319648][    C1]        do_syscall_64+0xf3/0x1b0
[  767.319651][    C1]        entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  767.319652][    C1] 
[  767.319655][    C1] other info that might help us debug this:
[  767.319656][    C1] 
[  767.319658][    C1] Chain exists of:
[  767.319659][    C1]   console_owner --> &port->lock --> &port->lock#2
[  767.319669][    C1] 
[  767.319672][    C1]  Possible unsafe locking scenario:
[  767.319673][    C1] 
[  767.319675][    C1]        CPU0                    CPU1
[  767.319678][    C1]        ----                    ----
22:00:10 executing program 4:
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvme-fabrics\x00', 0xd2400, 0x0)
ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000300))
syz_open_dev$sg(&(0x7f0000001640)='/dev/sg#\x00', 0x180004, 0x0)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x0, 0x7)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000001600)={0x8, &(0x7f00000015c0)=[{0x9777, 0x80, 0x3, 0x9}, {0xded, 0x31, 0x0, 0x4}, {0x9, 0x0, 0x7, 0x4}, {0x7f, 0x0, 0x81}, {0x1, 0x8, 0x0, 0x3}, {0x20, 0x2, 0xb7, 0x1}, {0x6, 0x1, 0x5, 0x40}, {0xfff, 0x1, 0x9, 0xa18}]}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f0000002680)=[{&(0x7f00000026c0)=""/13, 0xd}, {&(0x7f0000001680)=""/4096, 0x1000}], 0x2, 0x1)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x6)
ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000001580)=0x6)
r4 = syz_open_dev$video(0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r6, &(0x7f00000017c0), 0x0, 0x800003600)
connect$pppoe(r6, &(0x7f0000001540)={0x18, 0x0, {0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'veth1\x00'}}, 0x1e)
preadv(r5, &(0x7f0000001500)=[{&(0x7f0000000380)=""/126, 0x7e}, {&(0x7f0000000400)=""/85, 0x55}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/103, 0x67}], 0x4, 0x3ff)
ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f0000000080)={0x81, "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"})
splice(r4, 0x0, r1, 0x0, 0x1000000008, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(0xffffffffffffffff, 0x81244d09, &(0x7f0000000040))

[  767.319679][    C1]   lock(&port->lock#2);
[  767.319686][    C1]                                lock(&port->lock);
[  767.319691][    C1]                                lock(&port->lock#2);
[  767.319697][    C1]   lock(console_owner);
[  767.319701][    C1] 
[  767.319703][    C1]  *** DEADLOCK ***
[  767.319704][    C1] 
[  767.319707][    C1] 5 locks held by syz-executor.5/1950:
[  767.319708][    C1]  #0: ffff8880a7897098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
22:00:10 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$video(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080)='NLBL_CIPSOv4\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000180)={&(0x7f0000fff000/0x1000)=nil, 0x5, 0x0, 0x8, &(0x7f0000fff000/0x1000)=nil, 0x4})
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r4, 0x80045500, &(0x7f0000000140))
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x80000000, 0x9, 0x8, 0x7f, 0x9, 0x7, 0x7, 0x4, 0x3f, 0x0, 0x3f, 0x43, 0x7ff}, {0x6, 0x8, 0x9, 0x40, 0xff, 0x0, 0x6, 0x40, 0x20, 0x62, 0x80, 0x8, 0x3}, {0x3, 0x200, 0xd1, 0x2b, 0x5, 0x21, 0x8, 0x92, 0x3, 0x40, 0xea, 0x1, 0x80000001}], 0x1})
splice(r2, 0x0, r1, 0x0, 0x1000000008, 0x0)

[  767.319717][    C1]  #1: ffff8880a7897130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: tty_write+0x22c/0x940
[  767.319726][    C1]  #2: ffff8880a78972e8 (&o_tty->termios_rwsem/1){++++}-{3:3}, at: n_tty_write+0xf15/0x1170
[  767.319737][    C1]  #3: ffffc90016aab378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0x613/0x1170
[  767.319746][    C1]  #4: ffff88809896e158 (&port->lock#2){-.-.}-{2:2}, at: pty_write+0xb6/0x180
[  767.319756][    C1] 
[  767.319758][    C1] stack backtrace:
[  767.319761][    C1] CPU: 1 PID: 1950 Comm: syz-executor.5 Not tainted 5.7.0-syzkaller #0
22:00:10 executing program 5 (fault-call:10 fault-nth:2):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:10 executing program 3 (fault-call:4 fault-nth:75):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:10 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_open_dev$video(0x0, 0x0, 0x0)
r2 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r2, 0x0, r1, 0x0, 0x10000000001f, 0x6)

[  767.319765][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  767.319766][    C1] Call Trace:
[  767.319768][    C1]  dump_stack+0x1e9/0x30e
[  767.319770][    C1]  print_circular_bug+0xc72/0xea0
[  767.319773][    C1]  ? stack_trace_save+0xad/0x150
[  767.319775][    C1]  ? save_trace+0x49/0xb60
[  767.319777][    C1]  check_noncircular+0x1fb/0x3a0
[  767.319779][    C1]  validate_chain+0x1b09/0x8920
[  767.319781][    C1]  ? mark_lock+0x102/0x1b00
[  767.319788][    C1]  ? __lock_acquire+0x116c/0x2c30
[  767.319790][    C1]  __lock_acquire+0x116c/0x2c30
[  767.319792][    C1]  lock_acquire+0x169/0x480
[  767.319794][    C1]  ? console_trylock_spinning+0x121/0x380
[  767.319797][    C1]  console_trylock_spinning+0x141/0x380
[  767.319799][    C1]  ? console_trylock_spinning+0x121/0x380
[  767.319801][    C1]  vprintk_emit+0x1db/0x3c0
[  767.319803][    C1]  printk+0x62/0x83
[  767.319805][    C1]  should_fail+0x414/0x5b0
[  767.319807][    C1]  ? __tty_buffer_request_room+0x1f3/0x540
[  767.319809][    C1]  should_failslab+0x5/0x20
[  767.319811][    C1]  __kmalloc+0x74/0x330
[  767.319814][    C1]  __tty_buffer_request_room+0x1f3/0x540
[  767.319816][    C1]  tty_insert_flip_string_fixed_flag+0x91/0x2c0
[  767.319818][    C1]  pty_write+0xda/0x180
[  767.319820][    C1]  n_tty_write+0xcbf/0x1170
[  767.319822][    C1]  ? wait_woken+0x240/0x240
[  767.319824][    C1]  tty_write+0x593/0x940
[  767.319826][    C1]  ? n_tty_read+0x1bc0/0x1bc0
[  767.319828][    C1]  ? redirected_tty_write+0xb0/0xb0
[  767.319830][    C1]  __vfs_write+0x9c/0x6e0
[  767.319833][    C1]  ? __fget_files+0x4b9/0x4e0
[  767.319835][    C1]  ? fsnotify_perm+0x64/0x390
[  767.319836][    C1]  vfs_write+0x274/0x580
[  767.319839][    C1]  ksys_write+0x11b/0x220
[  767.319841][    C1]  do_syscall_64+0xf3/0x1b0
[  767.319843][    C1]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  767.319845][    C1] RIP: 0033:0x45ca59
[  767.319852][    C1] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  767.319854][    C1] RSP: 002b:00007f1147e14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  767.319860][    C1] RAX: ffffffffffffffda RBX: 000000000050c5c0 RCX: 000000000045ca59
[  767.319863][    C1] RDX: 00000000ffffffde RSI: 00000000200001c0 RDI: 0000000000000003
[  767.319866][    C1] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  767.319869][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  767.319872][    C1] R13: 0000000000000cc9 R14: 00000000004cf26b R15: 00007f1147e156d4
[  767.324457][ T2506] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[  767.327681][ T1958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  767.330048][ T2494] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  767.336974][ T1958] Call Trace:
[  767.579697][ T2494] usb 3-1: Using ep0 maxpacket: 16
[  767.582002][ T1958]  dump_stack+0x1e9/0x30e
[  767.582019][ T1958]  should_fail+0x433/0x5b0
[  767.587407][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  767.591852][ T1958]  ? sock_kmalloc+0x98/0x100
[  767.591862][ T1958]  should_failslab+0x5/0x20
[  767.591871][ T1958]  __kmalloc+0x74/0x330
[  767.591879][ T1958]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  767.591888][ T1958]  ? __local_bh_enable_ip+0x133/0x230
[  767.591898][ T1958]  sock_kmalloc+0x98/0x100
[  767.591911][ T1958]  hash_recvmsg+0x1bd/0x810
[  767.699922][ T2494] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  767.703457][ T1958]  ? hash_sendmsg+0xb40/0xb40
[  767.703472][ T1958]  ____sys_recvmsg+0x24a/0x510
[  767.705820][ T2494] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  767.711641][ T1958]  ? import_iovec+0x12a/0x2c0
[  767.711653][ T1958]  do_recvmmsg+0x429/0x1500
[  767.711663][ T1958]  ? rcu_lock_release+0x5/0x20
[  767.711683][ T1958]  ? retint_kernel+0x2b/0x2b
[  767.711696][ T1958]  ? check_preemption_disabled+0xb0/0x240
[  767.717436][ T2494] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  767.717686][ T1958]  ? debug_smp_processor_id+0x5/0x20
[  767.725347][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  767.726547][ T1958]  __x64_sys_recvmmsg+0x11d/0x1a0
[  767.726557][ T1958]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  767.726573][ T1958]  ? do_syscall_64+0x19/0x1b0
[  767.732038][ T2494] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.734126][ T1958]  do_syscall_64+0xf3/0x1b0
[  767.734150][ T1958]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  767.739526][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  767.744825][ T1958] RIP: 0033:0x45ca59
[  767.744835][ T1958] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  767.744840][ T1958] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  767.744849][ T1958] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  767.744855][ T1958] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  767.744861][ T1958] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  767.744866][ T1958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  767.744871][ T1958] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  767.914085][ T1969] caif:caif_disconnect_client(): nothing to disconnect
[  767.923544][ T2494] usb 3-1: config 0 descriptor??
[  767.955472][ T1975] FAULT_INJECTION: forcing a failure.
[  767.955472][ T1975] name failslab, interval 1, probability 0, space 0, times 0
[  767.976481][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  767.979043][ T1975] CPU: 0 PID: 1975 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  767.989973][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.991691][ T1975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  768.003078][ T2506] usb 2-1: config 0 descriptor??
[  768.005206][ T1975] Call Trace:
[  768.443359][ T1975]  dump_stack+0x1e9/0x30e
[  768.447657][ T1975]  should_fail+0x433/0x5b0
[  768.452048][ T1975]  ? sock_kmalloc+0x98/0x100
[  768.456609][ T1975]  should_failslab+0x5/0x20
[  768.461081][ T1975]  __kmalloc+0x74/0x330
[  768.465207][ T1975]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  768.470813][ T1975]  ? __local_bh_enable_ip+0x133/0x230
[  768.476167][ T1975]  sock_kmalloc+0x98/0x100
[  768.480556][ T1975]  hash_recvmsg+0x1bd/0x810
[  768.485064][ T1975]  ? hash_sendmsg+0xb40/0xb40
[  768.489718][ T1975]  ____sys_recvmsg+0x24a/0x510
[  768.494515][ T1975]  ? import_iovec+0x12a/0x2c0
[  768.499162][ T1975]  do_recvmmsg+0x429/0x1500
[  768.503635][ T1975]  ? rcu_lock_release+0x5/0x20
[  768.508368][ T1975]  ? trace_lock_release+0x137/0x1a0
[  768.513550][ T1975]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  768.519030][ T1975]  ? check_preemption_disabled+0xa2/0x240
[  768.524718][ T1975]  ? retint_kernel+0x2b/0x2b
[  768.529273][ T1975]  __x64_sys_recvmmsg+0x11d/0x1a0
[  768.534267][ T1975]  do_syscall_64+0xf3/0x1b0
[  768.538736][ T1975]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  768.544600][ T1975] RIP: 0033:0x45ca59
[  768.548462][ T1975] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  768.568166][ T1975] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  768.576543][ T1975] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  768.584484][ T1975] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  768.592438][ T1975] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
22:00:11 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00')
sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, r1, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x44000)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pidfd_send_signal(r2, 0x39, &(0x7f0000000080)={0x1c, 0xfffffffd, 0x101}, 0x0)
r4 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r4, 0x0, r3, 0x0, 0x1000000008, 0x0)

[  768.600379][ T1975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  768.608330][ T1975] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  768.627240][ T1974] FAULT_INJECTION: forcing a failure.
[  768.627240][ T1974] name failslab, interval 1, probability 0, space 0, times 0
[  768.639824][ T1974] CPU: 0 PID: 1974 Comm: syz-executor.5 Not tainted 5.7.0-syzkaller #0
[  768.648040][ T1974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  768.658095][ T1974] Call Trace:
[  768.661378][ T1974]  dump_stack+0x1e9/0x30e
[  768.665699][ T1974]  should_fail+0x433/0x5b0
[  768.670106][ T1974]  ? __tty_buffer_request_room+0x1f3/0x540
[  768.675914][ T1974]  should_failslab+0x5/0x20
[  768.680403][ T1974]  __kmalloc+0x74/0x330
[  768.684547][ T1974]  __tty_buffer_request_room+0x1f3/0x540
[  768.690178][ T1974]  tty_insert_flip_string_fixed_flag+0x91/0x2c0
[  768.691787][ T2494] usbhid 3-1:0.0: can't add hid device: -71
[  768.696400][ T1974]  pty_write+0xda/0x180
[  768.706598][ T1974]  n_tty_write+0xcbf/0x1170
[  768.711102][ T1974]  ? wait_woken+0x240/0x240
[  768.712822][ T2494] usbhid: probe of 3-1:0.0 failed with error -71
[  768.715593][ T1974]  tty_write+0x593/0x940
[  768.715605][ T1974]  ? n_tty_read+0x1bc0/0x1bc0
[  768.730783][ T1974]  ? redirected_tty_write+0xb0/0xb0
[  768.735969][ T1974]  __vfs_write+0x9c/0x6e0
[  768.737839][ T2494] usb 3-1: USB disconnect, device number 59
[  768.740281][ T1974]  ? trace_lock_release+0x137/0x1a0
[  768.740295][ T1974]  ? __fget_files+0x4b9/0x4e0
[  768.740304][ T1974]  ? fsnotify_perm+0x64/0x390
[  768.740315][ T1974]  vfs_write+0x274/0x580
[  768.740326][ T1974]  ksys_write+0x11b/0x220
[  768.740344][ T1974]  do_syscall_64+0xf3/0x1b0
[  768.751723][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  768.756126][ T1974]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  768.765140][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  768.769279][ T1974] RIP: 0033:0x45ca59
[  768.786442][ T2506] usb 2-1: USB disconnect, device number 59
[  768.791958][ T1974] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  768.791964][ T1974] RSP: 002b:00007f1147e14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  768.791973][ T1974] RAX: ffffffffffffffda RBX: 000000000050c5c0 RCX: 000000000045ca59
[  768.791979][ T1974] RDX: 00000000ffffffde RSI: 00000000200001c0 RDI: 0000000000000003
[  768.791984][ T1974] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  768.791989][ T1974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  768.791994][ T1974] R13: 0000000000000cc9 R14: 00000000004cf26b R15: 00007f1147e156d4
22:00:12 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:12 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000140)={0x5, 0x6, 0x6, "5cbdd4ac9b664bb9881f689d34092e68e20e8f19ad68da9b1ea9c65578d6ea31", 0x47504a50})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="6fd80000", @ANYRES16=r6, @ANYBLOB="070000000000000000000203000008000300", @ANYRES32=r5, @ANYBLOB="0a00090000000000000000008f00a9994fcc054e"], 0x30}}, 0x45)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r7, &(0x7f00000017c0), 0x3a8, 0x3600)
getsockopt$inet6_mreq(r7, 0x29, 0x14, &(0x7f0000000580)={@remote, <r8=>0x0}, &(0x7f00000005c0)=0x14)
sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x2c, r6, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x800)
getsockname$tipc(r0, &(0x7f0000000080), &(0x7f00000000c0)=0x10)
syz_open_dev$video(0x0, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r9, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000100)={<r10=>r1})
splice(r9, 0x0, r10, 0x0, 0x1000000007, 0x0)

22:00:12 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:12 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r2, 0x0, r1, 0x0, 0x10000000001f, 0x6)

22:00:12 executing program 3 (fault-call:4 fault-nth:76):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:12 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  769.303453][ T2003] caif:caif_disconnect_client(): nothing to disconnect
[  769.308538][ T2012] FAULT_INJECTION: forcing a failure.
[  769.308538][ T2012] name failslab, interval 1, probability 0, space 0, times 0
[  769.326551][ T2012] CPU: 1 PID: 2012 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  769.334784][ T2012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  769.344815][ T2012] Call Trace:
[  769.348098][ T2012]  dump_stack+0x1e9/0x30e
[  769.352420][ T2012]  should_fail+0x433/0x5b0
[  769.356834][ T2012]  ? sock_kmalloc+0x98/0x100
[  769.361402][ T2012]  should_failslab+0x5/0x20
[  769.365893][ T2012]  __kmalloc+0x74/0x330
[  769.370039][ T2012]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  769.375665][ T2012]  ? __local_bh_enable_ip+0x133/0x230
[  769.381032][ T2012]  sock_kmalloc+0x98/0x100
[  769.385443][ T2012]  hash_recvmsg+0x1bd/0x810
[  769.389978][ T2012]  ? check_preemption_disabled+0xa2/0x240
[  769.395685][ T2012]  ? hash_sendmsg+0xb40/0xb40
22:00:12 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x8}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  769.400350][ T2012]  ____sys_recvmsg+0x24a/0x510
[  769.405098][ T2012]  ? __sanitizer_cov_trace_const_cmp2+0xa0/0xa0
[  769.411320][ T2012]  ? import_iovec+0x12a/0x2c0
[  769.415978][ T2012]  do_recvmmsg+0x429/0x1500
[  769.420457][ T2012]  ? rcu_lock_release+0x5/0x20
[  769.425196][ T2012]  ? trace_lock_release+0x137/0x1a0
[  769.430365][ T2012]  ? __this_cpu_preempt_check+0x9/0x20
[  769.435795][ T2012]  ? ksys_write+0x1b1/0x220
[  769.440268][ T2012]  ? ksys_write+0x1b1/0x220
[  769.444757][ T2012]  ? check_preemption_disabled+0xb0/0x240
22:00:12 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x9}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  769.450458][ T2012]  ? debug_smp_processor_id+0x5/0x20
[  769.455720][ T2012]  __x64_sys_recvmmsg+0x11d/0x1a0
[  769.460744][ T2012]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  769.466370][ T2012]  ? do_syscall_64+0x19/0x1b0
[  769.471047][ T2012]  do_syscall_64+0xf3/0x1b0
[  769.475548][ T2012]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  769.481422][ T2012] RIP: 0033:0x45ca59
[  769.485288][ T2012] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  769.504865][ T2012] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  769.513245][ T2012] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  769.521231][ T2012] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  769.529297][ T2012] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  769.537240][ T2012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  769.545181][ T2012] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
22:00:12 executing program 3 (fault-call:4 fault-nth:77):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:12 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x10000000001f, 0x6)

22:00:12 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
syz_open_dev$video(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="030b000000000000000012"], 0x14}}, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)={0xc8, r1, 0x300, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x57f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8b7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x100}]}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4080}, 0x11)
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000017c0), 0x3a8, 0x3600)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
listen(r4, 0x0)
r5 = socket$unix(0x1, 0x801, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r6=>0xffffffffffffffff})
r7 = dup(r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
connect$unix(r5, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e)

[  769.622915][ T2029] caif:caif_disconnect_client(): nothing to disconnect
[  769.627763][ T2032] FAULT_INJECTION: forcing a failure.
[  769.627763][ T2032] name failslab, interval 1, probability 0, space 0, times 0
[  769.644008][ T2032] CPU: 1 PID: 2032 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  769.652239][ T2032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  769.662280][ T2032] Call Trace:
[  769.665554][ T2032]  dump_stack+0x1e9/0x30e
22:00:12 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x280103, 0x145)
ioctl$TCSETXW(r1, 0x5435, &(0x7f0000000100)={0x2, 0x767, [0x7, 0x0, 0x3, 0x8, 0x4], 0x7fff})
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f00000000c0))
syz_usb_connect$cdc_ncm(0x0, 0x70, &(0x7f00000003c0)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5e, 0x2, 0x1, 0x9, 0x10, 0x4, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "6b17"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x7ff, 0x0, 0x0, 0x3}, {0x6, 0x24, 0x1a, 0x8000, 0x18}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x1, 0x4, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x1, 0x6, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x3f, 0x6}}}}}}}]}}, &(0x7f00000006c0)={0xa, &(0x7f0000000440)={0xa, 0x6, 0x201, 0x81, 0x1f, 0xc1, 0x20, 0xff}, 0x5, &(0x7f0000000480)={0x5, 0xf, 0x5}, 0x3, [{0xd3, &(0x7f00000004c0)=@string={0xd3, 0x3, "a8b58aa85c2afc2f202678299e4e8fd318160994aee55bb28f15cde19a615e9b4d1c3f4f0cd2184afd8cc888bbfafcb6deebb069039bd419f0f99415f28584c3faee4708aef00c24f52ddd21be37bc04cd350a09c5693c1d1c8f2f403ae0375a4b81bcbb38892b6541c40c66a48731cbecb4827ec1a737e47456bb1bc566ca6099af83aae7f33700d514acb7d1e56ee28321b9f209881197401feaa3f9c64f808e35490657de6c82a6b96e9ec3fedb26d5638ed819aa2d73cbeec42f5dd59e769270301421267122b12ee2d74e48723f71"}}, {0xa9, &(0x7f00000005c0)=@string={0xa9, 0x3, "e3ecfe8455757e598b81ed9d1c8c165623d2a96ba8c1c72b4e89b625f74831c4e7ab7d40f359c008e6a8c19dfcc460db0cf85669d09ca4d588305844215b483bc4ff4dab234a35bbf1370f2da44b6c8702634c1c2aee78d211e67ed8cbda814859e29ecaf8eec16c0046a631c69193ab0270f9e63e2302135160c03675d7215cde32bc5aa4670bdb3d4581c8c223fc65a50a190e2b33fca87c27d8800ea1d72cd6291aa2a4dd95"}}, {0x3b, &(0x7f0000000680)=@string={0x3b, 0x3, "65bf141aa4c43e1f0d9e948ce87bf789438a9d57afc9a033e408295cbaf64e7c558fcbf2d0c88d5ac34754dd8fce2fd1ed6024204bbc07e752"}}]})
r3 = syz_open_dev$video(0x0, 0x4, 0x0)
splice(r3, 0x0, r1, 0x0, 0x1000000008, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r4, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$DRM_IOCTL_SET_VERSION(r4, 0xc0106407, &(0x7f0000000700)={0x40, 0x100, 0x9})
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000002c0)={0x4, @win={{0x195, 0x6, 0x90f5, 0x100}, 0x5, 0x3a, &(0x7f00000001c0)={{0x101, 0x5, 0x8, 0x8}, &(0x7f0000000180)={{0x1, 0x100, 0x0, 0x5}, &(0x7f0000000140)={{0x7, 0x0, 0x40, 0x9}}}}, 0x5, &(0x7f0000000200)="469e200ec9f4d9d819b28bcb5ef0e9f7212659de9d97f0fd320533188ab56b31dfe9fe7d9b6bd1a0df9a031d8bfdd20b1ca3a83c158e42d7d81d08998c14209637af88e28aae9a323c87ca54cc6b2639b0064af052dbe02aa7669bdff6448fec21ccdbfd3b869018aded2598647689ea1c06887dfb8c19f2a03bcdfbf19b03bb6d9cef7e358de41cf34dfdb561dfd12ffe2e47ba0cb13c9658fc8c5aaab6e378c782b197ef9307f2", 0x20}})

[  769.669861][ T2032]  should_fail+0x433/0x5b0
[  769.674273][ T2032]  ? sock_kmalloc+0x98/0x100
[  769.678852][ T2032]  should_failslab+0x5/0x20
[  769.683338][ T2032]  __kmalloc+0x74/0x330
[  769.687480][ T2032]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  769.693141][ T2032]  ? __local_bh_enable_ip+0x133/0x230
[  769.698531][ T2032]  sock_kmalloc+0x98/0x100
[  769.702953][ T2032]  hash_recvmsg+0x1bd/0x810
[  769.707447][ T2032]  ? hash_sendmsg+0xb40/0xb40
[  769.712135][ T2032]  ____sys_recvmsg+0x24a/0x510
[  769.716915][ T2032]  ? import_iovec+0x12a/0x2c0
[  769.721599][ T2032]  do_recvmmsg+0x429/0x1500
[  769.726114][ T2032]  ? rcu_lock_release+0x5/0x20
[  769.730856][ T2032]  ? retint_kernel+0x2b/0x2b
[  769.735461][ T2032]  ? check_preemption_disabled+0xb0/0x240
[  769.741149][ T2032]  ? debug_smp_processor_id+0x5/0x20
[  769.746409][ T2032]  __x64_sys_recvmmsg+0x11d/0x1a0
[  769.751436][ T2032]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  769.757037][ T2032]  ? do_syscall_64+0x19/0x1b0
[  769.761684][ T2032]  do_syscall_64+0xf3/0x1b0
[  769.766245][ T2032]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  769.772103][ T2032] RIP: 0033:0x45ca59
[  769.775967][ T2032] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  769.795540][ T2032] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  769.803917][ T2032] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  769.811857][ T2032] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  769.819962][ T2032] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  769.827921][ T2032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  769.835863][ T2032] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  769.851847][ T2506] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[  769.919672][T29588] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[  769.999535][ T8150] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  770.089516][ T2506] usb 2-1: Using ep0 maxpacket: 16
[  770.159527][T29588] usb 3-1: Using ep0 maxpacket: 16
[  770.209707][ T2506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  770.220631][ T2506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  770.233773][ T2506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  770.242856][ T2506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  770.251715][ T2506] usb 2-1: config 0 descriptor??
[  770.262130][ T8150] usb 5-1: Using ep0 maxpacket: 16
[  770.301337][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  770.312575][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  770.327589][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  770.336657][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  770.346895][T29588] usb 3-1: config 0 descriptor??
[  770.409665][ T8150] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  770.420457][ T8150] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  770.630392][ T8150] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  770.639641][ T8150] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  770.647629][ T8150] usb 5-1: Product: 뽥ᨔ쒤Ἶ鸍貔篨觷詃垝즯㎠ࣤ尩籎轕죐媍䟃캏턯惭․뱋
[  770.659669][ T8150] usb 5-1: Manufacturer: 蓾畕奾膋鷭谜嘖툣殩솨⯇襎▶䣷쐱ꯧ䁽姳ࣀ꣦鷁쓼楖鳐햤よ䑘嬡㭈ￄꭍ䨣묵㟱ⴏ䮤蝬挂᱌퉸䢁쪞況䘀ㆦ釆ꮓ瀂⌾ጂ恑㛀흵尡㋞媼枤䔽좁⏂旼થน㌫꣼❼胘ꄎⳗ⧖ꈚ
[  770.684911][ T8150] usb 5-1: SerialNumber: syz
[  770.969524][ T2506] usbhid 2-1:0.0: can't add hid device: -71
[  770.975511][ T2506] usbhid: probe of 2-1:0.0 failed with error -71
[  770.983311][ T2506] usb 2-1: USB disconnect, device number 60
[  771.009693][ T8150] cdc_ncm 5-1:1.0: bind() failure
[  771.071646][ T8150] cdc_ncm 5-1:1.1: bind() failure
[  771.099509][T29588] usbhid 3-1:0.0: can't add hid device: -71
[  771.099589][T29588] usbhid: probe of 3-1:0.0 failed with error -71
[  771.100946][T29588] usb 3-1: USB disconnect, device number 60
[  771.150907][ T8150] usb 5-1: USB disconnect, device number 4
22:00:14 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:14 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0xa}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:14 executing program 3 (fault-call:4 fault-nth:78):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:14 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x10000000001f, 0x6)

22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x24)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/ip_mr_vif\x00')
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000000c0)=0x49d4, 0x4)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r2, 0x0, 0x1000000008, 0x0)

[  771.454536][ T2069] caif:caif_disconnect_client(): nothing to disconnect
[  771.465513][ T2074] FAULT_INJECTION: forcing a failure.
[  771.465513][ T2074] name failslab, interval 1, probability 0, space 0, times 0
[  771.486542][ T2074] CPU: 0 PID: 2074 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  771.494789][ T2074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
22:00:14 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
semget$private(0x0, 0x2, 0x580)

[  771.504827][ T2074] Call Trace:
[  771.508109][ T2074]  dump_stack+0x1e9/0x30e
[  771.512434][ T2074]  should_fail+0x433/0x5b0
[  771.516847][ T2074]  ? sock_kmalloc+0x98/0x100
[  771.521427][ T2074]  should_failslab+0x5/0x20
[  771.525921][ T2074]  __kmalloc+0x74/0x330
[  771.530061][ T2074]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  771.535670][ T2074]  ? __local_bh_enable_ip+0x133/0x230
[  771.541033][ T2074]  sock_kmalloc+0x98/0x100
[  771.545442][ T2074]  hash_recvmsg+0x1bd/0x810
22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@cgroup=r1, r2, 0x1}, 0x10)
r3 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r3, 0x0, r0, 0x0, 0x1000000008, 0x0)

[  771.549939][ T2074]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  771.555568][ T2074]  ? hash_sendmsg+0xb40/0xb40
[  771.560233][ T2074]  ____sys_recvmsg+0x24a/0x510
[  771.564990][ T2074]  ? check_preemption_disabled+0xa2/0x240
[  771.570697][ T2074]  ? retint_kernel+0x2b/0x2b
[  771.575291][ T2074]  ? import_iovec+0x12a/0x2c0
[  771.579959][ T2074]  do_recvmmsg+0x429/0x1500
[  771.584469][ T2074]  ? rcu_lock_release+0x5/0x20
[  771.589237][ T2074]  ? trace_lock_release+0x137/0x1a0
[  771.594425][ T2074]  ? __this_cpu_preempt_check+0x9/0x20
[  771.599873][ T2074]  ? ksys_write+0x1b1/0x220
22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$video(0x0, 0x0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000080)={[{0x2b, 'pids'}, {0x6, 'memory'}]}, 0xe)
splice(r1, 0x0, r0, 0x0, 0x1000000008, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f00000000c0)={0x54, 0x7ff, 0x5b3, {0x1000, 0x8}, {0xffff, 0x9}, @ramp={0x9, 0x59a5, {0x9, 0x1, 0x2, 0x9}}})

[  771.604374][ T2074]  ? ksys_write+0x1b1/0x220
[  771.608868][ T2074]  ? check_preemption_disabled+0xb0/0x240
[  771.614576][ T2074]  ? debug_smp_processor_id+0x5/0x20
[  771.619850][ T2074]  __x64_sys_recvmmsg+0x11d/0x1a0
[  771.624866][ T2074]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  771.630480][ T2074]  ? do_syscall_64+0x19/0x1b0
[  771.635143][ T2074]  do_syscall_64+0xf3/0x1b0
[  771.639657][ T2074]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  771.645540][ T2074] RIP: 0033:0x45ca59
22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040))
syz_open_dev$video(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r1, &(0x7f00000017c0), 0x3a8, 0x3600)
splice(r0, 0x0, r1, 0x0, 0x9, 0x0)

22:00:14 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
write$cgroup_type(r0, &(0x7f0000000080)='threaded\x00', 0x9)
pipe(&(0x7f0000000040))
syz_open_dev$video(0x0, 0x0, 0x0)

[  771.649421][ T2074] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  771.669007][ T2074] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  771.677408][ T2074] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  771.685449][ T2074] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  771.693417][ T2074] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
22:00:14 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f00000017c0), 0x3a8, 0x3600)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0406618, &(0x7f0000000080)={{0x1, 0x0, @reserved="811539e3d98fb0d83cb759b881efff9c10944faef875d77516ffe8649830e5ff"}})
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_mr_cache\x00')
preadv(r2, &(0x7f00000017c0), 0x3a8, 0x3600)
r3 = inotify_add_watch(r2, &(0x7f0000000100)='./file0\x00', 0x402)
inotify_rm_watch(r0, r3)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = dup3(r4, r1, 0x80000)
openat$cgroup_ro(r5, &(0x7f0000000140)='cpuset.effective_mems\x00', 0x0, 0x0)
r6 = syz_open_dev$video(0x0, 0x0, 0x0)
splice(r6, 0x0, r4, 0x0, 0x1000000008, 0x0)

[  771.701376][ T2074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  771.709337][ T2074] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  771.829472][ T3370] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[  771.889408][ T8150] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[  772.069430][ T3370] usb 3-1: Using ep0 maxpacket: 16
[  772.149430][ T8150] usb 2-1: Using ep0 maxpacket: 16
[  772.189469][ T3370] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  772.200429][ T3370] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  772.214042][ T3370] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  772.223498][ T3370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  772.234533][ T3370] usb 3-1: config 0 descriptor??
[  772.289597][ T8150] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  772.300501][ T8150] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  772.313617][ T8150] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  772.322932][ T8150] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  772.331992][ T8150] usb 2-1: config 0 descriptor??
[  772.949462][ T3370] usbhid 3-1:0.0: can't add hid device: -71
[  772.955422][ T3370] usbhid: probe of 3-1:0.0 failed with error -71
[  772.965257][ T3370] usb 3-1: USB disconnect, device number 61
[  773.059503][ T8150] usbhid 2-1:0.0: can't add hid device: -71
[  773.065484][ T8150] usbhid: probe of 2-1:0.0 failed with error -71
[  773.075469][ T8150] usb 2-1: USB disconnect, device number 61
22:00:16 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:16 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket(0x5, 0xa, 0x7)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000100)={0x9, 0x5, 0x0, @broadcast, 'erspan0\x00'})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x10000000001f, 0x6)

22:00:16 executing program 3 (fault-call:4 fault-nth:79):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:16 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:16 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0xd}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:16 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  773.543214][ T2140] FAULT_INJECTION: forcing a failure.
[  773.543214][ T2140] name failslab, interval 1, probability 0, space 0, times 0
[  773.561716][ T2134] caif:caif_disconnect_client(): nothing to disconnect
[  773.578346][ T2140] CPU: 1 PID: 2140 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  773.586581][ T2140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  773.596616][ T2140] Call Trace:
[  773.599879][ T2140]  dump_stack+0x1e9/0x30e
[  773.604188][ T2140]  should_fail+0x433/0x5b0
[  773.608611][ T2140]  ? sock_kmalloc+0x98/0x100
[  773.613177][ T2140]  should_failslab+0x5/0x20
[  773.617649][ T2140]  __kmalloc+0x74/0x330
[  773.621813][ T2140]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  773.627413][ T2140]  ? __local_bh_enable_ip+0x133/0x230
[  773.632760][ T2140]  sock_kmalloc+0x98/0x100
[  773.637147][ T2140]  hash_recvmsg+0x1bd/0x810
[  773.641622][ T2140]  ? hash_sendmsg+0xb40/0xb40
[  773.646303][ T2140]  ____sys_recvmsg+0x24a/0x510
[  773.651054][ T2140]  ? import_iovec+0x12a/0x2c0
[  773.655709][ T2140]  do_recvmmsg+0x429/0x1500
[  773.660185][ T2140]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  773.665613][ T2140]  ? check_preemption_disabled+0x33/0x240
[  773.671335][ T2140]  ? trace_lock_release+0x137/0x1a0
[  773.676517][ T2140]  ? __this_cpu_preempt_check+0x9/0x20
[  773.682041][ T2140]  ? ksys_write+0x1b1/0x220
[  773.686511][ T2140]  ? ksys_write+0x1b1/0x220
[  773.691012][ T2140]  ? check_preemption_disabled+0xb0/0x240
[  773.696707][ T2140]  ? debug_smp_processor_id+0x5/0x20
[  773.701963][ T2140]  __x64_sys_recvmmsg+0x11d/0x1a0
[  773.706956][ T2140]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  773.712586][ T2140]  ? do_syscall_64+0x19/0x1b0
[  773.717243][ T2140]  do_syscall_64+0xf3/0x1b0
[  773.721735][ T2140]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  773.727593][ T2140] RIP: 0033:0x45ca59
[  773.731465][ T2140] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  773.751055][ T2140] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  773.759451][ T2140] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  773.767399][ T2140] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  773.775355][ T2140] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  773.783307][ T2140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
22:00:16 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
socket(0x5, 0xa, 0x7)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, r0, 0x0, 0x10000000001f, 0x6)

22:00:16 executing program 3 (fault-call:4 fault-nth:80):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  773.791254][ T2140] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  773.799277][ T8150] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[  773.819467][ T2693] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  773.827079][T29588] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[  773.853788][ T2154] caif:caif_disconnect_client(): nothing to disconnect
[  773.863125][ T2158] FAULT_INJECTION: forcing a failure.
[  773.863125][ T2158] name failslab, interval 1, probability 0, space 0, times 0
[  773.876336][ T2158] CPU: 1 PID: 2158 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  773.884546][ T2158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  773.894578][ T2158] Call Trace:
[  773.897860][ T2158]  dump_stack+0x1e9/0x30e
22:00:16 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, r0, 0x0, 0x10000000001f, 0x6)

[  773.902178][ T2158]  should_fail+0x433/0x5b0
[  773.906585][ T2158]  ? sock_kmalloc+0x98/0x100
[  773.911170][ T2158]  should_failslab+0x5/0x20
[  773.914516][ T2159] caif:caif_disconnect_client(): nothing to disconnect
[  773.915656][ T2158]  __kmalloc+0x74/0x330
[  773.915666][ T2158]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  773.915676][ T2158]  ? __local_bh_enable_ip+0x133/0x230
[  773.915691][ T2158]  sock_kmalloc+0x98/0x100
[  773.941965][ T2158]  hash_recvmsg+0x1bd/0x810
[  773.946445][ T2158]  ? hash_sendmsg+0xb40/0xb40
[  773.951092][ T2158]  ____sys_recvmsg+0x24a/0x510
[  773.955828][ T2158]  ? import_iovec+0x12a/0x2c0
[  773.960489][ T2158]  do_recvmmsg+0x429/0x1500
[  773.964973][ T2158]  ? rcu_lock_release+0x5/0x20
[  773.969709][ T2158]  ? trace_lock_release+0x137/0x1a0
[  773.974879][ T2158]  ? __this_cpu_preempt_check+0x9/0x20
[  773.980311][ T2158]  ? ksys_write+0x1b1/0x220
[  773.984793][ T2158]  ? ksys_write+0x1b1/0x220
[  773.989395][ T2158]  ? check_preemption_disabled+0xb0/0x240
[  773.995084][ T2158]  ? debug_smp_processor_id+0x5/0x20
[  774.000352][ T2158]  __x64_sys_recvmmsg+0x11d/0x1a0
[  774.005354][ T2158]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.010972][ T2158]  ? do_syscall_64+0x19/0x1b0
[  774.015620][ T2158]  do_syscall_64+0xf3/0x1b0
[  774.020106][ T2158]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  774.025978][ T2158] RIP: 0033:0x45ca59
[  774.029849][ T2158] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  774.039286][ T8150] usb 3-1: Using ep0 maxpacket: 16
22:00:17 executing program 3 (fault-call:4 fault-nth:81):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  774.049425][ T2158] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  774.049435][ T2158] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  774.049441][ T2158] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  774.049447][ T2158] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  774.049452][ T2158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  774.049458][ T2158] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
22:00:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14, 0x8}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  774.104101][ T2163] FAULT_INJECTION: forcing a failure.
[  774.104101][ T2163] name failslab, interval 1, probability 0, space 0, times 0
[  774.120779][ T2163] CPU: 1 PID: 2163 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  774.129017][ T2163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  774.139063][ T2163] Call Trace:
[  774.139263][ T2693] usb 5-1: Using ep0 maxpacket: 16
[  774.142342][ T2163]  dump_stack+0x1e9/0x30e
[  774.142353][ T2163]  should_fail+0x433/0x5b0
[  774.142368][ T2163]  ? sock_kmalloc+0x98/0x100
[  774.147483][T29588] usb 2-1: Using ep0 maxpacket: 16
[  774.151763][ T2163]  should_failslab+0x5/0x20
[  774.151772][ T2163]  __kmalloc+0x74/0x330
[  774.151781][ T2163]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.151790][ T2163]  ? __local_bh_enable_ip+0x133/0x230
[  774.151801][ T2163]  sock_kmalloc+0x98/0x100
[  774.151812][ T2163]  hash_recvmsg+0x1bd/0x810
[  774.151821][ T2163]  ? hash_sendmsg+0xb40/0xb40
[  774.151830][ T2163]  ____sys_recvmsg+0x24a/0x510
[  774.151846][ T2163]  ? import_iovec+0x12a/0x2c0
[  774.208427][ T2163]  do_recvmmsg+0x429/0x1500
[  774.212911][ T2163]  ? rcu_lock_release+0x5/0x20
[  774.217659][ T2163]  ? trace_lock_release+0x137/0x1a0
[  774.222829][ T2163]  ? __this_cpu_preempt_check+0x9/0x20
[  774.228253][ T2163]  ? ksys_write+0x1b1/0x220
[  774.229437][ T8150] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  774.232729][ T2163]  ? ksys_write+0x1b1/0x220
[  774.232741][ T2163]  ? check_preemption_disabled+0xb0/0x240
[  774.232753][ T2163]  ? debug_smp_processor_id+0x5/0x20
[  774.244101][ T8150] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  774.248168][ T2163]  __x64_sys_recvmmsg+0x11d/0x1a0
[  774.248177][ T2163]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.248191][ T2163]  ? do_syscall_64+0x19/0x1b0
[  774.258340][ T8150] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  774.259136][ T2163]  do_syscall_64+0xf3/0x1b0
[  774.273544][ T8150] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  774.276846][ T2163]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  774.276855][ T2163] RIP: 0033:0x45ca59
[  774.276867][ T2163] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  774.287950][ T8150] usb 3-1: config 0 descriptor??
[  774.296113][ T2163] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
22:00:17 executing program 3 (fault-call:4 fault-nth:82):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

[  774.296123][ T2163] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  774.296128][ T2163] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  774.296134][ T2163] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  774.296139][ T2163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  774.296144][ T2163] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  774.359085][ T2171] FAULT_INJECTION: forcing a failure.
[  774.359085][ T2171] name failslab, interval 1, probability 0, space 0, times 0
[  774.359624][ T2693] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  774.359639][ T2693] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  774.359660][ T2693] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  774.359671][ T2693] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  774.360091][T29588] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  774.369805][ T2171] CPU: 1 PID: 2171 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  774.377810][ T2693] usb 5-1: config 0 descriptor??
[  774.383600][ T2171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  774.383604][ T2171] Call Trace:
[  774.383619][ T2171]  dump_stack+0x1e9/0x30e
[  774.383631][ T2171]  should_fail+0x433/0x5b0
[  774.383649][ T2171]  ? sock_kmalloc+0x98/0x100
[  774.404555][T29588] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  774.414955][ T2171]  should_failslab+0x5/0x20
[  774.414964][ T2171]  __kmalloc+0x74/0x330
[  774.414973][ T2171]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.414982][ T2171]  ? __local_bh_enable_ip+0x133/0x230
[  774.414995][ T2171]  sock_kmalloc+0x98/0x100
[  774.415008][ T2171]  hash_recvmsg+0x1bd/0x810
[  774.433860][T29588] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  774.436719][ T2171]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.445576][T29588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  774.455469][ T2171]  ? hash_sendmsg+0xb40/0xb40
[  774.455480][ T2171]  ____sys_recvmsg+0x24a/0x510
[  774.455492][ T2171]  ? check_preemption_disabled+0xa2/0x240
[  774.455502][ T2171]  ? retint_kernel+0x2b/0x2b
[  774.455518][ T2171]  ? import_iovec+0x12a/0x2c0
[  774.467114][T29588] usb 2-1: config 0 descriptor??
[  774.468632][ T2171]  do_recvmmsg+0x429/0x1500
[  774.592471][ T2171]  ? rcu_lock_release+0x5/0x20
[  774.597215][ T2171]  ? trace_lock_release+0x137/0x1a0
[  774.602387][ T2171]  ? __this_cpu_preempt_check+0x9/0x20
[  774.607822][ T2171]  ? ksys_write+0x1b1/0x220
[  774.612293][ T2171]  ? ksys_write+0x1b1/0x220
[  774.616765][ T2171]  ? check_preemption_disabled+0xb0/0x240
[  774.622448][ T2171]  ? debug_smp_processor_id+0x5/0x20
[  774.627711][ T2171]  __x64_sys_recvmmsg+0x11d/0x1a0
[  774.632700][ T2171]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  774.638296][ T2171]  ? do_syscall_64+0x19/0x1b0
[  774.643031][ T2171]  do_syscall_64+0xf3/0x1b0
[  774.647501][ T2171]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  774.653359][ T2171] RIP: 0033:0x45ca59
[  774.657220][ T2171] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  774.676792][ T2171] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  774.685168][ T2171] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  774.693107][ T2171] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  774.701045][ T2171] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  774.708984][ T2171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  774.716925][ T2171] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  775.199282][ T2693] usbhid 5-1:0.0: can't add hid device: -71
[  775.205339][ T2693] usbhid: probe of 5-1:0.0 failed with error -71
[  775.214334][ T8150] usbhid 3-1:0.0: can't add hid device: -71
[  775.220420][ T8150] usbhid: probe of 3-1:0.0 failed with error -71
[  775.229093][ T2693] usb 5-1: USB disconnect, device number 5
[  775.239246][T29588] usbhid 2-1:0.0: can't add hid device: -71
[  775.245390][ T8150] usb 3-1: USB disconnect, device number 62
[  775.257278][T29588] usbhid: probe of 2-1:0.0 failed with error -71
[  775.268518][T29588] usb 2-1: USB disconnect, device number 62
22:00:18 executing program 1:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:18 executing program 0:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r1, 0x0, r0, 0x0, 0x10000000001f, 0x6)

22:00:18 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14, 0x9}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:18 executing program 3 (fault-call:4 fault-nth:83):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:18 executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

22:00:18 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x0, 0x1, &(0x7f0000000500)="c8")

[  775.715053][ T2207] FAULT_INJECTION: forcing a failure.
[  775.715053][ T2207] name failslab, interval 1, probability 0, space 0, times 0
[  775.728571][ T2204] caif:caif_disconnect_client(): nothing to disconnect
[  775.740744][ T2207] CPU: 1 PID: 2207 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  775.749007][ T2207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  775.759052][ T2207] Call Trace:
[  775.762336][ T2207]  dump_stack+0x1e9/0x30e
[  775.766650][ T2207]  should_fail+0x433/0x5b0
[  775.771040][ T2207]  ? sock_kmalloc+0x98/0x100
[  775.775608][ T2207]  should_failslab+0x5/0x20
[  775.780082][ T2207]  __kmalloc+0x74/0x330
[  775.784206][ T2207]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  775.789807][ T2207]  ? __local_bh_enable_ip+0x133/0x230
[  775.795153][ T2207]  sock_kmalloc+0x98/0x100
[  775.799585][ T2207]  hash_recvmsg+0x1bd/0x810
[  775.804069][ T2207]  ? hash_sendmsg+0xb40/0xb40
[  775.808718][ T2207]  ____sys_recvmsg+0x24a/0x510
[  775.813453][ T2207]  ? import_iovec+0x12a/0x2c0
[  775.818097][ T2207]  do_recvmmsg+0x429/0x1500
[  775.822573][ T2207]  ? rcu_lock_release+0x5/0x20
[  775.827355][ T2207]  ? trace_lock_release+0x137/0x1a0
[  775.832607][ T2207]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  775.838033][ T2207]  ? check_preemption_disabled+0xa2/0x240
[  775.843734][ T2207]  ? retint_kernel+0x2b/0x2b
[  775.848301][ T2207]  __x64_sys_recvmmsg+0x11d/0x1a0
[  775.853328][ T2207]  do_syscall_64+0xf3/0x1b0
[  775.857800][ T2207]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  775.863659][ T2207] RIP: 0033:0x45ca59
[  775.867523][ T2207] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  775.887093][ T2207] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  775.895472][ T2207] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  775.903414][ T2207] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
22:00:18 executing program 3 (fault-call:4 fault-nth:84):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:18 executing program 0:
pipe(0x0)
r0 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10000000001f, 0x6)

[  775.911354][ T2207] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  775.919295][ T2207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  775.927235][ T2207] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  775.987213][ T2223] FAULT_INJECTION: forcing a failure.
[  775.987213][ T2223] name failslab, interval 1, probability 0, space 0, times 0
[  775.990149][ T2224] caif:caif_disconnect_client(): nothing to disconnect
[  776.000483][ T2223] CPU: 1 PID: 2223 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  776.014945][ T2223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  776.024983][ T2223] Call Trace:
[  776.028243][ T2223]  dump_stack+0x1e9/0x30e
[  776.032628][ T2223]  should_fail+0x433/0x5b0
[  776.037013][ T2223]  ? sock_kmalloc+0x98/0x100
[  776.041568][ T2223]  should_failslab+0x5/0x20
[  776.046039][ T2223]  __kmalloc+0x74/0x330
[  776.050160][ T2223]  ? __local_bh_enable_ip+0x133/0x230
[  776.055500][ T2223]  sock_kmalloc+0x98/0x100
[  776.059886][ T2223]  hash_recvmsg+0x1bd/0x810
[  776.064358][ T2223]  ? hash_sendmsg+0xb40/0xb40
[  776.069004][ T2223]  ____sys_recvmsg+0x24a/0x510
[  776.073740][ T2223]  ? import_iovec+0x12a/0x2c0
[  776.078392][ T2223]  do_recvmmsg+0x429/0x1500
[  776.082864][ T2223]  ? rcu_lock_release+0x5/0x20
[  776.087598][ T2223]  ? trace_lock_release+0x137/0x1a0
[  776.092765][ T2223]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  776.098194][ T2223]  ? check_preemption_disabled+0xa2/0x240
[  776.103887][ T2223]  ? retint_kernel+0x2b/0x2b
[  776.108446][ T2223]  __x64_sys_recvmmsg+0x11d/0x1a0
[  776.113441][ T2223]  do_syscall_64+0xf3/0x1b0
[  776.117950][ T2223]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  776.123809][ T2223] RIP: 0033:0x45ca59
[  776.127675][ T2223] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  776.147276][ T2223] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  776.155678][ T2223] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  776.163619][ T2223] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  776.171644][ T2223] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  776.179585][ T2223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
22:00:19 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14, 0xa}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

22:00:19 executing program 3 (fault-call:4 fault-nth:85):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000019c0), 0x45d, 0x0, 0x0)

22:00:19 executing program 0:
pipe(0x0)
r0 = socket$caif_stream(0x25, 0x1, 0x3)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10000000001f, 0x6)

[  776.187543][ T2223] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  776.242173][ T2230] FAULT_INJECTION: forcing a failure.
[  776.242173][ T2230] name failslab, interval 1, probability 0, space 0, times 0
[  776.259819][ T2230] CPU: 0 PID: 2230 Comm: syz-executor.3 Not tainted 5.7.0-syzkaller #0
[  776.268048][ T2230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  776.269212][   T23] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[  776.278102][ T2230] Call Trace:
[  776.278117][ T2230]  dump_stack+0x1e9/0x30e
[  776.278128][ T2230]  should_fail+0x433/0x5b0
[  776.278144][ T2230]  ? sock_kmalloc+0x98/0x100
[  776.302164][ T2230]  should_failslab+0x5/0x20
[  776.306635][ T2230]  __kmalloc+0x74/0x330
[  776.310773][ T2230]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  776.316384][ T2230]  ? __local_bh_enable_ip+0x133/0x230
[  776.318063][ T2231] caif:caif_disconnect_client(): nothing to disconnect
[  776.321734][ T2230]  sock_kmalloc+0x98/0x100
[  776.321747][ T2230]  hash_recvmsg+0x1bd/0x810
22:00:19 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='timers\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x5, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0))
r2 = syz_open_pts(r1, 0x4000000000000002)
r3 = dup3(r2, r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x17)
write$P9_RATTACH(r0, &(0x7f00000001c0)={0x14, 0xd}, 0xffffffde)
fcntl$setstatus(r0, 0x4, 0x40800)
ioctl$TCXONC(r3, 0x540a, 0x1)

[  776.321758][ T2230]  ? trace_irq_enable_rcuidle+0x1f/0x1d0
[  776.321767][ T2230]  ? hash_sendmsg+0xb40/0xb40
[  776.321776][ T2230]  ____sys_recvmsg+0x24a/0x510
[  776.321792][ T2230]  ? import_iovec+0x12a/0x2c0
[  776.321803][ T2230]  do_recvmmsg+0x429/0x1500
[  776.321814][ T2230]  ? rcu_lock_release+0x5/0x20
[  776.321829][ T2230]  ? trace_lock_release+0x137/0x1a0
[  776.321843][ T2230]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  776.321856][ T2230]  ? check_preemption_disabled+0xa2/0x240
[  776.382650][ T2230]  ? retint_kernel+0x2b/0x2b
[  776.387213][ T2230]  __x64_sys_recvmmsg+0x11d/0x1a0
[  776.392221][ T2230]  do_syscall_64+0xf3/0x1b0
[  776.396697][ T2230]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[  776.402567][ T2230] RIP: 0033:0x45ca59
[  776.406433][ T2230] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  776.426013][ T2230] RSP: 002b:00007fe383c75c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  776.434411][ T2230] RAX: ffffffffffffffda RBX: 00000000004fc440 RCX: 000000000045ca59
[  776.442373][ T2230] RDX: 000000000000045d RSI: 00000000200019c0 RDI: 0000000000000005
[  776.450325][ T2230] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[  776.458281][ T2230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  776.466225][ T2230] R13: 00000000000008c3 R14: 00000000004cba0d R15: 00007fe383c766d4
[  776.474505][T29588] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[  776.482062][ T2693] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  776.519162][   T23] usb 2-1: Using ep0 maxpacket: 16
[  776.641722][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  776.652583][   T23] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  776.665594][   T23] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  776.674725][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  776.683642][   T23] usb 2-1: config 0 descriptor??
[  776.739116][T29588] usb 3-1: Using ep0 maxpacket: 16
[  776.744347][ T2693] usb 5-1: Using ep0 maxpacket: 16
[  776.869529][T29588] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  776.880694][ T2693] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  776.891545][ T2693] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  776.905489][T29588] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  776.918712][ T2693] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  776.928177][T29588] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  776.937610][ T2693] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  776.946016][T29588] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  776.956171][ T2693] usb 5-1: config 0 descriptor??
[  776.966379][T29588] usb 3-1: config 0 descriptor??