last executing test programs:

43m18.833796757s ago: executing program 0 (id=61):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket(0x1a, 0x4, 0xfffffffd)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0xfffffffd, @loopback}, 0x1c)
getsockname$netrom(r1, 0x0, &(0x7f0000000280))
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setrlimit(0x6, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x0, 0x20}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x400, 0x70bd28, 0x0, {0x60, 0x0, 0x0, 0x0, {0x5, 0xfff2}, {0xc, 0xffff}, {0x0, 0x4}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x9}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}}, 0x4000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)

43m14.384152447s ago: executing program 0 (id=70):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000580)="02", 0x1}], 0x1)
socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001800)=ANY=[@ANYBLOB], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmsg(r1, &(0x7f00000031c0)={0x0, 0x0, 0x0}, 0x2000)
recvmmsg(r1, 0x0, 0x0, 0x2000, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r3, 0x1000)
r4 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
poll(&(0x7f0000000040)=[{r4, 0x1}], 0x1, 0x101)
close_range(r2, 0xffffffffffffffff, 0x0)

43m4.839167665s ago: executing program 0 (id=73):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44081}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
r4 = socket$unix(0x1, 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {0x2, 0xb}, {0xe, 0xb}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x2b}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2404c0f1}, 0x4000800)
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

43m4.811879246s ago: executing program 0 (id=74):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
close(r1)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000001b80)=ANY=[@ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access', @ANYRESDEC=0x0])
setpgid(r0, 0x0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x200c1}, 0x20000051)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x800000000000001)

43m4.799485428s ago: executing program 0 (id=75):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000300)={{{@in=@multicast2, @in=@remote}}, {{@in=@local}, 0x0, @in=@initdev}}, &(0x7f0000000400)=0xe4)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(r1, 0x1)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r6 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2d8, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x210, 0x202, 0x225, 0x210, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @private2={0xfc, 0x2, '\x00', 0x1}, [0xffffff], [0xff], 'veth1_vlan\x00', 'team_slave_0\x00', {0xff}}, 0x0, 0xa4, 0xec}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x31, 'syz1\x00', {0x9}}}}, {{@uncond, 0x0, 0xdc, 0x124, 0x0, {}, [@common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x6, {0x2}}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xa, 'syz1\x00', {0x7f}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x334)
tkill(r6, 0xb)
r8 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_INIT(r8, 0x29, 0xc8, &(0x7f0000000000), 0x4)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000041}, 0x55fdb4595c3d8036)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0x5, 0x101, 0x200}})

43m4.786698349s ago: executing program 0 (id=77):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000300)={0x0, 0xd73, 0x80, 0xfffffffd, 0x2c3}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
timer_create(0x5, 0x0, 0x0)
rmdir(0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000440)=0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_RECVMSG={0xa, 0x14, 0x0, r0, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x75fa, 0xc9da, 0xa, 0x0, 0x0)

43m4.786482079s ago: executing program 32 (id=77):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000300)={0x0, 0xd73, 0x80, 0xfffffffd, 0x2c3}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
timer_create(0x5, 0x0, 0x0)
rmdir(0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000440)=0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_RECVMSG={0xa, 0x14, 0x0, r0, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x75fa, 0xc9da, 0xa, 0x0, 0x0)

33m15.463141007s ago: executing program 4 (id=1339):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.net/cgroup.procs\x00', 0x2, 0x128)
io_submit(0x0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x8, r0, &(0x7f00000002c0)='3', 0x1, 0x7, 0x0, 0x2}])
r1 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x400400, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000300)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
statx(r0, &(0x7f0000000080)='./cgroup.net/cgroup.procs\x00', 0x1000, 0x400, &(0x7f0000002340)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {r0}}, './cgroup.net/cgroup.procs\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {r2, r3}}, './cgroup.net/cgroup.procs\x00'})

33m15.462794184s ago: executing program 4 (id=1340):
mount(0x0, 0x0, 0x0, 0x200480, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000002080)=""/102400, 0x19000)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f0000000500)={'pcmmio\x00', [0x4f28, 0x4, 0x10000, 0x4, 0x5, 0x5, 0x4, 0x7, 0x54c6cfef, 0xfd, 0xe3d, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x7f, 0x3, 0x40000003, 0x0, 0x1, 0x0, 0x20001e58, 0x3, 0xe64, 0x3, 0x8, 0x3, 0x0, 0xfffffff8]}) (fail_nth: 2)
chdir(0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f00000005c0)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

33m15.454048458s ago: executing program 4 (id=1345):
syz_io_uring_setup(0x440f, 0x0, 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xce)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x30, 0x0, &(0x7f0000001000))
openat$nullb(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b07, &(0x7f0000000080)={'virt_wifi0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$I2C(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
close(0x3)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r2, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}}, 0x4084)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008844)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='io\x00')
pread64(r3, &(0x7f0000000100)=""/48, 0x3c, 0x100000000004)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="650a0000000000006115600000000000180000000000000000000000000000009500"], &(0x7f0000000000)='GPL\x00'}, 0x94)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="140100002f00010000000000fcdbdf250301f2800c00180008ac0f00000000001400010000000000000000000000ffffac14141650bb2d6f67d29d6fdb617c60d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dbe816b89f7cb81bff81a8b9482565856555ee923c6597385b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078290d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be0400"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

33m15.440236672s ago: executing program 4 (id=1347):
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4038587a, &(0x7f0000000480)={{<r0=>0xffffffffffffffff, &(0x7f00000000c0)='(\x00', 0x10143, &(0x7f0000000100)={@align=0x7, {0x2c, 0x6, 0x2, 0x4}}, 0x7, &(0x7f0000000240), &(0x7f0000000280)=0x80000000}, {[0x10, 0x8, 0x7545, 0x1ff]}, 0x6, 0xc9, &(0x7f0000000380)=""/201})
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, &(0x7f00000004c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing', 0x0, 0xefaace022867884)
getdents(r1, &(0x7f0000000280)=""/195, 0xc3)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x44)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1)
r5 = syz_io_uring_setup(0x3e, &(0x7f0000000500)={0x0, 0x1410, 0x10100, 0x3, 0x1}, &(0x7f0000000080)=<r6=>0x0, &(0x7f0000000340)=<r7=>0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r8 = getpid()
sendmsg$nl_netfilter(r1, &(0x7f00000006c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000680)={&(0x7f0000000c80)={0x42c, 0x9, 0xa, 0x801, 0x70bd28, 0x25dfdbff, {0x7, 0x0, 0x2}, [@nested={0x1b9, 0xc8, 0x0, 0x1, [@generic="bf5179a568c95c457b8049ae2bf70a4228d7cc07ac204c0f0b8d156f93d747a0160dbeb5eaa90fd966070ddaa8e60d5b0fbc0e5c011a3e084fa6916c64373e8ea792f3e76c70e1d39d289f8340e8cc8a3f74a65ae2ebad0450237022b7c641725baac3d8863b79a0343a279b267727ba3b23954da3d11a3b97404ea22f90ec062401c814f5635caa5f2705463ad45a23236c1b62be3b5cf386213e2a40b62523fb522b27b537ee2d2f1b8bfed2a2366cb3f3cb8965a60b9692da1ad2ae0a2b84bb4aa99d0aecb665f803fe43f590b7c63e630d8fd4f9cdc7bbde2c36af340f88684554b678", @typed={0x81, 0x104, 0x0, 0x0, @binary="3a502c90c8c8310667289ec18cb66c71fc71d706f0a241b85046cb9cc0e28950d982fdb479e9dea44cc023738a3e8cfa9134c0989c2f75e1b35f3fa81663f8ed4d627397520b20f343151e18fbae46d6a39463c26e5d8e4469c29fb6bff2448d295ced06bbf8eb1aeda64ba34c942ce38eaaf505f730a05fb5f985c437"}, @nested={0x4, 0x58}, @typed={0x8, 0x8a, 0x0, 0x0, @ipv4=@empty}, @typed={0x3f, 0xec, 0x0, 0x0, @binary="348d4e3f0296088996ff0150ddc96f840c79b9a353508bd2432abded0f1b628d49cc604ae45cdd25a96a11f005e7335964a01e2d62e73d7d957c42"}]}, @typed={0x8, 0xd7, 0x0, 0x0, @pid=r8}, @nested={0x1ba, 0x87, 0x0, 0x1, [@generic="23cb68449a9dfb3f2c8d410f5a9ec3f7480d24a172b33b5328c3344dd9341220cec99e", @typed={0x8, 0x10d, 0x0, 0x0, @fd=r3}, @generic="6a0f358fb3e6f9fdd4f81c2ad40797718824e3a4e467ef6ccdf3101e3dc75fcff1898fd3b0bc353afea3da5a1aa1663f502a4c7bd6936f845431966deff9cf439f6f0c6676fdb2187caf6a430ef4570e63e555f1a531024fed4ba8bdf363c3", @generic="9ceaf944893848639e4e304c2a593a3adef46bd1ba25250fd1b5eec3437fd513d674a7abc0b51c885c9d29c60a16cd459fd480c69656dc2e7d0788e50ad404e0e48da73ea8b84d94fbe16cd092782984ba7d0bdaeb20ced9d36d58bfda1860ab7f51238acf7ccd06a10ff77df1a7d5e0868ef8f0d830e624533e5667173dd368f21f59cb7500a95a8a2328f64f7cdec00e726dd258c6ea7719d1c7e1fbe22156cf7a8bef1e8598dfa7908531ab826ff3787be46a5ec720acbbbb8fa2b557efc3750f34ac2f2072341caedfc97ecb40edfb66d9a05f77f34fe9a6f7db83ef8f29ad4a304f7c4e28a1f1b9e079385c3e31a3", @generic="2d28fa2f0faaec255850fbb147c988f83d2243", @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@mcast1}, @typed={0x14, 0x12c, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}]}, @nested={0x8, 0x8a, 0x0, 0x1, [@nested={0x4, 0x74}]}, @typed={0x4, 0x85}, @generic="1bec26a4079892130622f9829f6132cbcc16c6480206f634dca78ecc3eae8cfca4ccc11e27545b27136feec7", @generic="accf2fedf9538947c044624809c3eb009e749d13526579b3859d22b3443de63e79e32440fece644a78b8851033cd125b03d4682a44873a30cb91710be8833e075ff78bcc6032a08798fb4076e0680daac0419ede6155eb437723002a3fb1961b"]}, 0x42c}, 0x1, 0x0, 0x0, 0x4000401}, 0x4)
sched_setaffinity(r8, 0x8, &(0x7f0000000580)=0x1)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x54, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1})
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180), r9)
sendmsg$NET_DM_CMD_STOP(r9, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r10, 0xbc914b49a8246e7, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
ioctl$RTC_WIE_OFF(r3, 0x7010)
io_uring_enter(r5, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
futex_waitv(&(0x7f00000001c0)=[{0x6, &(0x7f0000000180)=0x6, 0x2}], 0x1, 0x0, 0x0, 0x0)

32m57.519330978s ago: executing program 4 (id=1353):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'bond0\x00', <r1=>0x0})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x11}, 0x4000800)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = syz_clone(0x80000000, 0x0, 0xfffffffffffffce3, 0x0, 0x0, 0x0)
getpid()
syz_open_procfs(r4, &(0x7f0000000140)='net/vlan/config\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200)={'batadv0\x00', <r5=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x9}, @IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r1}, @IFLA_HSR_SLAVE2={0x8, 0x2, r5}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

32m57.518564655s ago: executing program 4 (id=1356):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000440)=@phonet={0x23, 0x0, 0x0, 0x14}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)="270502001c0014000600002fb96db4f7babe05000700810005000806", 0x1c}, {&(0x7f0000000280)="991b0d9e9def56e4bbdf", 0xa}], 0x2}, 0x30040805) (fail_nth: 2)

32m57.518360252s ago: executing program 33 (id=1356):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000440)=@phonet={0x23, 0x0, 0x0, 0x14}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)="270502001c0014000600002fb96db4f7babe05000700810005000806", 0x1c}, {&(0x7f0000000280)="991b0d9e9def56e4bbdf", 0xa}], 0x2}, 0x30040805) (fail_nth: 2)

16m27.308275765s ago: executing program 5 (id=4499):
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
unshare(0x28000600)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
recvmmsg(r0, &(0x7f0000002040)=[{{&(0x7f00000002c0)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)=""/197, 0xc5}], 0x1}, 0x7}, {{&(0x7f0000000500)=@can, 0x80, &(0x7f0000000480)=[{&(0x7f0000000580)=""/110, 0x6e}], 0x1, &(0x7f0000000600)=""/190, 0xbe}, 0xfffffffb}, {{&(0x7f00000006c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000740)=""/31, 0x1f}], 0x1}}, {{&(0x7f00000007c0)=@rc={0x1f, @none}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000840)=""/238, 0xee}], 0x1, &(0x7f0000000980)=""/90, 0x5a}, 0x4}, {{&(0x7f0000000a00)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000001b40)=[{&(0x7f0000000a80)=""/176, 0xb0}, {&(0x7f0000000b40)=""/4096, 0x1000}], 0x2}, 0x4}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001b80)=""/236, 0xec}, {&(0x7f0000001c80)=""/254, 0xfe}, {&(0x7f0000001d80)=""/175, 0xaf}, {&(0x7f0000001e40)=""/228, 0xe4}], 0x4, &(0x7f0000001f80)=""/185, 0xb9}, 0x10}], 0x6, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x10000008)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000100)={0x0, 0x2710}, 0x10)
recvfrom$inet_nvme(r2, 0x0, 0x22, 0x10100, 0x0, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r4, 0x40305652, &(0x7f0000000000)={0x0, 0x1, 0xe98})
r5 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r5, 0x2000)
sendmsg$NFT_MSG_GETCHAIN(r5, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c000000040a0104000000000011007d24261775c73b340066696c74657200000a000700726f757465000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000840}, 0x40c0)
r6 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r2)
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, 0x0, 0x41)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r7, 0x10040)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaa8aaaaaa1a080045000028007700000206907864010101ac1414aa00004e22ca1cec33e69a44f5262f84d5be3b391d773c80d88ec4e971bece7969d7c31d8e6d743da8e27d4ae906a90b60c788c1342ac46622318ffd3530764fecd6fb0f16eb97000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5cc2000090780000"], 0x0)

16m26.772436379s ago: executing program 5 (id=4503):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x6}, 0x66)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
r1 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000840)={0xa, 0x0, 0x0, @private0}, &(0x7f0000000880)=0x1c, 0x800)
sendmsg$inet6(r1, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f00000008c0)="f7b1180c2a677a95f4fda993e56ce34d86eb889ed88e9964d4f1a0555ccdaf82d496df10072125fb2b8c996a61", 0x2d}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000000940)="54b7bb0e9141379b92e31582e45770006cfd8ab918d7ea6a3eaf9d0c9344dd467f7e140e683560a8b19ef4d2884d607355f65178a47c0a52", 0x38}], 0x3, &(0x7f0000001a40)=[@hopopts={{0x6c, 0x29, 0x36, {0x33, 0xa, '\x00', [@enc_lim={0x4, 0x1, 0xfc}, @ra={0x5, 0x2, 0xd}, @ra={0x5, 0x2, 0xd}, @generic={0x72, 0x36, "f38d19625fc9e89e0c319980e35f92cd242269a5242fff0be233a21d249f6db60a62457152d7c72abeed62dfbfaa12af7e7532ee05e3"}, @jumbo={0xc2, 0x4, 0x7}, @jumbo={0xc2, 0x4, 0x4}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x10, 0x29, 0xb, 0x3}}, @rthdrdstopts={{0x1c, 0x29, 0x37, {0x29, 0x0, '\x00', [@pad1]}}}, @dontfrag={{0x10, 0x29, 0x3e, 0x3}}], 0xa8}, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xfffffffffffffe11, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
ioctl$COMEDI_CMDTEST(r6, 0x8040640a, &(0x7f00000000c0)={0x1, 0x30000, 0xffffffff, 0x3, 0x10, 0x6, 0x40, 0x6, 0x80, 0x1, 0x100, 0x0, 0x0, 0x0, 0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x390, 0x134, 0x0, 0x148, 0x0, 0x148, 0x2fc, 0x240, 0x240, 0x2fc, 0x240, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @private=0xa010102, 0x0, 0x0, 'ip6gretap0\x00', 'bond_slave_1\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xcc, 0x134, 0x0, {}, [@common=@unspec=@quota={{0x38}, {0x1, 0x0, 0xfffffffffffffe00, {0x8}}}, @common=@ttl={{0x24}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x9, 0xa3, 0x394, 0xb1, 'snmp_trap\x00', 'syz1\x00', {0x3}}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'wg0\x00', 'batadv_slave_0\x00', {0xff}, {}, 0x2e, 0x3, 0x29}, 0x0, 0x188, 0x1c8, 0x0, {}, [@common=@inet=@recent0={{0xf4}, {0x8, 0x0, 0x1, 0x1, 'syz1\x00'}}, @common=@unspec=@state={{0x24}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x3, 0x33, 0x3, 0x0, 0x0, 0xf6, 0x8, 0x6]}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x3ec)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40010000", @ANYRES16=r8, @ANYBLOB="01000000000004000000010000002400030000000000000000000000000000000000000000000000000000000000000000001400020077673100000000000000000000000000f4000880"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000030c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002dbd7000fadbdf2501000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5428a090000000000003d68c95f014c37"], 0x4c}, 0x1, 0x0, 0x0, 0x20d0}, 0x44000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x3e, 0x229, 0x0, 0xfffffffd, {0xa}}, 0x14}, 0x1, 0x6000000}, 0x0)

16m24.871074413s ago: executing program 5 (id=4506):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0xfffffffd, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x22, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x9}, 0x80}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000710000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
pipe(0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
shutdown(r3, 0x1)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r7, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180050002000300000008000400050000000800010002"], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wpan0\x00', <r8=>0x0})
sendmsg$NL802154_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0), 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x4c, 0x0, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x48090)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="300000001000010000000000000000000000000013ac1b", @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000006000008001b0000000000"], 0x30}}, 0x0)

16m21.762602302s ago: executing program 5 (id=4517):
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x22)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
socket$rds(0x15, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8010)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder1\x00', 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0xc, &(0x7f0000000080)=0x5, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sendmsg$can_j1939(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x9014)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x627)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000009b80)=""/102392, 0x18ff8)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @remote, 0x0, 0x0, 'fo\x00', 0x0, 0x7f}, 0x2c)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
r4 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r4, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}], 0x1, 0x0)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
setns(r6, 0x8020000)
syz_clone3(&(0x7f00000008c0)={0x14860000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, 0x0}, 0x58)

16m21.40504029s ago: executing program 5 (id=4518):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x6}, 0x66)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
r1 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000840)={0xa, 0x0, 0x0, @private0}, &(0x7f0000000880)=0x1c, 0x800)
sendmsg$inet6(r1, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f00000008c0)="f7b1180c2a677a95f4fda993e56ce34d86eb889ed88e9964d4f1a0555ccdaf82d496df10072125fb2b8c996a61", 0x2d}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000000940)="54b7bb0e9141379b92e31582e45770006cfd8ab918d7ea6a3eaf9d0c9344dd467f7e140e683560a8b19ef4d2884d607355f65178a47c0a52", 0x38}], 0x3, &(0x7f0000001a40)=[@hopopts={{0x64, 0x29, 0x36, {0x33, 0x9, '\x00', [@enc_lim={0x4, 0x1, 0xfc}, @ra={0x5, 0x2, 0xd}, @ra={0x5, 0x2, 0xd}, @generic={0x72, 0x36, "f38d19625fc9e89e0c319980e35f92cd242269a5242fff0be233a21d249f6db60a62457152d7c72abeed62dfbfaa12af7e7532ee05e3"}, @jumbo={0xc2, 0x4, 0x4}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x10, 0x29, 0xb, 0x3}}, @rthdrdstopts={{0x1c, 0x29, 0x37, {0x29, 0x0, '\x00', [@pad1]}}}, @dontfrag={{0x10, 0x29, 0x3e, 0x3}}], 0xa0}, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xfffffffffffffe11, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
ioctl$COMEDI_CMDTEST(r6, 0x8040640a, &(0x7f00000000c0)={0x1, 0x30000, 0xffffffff, 0x3, 0x10, 0x6, 0x40, 0x6, 0x80, 0x1, 0x100, 0x0, 0x0, 0x0, 0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x390, 0x134, 0x0, 0x148, 0x0, 0x148, 0x2fc, 0x240, 0x240, 0x2fc, 0x240, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @private=0xa010102, 0x0, 0x0, 'ip6gretap0\x00', 'bond_slave_1\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xcc, 0x134, 0x0, {}, [@common=@unspec=@quota={{0x38}, {0x1, 0x0, 0xfffffffffffffe00, {0x8}}}, @common=@ttl={{0x24}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x9, 0xa3, 0x394, 0xb1, 'snmp_trap\x00', 'syz1\x00', {0x3}}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'wg0\x00', 'batadv_slave_0\x00', {0xff}, {}, 0x2e, 0x3, 0x29}, 0x0, 0x188, 0x1c8, 0x0, {}, [@common=@inet=@recent0={{0xf4}, {0x8, 0x0, 0x1, 0x1, 'syz1\x00'}}, @common=@unspec=@state={{0x24}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x3, 0x33, 0x3, 0x0, 0x0, 0xf6, 0x8, 0x6]}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x3ec)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40010000", @ANYRES16=r8, @ANYBLOB="01000000000004000000010000002400030000000000000000000000000000000000000000000000000000000000000000001400020077673100000000000000000000000000f4000880"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000030c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002dbd7000fadbdf2501000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5428a090000000000003d68c95f014c37"], 0x4c}, 0x1, 0x0, 0x0, 0x20d0}, 0x44000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x3e, 0x229, 0x0, 0xfffffffd, {0xa}}, 0x14}, 0x1, 0x6000000}, 0x0)

16m21.004410085s ago: executing program 5 (id=4522):
open(&(0x7f0000000140)='./file1\x00', 0x60142, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000000200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000002300)={0x50, 0xffffffffffffffda, r1, {0x7, 0x9, 0x0, 0x41010002, 0x0, 0x8, 0x0, 0x80}}, 0x50)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x35f32a6dfa748ddd, 0x70bd2a, 0x0, {0x2, 0x0, 0x10, 0x0, 0xfe, 0x3, 0xfe, 0x2, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x82}]}, 0x24}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1c0000000306010200000000000000000700000a0500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)}, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="580000000206030000000000000000000300000705000100070000000900020073797a31000000000c00078008001240000000050500050002000000050004000100000011000300686173683a69702c706f727400"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
memfd_create(0x0, 0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000000280)={0x2, 0x0, 0x78d, 0x1}, 0x10)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)

16m20.905963344s ago: executing program 34 (id=4522):
open(&(0x7f0000000140)='./file1\x00', 0x60142, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000000200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000002300)={0x50, 0xffffffffffffffda, r1, {0x7, 0x9, 0x0, 0x41010002, 0x0, 0x8, 0x0, 0x80}}, 0x50)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x35f32a6dfa748ddd, 0x70bd2a, 0x0, {0x2, 0x0, 0x10, 0x0, 0xfe, 0x3, 0xfe, 0x2, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x82}]}, 0x24}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1c0000000306010200000000000000000700000a0500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)}, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="580000000206030000000000000000000300000705000100070000000900020073797a31000000000c00078008001240000000050500050002000000050004000100000011000300686173683a69702c706f727400"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
memfd_create(0x0, 0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000000280)={0x2, 0x0, 0x78d, 0x1}, 0x10)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)

5.860626396s ago: executing program 1 (id=8970):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000000c0)={0x6, "1f938a7b853b3a9b0b00000000000000008900", <r2=>0xffffffffffffffff})
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000080)={0x1ff, "1f138a91b80f3795181800c70511603979e1ef3b3a9b0b8c7d6a34f124708900", <r4=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f0000000140)={"50edd24983fde74e78682dbc67d293c19050af5f39c0ce29436807917da2c17e", r4, <r5=>0xffffffffffffffff})
close_range(r1, r3, 0x0)
poll(&(0x7f00000001c0)=[{r5}], 0x1, 0x0)

5.670293594s ago: executing program 1 (id=8971):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000000)={0x0, 0x2, [@dev={'\xaa\xaa\xaa\xaa\xaa', 0x2b}, @broadcast]})
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000000)="89e7ee2c7cdad9b4b47380c988ca", 0xffbf}], 0x1)

3.890272015s ago: executing program 1 (id=8975):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1a41, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xd132})
write$cgroup_subtree(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="9601065bc7"], 0x6e8a)

3.708376553s ago: executing program 1 (id=8976):
socket$inet(0x2, 0x1, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
listen(r0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)

3.708125358s ago: executing program 2 (id=8977):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
r2 = socket$pppoe(0x18, 0x1, 0x0)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, &(0x7f0000000040)={0x18, 0x0, {0x1, @broadcast, 'ip6gre0\x00'}}, 0x1e)
connect$pppoe(r2, &(0x7f00000001c0)={0x18, 0x0, {0x1, @empty, 'ip_vti0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r3, 0x4008b100, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x1, 0x24, &(0x7f00000002c0)={{0x12, 0x1, 0x300, 0xb1, 0xfe, 0x92, 0x8, 0x1415, 0x3, 0x655d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xd3, 0xa5, 0x3e}}]}}]}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r5, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x808)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r9, @ANYBLOB="08002600ad1600004000330010000000080211000000080211000000080211000001000000000000010001002d1a40000b0000000000000000040003000b0000000600500000000304006c"], 0x68}}, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r10, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

3.019853018s ago: executing program 3 (id=8978):
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='net/fib_triestat\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmget(0x2, 0x1000, 0x1, &(0x7f0000935000/0x1000)=nil)
pread64(r0, &(0x7f000004b680)=""/102363, 0x18fdb, 0x2)

2.886531981s ago: executing program 1 (id=8979):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, &(0x7f00000002c0)={0x14, &(0x7f0000000180)={0x40, 0xe, 0x3, {0x3, 0xd, 'x'}}, 0x0}, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b02, 0x0)

2.680361094s ago: executing program 6 (id=8980):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x8001, @loopback, 0xfffffffc}, 0x1c)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x9, 0x1ff, 0x0, 0xf, 0x9, 0x9, 0x9, 0x4}, &(0x7f0000000100)=0x20)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0)

2.679883941s ago: executing program 2 (id=8981):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000006300), 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x22110039, 0x1000, 0x0, 0x7ff, 0x58, 0x0, 0x0, 0x6, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x20000, 0x0)

2.539747358s ago: executing program 6 (id=8982):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
add_key$user(0x0, &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), 0x0, 0x0, 0x0, 0xfffffffffffffffd)

2.379869294s ago: executing program 6 (id=8983):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = openat(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
r5 = dup3(r4, r3, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000280)={0x55, 0x0, &(0x7f0000000140)=[@request_death, @request_death], 0x0, 0x0, 0x0})

2.070059706s ago: executing program 3 (id=8984):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpid()
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=@OVL_FILEID_V0={0x15, 0xfe, {0x0, 0xfb, 0x15, 0x2, 0x44, "b464e15688d32a5c55332899da424cb5"}}, 0x1)
syz_open_dev$sndctrl(0x0, 0x19, 0x2240)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_ADD_RULE(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f00000004c0)={0x420, 0x3f3, 0x4, 0x70bd27, 0x25dfdbfd, {0x4, 0x2, 0x30, [0x3, 0x5, 0x5, 0x9, 0x60b42302, 0x200, 0x10, 0x80000000, 0x7, 0x10000, 0x5, 0x3, 0x4, 0x800000, 0x9, 0x2, 0x0, 0x6, 0x6, 0x3, 0x2, 0xa, 0x6, 0x6, 0xc, 0x2, 0xfffffffd, 0x8001, 0x9, 0x2, 0x4, 0x3, 0x921, 0x81, 0x7fff, 0xcea, 0x346, 0x1, 0x6, 0x98c0, 0x81, 0x4, 0x4, 0x3, 0x10001, 0xfffffeff, 0x100, 0x3, 0x45, 0x4, 0x30000000, 0x80000001, 0x1c, 0x9, 0xfffffffa, 0x7, 0xfffffff8, 0x1000, 0xfffff06f, 0x4f, 0x48, 0x10, 0x7fff], [0x40, 0xf8, 0x0, 0x2, 0xfffffffb, 0xffff, 0x1574800, 0x4, 0x5, 0x8, 0x4, 0x1, 0x5, 0x6, 0x8, 0x5, 0x8, 0x3496, 0x6, 0x4, 0x4, 0x2, 0x76244be1, 0x10, 0x3b2, 0x2, 0xf6c4, 0x5, 0x7, 0x1, 0x3, 0x6, 0x9, 0xa, 0x0, 0x0, 0x1ff, 0x1901, 0x0, 0x40, 0x9, 0x6, 0x2, 0x7, 0xfff, 0x3, 0x4, 0x3, 0x9, 0x0, 0x80, 0x1, 0xfffffffc, 0x5, 0x1, 0x232d, 0x20, 0x200, 0x6, 0x2, 0x0, 0x4, 0x401, 0x80000000], [0x0, 0x8c7, 0x9, 0x8, 0x6, 0x1ff, 0x8, 0x8, 0xe37, 0x80000001, 0x3, 0x4, 0x3, 0x3ff, 0x101, 0x6, 0x10001, 0x800, 0xcded, 0xac9, 0x0, 0xda, 0x3ff, 0x800, 0x5, 0x9, 0x8001, 0x6, 0x6, 0x2, 0x3, 0x6, 0x686, 0xfa, 0x8, 0x0, 0xfffffeff, 0x6, 0xffffff80, 0x0, 0x7, 0xff, 0x0, 0x0, 0x180000, 0x1, 0x800, 0x9, 0x400, 0x2, 0x5, 0x6ed, 0x7, 0x3, 0xf5, 0xa, 0x8, 0x0, 0x10000, 0x5, 0x2, 0x1, 0x800, 0x80], [0xde0, 0x200000, 0x10000, 0x81, 0x2, 0x7f, 0x9, 0x7, 0x9, 0x1000, 0x8, 0x7f, 0x9, 0x3, 0x0, 0xff, 0x9, 0x3, 0x4, 0xa821, 0x8, 0x1, 0x8, 0x8, 0x100, 0x5, 0x0, 0x9000000, 0x9, 0x1, 0x2, 0x84e6, 0x9, 0x7, 0x8, 0x2, 0x3, 0x3, 0x8, 0x7ff, 0x2, 0x4, 0xfd5, 0x5, 0x7fff, 0x1, 0x0, 0x40, 0x1, 0xfffffffe, 0x6, 0x0, 0x10000, 0x8, 0x9, 0x1, 0x4, 0x0, 0x400, 0x6323497e, 0x6, 0x6, 0x3, 0x10001]}, [""]}, 0x420}, 0x1, 0x0, 0x0, 0x810}, 0x4000)

2.069771704s ago: executing program 3 (id=8985):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0xe656b000)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
rseq(&(0x7f0000001080), 0x20, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})

1.990338047s ago: executing program 3 (id=8986):
pipe2(&(0x7f0000000040), 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x9d}}, {{@in6=@mcast2, 0x0, 0x3c}, 0xa, @in=@empty, 0x0, 0x4}}, 0xe8)
r1 = socket$key(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-sse2\x00'}, 0x58)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x40800)
recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = mq_open(&(0x7f0000000040)='!seli\x1a\x1d!\xa7\x00\x00inux\x00G\xd0\xc6(X', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedreceive(r6, &(0x7f00000003c0)=""/83, 0x53, 0x8000000000002003, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x0, 0x0)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x55)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000001c0), 0x4)

1.790127482s ago: executing program 2 (id=8987):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f00000000c0)={0x1d, r4, 0x1, {0x0, 0xff, 0x3}, 0xfe}, 0x18)
connect$can_j1939(r3, &(0x7f0000000140)={0x1d, r4, 0x0, {0x1, 0xf1, 0xa8fe8ad4eea2351f}, 0x2}, 0x18)
syz_open_procfs(0x0, 0x0)
sendmmsg(r3, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)

1.719560724s ago: executing program 3 (id=8988):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x24020400)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x18ba00, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
getpeername(r3, 0x0, &(0x7f00000000c0))
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r6 = getpid()
r7 = syz_pidfd_open(r6, 0x0)
setns(r7, 0x24020000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x370, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x100, 0x130, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3d0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="640000000206030000000000000000000500fffe14000780080008000000004008000640000004b90900020073797a32000000000500040000000000050005000a000000050001000600000015000300686173683a69702c706f7274"], 0x64}}, 0x20000080)

1.48180845s ago: executing program 6 (id=8989):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x48, &(0x7f0000000100)={0x88, 0x18, '\x00', [@generic={0x0, 0xbf, "3fcd12ae2d9c9963ffb743e2dc2590debefb8792a8a8a7a9100c141fbc325fdc59ccddb656c92b648d84372e3af700d668a0884914b47dc9b771533934535b72f4bc03f7505fc9d443698785659827a9d7af52a2b4b91ecb98478515108dd6c6e425b6e82ef1a8b3a619e4add83e6cf3e1d84b02b2877b09db81a458473c0e842e3500b5d133d83d3724bce1fee3ea4d4f1ed85f2a2ea4cdeb6f95b864d7d2a288465fccf155b11f0264e3142b72a2d0165f7daa384e2b3542b495f4bf0615"}]}, 0xd0)

1.389445639s ago: executing program 6 (id=8990):
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x140, 0x2d9)
r1 = fanotify_init(0x0, 0x101000)
fanotify_mark(r1, 0x105, 0x40001032, r0, 0x0)
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)

869.89952ms ago: executing program 2 (id=8991):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003, 0x0, 0x0, r1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000240)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x80000)
readv(r5, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1)

787.030991ms ago: executing program 1 (id=8992):
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)
recvmsg$can_raw(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)=""/233, 0xe9}], 0x1}, 0x40000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x0, 0x0, 0xffffffffffffffff)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mkdir(0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004015}, 0x2404c8c0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./bus/file0\x00', 0xffffffffffffffff, 0x4000, r3}, 0x14)
r4 = syz_open_dev$amidi(0x0, 0x2, 0x2c02)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r5, 0xc00c6211, 0xffffffffffffffff)
mmap$IORING_OFF_SQ_RING(&(0x7f0000e5e000/0x2000)=nil, 0x2000, 0x0, 0x30, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r4, 0x80045700, 0x0)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x81480, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000740)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20,serpent)\x00'}, 0x4e)
close_range(r6, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001580)={0xfc, {"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", 0x1000}}, 0x1006)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000006c0)={@ifindex, 0xd, 0x1, 0x400, 0x0, 0x0, 0x0, &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, &(0x7f0000000680)}, 0x40)

729.942303ms ago: executing program 3 (id=8993):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

540.296121ms ago: executing program 6 (id=8994):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
listen(r0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
getdents64(0xffffffffffffffff, 0x0, 0x0)
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)

222.008µs ago: executing program 2 (id=8995):
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r1, &(0x7f0000000000)='.\x00', 0x8000, &(0x7f0000001dc0)={0x81, 0x7, 0x0, {r1}}, 0x20)
openat$incfs(r1, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)

0s ago: executing program 2 (id=8996):
socket$netlink(0x10, 0x3, 0x12)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$usbmon(0x0, 0x0, 0x0)
ioctl$MON_IOCQ_URB_LEN(r1, 0x9201)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=@ipv6_newnexthop={0x1c, 0x68, 0x1, 0x40000, 0xfffffffd, {0x2, 0x0, 0x0, 0x0, 0x4}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x20000014)
r3 = socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@ipv6_newnexthop={0x40, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x2}, @NHA_ENCAP={0x18, 0x8, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x14}}, @NHA_OIF={0x8, 0x5, r6}]}, 0x40}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x10, 0x0, 0xfe, 0x4, 0x0, 0x1, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x4a044}, 0x4010)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

kernel console output (not intermixed with test programs):

1][ T9251] RIP: 0023:0xf703ef6c
[ 2567.947545][ T9251] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2567.947565][ T9251] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2567.947585][ T9251] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000001269
[ 2567.947597][ T9251] RDX: 0000000080000680 RSI: 0000000000000000 RDI: 0000000000000000
[ 2567.947609][ T9251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2567.947620][ T9251] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2567.947632][ T9251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2567.947672][ T9251]  </TASK>
[ 2568.014546][ T9254] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8335'.
[ 2568.272408][ T9258] block nbd3: shutting down sockets
[ 2568.923102][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 2569.139555][ T9277] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2569.141635][ T9277] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2569.144671][ T9277] vhci_hcd vhci_hcd.0: Device attached
[ 2569.159040][ T9277] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2569.222864][ T5301] usb 7-1: new high-speed USB device number 52 using dummy_hcd
[ 2569.372876][ T5301] usb 7-1: Using ep0 maxpacket: 8
[ 2569.376560][ T5301] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2569.380770][ T5301] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2569.385639][ T5301] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2569.389801][ T5301] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2569.392097][ T9283] overlayfs: failed to resolve './file2': -2
[ 2569.393708][ T5301] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2569.404138][ T5301] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2569.407843][ T5301] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2569.411048][ T5301] usb 7-1: Product: syz
[ 2569.412934][T17207] usb 44-1: SetAddress Request (103) to port 0
[ 2569.415633][T17207] usb 44-1: new SuperSpeed USB device number 103 using vhci_hcd
[ 2569.419574][ T5301] usb 7-1: Manufacturer: syz
[ 2569.421553][ T5301] usb 7-1: SerialNumber: syz
[ 2569.425022][ T5301] usb 7-1: config 0 descriptor??
[ 2569.434535][ T5301] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input284
[ 2569.743897][ T9278] vhci_hcd: connection reset by peer
[ 2569.746023][T25716] vhci_hcd vhci_hcd.3: stop threads
[ 2569.748470][T25716] vhci_hcd vhci_hcd.3: release socket
[ 2569.751050][T25716] vhci_hcd vhci_hcd.3: disconnect device
[ 2570.362981][ T9666] usb 42-1: device descriptor read/8, error -110
[ 2570.379926][ T9288] netlink: 'syz.1.8343': attribute type 1 has an invalid length.
[ 2570.473080][ T9666] usb usb42-port1: unable to enumerate USB device
[ 2570.582976][T23137] usb 8-1: new high-speed USB device number 67 using dummy_hcd
[ 2570.712964][T23137] usb 8-1: device descriptor read/64, error -71
[ 2570.953058][T23137] usb 8-1: new high-speed USB device number 68 using dummy_hcd
[ 2571.003023][ T9270] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2571.092991][T23137] usb 8-1: device descriptor read/64, error -71
[ 2571.203348][T23137] usb usb8-port1: attempt power cycle
[ 2571.476338][ T3631] Bluetooth: hci3: Unable to find connection with handle 0x00c9
[ 2571.554487][T23137] usb 8-1: new high-speed USB device number 69 using dummy_hcd
[ 2571.573608][T23137] usb 8-1: device descriptor read/8, error -71
[ 2571.682101][ T9313] netlink: 'syz.6.8353': attribute type 1 has an invalid length.
[ 2571.823096][T23137] usb 8-1: new high-speed USB device number 70 using dummy_hcd
[ 2571.853788][T23137] usb 8-1: device descriptor read/8, error -71
[ 2571.975138][T23137] usb usb8-port1: unable to enumerate USB device
[ 2572.049596][T23033] usb 7-1: USB disconnect, device number 52
[ 2573.357717][T29189] Bluetooth: hci1: Unable to find connection with handle 0x00c9
[ 2573.551484][ T9343] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 2573.843320][T23033] usb 7-1: new high-speed USB device number 53 using dummy_hcd
[ 2573.993294][T23033] usb 7-1: Using ep0 maxpacket: 8
[ 2573.996895][T23033] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2574.001872][T23033] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2574.006089][T23033] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2574.009672][T23033] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2574.012937][T23033] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2574.020556][T23033] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2574.024732][T23033] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2574.028095][T23033] usb 7-1: Product: syz
[ 2574.029879][T23033] usb 7-1: Manufacturer: syz
[ 2574.031903][T23033] usb 7-1: SerialNumber: syz
[ 2574.036548][T23033] usb 7-1: config 0 descriptor??
[ 2574.043096][T23033] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input285
[ 2574.056554][T25713] bridge_slave_1: left allmulticast mode
[ 2574.058913][T25713] bridge_slave_1: left promiscuous mode
[ 2574.061674][T25713] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2574.065652][ T9353] netlink: 52 bytes leftover after parsing attributes in process `syz.1.8363'.
[ 2574.065824][T25713] bridge_slave_0: left allmulticast mode
[ 2574.071827][T25713] bridge_slave_0: left promiscuous mode
[ 2574.074676][T25713] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2574.134874][T25713] ip6gretap0 (unregistering): left promiscuous mode
[ 2574.195029][T25713] gretap0 (unregistering): left promiscuous mode
[ 2574.220422][T25713] dvmrp1 (unregistering): left allmulticast mode
[ 2574.288958][T25713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2574.293671][T25713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2574.297527][T25713] bond0 (unregistering): Released all slaves
[ 2574.426969][T25713] tipc: Left network mode
[ 2574.524936][T17207] usb 44-1: device descriptor read/8, error -110
[ 2574.549122][T25713] IPVS: stopping backup sync thread 6394 ...
[ 2574.642690][ T9361] vhci_hcd vhci_hcd.0: port 0 already used
[ 2574.668569][ T9365] netlink: 52 bytes leftover after parsing attributes in process `syz.6.8366'.
[ 2574.713070][ T9361] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2574.870990][ T9374] ip6gretap1: entered promiscuous mode
[ 2574.873181][ T9374] ip6gretap1: entered allmulticast mode
[ 2574.893968][T25713] hsr_slave_0: left promiscuous mode
[ 2574.896261][T25713] hsr_slave_1: left promiscuous mode
[ 2574.898405][T25713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2574.900766][T25713] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2574.905091][T25713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2574.907520][T25713] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2574.913804][T17207] usb usb44-port1: attempt power cycle
[ 2574.916026][T25713] veth1_macvtap: left promiscuous mode
[ 2574.918253][T25713] veth1_vlan: left promiscuous mode
[ 2574.920087][T25713] veth0_vlan: left promiscuous mode
[ 2574.923379][ T5301] usb 8-1: new high-speed USB device number 71 using dummy_hcd
[ 2575.052917][T25713] team0 (unregistering): Port device team_slave_1 removed
[ 2575.064107][T25713] team0 (unregistering): Port device team_slave_0 removed
[ 2575.083570][ T5301] usb 8-1: Using ep0 maxpacket: 8
[ 2575.090689][ T5301] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2575.094414][ T5301] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2575.098068][ T5301] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2575.101657][ T5301] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2575.108460][ T5301] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2575.114508][ T5301] usb 8-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2575.117801][ T5301] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2575.121347][ T5301] usb 8-1: Product: syz
[ 2575.124357][ T5301] usb 8-1: Manufacturer: syz
[ 2575.126722][ T5301] usb 8-1: SerialNumber: syz
[ 2575.133084][ T5301] usb 8-1: config 0 descriptor??
[ 2575.140552][ T5301] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input286
[ 2575.153028][ T9381] netlink: 'syz.6.8372': attribute type 12 has an invalid length.
[ 2575.474258][T25713] IPVS: stop unused estimator thread 0...
[ 2575.494040][T17207] usb usb44-port1: unable to enumerate USB device
[ 2575.573475][ T9342] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2575.822920][ T9385] netlink: 'syz.1.8373': attribute type 25 has an invalid length.
[ 2575.825644][ T9385] netlink: 'syz.1.8373': attribute type 1 has an invalid length.
[ 2575.829175][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8373'.
[ 2575.833310][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8373'.
[ 2575.836728][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8373'.
[ 2575.840405][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8373'.
[ 2575.843401][ T9385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8373'.
[ 2576.171818][T29189] Bluetooth: hci3: ACL packet for unknown connection handle 201
[ 2576.680154][ T9666] usb 7-1: USB disconnect, device number 53
[ 2577.064141][ T9409] netlink: 'syz.6.8381': attribute type 21 has an invalid length.
[ 2577.067088][ T9409] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8381'.
[ 2577.070394][ T9409] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8381'.
[ 2577.180140][ T9415] wireguard0: entered promiscuous mode
[ 2577.184594][ T9415] wireguard0: entered allmulticast mode
[ 2577.288367][ T9360] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2577.364129][T23033] usb 8-1: USB disconnect, device number 71
[ 2577.457655][ T9425] IPVS: length: 149 != 528
[ 2578.640054][T29189] Bluetooth: hci2: Invalid connection link type handle 0x00c9
[ 2578.723574][ T9450] netlink: 'syz.2.8395': attribute type 11 has an invalid length.
[ 2578.764922][ T9451] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[ 2578.767679][ T9451] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2578.773719][ T9451] vhci_hcd vhci_hcd.0: Device attached
[ 2578.794393][ T9458] binder: BINDER_SET_CONTEXT_MGR already set
[ 2578.796412][ T9458] binder: 9457:9458 ioctl 4018620d 80004a80 returned -16
[ 2578.806704][ T9451] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2579.043793][T30133] usb 44-1: SetAddress Request (107) to port 0
[ 2579.046501][T30133] usb 44-1: new SuperSpeed USB device number 107 using vhci_hcd
[ 2579.234638][ T9452] vhci_hcd: connection reset by peer
[ 2579.237507][T14568] vhci_hcd vhci_hcd.3: stop threads
[ 2579.239778][T14568] vhci_hcd vhci_hcd.3: release socket
[ 2579.243291][T14568] vhci_hcd vhci_hcd.3: disconnect device
[ 2579.292677][ T9467] netlink: 'syz.1.8400': attribute type 1 has an invalid length.
[ 2579.430700][ T9478] FAULT_INJECTION: forcing a failure.
[ 2579.430700][ T9478] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2579.435476][ T9478] CPU: 2 UID: 0 PID: 9478 Comm: syz.1.8405 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2579.435494][ T9478] Tainted: [L]=SOFTLOCKUP
[ 2579.435498][ T9478] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2579.435505][ T9478] Call Trace:
[ 2579.435510][ T9478]  <TASK>
[ 2579.435515][ T9478]  dump_stack_lvl+0x100/0x190
[ 2579.435536][ T9478]  should_fail_ex.cold+0x5/0xa
[ 2579.435550][ T9478]  _copy_from_user+0x2e/0xd0
[ 2579.435570][ T9478]  ? __pfx_binder_ioctl+0x10/0x10
[ 2579.435592][ T9478]  binder_ioctl+0x4f5/0x7610
[ 2579.435615][ T9478]  ? find_held_lock+0x2b/0x80
[ 2579.435631][ T9478]  ? tomoyo_path_number_perm+0x28f/0x580
[ 2579.435654][ T9478]  ? tomoyo_path_number_perm+0x28f/0x580
[ 2579.435674][ T9478]  ? tomoyo_path_number_perm+0x188/0x580
[ 2579.435691][ T9478]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2579.435709][ T9478]  ? __pfx_binder_ioctl+0x10/0x10
[ 2579.435727][ T9478]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2579.435746][ T9478]  ? do_vfs_ioctl+0x226/0x13e0
[ 2579.435765][ T9478]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2579.435792][ T9478]  ? find_held_lock+0x2b/0x80
[ 2579.435806][ T9478]  ? hook_file_ioctl_common+0x146/0x410
[ 2579.435834][ T9478]  ? __fget_files+0x21f/0x3d0
[ 2579.435862][ T9478]  ? __pfx_binder_ioctl+0x10/0x10
[ 2579.435883][ T9478]  compat_ptr_ioctl+0x6e/0xa0
[ 2579.435905][ T9478]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 2579.435925][ T9478]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 2579.435950][ T9478]  __do_fast_syscall_32+0xe3/0x8c0
[ 2579.435974][ T9478]  do_fast_syscall_32+0x32/0x70
[ 2579.435994][ T9478]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2579.436015][ T9478] RIP: 0023:0xf700ef6c
[ 2579.436029][ T9478] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2579.436046][ T9478] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2579.436063][ T9478] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c0306201
[ 2579.436080][ T9478] RDX: 0000000080004a40 RSI: 0000000000000000 RDI: 0000000000000000
[ 2579.436090][ T9478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2579.436099][ T9478] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2579.436109][ T9478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2579.436131][ T9478]  </TASK>
[ 2579.436138][ T9478] binder: 9477:9478 ioctl c0306201 80004a40 returned -14
[ 2579.962101][   T40] kauditd_printk_skb: 19 callbacks suppressed
[ 2579.962119][   T40] audit: type=1326 audit(1771954401.979:3996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9496 comm="syz.2.8411" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x0
[ 2580.107605][T24913] usb 8-1: new high-speed USB device number 72 using dummy_hcd
[ 2580.228311][ T9505] netlink: 'syz.1.8414': attribute type 1 has an invalid length.
[ 2580.253861][T24913] usb 8-1: Using ep0 maxpacket: 32
[ 2580.264720][T24913] usb 8-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 2580.267640][T24913] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2580.271529][T24913] usb 8-1: config 0 descriptor??
[ 2580.282692][T24913] as10x_usb: device has been detected
[ 2580.288241][T24913] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 2580.335013][T24913] usb 8-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[ 2580.368954][T24913] as10x_usb: error during firmware upload part1
[ 2580.371335][T24913] Registered device nBox DVB-T Dongle
[ 2580.505257][T24913] usb 8-1: USB disconnect, device number 72
[ 2580.521728][T24913] Unregistered device nBox DVB-T Dongle
[ 2580.528081][T24913] as10x_usb: device has been disconnected
[ 2580.627704][ T9516] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2580.653918][T17207] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[ 2580.815559][T17207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2580.819210][T17207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2580.822510][T17207] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 2580.828137][T17207] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 2580.830985][T17207] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2580.835361][T17207] usb 6-1: config 0 descriptor??
[ 2580.846643][ T9518] FAULT_INJECTION: forcing a failure.
[ 2580.846643][ T9518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2580.850785][ T9518] CPU: 2 UID: 0 PID: 9518 Comm: syz.2.8418 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2580.850802][ T9518] Tainted: [L]=SOFTLOCKUP
[ 2580.850807][ T9518] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2580.850814][ T9518] Call Trace:
[ 2580.850820][ T9518]  <TASK>
[ 2580.850824][ T9518]  dump_stack_lvl+0x100/0x190
[ 2580.850844][ T9518]  should_fail_ex.cold+0x5/0xa
[ 2580.850858][ T9518]  _copy_from_iter+0x1f4/0x1690
[ 2580.850878][ T9518]  ? __asan_memset+0x23/0x50
[ 2580.850895][ T9518]  ? __pfx__copy_from_iter+0x10/0x10
[ 2580.850912][ T9518]  ? __pfx___alloc_skb+0x10/0x10
[ 2580.850930][ T9518]  netlink_sendmsg+0x808/0xda0
[ 2580.850948][ T9518]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2580.850964][ T9518]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2580.850983][ T9518]  ____sys_sendmsg+0xa54/0xc30
[ 2580.851000][ T9518]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2580.851024][ T9518]  ___sys_sendmsg+0x190/0x1e0
[ 2580.851042][ T9518]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2580.851076][ T9518]  __sys_sendmsg+0x170/0x220
[ 2580.851089][ T9518]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2580.851111][ T9518]  ? __pfx_ksys_write+0x10/0x10
[ 2580.851132][ T9518]  __do_fast_syscall_32+0xe3/0x8c0
[ 2580.851149][ T9518]  do_fast_syscall_32+0x32/0x70
[ 2580.851163][ T9518]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2580.851177][ T9518] RIP: 0023:0xf70aef6c
[ 2580.851187][ T9518] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2580.851198][ T9518] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2580.851210][ T9518] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000280
[ 2580.851218][ T9518] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2580.851224][ T9518] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2580.851231][ T9518] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2580.851238][ T9518] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2580.851253][ T9518]  </TASK>
[ 2580.990204][ T9521] FAULT_INJECTION: forcing a failure.
[ 2580.990204][ T9521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2580.996446][ T9521] CPU: 3 UID: 0 PID: 9521 Comm: syz.2.8419 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2580.996476][ T9521] Tainted: [L]=SOFTLOCKUP
[ 2580.996481][ T9521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2580.996488][ T9521] Call Trace:
[ 2580.996492][ T9521]  <TASK>
[ 2580.996497][ T9521]  dump_stack_lvl+0x100/0x190
[ 2580.996529][ T9521]  should_fail_ex.cold+0x5/0xa
[ 2580.996545][ T9521]  _copy_from_user+0x2e/0xd0
[ 2580.996565][ T9521]  do_devconfig_ioctl+0x11e/0x6d0
[ 2580.996582][ T9521]  ? comedi_unlocked_ioctl+0x180/0x3310
[ 2580.996601][ T9521]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[ 2580.996624][ T9521]  ? tomoyo_path_number_perm+0x46d/0x580
[ 2580.996645][ T9521]  ? kasan_save_stack+0x3f/0x50
[ 2580.996662][ T9521]  ? kasan_save_stack+0x30/0x50
[ 2580.996681][ T9521]  ? kasan_save_track+0x14/0x30
[ 2580.996696][ T9521]  ? kasan_save_free_info+0x3b/0x70
[ 2580.996713][ T9521]  comedi_unlocked_ioctl+0x860/0x3310
[ 2580.996735][ T9521]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 2580.996768][ T9521]  ? tomoyo_path_number_perm+0x46d/0x580
[ 2580.996786][ T9521]  ? kasan_quarantine_put+0x104/0x240
[ 2580.996802][ T9521]  ? lockdep_hardirqs_on+0x78/0x100
[ 2580.996822][ T9521]  ? find_held_lock+0x2b/0x80
[ 2580.996832][ T9521]  ? tomoyo_path_number_perm+0x28f/0x580
[ 2580.996848][ T9521]  ? tomoyo_path_number_perm+0x28f/0x580
[ 2580.996868][ T9521]  ? tomoyo_path_number_perm+0x188/0x580
[ 2580.996888][ T9521]  comedi_compat_ioctl+0x438/0xe20
[ 2580.996906][ T9521]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[ 2580.996925][ T9521]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2580.996945][ T9521]  ? do_vfs_ioctl+0x226/0x13e0
[ 2580.996960][ T9521]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2580.996980][ T9521]  ? find_held_lock+0x2b/0x80
[ 2580.996990][ T9521]  ? hook_file_ioctl_common+0x146/0x410
[ 2580.997010][ T9521]  ? __fget_files+0x21f/0x3d0
[ 2580.997033][ T9521]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[ 2580.997051][ T9521]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 2580.997072][ T9521]  __do_fast_syscall_32+0xe3/0x8c0
[ 2580.997087][ T9521]  do_fast_syscall_32+0x32/0x70
[ 2580.997104][ T9521]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2580.997118][ T9521] RIP: 0023:0xf70aef6c
[ 2580.997128][ T9521] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2580.997139][ T9521] RSP: 002b:00000000f547c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2580.997150][ T9521] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000040946400
[ 2580.997157][ T9521] RDX: 0000000080000500 RSI: 0000000000000000 RDI: 0000000000000000
[ 2580.997164][ T9521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2580.997170][ T9521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2580.997177][ T9521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2580.997191][ T9521]  </TASK>
[ 2582.288081][ T9544] FAULT_INJECTION: forcing a failure.
[ 2582.288081][ T9544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2582.292668][ T9544] CPU: 2 UID: 0 PID: 9544 Comm: syz.1.8428 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2582.292686][ T9544] Tainted: [L]=SOFTLOCKUP
[ 2582.292691][ T9544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2582.292698][ T9544] Call Trace:
[ 2582.292702][ T9544]  <TASK>
[ 2582.292707][ T9544]  dump_stack_lvl+0x100/0x190
[ 2582.292728][ T9544]  should_fail_ex.cold+0x5/0xa
[ 2582.292741][ T9544]  _copy_to_user+0x32/0xd0
[ 2582.292761][ T9544]  simple_read_from_buffer+0xcb/0x170
[ 2582.292779][ T9544]  proc_fail_nth_read+0x1af/0x230
[ 2582.292796][ T9544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2582.292809][ T9544]  ? rw_verify_area+0xce/0x6d0
[ 2582.292824][ T9544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2582.292837][ T9544]  vfs_read+0x1e4/0xb30
[ 2582.292855][ T9544]  ? __pfx_vfs_read+0x10/0x10
[ 2582.292870][ T9544]  ? find_held_lock+0x2b/0x80
[ 2582.292882][ T9544]  ? __fget_files+0x215/0x3d0
[ 2582.292901][ T9544]  ? __fget_files+0x21f/0x3d0
[ 2582.292922][ T9544]  ksys_read+0x12a/0x250
[ 2582.292939][ T9544]  ? __pfx_ksys_read+0x10/0x10
[ 2582.292960][ T9544]  do_int80_emulation+0x141/0x6b0
[ 2582.292975][ T9544]  asm_int80_emulation+0x1a/0x20
[ 2582.292986][ T9544] RIP: 0023:0xf7145b6b
[ 2582.292996][ T9544] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2582.293006][ T9544] RSP: 002b:00000000f53fd4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2582.293018][ T9544] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f53fd5d0
[ 2582.293025][ T9544] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2582.293031][ T9544] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2582.293043][ T9544] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2582.293049][ T9544] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2582.293063][ T9544]  </TASK>
[ 2582.449463][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.452339][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.455020][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.457578][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.459967][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.462345][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.464888][T17207] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 2582.467216][T17207] plantronics 0003:047F:FFFF.001A: item fetching failed at offset 13/15
[ 2582.470211][T17207] plantronics 0003:047F:FFFF.001A: parse failed
[ 2582.472275][T17207] plantronics 0003:047F:FFFF.001A: probe with driver plantronics failed with error -22
[ 2582.477157][T17207] usb 6-1: USB disconnect, device number 64
[ 2582.584288][ T9549] binder: 9540:9549 ioctl 400c620e 80000480 returned -22
[ 2582.601686][ T9551] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2583.307752][ T9558] vhci_hcd vhci_hcd.0: port 0 already used
[ 2583.331272][ T9558] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2584.084335][ T9566] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 2584.086619][ T9566] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2584.090487][ T9566] vhci_hcd vhci_hcd.0: Device attached
[ 2584.107461][ T9566] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2584.116117][ T9566] netlink: 264 bytes leftover after parsing attributes in process `syz.3.8430'.
[ 2584.345125][ T9567] vhci_hcd: connection reset by peer
[ 2584.347190][T25716] vhci_hcd vhci_hcd.3: stop threads
[ 2584.349446][T25716] vhci_hcd vhci_hcd.3: release socket
[ 2584.351954][T30133] usb 44-1: device descriptor read/8, error -110
[ 2584.351999][T25716] vhci_hcd vhci_hcd.3: disconnect device
[ 2584.754773][T30133] usb usb44-port1: attempt power cycle
[ 2585.157003][ T9581] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2585.276432][ T9584] bond0: entered promiscuous mode
[ 2585.278638][ T9584] bond_slave_0: entered promiscuous mode
[ 2585.281173][ T9584] bond_slave_1: entered promiscuous mode
[ 2585.283663][ T9584] bond0: entered allmulticast mode
[ 2585.289174][ T9584] bond_slave_0: entered allmulticast mode
[ 2585.291520][ T9584] bond_slave_1: entered allmulticast mode
[ 2585.297429][ T9584] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2585.336486][T30133] usb usb44-port1: unable to enumerate USB device
[ 2585.373081][ T9587] netlink: 'syz.1.8438': attribute type 10 has an invalid length.
[ 2585.436586][ T9593] netlink: 'syz.6.8439': attribute type 21 has an invalid length.
[ 2585.439892][ T9593] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8439'.
[ 2585.443795][ T9593] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8439'.
[ 2585.893070][   T40] audit: type=1326 audit(1771954407.909:3997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.908822][   T40] audit: type=1326 audit(1771954407.909:3998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.916123][   T40] audit: type=1326 audit(1771954407.909:3999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.925043][   T40] audit: type=1326 audit(1771954407.909:4000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.935009][   T40] audit: type=1326 audit(1771954407.909:4001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.941972][   T40] audit: type=1326 audit(1771954407.919:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7145b6b code=0x7ffc0000
[ 2585.948969][   T40] audit: type=1326 audit(1771954407.919:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.955909][   T40] audit: type=1326 audit(1771954407.919:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.967905][   T40] audit: type=1326 audit(1771954407.919:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.979564][   T40] audit: type=1326 audit(1771954407.919:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.1.8441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2585.998007][ T9607] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2586.004530][ T9609] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 2586.006710][ T9609] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2586.007881][ T9607] netlink: 264 bytes leftover after parsing attributes in process `syz.6.8442'.
[ 2586.009135][ T9609] vhci_hcd vhci_hcd.0: Device attached
[ 2586.016416][ T9610] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2586.019288][T25716] vhci_hcd vhci_hcd.3: stop threads
[ 2586.020959][T25716] vhci_hcd vhci_hcd.3: release socket
[ 2586.022701][T25716] vhci_hcd vhci_hcd.3: disconnect device
[ 2586.184572][T23137] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[ 2586.668042][T23137] usb 6-1: Using ep0 maxpacket: 8
[ 2586.674479][T23137] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2586.677937][T23137] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2586.681707][T23137] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2586.685295][T23137] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2586.688441][T23137] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2586.696532][T23137] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2586.699603][T23137] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2586.702226][T23137] usb 6-1: Product: syz
[ 2586.703618][T23137] usb 6-1: Manufacturer: syz
[ 2586.705385][T23137] usb 6-1: SerialNumber: syz
[ 2586.713511][T23137] usb 6-1: config 0 descriptor??
[ 2586.723220][T23137] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input287
[ 2587.746909][ T9626] bridge_slave_0: left allmulticast mode
[ 2587.761332][ T9626] bridge_slave_0: left promiscuous mode
[ 2587.773968][ T9626] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2587.791038][ T9627] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[ 2587.793223][ T9627] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2587.797247][ T9627] vhci_hcd vhci_hcd.0: Device attached
[ 2587.883249][ T9632] netlink: 'syz.6.8448': attribute type 21 has an invalid length.
[ 2587.886790][ T9632] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8448'.
[ 2587.964923][ T9597] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2588.046379][ T9630] usb 1-1: USB disconnect, device number 3
[ 2588.063447][ T9626] bridge_slave_1: left allmulticast mode
[ 2588.074767][T30133] usb 42-1: SetAddress Request (124) to port 0
[ 2588.077755][T30133] usb 42-1: new SuperSpeed USB device number 124 using vhci_hcd
[ 2588.093974][T29783] usb 6-1: USB disconnect, device number 65
[ 2588.109502][ T9626] bridge_slave_1: left promiscuous mode
[ 2588.113459][ T9626] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2588.214677][ T3631] Bluetooth: hci1: command 0x0405 tx timeout
[ 2588.276040][ T9626] bond0: (slave bond_slave_0): Releasing backup interface
[ 2588.335340][ T9626] bond0: (slave bond_slave_1): Releasing backup interface
[ 2588.357998][ T9626] team0: Port device team_slave_0 removed
[ 2588.379090][ T9628] vhci_hcd: connection reset by peer
[ 2588.381755][T25712] vhci_hcd vhci_hcd.2: stop threads
[ 2588.383849][T25712] vhci_hcd vhci_hcd.2: release socket
[ 2588.386931][T25712] vhci_hcd vhci_hcd.2: disconnect device
[ 2588.398875][ T9626] team0: Port device team_slave_1 removed
[ 2588.401327][ T9626] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2588.403808][ T9626] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2588.411109][ T9626] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2588.413549][ T9626] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2588.426640][ T9626] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2588.457071][ T9632] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8448'.
[ 2588.955204][T29189] Bluetooth: hci3: ACL packet for unknown connection handle 201
[ 2590.811201][ T9683] vhci_hcd vhci_hcd.0: port 0 already used
[ 2590.823790][ T9683] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2591.521781][ T9703] delete_channel: no stack
[ 2593.165279][T30133] usb 42-1: device descriptor read/8, error -110
[ 2593.341934][ T9717] random: crng reseeded on system resumption
[ 2593.349954][ T9717] Unrecognized hibernate image header format!
[ 2593.351994][ T9717] PM: hibernation: Image mismatch: architecture specific data
[ 2593.395343][ T9719] netlink: 'syz.1.8468': attribute type 16 has an invalid length.
[ 2593.397865][ T9719] netlink: 156 bytes leftover after parsing attributes in process `syz.1.8468'.
[ 2593.556115][T30133] usb usb42-port1: attempt power cycle
[ 2593.685052][ T9666] usb 6-1: new high-speed USB device number 66 using dummy_hcd
[ 2593.835083][ T9666] usb 6-1: Using ep0 maxpacket: 32
[ 2593.838181][ T9666] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[ 2593.841925][ T9666] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[ 2593.846164][ T9666] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2593.849690][ T9666] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[ 2593.856046][ T9666] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[ 2593.859209][ T9666] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2593.861916][ T9666] usb 6-1: Product: syz
[ 2593.863270][ T9666] usb 6-1: Manufacturer: syz
[ 2593.865430][ T9666] usb 6-1: SerialNumber: syz
[ 2593.877811][ T9732] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8470'.
[ 2593.893637][    C0] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[ 2593.900096][ T9666] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input288
[ 2593.968517][ T9732] netlink: 92 bytes leftover after parsing attributes in process `syz.3.8470'.
[ 2594.115153][ T9666] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[ 2594.118244][ T9666]  (id 0x00)
[ 2594.165138][ T9666] rc_core: IR keymap rc-imon-pad not found
[ 2594.167550][ T9666] Registered IR keymap rc-empty
[ 2594.169693][ T9666] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[ 2594.173862][ T9666] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[ 2594.316102][ T9666] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[ 2594.321853][ T9666] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input289
[ 2594.329395][ T9666] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:66> initialized
[ 2594.455833][T30133] usb usb42-port1: unable to enumerate USB device
[ 2594.487589][ T9740] netlink: 'syz.2.8473': attribute type 21 has an invalid length.
[ 2594.490742][ T9740] netlink: 128 bytes leftover after parsing attributes in process `syz.2.8473'.
[ 2594.494455][ T9740] netlink: 3 bytes leftover after parsing attributes in process `syz.2.8473'.
[ 2594.881837][ T9749] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2594.881856][ T9749] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2594.882113][ T9749] vhci_hcd vhci_hcd.0: Device attached
[ 2594.894617][ T9749] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2594.975436][T17207] usb 6-1: USB disconnect, device number 66
[ 2594.981851][ T9752] imon:send_packet: packet tx failed (-71)
[ 2595.015427][ T9752] imon:vfd_write: send packet #1 failed
[ 2595.168290][ T5301] usb 44-1: SetAddress Request (111) to port 0
[ 2595.171043][ T5301] usb 44-1: new SuperSpeed USB device number 111 using vhci_hcd
[ 2595.411066][ T9750] vhci_hcd: connection reset by peer
[ 2595.413623][T14568] vhci_hcd vhci_hcd.3: stop threads
[ 2595.415632][T14568] vhci_hcd vhci_hcd.3: release socket
[ 2595.417656][T14568] vhci_hcd vhci_hcd.3: disconnect device
[ 2595.917881][T29189] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[ 2596.541896][ T9759] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2596.607115][ T9764] wg2 speed is unknown, defaulting to 1000
[ 2596.700972][ T9759] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2597.602908][ T9759] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2597.793118][ T9759] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2597.890788][T25716] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2597.897721][T25716] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2597.904364][T25716] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2597.913260][T25716] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2597.985588][T19222] usb 8-1: new high-speed USB device number 73 using dummy_hcd
[ 2598.008117][ T9789] netlink: 'syz.6.8483': attribute type 21 has an invalid length.
[ 2598.010636][ T9789] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8483'.
[ 2598.013488][ T9789] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8483'.
[ 2598.146645][T19222] usb 8-1: Using ep0 maxpacket: 8
[ 2598.150017][T19222] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2598.153100][T19222] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2598.165433][T19222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2598.174750][T19222] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2598.183674][T19222] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2598.195694][T19222] usb 8-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2598.196140][ T9791] netlink: 'syz.6.8484': attribute type 1 has an invalid length.
[ 2598.198935][T19222] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2598.244690][T19222] usb 8-1: Product: syz
[ 2598.247114][T19222] usb 8-1: Manufacturer: syz
[ 2598.249058][T19222] usb 8-1: SerialNumber: syz
[ 2598.286058][T19222] usb 8-1: config 0 descriptor??
[ 2598.291254][T19222] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input290
[ 2599.040125][ T9817] binder: 9809:9817 ioctl 400c620e 80000480 returned -22
[ 2599.725725][ T9783] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2599.984336][ T9829] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2600.215757][ T5301] usb 44-1: device descriptor read/8, error -110
[ 2600.330269][ T9834] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2600.626314][ T5301] usb usb44-port1: attempt power cycle
[ 2600.827153][T19222] usb 8-1: USB disconnect, device number 73
[ 2601.282896][T29189] Bluetooth: hci1: ACL packet for unknown connection handle 201
[ 2602.074410][ T5301] usb usb44-port1: unable to enumerate USB device
[ 2603.433009][ T9898] wg2 speed is unknown, defaulting to 1000
[ 2603.477577][ T9899] netlink: 'syz.3.8507': attribute type 4 has an invalid length.
[ 2603.687407][ T9904] Cannot find add_set index 0 as target
[ 2604.355264][ T9921] binder: 9919:9921 ioctl 400c620e 80000480 returned -22
[ 2604.493602][ T9925] netlink: 56 bytes leftover after parsing attributes in process `syz.3.8510'.
[ 2604.518111][ T9878] vhci_hcd vhci_hcd.0: port 0 already used
[ 2604.709990][ T9878] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2605.440468][ T9936] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[ 2605.442782][ T9936] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2605.445801][ T9936] vhci_hcd vhci_hcd.0: Device attached
[ 2605.457483][ T9936] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2605.716210][T30133] usb 42-1: SetAddress Request (2) to port 0
[ 2605.718923][T30133] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 2605.889718][ T9940] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.8516'.
[ 2606.101559][ T9937] vhci_hcd: connection reset by peer
[ 2606.105628][  T160] vhci_hcd vhci_hcd.2: stop threads
[ 2606.190832][  T160] vhci_hcd vhci_hcd.2: release socket
[ 2606.194653][  T160] vhci_hcd vhci_hcd.2: disconnect device
[ 2606.606078][ T9953] sctp: [Deprecated]: syz.1.8520 (pid 9953) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 2606.606078][ T9953] Use struct sctp_sack_info instead
[ 2606.988099][ T9961] cgroup: Need name or subsystem set
[ 2607.044608][ T9964] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2607.460206][   T40] kauditd_printk_skb: 7 callbacks suppressed
[ 2607.460218][   T40] audit: type=1326 audit(1771954429.477:4014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9976 comm="syz.3.8526" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x0
[ 2607.477859][ T9979] netlink: 48 bytes leftover after parsing attributes in process `syz.6.8528'.
[ 2607.483029][ T9979] netlink: 48 bytes leftover after parsing attributes in process `syz.6.8528'.
[ 2607.799795][ T9988] wg2 speed is unknown, defaulting to 1000
[ 2607.920275][ T9994] binder: 9992:9994 ioctl 400c620e 80000480 returned -22
[ 2608.562323][T10003] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8535'.
[ 2608.694858][T10010] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8537'.
[ 2608.697819][T10010] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8537'.
[ 2608.735116][T10011] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2608.933357][T10020] sctp: [Deprecated]: syz.1.8540 (pid 10020) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 2608.933357][T10020] Use struct sctp_sack_info instead
[ 2609.955071][T10026] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 2609.958485][T10026] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2609.961615][T10026] vhci_hcd vhci_hcd.0: Device attached
[ 2609.964844][T10027] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2610.189967][ T6421] vhci_hcd vhci_hcd.3: stop threads
[ 2610.191687][ T6421] vhci_hcd vhci_hcd.3: release socket
[ 2610.200038][ T6421] vhci_hcd vhci_hcd.3: disconnect device
[ 2610.456773][T19222] usb 7-1: new high-speed USB device number 54 using dummy_hcd
[ 2610.608326][T19222] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2610.621803][T19222] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2610.637416][T19222] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 2610.653180][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8545'.
[ 2610.654108][T19222] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 2610.667673][T19222] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2610.685343][T19222] usb 7-1: config 0 descriptor??
[ 2610.768312][T30133] usb 42-1: device descriptor read/8, error -110
[ 2610.827408][T10045] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8546'.
[ 2610.831712][T10045] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8546'.
[ 2611.108188][T19222] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 2611.157329][T30133] usb usb42-port1: attempt power cycle
[ 2611.466511][T10056] fuse: Bad value for 'fd'
[ 2611.476467][T10050] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2611.479798][T10050] block device autoloading is deprecated and will be removed.
[ 2611.510196][T10058] netlink: 'syz.6.8551': attribute type 21 has an invalid length.
[ 2611.512936][T10058] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8551'.
[ 2611.515924][T10058] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8551'.
[ 2611.757719][T30133] usb usb42-port1: unable to enumerate USB device
[ 2612.410694][ T9666] usb 7-1: USB disconnect, device number 54
[ 2612.476494][   T40] audit: type=1326 audit(1771954434.486:4015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.483852][   T40] audit: type=1326 audit(1771954434.486:4016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.491147][   T40] audit: type=1326 audit(1771954434.486:4017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.498475][   T40] audit: type=1326 audit(1771954434.486:4018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.505621][   T40] audit: type=1326 audit(1771954434.486:4019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.512943][   T40] audit: type=1326 audit(1771954434.486:4020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7145b6b code=0x7ffc0000
[ 2612.520099][   T40] audit: type=1326 audit(1771954434.486:4021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.527841][   T40] audit: type=1326 audit(1771954434.486:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.535064][   T40] audit: type=1326 audit(1771954434.486:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.542462][   T40] audit: type=1326 audit(1771954434.486:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10072 comm="syz.1.8555" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef6c code=0x7ffc0000
[ 2612.766898][T19222] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[ 2612.916841][T19222] usb 6-1: Using ep0 maxpacket: 8
[ 2612.920309][T19222] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2612.924066][T19222] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2612.928587][T19222] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2612.932932][T19222] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2612.937184][T19222] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2612.944683][T19222] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2612.948241][T19222] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2612.950848][T19222] usb 6-1: Product: syz
[ 2612.952303][T19222] usb 6-1: Manufacturer: syz
[ 2612.954185][T19222] usb 6-1: SerialNumber: syz
[ 2612.959183][T19222] usb 6-1: config 0 descriptor??
[ 2612.966249][T19222] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input291
[ 2613.085017][T10081] FAULT_INJECTION: forcing a failure.
[ 2613.085017][T10081] name failslab, interval 1, probability 0, space 0, times 0
[ 2613.089631][T10081] CPU: 3 UID: 0 PID: 10081 Comm: syz.3.8557 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2613.089650][T10081] Tainted: [L]=SOFTLOCKUP
[ 2613.089655][T10081] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2613.089662][T10081] Call Trace:
[ 2613.089666][T10081]  <TASK>
[ 2613.089671][T10081]  dump_stack_lvl+0x100/0x190
[ 2613.089693][T10081]  should_fail_ex.cold+0x5/0xa
[ 2613.089708][T10081]  ? video_usercopy+0x145/0x14d0
[ 2613.089722][T10081]  should_failslab+0xc2/0x120
[ 2613.089734][T10081]  __kmalloc_noprof+0xe0/0x850
[ 2613.089750][T10081]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2613.089772][T10081]  video_usercopy+0x145/0x14d0
[ 2613.089786][T10081]  ? __pfx___video_do_ioctl+0x10/0x10
[ 2613.089798][T10081]  ? do_vfs_ioctl+0x226/0x13e0
[ 2613.089814][T10081]  ? __pfx_video_usercopy+0x10/0x10
[ 2613.089832][T10081]  ? hook_file_ioctl_common+0x146/0x410
[ 2613.089890][T10081]  v4l2_ioctl+0x1bd/0x250
[ 2613.089913][T10081]  v4l2_compat_ioctl32+0x20f/0x2d0
[ 2613.089935][T10081]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[ 2613.089954][T10081]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 2613.089971][T10081]  __do_fast_syscall_32+0xe3/0x8c0
[ 2613.089988][T10081]  do_fast_syscall_32+0x32/0x70
[ 2613.090002][T10081]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2613.090017][T10081] RIP: 0023:0xf703ef6c
[ 2613.090027][T10081] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2613.090037][T10081] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2613.090049][T10081] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0d05640
[ 2613.090056][T10081] RDX: 0000000080000280 RSI: 0000000000000000 RDI: 0000000000000000
[ 2613.090062][T10081] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2613.090069][T10081] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2613.090075][T10081] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2613.090089][T10081]  </TASK>
[ 2613.202069][T10087] netlink: 'syz.6.8560': attribute type 21 has an invalid length.
[ 2613.204425][T10087] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8560'.
[ 2613.208171][T10087] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8560'.
[ 2613.246947][T10085] hub 1-0:1.0: USB hub found
[ 2613.251848][T10085] hub 1-0:1.0: 6 ports detected
[ 2613.501608][T10097] netlink: 72 bytes leftover after parsing attributes in process `syz.3.8563'.
[ 2613.537160][T19222] usb 1-1: new high-speed USB device number 4 using ehci-pci
[ 2613.560421][T10103] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2613.751835][T19222] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[ 2613.759411][T19222] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[ 2613.767208][T19222] usb 1-1: Product: QEMU USB Tablet
[ 2613.772387][T19222] usb 1-1: Manufacturer: QEMU
[ 2613.777084][T30133] usb 8-1: new high-speed USB device number 74 using dummy_hcd
[ 2613.777687][T19222] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1
[ 2613.838593][T19222] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.001C/input/input292
[ 2613.928132][T30133] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2613.930318][T19222] hid-generic 0003:0627:0001.001C: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[ 2613.934609][T30133] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 2613.940028][T30133] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 2613.942596][T30133] usb 8-1: Product: syz
[ 2613.943949][T30133] usb 8-1: Manufacturer: syz
[ 2613.945470][T30133] usb 8-1: SerialNumber: syz
[ 2614.169985][T30133] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 74 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2614.309867][T10114] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2614.526994][T10073] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2614.531100][T19222] usb 6-1: USB disconnect, device number 67
[ 2614.951444][T10120] netlink: 'syz.6.8569': attribute type 21 has an invalid length.
[ 2614.954058][T10120] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8569'.
[ 2614.957082][T10120] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8569'.
[ 2615.036531][T10125] usb 1-1: USB disconnect, device number 4
[ 2615.125969][T10130] fuse: Bad value for 'fd'
[ 2615.463269][T10141] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2615.478268][T10147] netlink: 'syz.1.8578': attribute type 21 has an invalid length.
[ 2615.653817][T10149] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2615.997396][T10153] vhci_hcd vhci_hcd.0: port 0 already used
[ 2616.010929][T10153] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2616.457107][T17207] usb 7-1: new high-speed USB device number 55 using dummy_hcd
[ 2616.608757][T17207] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2616.615855][T17207] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 2616.620024][T17207] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 2616.623419][T17207] usb 7-1: Product: syz
[ 2616.625210][T17207] usb 7-1: Manufacturer: syz
[ 2616.627454][T17207] usb 7-1: SerialNumber: syz
[ 2616.838937][T17207] usblp 7-1:1.0: usblp1: USB Unidirectional printer dev 55 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2616.981479][T10167] bridge_slave_0: left allmulticast mode
[ 2616.983471][T10167] bridge_slave_0: left promiscuous mode
[ 2616.985623][T10167] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2616.998350][T10167] bridge_slave_1: left allmulticast mode
[ 2617.000270][T10167] bridge_slave_1: left promiscuous mode
[ 2617.002440][T10167] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2617.016191][T10167] bond0: (slave bond_slave_0): Releasing backup interface
[ 2617.039431][T30133] usb 7-1: USB disconnect, device number 55
[ 2617.047952][T30133] usblp1: removed
[ 2617.078842][T10167] bond0: (slave bond_slave_1): Releasing backup interface
[ 2617.126581][T10167] team0: Port device team_slave_0 removed
[ 2617.147411][T10167] team0: Port device team_slave_1 removed
[ 2617.153883][T10167] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2617.156670][T10167] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2617.168275][T10167] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2617.171392][T10167] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2617.175996][T10167] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2617.271111][T10170] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 2617.273257][T10170] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2617.275906][T10170] vhci_hcd vhci_hcd.0: Device attached
[ 2617.279119][T10171] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 1
[ 2617.281785][T25713] vhci_hcd vhci_hcd.1: stop threads
[ 2617.283536][T25713] vhci_hcd vhci_hcd.1: release socket
[ 2617.285337][T25713] vhci_hcd vhci_hcd.1: disconnect device
[ 2617.793582][T10180] netlink: 'syz.6.8587': attribute type 21 has an invalid length.
[ 2617.796180][T10180] __nla_validate_parse: 2 callbacks suppressed
[ 2617.796188][T10180] netlink: 128 bytes leftover after parsing attributes in process `syz.6.8587'.
[ 2617.801107][T10180] netlink: 3 bytes leftover after parsing attributes in process `syz.6.8587'.
[ 2618.036213][T10184] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2618.708406][T10190] netlink: 52 bytes leftover after parsing attributes in process `syz.1.8590'.
[ 2619.270199][T10212] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2620.055137][T10218] 9p: Bad value for 'rfdno'
[ 2620.058012][T29189] Bluetooth: hci2: unexpected event for opcode 0x0c26
[ 2620.077865][T10218] netlink: 40 bytes leftover after parsing attributes in process `syz.6.8597'.
[ 2620.503588][T10223] netlink: 52 bytes leftover after parsing attributes in process `syz.1.8599'.
[ 2620.701745][T10226] bridge0: port 3(syz_tun) entered blocking state
[ 2620.703939][T10226] bridge0: port 3(syz_tun) entered disabled state
[ 2620.706136][T10226] syz_tun: entered allmulticast mode
[ 2620.710215][T10226] syz_tun: entered promiscuous mode
[ 2620.950073][T30133] usb 8-1: USB disconnect, device number 74
[ 2620.961839][T30133] usblp0: removed
[ 2621.283465][T10234] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2621.705711][T10246] FAULT_INJECTION: forcing a failure.
[ 2621.705711][T10246] name failslab, interval 1, probability 0, space 0, times 0
[ 2621.710007][T10246] CPU: 1 UID: 0 PID: 10246 Comm: syz.1.8606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2621.710025][T10246] Tainted: [L]=SOFTLOCKUP
[ 2621.710029][T10246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2621.710036][T10246] Call Trace:
[ 2621.710040][T10246]  <TASK>
[ 2621.710045][T10246]  dump_stack_lvl+0x100/0x190
[ 2621.710066][T10246]  should_fail_ex.cold+0x5/0xa
[ 2621.710080][T10246]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 2621.710093][T10246]  should_failslab+0xc2/0x120
[ 2621.710104][T10246]  __kmalloc_noprof+0xe0/0x850
[ 2621.710123][T10246]  tomoyo_realpath_from_path+0xb6/0x690
[ 2621.710138][T10246]  tomoyo_path_number_perm+0x23c/0x580
[ 2621.710154][T10246]  ? tomoyo_path_number_perm+0x22e/0x580
[ 2621.710172][T10246]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2621.710203][T10246]  ? find_held_lock+0x2b/0x80
[ 2621.710215][T10246]  ? hook_file_ioctl_common+0x146/0x410
[ 2621.710232][T10246]  ? __fget_files+0x215/0x3d0
[ 2621.710252][T10246]  ? __fget_files+0x21f/0x3d0
[ 2621.710271][T10246]  security_file_ioctl_compat+0xd3/0x230
[ 2621.710290][T10246]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 2621.710307][T10246]  __do_fast_syscall_32+0xe3/0x8c0
[ 2621.710324][T10246]  do_fast_syscall_32+0x32/0x70
[ 2621.710337][T10246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2621.710352][T10246] RIP: 0023:0xf700ef6c
[ 2621.710361][T10246] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2621.710372][T10246] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2621.710384][T10246] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000540b
[ 2621.710391][T10246] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[ 2621.710398][T10246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2621.710417][T10246] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2621.710423][T10246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2621.710438][T10246]  </TASK>
[ 2621.710471][T10246] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2621.903388][T10251] netlink: 'syz.1.8607': attribute type 2 has an invalid length.
[ 2621.906447][T10251] netlink: 'syz.1.8607': attribute type 1 has an invalid length.
[ 2621.909265][T10250] netlink: 32 bytes leftover after parsing attributes in process `syz.1.8607'.
[ 2622.056289][T10247] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2622.231101][T10258] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8608'.
[ 2622.234626][T10258] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8608'.
[ 2622.938241][T10268] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 2622.940500][T10268] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2622.949443][T10268] vhci_hcd vhci_hcd.0: Device attached
[ 2622.954832][T10269] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2622.958083][  T160] vhci_hcd vhci_hcd.2: stop threads
[ 2622.960088][  T160] vhci_hcd vhci_hcd.2: release socket
[ 2622.961879][  T160] vhci_hcd vhci_hcd.2: disconnect device
[ 2623.535237][T10275] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2623.544939][T10275] netlink: 244 bytes leftover after parsing attributes in process `syz.6.8613'.
[ 2624.299100][T10280] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2624.301743][T10280] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2624.305157][T10280] vhci_hcd vhci_hcd.0: Device attached
[ 2624.320507][T10280] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2624.527185][T10286] FAULT_INJECTION: forcing a failure.
[ 2624.527185][T10286] name failslab, interval 1, probability 0, space 0, times 0
[ 2624.532553][T10286] CPU: 3 UID: 0 PID: 10286 Comm: syz.2.8615 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2624.532580][T10286] Tainted: [L]=SOFTLOCKUP
[ 2624.532587][T10286] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2624.532597][T10286] Call Trace:
[ 2624.532604][T10286]  <TASK>
[ 2624.532611][T10286]  dump_stack_lvl+0x100/0x190
[ 2624.532657][T10286]  should_fail_ex.cold+0x5/0xa
[ 2624.532678][T10286]  should_failslab+0xc2/0x120
[ 2624.532695][T10286]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 2624.532720][T10286]  ? __d_alloc+0x34/0xa80
[ 2624.532742][T10286]  __d_alloc+0x34/0xa80
[ 2624.532762][T10286]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[ 2624.532784][T10286]  ? security_inode_alloc+0x3b/0x2c0
[ 2624.532808][T10286]  d_alloc_pseudo+0x1c/0xc0
[ 2624.532830][T10286]  alloc_file_pseudo+0xcf/0x230
[ 2624.532851][T10286]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 2624.532870][T10286]  ? inode_init_always_gfp+0xd0e/0x1040
[ 2624.532905][T10286]  sock_alloc_file+0x50/0x210
[ 2624.532930][T10286]  do_accept+0x242/0x530
[ 2624.532958][T10286]  ? do_raw_spin_lock+0x128/0x260
[ 2624.532993][T10286]  ? __pfx_do_accept+0x10/0x10
[ 2624.533035][T10286]  __sys_accept4+0x108/0x200
[ 2624.533062][T10286]  ? __pfx___sys_accept4+0x10/0x10
[ 2624.533087][T10286]  ? fput+0x79/0x100
[ 2624.533104][T10286]  ? ksys_write+0x1ac/0x250
[ 2624.533129][T10286]  ? __pfx_ksys_write+0x10/0x10
[ 2624.533170][T10286]  __ia32_sys_accept4+0x94/0x100
[ 2624.533199][T10286]  ? lockdep_hardirqs_on+0x78/0x100
[ 2624.533219][T10286]  __do_fast_syscall_32+0xe3/0x8c0
[ 2624.533243][T10286]  do_fast_syscall_32+0x32/0x70
[ 2624.533264][T10286]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2624.533288][T10286] RIP: 0023:0xf70aef6c
[ 2624.533303][T10286] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2624.533320][T10286] RSP: 002b:00000000f545b50c EFLAGS: 00000292 ORIG_RAX: 000000000000016c
[ 2624.533337][T10286] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 2624.533349][T10286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2624.533359][T10286] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2624.533369][T10286] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2624.533380][T10286] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2624.533404][T10286]  </TASK>
[ 2624.687862][T17207] usb 44-1: SetAddress Request (115) to port 0
[ 2624.690684][T17207] usb 44-1: new SuperSpeed USB device number 115 using vhci_hcd
[ 2624.948619][T10292] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2624.964552][T10281] vhci_hcd: connection reset by peer
[ 2624.966718][ T6421] vhci_hcd vhci_hcd.3: stop threads
[ 2624.969894][ T6421] vhci_hcd vhci_hcd.3: release socket
[ 2624.971874][ T6421] vhci_hcd vhci_hcd.3: disconnect device
[ 2625.315503][T10297] syzkaller0: entered promiscuous mode
[ 2625.317507][T10297] syzkaller0: entered allmulticast mode
[ 2625.388800][T10299] vhci_hcd vhci_hcd.0: port 0 already used
[ 2625.398572][T10299] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2626.347992][ T9666] usb 7-1: new high-speed USB device number 56 using dummy_hcd
[ 2626.497960][ T9666] usb 7-1: Using ep0 maxpacket: 8
[ 2626.506332][ T9666] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2626.514332][ T9666] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2626.518626][ T9666] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2626.522091][ T9666] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2626.525328][ T9666] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2626.531685][ T9666] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2626.534579][ T9666] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2626.537201][ T9666] usb 7-1: Product: syz
[ 2626.538585][ T9666] usb 7-1: Manufacturer: syz
[ 2626.540059][ T9666] usb 7-1: SerialNumber: syz
[ 2626.542889][ T9666] usb 7-1: config 0 descriptor??
[ 2626.559628][ T9666] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input293
[ 2627.223573][T10334] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8628'.
[ 2628.058049][T10316] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2628.158335][ T3929] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[ 2628.279326][T10351] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8632'.
[ 2628.287804][T10351] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8632'.
[ 2628.308128][ T3929] usb 6-1: Using ep0 maxpacket: 8
[ 2628.312924][ T3929] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2628.317459][ T3929] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2628.326353][ T3929] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2628.331964][ T3929] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2628.336626][ T3929] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2628.342771][T10355] netlink: 'syz.3.8634': attribute type 21 has an invalid length.
[ 2628.346083][T10355] netlink: 128 bytes leftover after parsing attributes in process `syz.3.8634'.
[ 2628.347974][ T3929] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2628.349933][T10355] netlink: 3 bytes leftover after parsing attributes in process `syz.3.8634'.
[ 2628.353904][ T3929] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2628.360306][ T3929] usb 6-1: Product: syz
[ 2628.362138][ T3929] usb 6-1: Manufacturer: syz
[ 2628.364140][ T3929] usb 6-1: SerialNumber: syz
[ 2628.378578][ T3929] usb 6-1: config 0 descriptor??
[ 2628.388271][ T3929] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input294
[ 2628.614356][T10366] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2628.617128][T10366] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2628.621189][T10366] vhci_hcd vhci_hcd.0: Device attached
[ 2628.681292][T10366] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2629.095725][T23033] usb 7-1: USB disconnect, device number 56
[ 2629.323079][T10367] vhci_hcd: connection closed
[ 2629.324017][ T6269] vhci_hcd vhci_hcd.3: stop threads
[ 2629.335632][ T6269] vhci_hcd vhci_hcd.3: release socket
[ 2629.342128][ T6269] vhci_hcd vhci_hcd.3: disconnect device
[ 2629.508298][T10378] team0: left allmulticast mode
[ 2629.510598][T10378] team_slave_0: left allmulticast mode
[ 2629.513255][T10378] team_slave_1: left allmulticast mode
[ 2629.516920][T10378] team0: left promiscuous mode
[ 2629.519667][T10378] team_slave_0: left promiscuous mode
[ 2629.522404][T10378] team_slave_1: left promiscuous mode
[ 2629.534184][T10378] bridge0: port 3(team0) entered disabled state
[ 2629.579534][T10378] bond1: (slave dummy0): Releasing active interface
[ 2629.596890][T10378] dummy0: left promiscuous mode
[ 2629.620760][T10378] dummy0: left allmulticast mode
[ 2629.654189][T10378] bridge_slave_0: left allmulticast mode
[ 2629.671788][T10378] bridge_slave_0: left promiscuous mode
[ 2629.687007][T10378] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2629.726759][T10378] bridge_slave_1: left allmulticast mode
[ 2629.728263][T17207] usb 44-1: device descriptor read/8, error -110
[ 2629.729058][T10378] bridge_slave_1: left promiscuous mode
[ 2629.733084][T10378] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2629.749876][T10378] bond0: (slave bond_slave_0): Releasing backup interface
[ 2629.761814][T10378] bond0: (slave bond_slave_1): Releasing backup interface
[ 2629.778222][T10378] team0: Port device team_slave_0 removed
[ 2629.786736][T10378] team0: Port device team_slave_1 removed
[ 2629.792387][T10378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2629.798067][T10378] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2629.805889][T10378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2629.816962][T10378] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2629.828500][T10378] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2630.119127][T17207] usb usb44-port1: attempt power cycle
[ 2630.131330][T10343] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2630.531058][T10394] binder: 10387:10394 ioctl 400c620e 80000480 returned -22
[ 2630.608446][ T3929] usb 7-1: new high-speed USB device number 57 using dummy_hcd
[ 2630.688773][T17207] usb usb44-port1: unable to enumerate USB device
[ 2630.760288][ T3929] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2630.767261][ T3929] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 2630.771225][ T3929] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 2630.774117][ T3929] usb 7-1: Product: syz
[ 2630.775804][ T3929] usb 7-1: Manufacturer: syz
[ 2630.777652][ T3929] usb 7-1: SerialNumber: syz
[ 2630.988085][ T3929] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 57 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2631.041658][T10398] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8644'.
[ 2631.250961][ T9666] usb 7-1: USB disconnect, device number 57
[ 2631.256473][ T9666] usblp0: removed
[ 2631.278556][T23033] usb 6-1: USB disconnect, device number 68
[ 2631.404899][   T40] kauditd_printk_skb: 7 callbacks suppressed
[ 2631.404916][   T40] audit: type=1804 audit(1771954453.415:4032): pid=10404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.8646" name="/newroot/400/file1" dev="fuse" ino=1 res=1 errno=0
[ 2631.676044][T10412] netlink: 'syz.1.8648': attribute type 21 has an invalid length.
[ 2631.678693][T10412] netlink: 128 bytes leftover after parsing attributes in process `syz.1.8648'.
[ 2631.681554][T10412] netlink: 3 bytes leftover after parsing attributes in process `syz.1.8648'.
[ 2631.727488][T10414] FAULT_INJECTION: forcing a failure.
[ 2631.727488][T10414] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2631.733934][T10414] CPU: 2 UID: 0 PID: 10414 Comm: syz.1.8649 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2631.733964][T10414] Tainted: [L]=SOFTLOCKUP
[ 2631.733970][T10414] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2631.733982][T10414] Call Trace:
[ 2631.733989][T10414]  <TASK>
[ 2631.733996][T10414]  dump_stack_lvl+0x100/0x190
[ 2631.734029][T10414]  should_fail_ex.cold+0x5/0xa
[ 2631.734054][T10414]  _copy_from_iter+0x1f4/0x1690
[ 2631.734086][T10414]  ? __asan_memset+0x23/0x50
[ 2631.734111][T10414]  ? __pfx__copy_from_iter+0x10/0x10
[ 2631.734137][T10414]  ? __pfx___alloc_skb+0x10/0x10
[ 2631.734168][T10414]  netlink_sendmsg+0x808/0xda0
[ 2631.734193][T10414]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2631.734219][T10414]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 2631.734246][T10414]  ____sys_sendmsg+0xa54/0xc30
[ 2631.734273][T10414]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2631.734309][T10414]  ___sys_sendmsg+0x190/0x1e0
[ 2631.734337][T10414]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2631.734390][T10414]  __sys_sendmsg+0x170/0x220
[ 2631.734411][T10414]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2631.734438][T10414]  ? __pfx_ksys_write+0x10/0x10
[ 2631.734471][T10414]  __do_fast_syscall_32+0xe3/0x8c0
[ 2631.734497][T10414]  do_fast_syscall_32+0x32/0x70
[ 2631.734520][T10414]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2631.734542][T10414] RIP: 0023:0xf700ef6c
[ 2631.734559][T10414] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2631.734576][T10414] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2631.734594][T10414] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[ 2631.734613][T10414] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2631.734623][T10414] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2631.734634][T10414] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2631.734646][T10414] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2631.734668][T10414]  </TASK>
[ 2632.001656][ T6269] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2632.004475][ T6269] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2632.007210][ T6269] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2632.015446][ T6269] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2632.091743][T10422] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8653'.
[ 2632.262902][T10434] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2632.380209][ T3631] Bluetooth: hci1: command 0x0405 tx timeout
[ 2632.843768][T10437] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2633.118524][T10440] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8656'.
[ 2633.124082][T10440] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8656'.
[ 2633.297535][T10442] netlink: 'syz.3.8657': attribute type 1 has an invalid length.
[ 2634.039553][T23137] usb 7-1: new high-speed USB device number 58 using dummy_hcd
[ 2634.191023][T23137] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2634.196054][T23137] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 2634.200693][T23137] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 2634.204994][T23137] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2634.209374][T23137] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2634.219566][T23137] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 2634.359956][T23137] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -12
[ 2634.418810][T10458] FAULT_INJECTION: forcing a failure.
[ 2634.418810][T10458] name failslab, interval 1, probability 0, space 0, times 0
[ 2634.424300][T10458] CPU: 0 UID: 0 PID: 10458 Comm: syz.2.8661 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2634.424319][T10458] Tainted: [L]=SOFTLOCKUP
[ 2634.424328][T10458] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2634.424347][T10458] Call Trace:
[ 2634.424354][T10458]  <TASK>
[ 2634.424359][T10458]  dump_stack_lvl+0x100/0x190
[ 2634.424381][T10458]  should_fail_ex.cold+0x5/0xa
[ 2634.424395][T10458]  should_failslab+0xc2/0x120
[ 2634.424406][T10458]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 2634.424420][T10458]  ? snd_seq_port_connect+0x61/0x560
[ 2634.424435][T10458]  ? snd_seq_port_use_ptr+0x14d/0x1b0
[ 2634.424449][T10458]  ? snd_seq_port_use_ptr+0x14d/0x1b0
[ 2634.424465][T10458]  snd_seq_port_connect+0x61/0x560
[ 2634.424480][T10458]  ? _raw_read_unlock+0x28/0x50
[ 2634.424491][T10458]  ? check_subscription_permission.isra.0+0x146/0x240
[ 2634.424509][T10458]  snd_seq_ioctl_subscribe_port+0x219/0x490
[ 2634.424527][T10458]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[ 2634.424544][T10458]  ? do_raw_spin_lock+0x128/0x260
[ 2634.424565][T10458]  call_seq_client_ctl+0xa3/0x130
[ 2634.424582][T10458]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 2634.424597][T10458]  snd_seq_oss_midi_open+0x5ad/0x6b0
[ 2634.424610][T10458]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[ 2634.424620][T10458]  ? snd_seq_oss_midi_reset+0x11a/0x4c0
[ 2634.424636][T10458]  ? __mutex_lock+0x26a/0x1b90
[ 2634.424652][T10458]  snd_seq_oss_synth_reset+0x439/0x8e0
[ 2634.424671][T10458]  ? __pfx___mutex_lock+0x10/0x10
[ 2634.424683][T10458]  ? __pfx_snd_seq_oss_synth_reset+0x10/0x10
[ 2634.424703][T10458]  ? __pfx___fsnotify_parent+0x10/0x10
[ 2634.424725][T10458]  snd_seq_oss_reset+0x73/0x290
[ 2634.424741][T10458]  ? __pfx_odev_release+0x10/0x10
[ 2634.424755][T10458]  snd_seq_oss_release+0x7c/0x180
[ 2634.424771][T10458]  ? __pfx_odev_release+0x10/0x10
[ 2634.424785][T10458]  odev_release+0x56/0xa0
[ 2634.424799][T10458]  __fput+0x3ff/0xb40
[ 2634.424814][T10458]  fput_close_sync+0x118/0x250
[ 2634.424828][T10458]  ? __pfx_fput_close_sync+0x10/0x10
[ 2634.424845][T10458]  __ia32_sys_close+0x8b/0x120
[ 2634.424859][T10458]  __do_fast_syscall_32+0xe3/0x8c0
[ 2634.424874][T10458]  do_fast_syscall_32+0x32/0x70
[ 2634.424888][T10458]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2634.424903][T10458] RIP: 0023:0xf70aef6c
[ 2634.424912][T10458] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2634.424923][T10458] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000006
[ 2634.424934][T10458] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[ 2634.424941][T10458] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2634.424947][T10458] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2634.424953][T10458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2634.424960][T10458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2634.424974][T10458]  </TASK>
[ 2634.426110][T23137] usb 7-1: USB disconnect, device number 58
[ 2634.918754][T17207] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[ 2634.966137][T10468] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2635.053944][T10472] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8665'.
[ 2635.062382][T10472] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8665'.
[ 2635.190954][T17207] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2635.195017][T17207] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 2635.198119][T17207] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 2635.201555][T17207] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2635.204419][T17207] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2635.211497][T17207] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 2635.277881][T17207] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -12
[ 2635.362122][T10476] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2635.701480][T10481] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2635.884866][T10484] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2636.249807][ T3929] usb 7-1: new high-speed USB device number 59 using dummy_hcd
[ 2636.378830][ T3929] usb 7-1: device descriptor read/64, error -71
[ 2636.628864][ T3929] usb 7-1: new high-speed USB device number 60 using dummy_hcd
[ 2636.768892][ T3929] usb 7-1: device descriptor read/64, error -71
[ 2636.879034][ T3929] usb usb7-port1: attempt power cycle
[ 2636.959692][T10500] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2637.218937][ T3929] usb 7-1: new high-speed USB device number 61 using dummy_hcd
[ 2637.240724][ T3929] usb 7-1: device descriptor read/8, error -71
[ 2637.432205][T23033] usb 6-1: USB disconnect, device number 69
[ 2637.478850][ T3929] usb 7-1: new high-speed USB device number 62 using dummy_hcd
[ 2637.499262][ T3929] usb 7-1: device descriptor read/8, error -71
[ 2637.609593][ T3929] usb usb7-port1: unable to enumerate USB device
[ 2638.498520][T10524] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2639.060968][T10526] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8678'.
[ 2639.062744][   T40] audit: type=1800 audit(1771954461.074:4033): pid=10528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8680" name="file0" dev="9p" ino=72614297 res=0 errno=0
[ 2639.111860][T10530] 9pnet_virtio: no channels available for device syz
[ 2639.313517][T10532] netlink: 80 bytes leftover after parsing attributes in process `syz.6.8679'.
[ 2639.350104][T10534] kernel read not supported for file /file0 (pid: 10534 comm: syz.6.8682)
[ 2639.353812][   T40] audit: type=1800 audit(1771954461.364:4034): pid=10534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.8682" name="file0" dev="mqueue" ino=168504 res=0 errno=0
[ 2639.413077][T10535] 9pnet_virtio: no channels available for device syz
[ 2640.401137][T10549] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2640.609521][T10551] FAULT_INJECTION: forcing a failure.
[ 2640.609521][T10551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2640.613521][T10551] CPU: 0 UID: 0 PID: 10551 Comm: syz.2.8687 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2640.613538][T10551] Tainted: [L]=SOFTLOCKUP
[ 2640.613543][T10551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2640.613549][T10551] Call Trace:
[ 2640.613554][T10551]  <TASK>
[ 2640.613559][T10551]  dump_stack_lvl+0x100/0x190
[ 2640.613580][T10551]  should_fail_ex.cold+0x5/0xa
[ 2640.613594][T10551]  _copy_to_user+0x32/0xd0
[ 2640.613640][T10551]  simple_read_from_buffer+0xcb/0x170
[ 2640.613659][T10551]  proc_fail_nth_read+0x1af/0x230
[ 2640.613673][T10551]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2640.613687][T10551]  ? rw_verify_area+0xce/0x6d0
[ 2640.613702][T10551]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2640.613715][T10551]  vfs_read+0x1e4/0xb30
[ 2640.613733][T10551]  ? __pfx_vfs_read+0x10/0x10
[ 2640.613749][T10551]  ? find_held_lock+0x2b/0x80
[ 2640.613759][T10551]  ? __fget_files+0x215/0x3d0
[ 2640.613779][T10551]  ? __fget_files+0x21f/0x3d0
[ 2640.613803][T10551]  ksys_read+0x12a/0x250
[ 2640.613820][T10551]  ? __pfx_ksys_read+0x10/0x10
[ 2640.613840][T10551]  do_int80_emulation+0x141/0x6b0
[ 2640.613857][T10551]  asm_int80_emulation+0x1a/0x20
[ 2640.613868][T10551] RIP: 0023:0xf71e5b6b
[ 2640.613877][T10551] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 2640.613888][T10551] RSP: 002b:00000000f549d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2640.613899][T10551] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f549d5d0
[ 2640.613906][T10551] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 2640.613913][T10551] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2640.613919][T10551] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2640.613925][T10551] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2640.613940][T10551]  </TASK>
[ 2641.021280][T10561] FAULT_INJECTION: forcing a failure.
[ 2641.021280][T10561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2641.025710][T10561] CPU: 2 UID: 0 PID: 10561 Comm: syz.1.8691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2641.025728][T10561] Tainted: [L]=SOFTLOCKUP
[ 2641.025732][T10561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2641.025739][T10561] Call Trace:
[ 2641.025744][T10561]  <TASK>
[ 2641.025749][T10561]  dump_stack_lvl+0x100/0x190
[ 2641.025771][T10561]  should_fail_ex.cold+0x5/0xa
[ 2641.025785][T10561]  _copy_from_user+0x2e/0xd0
[ 2641.025804][T10561]  snd_pcm_oss_write2+0x1c2/0x400
[ 2641.025822][T10561]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 2641.025838][T10561]  ? snd_pcm_kernel_ioctl+0x14a/0x2e0
[ 2641.025851][T10561]  ? snd_pcm_oss_prepare+0x11e/0x240
[ 2641.025869][T10561]  snd_pcm_oss_write+0x729/0xa30
[ 2641.025888][T10561]  ? security_file_permission+0x76/0x210
[ 2641.025909][T10561]  vfs_write+0x2aa/0x1070
[ 2641.025927][T10561]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 2641.025946][T10561]  ? __pfx_vfs_write+0x10/0x10
[ 2641.025961][T10561]  ? find_held_lock+0x2b/0x80
[ 2641.025972][T10561]  ? __fget_files+0x215/0x3d0
[ 2641.025988][T10561]  ? __fget_files+0x215/0x3d0
[ 2641.026008][T10561]  ? __fget_files+0x21f/0x3d0
[ 2641.026029][T10561]  ksys_write+0x12a/0x250
[ 2641.026045][T10561]  ? __pfx_ksys_write+0x10/0x10
[ 2641.026063][T10561]  ? __pfx_ksys_write+0x10/0x10
[ 2641.026082][T10561]  __do_fast_syscall_32+0xe3/0x8c0
[ 2641.026099][T10561]  do_fast_syscall_32+0x32/0x70
[ 2641.026113][T10561]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2641.026127][T10561] RIP: 0023:0xf700ef6c
[ 2641.026137][T10561] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2641.026148][T10561] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 2641.026159][T10561] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[ 2641.026166][T10561] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2641.026172][T10561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2641.026179][T10561] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2641.026185][T10561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2641.026199][T10561]  </TASK>
[ 2641.581043][T10566] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[ 2641.583661][T10566] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2641.586784][T10566] vhci_hcd vhci_hcd.0: Device attached
[ 2641.596406][T10567] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 1
[ 2641.702267][  T160] vhci_hcd vhci_hcd.1: stop threads
[ 2641.704594][  T160] vhci_hcd vhci_hcd.1: release socket
[ 2641.729338][  T160] vhci_hcd vhci_hcd.1: disconnect device
[ 2641.759384][ T7099] vhci_hcd vhci_hcd.1: vhci_device speed not set
[ 2641.933939][T10576] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 2641.936100][T10576] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2641.938595][T10576] vhci_hcd vhci_hcd.0: Device attached
[ 2641.942350][T10577] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2642.007914][T10581] FAULT_INJECTION: forcing a failure.
[ 2642.007914][T10581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2642.013475][  T160] vhci_hcd vhci_hcd.3: stop threads
[ 2642.016575][  T160] vhci_hcd vhci_hcd.3: release socket
[ 2642.019523][  T160] vhci_hcd vhci_hcd.3: disconnect device
[ 2642.025228][T10581] CPU: 3 UID: 0 PID: 10581 Comm: syz.2.8697 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2642.025255][T10581] Tainted: [L]=SOFTLOCKUP
[ 2642.025262][T10581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2642.025273][T10581] Call Trace:
[ 2642.025279][T10581]  <TASK>
[ 2642.025286][T10581]  dump_stack_lvl+0x100/0x190
[ 2642.025317][T10581]  should_fail_ex.cold+0x5/0xa
[ 2642.025339][T10581]  _copy_from_user+0x2e/0xd0
[ 2642.025368][T10581]  get_compat_msghdr+0xb3/0x4b0
[ 2642.025389][T10581]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2642.025415][T10581]  ___sys_sendmsg+0x1b6/0x1e0
[ 2642.025443][T10581]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2642.025497][T10581]  __sys_sendmsg+0x170/0x220
[ 2642.025518][T10581]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2642.025552][T10581]  ? __pfx_ksys_write+0x10/0x10
[ 2642.025586][T10581]  __do_fast_syscall_32+0xe3/0x8c0
[ 2642.025636][T10581]  do_fast_syscall_32+0x32/0x70
[ 2642.025656][T10581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2642.025679][T10581] RIP: 0023:0xf70aef6c
[ 2642.025693][T10581] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2642.025710][T10581] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2642.025728][T10581] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080002f80
[ 2642.025739][T10581] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2642.025750][T10581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2642.025760][T10581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2642.025770][T10581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2642.025793][T10581]  </TASK>
[ 2642.539317][T30133] usb 7-1: new high-speed USB device number 63 using dummy_hcd
[ 2642.690745][T30133] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD4, changing to 0x84
[ 2642.694658][T30133] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 51544, setting to 1024
[ 2642.698421][T30133] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1024
[ 2642.703480][T30133] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 2642.706567][T30133] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2642.709375][T30133] usb 7-1: Product: syz
[ 2642.710772][T30133] usb 7-1: Manufacturer: syz
[ 2642.712278][T30133] usb 7-1: SerialNumber: syz
[ 2642.715942][T30133] usb 7-1: config 0 descriptor??
[ 2642.718120][T10585] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 2642.925147][T10585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2642.930255][T10585] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2642.936221][T10585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2642.941072][T10585] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2642.947980][T10585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2642.952320][T10585] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2642.957151][T10585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2642.962553][T10585] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2642.967732][T10585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2642.971626][T10585] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2642.978144][T10585] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 2643.022275][T30133] usb 7-1: USB disconnect, device number 63
[ 2643.136615][T10463] udevd[10463]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2643.364589][T10595] vhci_hcd vhci_hcd.0: port 0 already used
[ 2643.378140][T10595] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2643.524359][T10602] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2643.864735][T10603] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2644.340307][T10608] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2644.980482][T10615] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2645.448805][T10620] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8705'.
[ 2645.452662][T10620] netlink: 'syz.2.8705': attribute type 30 has an invalid length.
[ 2645.465404][T14568] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 2645.469389][T14568] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 2645.473787][T14568] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 2645.474078][T10620] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8705'.
[ 2645.477732][T14568] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 2645.481790][T10620] netlink: 'syz.2.8705': attribute type 30 has an invalid length.
[ 2645.535226][T10623] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[ 2645.535978][T10625] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8704'.
[ 2645.538488][T10623] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2645.538607][T10623] vhci_hcd vhci_hcd.0: Device attached
[ 2645.556245][T10624] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2645.558908][T25716] vhci_hcd vhci_hcd.2: stop threads
[ 2645.560812][T25716] vhci_hcd vhci_hcd.2: release socket
[ 2645.562854][T25716] vhci_hcd vhci_hcd.2: disconnect device
[ 2646.207514][T10633] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8709'.
[ 2646.210432][T10633] netlink: 'syz.3.8709': attribute type 30 has an invalid length.
[ 2646.222662][  T160] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 2646.224023][T10633] FAULT_INJECTION: forcing a failure.
[ 2646.224023][T10633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2646.226258][  T160] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 2646.231666][T10633] CPU: 0 UID: 0 PID: 10633 Comm: syz.3.8709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2646.231692][T10633] Tainted: [L]=SOFTLOCKUP
[ 2646.231699][T10633] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2646.231710][T10633] Call Trace:
[ 2646.231718][T10633]  <TASK>
[ 2646.231725][T10633]  dump_stack_lvl+0x100/0x190
[ 2646.231755][T10633]  should_fail_ex.cold+0x5/0xa
[ 2646.231778][T10633]  _copy_from_user+0x2e/0xd0
[ 2646.231806][T10633]  get_compat_msghdr+0xb3/0x4b0
[ 2646.231826][T10633]  ? _parse_integer_limit+0x17f/0x1d0
[ 2646.231847][T10633]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2646.231869][T10633]  ? _kstrtoull+0x13c/0x1f0
[ 2646.231887][T10633]  ? __pfx__kstrtoull+0x10/0x10
[ 2646.231911][T10633]  ___sys_sendmsg+0x1b6/0x1e0
[ 2646.231940][T10633]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2646.231966][T10633]  ? __lock_acquire+0x4a5/0x2630
[ 2646.231999][T10633]  ? find_held_lock+0x2b/0x80
[ 2646.232031][T10633]  __sys_sendmmsg+0x2ff/0x430
[ 2646.232056][T10633]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 2646.232084][T10633]  ? __fget_files+0x215/0x3d0
[ 2646.232124][T10633]  ? fput+0x79/0x100
[ 2646.232143][T10633]  ? ksys_write+0x1ac/0x250
[ 2646.232170][T10633]  ? __pfx_ksys_write+0x10/0x10
[ 2646.232199][T10633]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 2646.232227][T10633]  ? lockdep_hardirqs_on+0x78/0x100
[ 2646.232247][T10633]  __do_fast_syscall_32+0xe3/0x8c0
[ 2646.232272][T10633]  do_fast_syscall_32+0x32/0x70
[ 2646.232294][T10633]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2646.232316][T10633] RIP: 0023:0xf703ef6c
[ 2646.232333][T10633] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2646.232350][T10633] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[ 2646.232368][T10633] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 2646.232379][T10633] RDX: 00000000000001f2 RSI: 0000000000000000 RDI: 0000000000000000
[ 2646.232391][T10633] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2646.232402][T10633] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2646.232414][T10633] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2646.232435][T10633]  </TASK>
[ 2646.322805][  T160] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 2646.339697][  T160] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 2646.643687][T10636] bond1 (unregistering): Released all slaves
[ 2647.696357][T10647] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2647.774445][T10646] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2647.777284][T10646] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2647.782538][T10646] vhci_hcd vhci_hcd.0: Device attached
[ 2647.850489][T10652] vhci_hcd: connection closed
[ 2647.850706][T25712] vhci_hcd vhci_hcd.3: stop threads
[ 2647.853956][T25712] vhci_hcd vhci_hcd.3: release socket
[ 2647.855821][T25712] vhci_hcd vhci_hcd.3: disconnect device
[ 2648.273981][T10655] FAULT_INJECTION: forcing a failure.
[ 2648.273981][T10655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2648.279576][T10655] CPU: 3 UID: 0 PID: 10655 Comm: syz.1.8713 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2648.279603][T10655] Tainted: [L]=SOFTLOCKUP
[ 2648.279610][T10655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2648.279620][T10655] Call Trace:
[ 2648.279628][T10655]  <TASK>
[ 2648.279635][T10655]  dump_stack_lvl+0x100/0x190
[ 2648.279682][T10655]  should_fail_ex.cold+0x5/0xa
[ 2648.279704][T10655]  _copy_from_user+0x2e/0xd0
[ 2648.279732][T10655]  get_compat_msghdr+0xb3/0x4b0
[ 2648.279754][T10655]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2648.279783][T10655]  ___sys_sendmsg+0x1b6/0x1e0
[ 2648.279812][T10655]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2648.279868][T10655]  __sys_sendmsg+0x170/0x220
[ 2648.279889][T10655]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2648.279917][T10655]  ? __pfx_ksys_write+0x10/0x10
[ 2648.279950][T10655]  __do_fast_syscall_32+0xe3/0x8c0
[ 2648.279976][T10655]  do_fast_syscall_32+0x32/0x70
[ 2648.279997][T10655]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2648.280019][T10655] RIP: 0023:0xf700ef6c
[ 2648.280034][T10655] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2648.280052][T10655] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 2648.280070][T10655] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800010c0
[ 2648.280082][T10655] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[ 2648.280093][T10655] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2648.280104][T10655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2648.280114][T10655] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2648.280138][T10655]  </TASK>
[ 2649.006283][T10671] fuse: Bad value for 'fd'
[ 2649.071853][T10668] futex_wake_op: syz.3.8718 tries to shift op by -1; fix this program
[ 2649.452022][T10691] vhci_hcd vhci_hcd.0: port 0 already used
[ 2649.462324][T10691] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2649.586304][T10694] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2650.490255][T10706] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[ 2650.492544][T10706] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2650.495194][T10706] vhci_hcd vhci_hcd.0: Device attached
[ 2650.512042][T10706] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2650.552778][T10712] netlink: 60 bytes leftover after parsing attributes in process `syz.6.8728'.
[ 2650.556728][T10712] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8728'.
[ 2650.810266][T23137] usb 44-1: SetAddress Request (119) to port 0
[ 2650.813062][T23137] usb 44-1: new SuperSpeed USB device number 119 using vhci_hcd
[ 2651.059285][T10707] vhci_hcd: connection reset by peer
[ 2651.061407][  T160] vhci_hcd vhci_hcd.3: stop threads
[ 2651.063661][  T160] vhci_hcd vhci_hcd.3: release socket
[ 2651.066113][  T160] vhci_hcd vhci_hcd.3: disconnect device
[ 2651.412427][T10724] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2651.831751][T29189] Bluetooth: hci1: Unable to find connection with handle 0x00c9
[ 2651.856094][T10731] netlink: 'syz.1.8732': attribute type 1 has an invalid length.
[ 2651.860141][T10731] bond1: (slave dummy0): Releasing active interface
[ 2651.920100][ T3929] usb 7-1: new high-speed USB device number 64 using dummy_hcd
[ 2651.979580][T10740] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[ 2651.982453][T10740] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2651.985931][T10740] vhci_hcd vhci_hcd.0: Device attached
[ 2651.989567][T10741] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[ 2651.996465][T25712] vhci_hcd vhci_hcd.3: stop threads
[ 2651.998200][T25712] vhci_hcd vhci_hcd.3: release socket
[ 2651.999940][T25712] vhci_hcd vhci_hcd.3: disconnect device
[ 2652.080082][ T3929] usb 7-1: Using ep0 maxpacket: 8
[ 2652.084036][ T3929] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 2652.088324][ T3929] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 2652.093008][ T3929] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 2652.097413][ T3929] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2652.101434][ T3929] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 2652.108803][ T3929] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 2652.113306][ T3929] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2652.116568][ T3929] usb 7-1: Product: syz
[ 2652.118268][ T3929] usb 7-1: Manufacturer: syz
[ 2652.120288][ T3929] usb 7-1: SerialNumber: syz
[ 2652.124437][ T3929] usb 7-1: config 0 descriptor??
[ 2652.132121][ T3929] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input295
[ 2652.312925][T10748] netlink: 60 bytes leftover after parsing attributes in process `syz.6.8737'.
[ 2652.316741][T10748] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8737'.
[ 2652.473458][T10745] ptrace attach of ""[10754] was attempted by "/syz-executor exec"[10745]
[ 2652.600250][T23033] libceph: connect (1)[c::]:6789 error -101
[ 2652.613435][T23033] libceph: mon0 (1)[c::]:6789 connect error
[ 2652.657462][T10755] ceph: No mds server is up or the cluster is laggy
[ 2653.381103][T10765] vhci_hcd vhci_hcd.0: port 0 already used
[ 2653.401321][T10765] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2653.432833][T29189] Bluetooth: hci2: unexpected event for opcode 0x040e
[ 2653.650190][T10725] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 2654.253609][T10773] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2654.400240][T29189] Bluetooth: hci2: unexpected event for opcode 0x040e
[ 2654.726304][T30133] usb 7-1: USB disconnect, device number 64
[ 2655.006283][T10788] syzkaller0: entered promiscuous mode
[ 2655.008826][T10788] syzkaller0: entered allmulticast mode
[ 2655.268714][T10794] binder: 10785:10794 ioctl 400c620e 80000480 returned -22
[ 2655.909144][T10801] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8746'.
[ 2655.978014][T10803] FAULT_INJECTION: forcing a failure.
[ 2655.978014][T10803] name failslab, interval 1, probability 0, space 0, times 0
[ 2655.991257][T10803] CPU: 3 UID: 0 PID: 10803 Comm: syz.1.8748 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2655.991287][T10803] Tainted: [L]=SOFTLOCKUP
[ 2655.991294][T10803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2655.991305][T10803] Call Trace:
[ 2655.991311][T10803]  <TASK>
[ 2655.991319][T10803]  dump_stack_lvl+0x100/0x190
[ 2655.991353][T10803]  should_fail_ex.cold+0x5/0xa
[ 2655.991375][T10803]  ? unregister_netdevice_many_notify+0x903/0x2580
[ 2655.991398][T10803]  should_failslab+0xc2/0x120
[ 2655.991417][T10803]  __kmalloc_noprof+0xe0/0x850
[ 2655.991455][T10803]  unregister_netdevice_many_notify+0x903/0x2580
[ 2655.991478][T10803]  ? __mutex_lock+0x26a/0x1b90
[ 2655.991504][T10803]  ? __lock_acquire+0x4a5/0x2630
[ 2655.991528][T10803]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 2655.991551][T10803]  ? __pfx___mutex_lock+0x10/0x10
[ 2655.991570][T10803]  ? find_held_lock+0x2b/0x80
[ 2655.991597][T10803]  unregister_netdevice_queue+0x30b/0x3c0
[ 2655.991618][T10803]  ? rtnl_net_dev_lock+0x137/0x360
[ 2655.991636][T10803]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 2655.991659][T10803]  ? rtnl_net_dev_lock+0x28/0x360
[ 2655.991676][T10803]  ? rtnl_net_dev_lock+0x146/0x360
[ 2655.991692][T10803]  ? rtnl_net_dev_lock+0x1fe/0x360
[ 2655.991712][T10803]  unregister_netdev+0x1f/0x60
[ 2655.991732][T10803]  slip_hangup+0x16a/0x1d0
[ 2655.991756][T10803]  ? __pfx_slip_hangup+0x10/0x10
[ 2655.991774][T10803]  tty_ldisc_hangup+0x1f8/0x6e0
[ 2655.991800][T10803]  __tty_hangup.part.0+0x3e4/0x7f0
[ 2655.991829][T10803]  tty_ioctl+0xa12/0x1690
[ 2655.991851][T10803]  ? __pfx_tty_ioctl+0x10/0x10
[ 2655.991871][T10803]  ? do_vfs_ioctl+0x226/0x13e0
[ 2655.991896][T10803]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2655.991928][T10803]  ? find_held_lock+0x2b/0x80
[ 2655.991944][T10803]  ? hook_file_ioctl_common+0x146/0x410
[ 2655.991979][T10803]  ? __fget_files+0x21f/0x3d0
[ 2655.992009][T10803]  tty_compat_ioctl+0x87/0x420
[ 2655.992031][T10803]  ? __pfx_tty_compat_ioctl+0x10/0x10
[ 2655.992052][T10803]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 2655.992081][T10803]  __do_fast_syscall_32+0xe3/0x8c0
[ 2655.992105][T10803]  do_fast_syscall_32+0x32/0x70
[ 2655.992127][T10803]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2655.992150][T10803] RIP: 0023:0xf700ef6c
[ 2655.992166][T10803] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[ 2655.992182][T10803] RSP: 002b:00000000f53fd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 2655.992201][T10803] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005437
[ 2655.992212][T10803] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2655.992223][T10803] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2655.992233][T10803] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 2655.992243][T10803] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2655.992269][T10803]  </TASK>
[ 2656.042516][ T1414] sl0 selects TX queue 0, but real number of TX queues is 0
[ 2656.163315][T23137] usb 44-1: device descriptor read/8, error -110
[ 2656.239004][T10807] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[ 2656.241165][T10807] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2656.243767][T10807] vhci_hcd vhci_hcd.0: Device attached
[ 2656.246516][T10808] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 1
[ 2656.251467][ T6269] vhci_hcd vhci_hcd.1: stop threads
[ 2656.258537][ T6269] vhci_hcd vhci_hcd.1: release socket
[ 2656.261102][ T6269] vhci_hcd vhci_hcd.1: disconnect device
[ 2656.653274][ T3631] Bluetooth: hci2: unexpected event for opcode 0x040e
[ 2656.852439][T23137] usb usb44-port1: attempt power cycle
[ 2656.916994][T10824] 9pnet_virtio: no channels available for device syz
[ 2657.063127][T10826] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[ 2657.065404][T10826] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 2657.076519][T10826] vhci_hcd vhci_hcd.0: Device attached
[ 2657.087426][T10826] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 2657.223870][T10830] Bluetooth: hci0: load_link_keys: too big key_count value 53767
[ 2657.370585][T30133] usb 42-1: SetAddress Request (6) to port 0
[ 2657.373149][T30133] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 2657.409529][T10833] netlink: 48 bytes leftover after parsing attributes in process `syz.6.8756'.
[ 2657.415573][T10833] netlink: 48 bytes leftover after parsing attributes in process `syz.6.8756'.
[ 2657.450997][T23137] usb usb44-port1: unable to enumerate USB device
[ 2657.452792][T29189] Bluetooth: hci1: Unable to find connection with handle 0x00c9
[ 2657.677810][T10827] vhci_hcd: connection reset by peer
[ 2657.680272][ T6268] vhci_hcd vhci_hcd.2: stop threads
[ 2657.682512][ T6268] vhci_hcd vhci_hcd.2: release socket
[ 2657.684300][ T6268] vhci_hcd vhci_hcd.2: disconnect device
[ 2658.286382][T10840] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 2659.044041][T10855] binder: 10844:10855 ioctl 400c620e 80000480 returned -22
[ 2659.271798][ T3631] Bluetooth: hci2: unexpected event for opcode 0x040e
[ 2660.120874][T10884] netlink: 60 bytes leftover after parsing attributes in process `syz.3.8770'.
[ 2660.990931][ T7099] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[ 2661.117086][T10899] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 2661.140789][ T7099] usb 6-1: Using ep0 maxpacket: 16
[ 2661.152058][ T7099] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2661.157216][ T7099] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 2661.160224][ T7099] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2661.162831][ T7099] usb 6-1: Product: syz
[ 2661.164176][ T7099] usb 6-1: Manufacturer: syz
[ 2661.165667][ T7099] usb 6-1: SerialNumber: syz
[ 2661.169059][ T7099] usb 6-1: config 0 descriptor??
[ 2661.175311][ T7099] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 2661.178349][ T7099] em28xx 6-1:0.0: DVB interface 0 found: bulk
[ 2661.791273][ T7099] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[ 2662.451014][T30133] usb 42-1: device descriptor read/8, error -110
[ 2662.841982][T30133] usb usb42-port1: attempt power cycle
[ 2663.332605][ T7099] em28xx 6-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[ 2663.338807][ T7099] em28xx 6-1:0.0: board has no eeprom
[ 2663.341292][T10888] em28xx 6-1:0.0: writing to i2c device at 0xfffe failed (error=-5)
[ 2663.401055][ T7099] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 2663.405330][T30133] usb usb42-port1: unable to enumerate USB device
[ 2663.408524][ T7099] em28xx 6-1:0.0: dvb set to bulk mode.
[ 2663.411489][T30133] em28xx 6-1:0.0: Binding DVB extension
[ 2663.427431][ T7099] usb 6-1: USB disconnect, device number 70
[ 2663.435552][ T7099] em28xx 6-1:0.0: Disconnecting em28xx
[ 2663.458535][T30133] em28xx 6-1:0.0: Registering input extension
[ 2663.464653][ T7099] em28xx 6-1:0.0: Closing input extension
[ 2663.477560][ T7099] em28xx 6-1:0.0: Freeing device
[ 2669.141835][T11028] overlayfs: failed to clone upperpath
[ 2670.483422][T11068] hub 8-0:1.0: USB hub found
[ 2670.499045][T11068] hub 8-0:1.0: 1 port detected
[ 2672.462512][T23033] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[ 2672.474720][T23033] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 2674.688069][T11142] syzkaller0: entered promiscuous mode
[ 2674.690439][T11142] syzkaller0: entered allmulticast mode
[ 2675.347187][T11152] netlink: 988 bytes leftover after parsing attributes in process `syz.3.8856'.
[ 2676.562551][ T7099] usb 8-1: new high-speed USB device number 75 using dummy_hcd
[ 2676.715808][ T7099] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2676.741196][ T7099] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 2676.745464][ T7099] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2676.751984][ T7099] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 2676.754759][ T7099] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2676.757239][ T7099] usb 8-1: Product: syz
[ 2676.758528][ T7099] usb 8-1: Manufacturer: syz
[ 2676.759962][ T7099] usb 8-1: SerialNumber: syz
[ 2676.769613][ T7099] hub 8-1:1.0: bad descriptor, ignoring hub
[ 2676.771473][ T7099] hub 8-1:1.0: probe with driver hub failed with error -5
[ 2676.993317][ T7099] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 75 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2677.314009][ T7099] usb 8-1: USB disconnect, device number 75
[ 2677.322735][ T7099] usblp0: removed
[ 2680.203682][T11204] netlink: 168 bytes leftover after parsing attributes in process `syz.2.8873'.
[ 2680.850457][ T3631] Bluetooth: hci3: ACL packet for unknown connection handle 201
[ 2682.145944][T11242] netlink: 72 bytes leftover after parsing attributes in process `syz.3.8886'.
[ 2682.339102][T11243] netlink: 48 bytes leftover after parsing attributes in process `syz.1.8887'.
[ 2683.337903][T11265] netlink: 168 bytes leftover after parsing attributes in process `syz.1.8895'.
[ 2683.347178][T11265] netlink: 168 bytes leftover after parsing attributes in process `syz.1.8895'.
[ 2684.149189][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8904'.
[ 2684.157673][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8904'.
[ 2684.161495][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8904'.
[ 2684.166458][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8904'.
[ 2684.169707][T11292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8904'.
[ 2685.064888][ T3631] Bluetooth: hci1: ACL packet for unknown connection handle 200
[ 2685.069971][T11322] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 2685.072108][T11322] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 2685.074725][T11322] vhci_hcd vhci_hcd.0: Device attached
[ 2685.312704][ T3929] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[ 2685.322747][T11323] vhci_hcd: connection reset by peer
[ 2685.324997][T14568] vhci_hcd vhci_hcd.3: stop threads
[ 2685.326753][T14568] vhci_hcd vhci_hcd.3: release socket
[ 2685.328627][T14568] vhci_hcd vhci_hcd.3: disconnect device
[ 2685.908047][T11341] netlink: 112 bytes leftover after parsing attributes in process `syz.2.8921'.
[ 2686.456273][T11350] siw: device registration error -23
[ 2687.763942][T11376] __nla_validate_parse: 1 callbacks suppressed
[ 2687.763956][T11376] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8933'.
[ 2690.443061][ T3929] vhci_hcd vhci_hcd.3: vhci_device speed not set
[ 2691.253121][T11390] syz.1.8939 (11390) used greatest stack depth: 18704 bytes left
[ 2691.343586][T11407] syzkaller1: entered promiscuous mode
[ 2691.345698][T11407] syzkaller1: entered allmulticast mode
[ 2691.387271][T11404] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2692.596172][T11417] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 2692.599157][T11417] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 2692.606124][T11417] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2692.608135][T11417] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 2692.614748][T11417] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2692.616706][T11417] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[ 2692.629061][T29189] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2692.641701][T29189] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2692.645804][T29189] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2692.660470][T29189] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2692.665819][T29189] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2692.682340][ T3631] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2692.688770][ T3631] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2692.702707][ T3631] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2692.710494][ T3631] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2692.715574][ T3631] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2692.757895][T11457] wg2 speed is unknown, defaulting to 1000
[ 2692.774227][ T7099] usb 7-1: new high-speed USB device number 65 using dummy_hcd
[ 2692.845550][T11473] tipc: Started in network mode
[ 2692.847353][T11473] tipc: Node identity d6b17d1c881e, cluster identity 4711
[ 2692.849667][T11473] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2692.885180][T11473] syzkaller0: entered promiscuous mode
[ 2692.887426][T11473] syzkaller0: entered allmulticast mode
[ 2692.889619][T11473] tipc: Resetting bearer <eth:syzkaller0>
[ 2692.903598][T11472] tipc: Resetting bearer <eth:syzkaller0>
[ 2692.953232][ T7099] usb 7-1: Using ep0 maxpacket: 16
[ 2692.958012][ T7099] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 2692.964350][ T7099] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 2692.968175][ T7099] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2692.971469][ T7099] usb 7-1: Product: syz
[ 2692.973424][ T7099] usb 7-1: Manufacturer: syz
[ 2692.975496][ T7099] usb 7-1: SerialNumber: syz
[ 2692.979041][ T7099] usb 7-1: config 0 descriptor??
[ 2692.984335][ T7099] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 2692.988259][ T7099] em28xx 7-1:0.0: DVB interface 0 found: bulk
[ 2693.599467][ T7099] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[ 2694.232181][ T7099] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 2694.234981][ T7099] em28xx 7-1:0.0: board has no eeprom
[ 2694.303403][ T7099] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 2694.306166][ T7099] em28xx 7-1:0.0: dvb set to bulk mode.
[ 2694.315692][ T7099] usb 7-1: USB disconnect, device number 65
[ 2694.318352][ T7099] em28xx 7-1:0.0: Disconnecting em28xx
[ 2694.320239][T30133] em28xx 7-1:0.0: Binding DVB extension
[ 2694.441138][T30133] em28xx 7-1:0.0: Registering input extension
[ 2694.443788][ T7099] em28xx 7-1:0.0: Closing input extension
[ 2694.474480][ T7099] em28xx 7-1:0.0: Freeing device
[ 2694.549831][T11472] tipc: Disabling bearer <eth:syzkaller0>
[ 2694.558248][ T3929] tipc: Node number set to 1588559132
[ 2694.625004][T11457] chnl_net:caif_netlink_parms(): no params data found
[ 2694.676453][T11457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2694.678809][T11457] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2694.681140][T11457] bridge_slave_0: entered allmulticast mode
[ 2694.684168][T11457] bridge_slave_0: entered promiscuous mode
[ 2694.687498][T11457] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2694.689789][T11457] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2694.692532][T11457] bridge_slave_1: entered allmulticast mode
[ 2694.696039][T11457] bridge_slave_1: entered promiscuous mode
[ 2694.712523][T11494] hub 8-0:1.0: USB hub found
[ 2694.715934][T11457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2694.734914][T11494] hub 8-0:1.0: 1 port detected
[ 2694.736471][T11457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2694.754775][T11457] team0: Port device team_slave_0 added
[ 2694.758126][T11457] team0: Port device team_slave_1 added
[ 2694.772223][T11457] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2694.774720][T11457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2694.783737][T11457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2694.785434][ T3631] Bluetooth: hci4: command tx timeout
[ 2694.788230][T11457] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2694.792344][T11457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2694.801547][T11457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2694.827862][T11457] hsr_slave_0: entered promiscuous mode
[ 2694.830257][T11457] hsr_slave_1: entered promiscuous mode
[ 2694.832512][T11457] debugfs: 'hsr0' already exists in 'hsr'
[ 2694.834759][T11457] Cannot create hsr debugfs directory
[ 2695.053394][ T7099] usb 7-1: new low-speed USB device number 66 using dummy_hcd
[ 2695.166425][T11457] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 2695.171562][T11457] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 2695.186089][T11457] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 2695.190971][T11457] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 2695.207806][T11457] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2695.210179][T11457] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2695.212599][T11457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2695.215067][T11457] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2695.262212][T11457] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2695.272528][T25712] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2695.275478][T25712] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2695.283025][T11457] 8021q: adding VLAN 0 to HW filter on device team0
[ 2695.290946][T25712] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2695.293358][T25712] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2695.304200][ T7099] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 2695.313850][T25716] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2695.316748][T25716] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2695.321085][ T7099] usb 7-1: unable to read config index 0 descriptor/start: -71
[ 2695.325510][ T7099] usb 7-1: can't read configurations, error -71
[ 2695.447102][T11457] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2695.591533][T11457] veth0_vlan: entered promiscuous mode
[ 2695.597535][T11457] veth1_vlan: entered promiscuous mode
[ 2695.616055][T11457] veth0_macvtap: entered promiscuous mode
[ 2695.620186][T11457] veth1_macvtap: entered promiscuous mode
[ 2695.644686][T11457] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2695.651774][T11457] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2695.659190][T25712] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2695.662109][ T6268] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2695.669460][ T6268] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2695.672395][ T6268] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2695.710776][  T160] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2695.714436][  T160] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2695.733460][ T6268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2695.736023][ T6268] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2695.893701][T17207] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[ 2696.043462][T17207] usb 6-1: Using ep0 maxpacket: 8
[ 2696.046822][T17207] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 2696.050297][T17207] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2696.054531][T17207] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2696.058486][T17207] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2696.062104][T17207] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2696.067524][T17207] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 2696.071218][T17207] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2696.286423][T17207] usb 6-1: usb_control_msg returned -32
[ 2696.288830][T17207] usbtmc 6-1:16.0: can't read capabilities
[ 2696.385567][T11537] binder: 11534:11537 unknown command 0
[ 2696.387848][T11537] binder: 11534:11537 ioctl c0306201 80000280 returned -22
[ 2696.853595][ T3631] Bluetooth: hci4: command tx timeout
[ 2696.909487][T11553] vxcan1: tx drop: invalid sa for name 0x0000000000000001
[ 2697.002954][T11555] usbtmc 6-1:16.0: CHECK_CLEAR_STATUS returned 3
[ 2697.202592][ T7099] usb 6-1: USB disconnect, device number 71
[ 2697.817872][T11570] binder: 11566:11570 ioctl c00c6211 ffffffff returned -14
[ 2698.535672][T11584] netlink: 'syz.2.8996': attribute type 4 has an invalid length.
[ 2698.543869][  T160] BUG: unable to handle page fault for address: ffffed1012e2a200
[ 2698.547310][  T160] #PF: supervisor read access in kernel mode
[ 2698.551023][  T160] #PF: error_code(0x0000) - not-present page
[ 2698.554051][  T160] PGD 7ffd5067 P4D 7ffd5067 PUD 3fffa067 PMD 0 
[ 2698.556751][  T160] Oops: Oops: 0000 [#1] SMP KASAN NOPTI
[ 2698.559142][  T160] CPU: 0 UID: 0 PID: 160 Comm: kworker/u32:6 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2698.564017][  T160] Tainted: [L]=SOFTLOCKUP
[ 2698.565933][  T160] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 2698.570256][  T160] Workqueue: krds_cp_wq#3/0 rds_connect_worker
[ 2698.572954][  T160] RIP: 0010:ip_route_output_key_hash_rcu+0x6c0/0x2870
[ 2698.575856][  T160] Code: 24 30 48 85 ed 0f 84 91 14 00 00 e8 8a 5b 1d f8 48 83 c5 30 e8 81 5b 1d f8 48 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 06 1e 00 00 48 8b 6d 00 e8 8d 1f a2 01 31 ff 41
[ 2698.583900][  T160] RSP: 0000:ffffc90002b4f5a8 EFLAGS: 00010a06
[ 2698.586521][  T160] RAX: dffffc0000000000 RBX: ffff888077af5f48 RCX: ffffffff89eab482
[ 2698.589843][  T160] RDX: 1ffff11012e2a200 RSI: ffffffff89ea9fbf RDI: ffff888048feba58
[ 2698.593014][  T160] RBP: ffff888097151000 R08: 0000000000000001 R09: 0000000000000000
[ 2698.596328][  T160] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888048feba20
[ 2698.599516][  T160] R13: ffff8880293b3c00 R14: ffffc90002b4f658 R15: ffff88804afaa000
[ 2698.602699][  T160] FS:  0000000000000000(0000) GS:ffff888097151000(0000) knlGS:0000000000000000
[ 2698.606316][  T160] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2698.608935][  T160] CR2: ffffed1012e2a200 CR3: 00000000402f6000 CR4: 0000000000352ef0
[ 2698.612144][  T160] Call Trace:
[ 2698.613534][  T160]  <TASK>
[ 2698.614770][  T160]  ip_route_output_key_hash+0x118/0x2b0
[ 2698.617013][  T160]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 2698.619567][  T160]  ? __lock_acquire+0x4a5/0x2630
[ 2698.621675][  T160]  ip_route_output_flow+0x27/0x150
[ 2698.623852][  T160]  tcp_v4_connect+0x8e8/0x1bf0
[ 2698.625897][  T160]  ? __pfx_tcp_v4_connect+0x10/0x10
[ 2698.628083][  T160]  ? __lock_acquire+0x4a5/0x2630
[ 2698.630185][  T160]  ? __lock_acquire+0x4a5/0x2630
[ 2698.632266][  T160]  __inet_stream_connect+0x208/0xfa0
[ 2698.634483][  T160]  ? __pfx___inet_stream_connect+0x10/0x10
[ 2698.636997][  T160]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2698.639337][  T160]  ? __local_bh_enable_ip+0x9e/0x120
[ 2698.641658][  T160]  inet_stream_connect+0x57/0xa0
[ 2698.643840][  T160]  kernel_connect+0x107/0x160
[ 2698.645963][  T160]  ? __pfx_kernel_connect+0x10/0x10
[ 2698.648236][  T160]  ? __local_bh_enable_ip+0x9e/0x120
[ 2698.650551][  T160]  rds_tcp_conn_path_connect+0x72b/0xaa0
[ 2698.653038][  T160]  ? __pfx_rds_tcp_conn_path_connect+0x10/0x10
[ 2698.655711][  T160]  ? debug_object_deactivate+0x2e4/0x3b0
[ 2698.658004][  T160]  rds_connect_worker+0x1b4/0x2d0
[ 2698.659689][  T160]  process_one_work+0x9d7/0x1920
[ 2698.661433][  T160]  ? __pfx_process_one_work+0x10/0x10
[ 2698.663232][  T160]  ? __pfx_rds_connect_worker+0x10/0x10
[ 2698.665095][  T160]  worker_thread+0x5da/0xe40
[ 2698.666665][  T160]  ? __pfx_worker_thread+0x10/0x10
[ 2698.668497][  T160]  ? kthread+0x13a/0x450
[ 2698.670018][  T160]  ? __pfx_worker_thread+0x10/0x10
[ 2698.671739][  T160]  kthread+0x370/0x450
[ 2698.673144][  T160]  ? __pfx_kthread+0x10/0x10
[ 2698.674723][  T160]  ret_from_fork+0x754/0xd80
[ 2698.676287][  T160]  ? __pfx_ret_from_fork+0x10/0x10
[ 2698.678098][  T160]  ? __switch_to+0x7b4/0x1120
[ 2698.679747][  T160]  ? __pfx_kthread+0x10/0x10
[ 2698.681293][  T160]  ret_from_fork_asm+0x1a/0x30
[ 2698.682902][  T160]  </TASK>
[ 2698.683988][  T160] Modules linked in:
[ 2698.685337][  T160] CR2: ffffed1012e2a200
[ 2698.686750][  T160] ---[ end trace 0000000000000000 ]---
[ 2698.688611][  T160] RIP: 0010:ip_route_output_key_hash_rcu+0x6c0/0x2870
[ 2698.690891][  T160] Code: 24 30 48 85 ed 0f 84 91 14 00 00 e8 8a 5b 1d f8 48 83 c5 30 e8 81 5b 1d f8 48 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 06 1e 00 00 48 8b 6d 00 e8 8d 1f a2 01 31 ff 41
[ 2698.697155][  T160] RSP: 0000:ffffc90002b4f5a8 EFLAGS: 00010a06
[ 2698.699367][  T160] RAX: dffffc0000000000 RBX: ffff888077af5f48 RCX: ffffffff89eab482
[ 2698.702027][  T160] RDX: 1ffff11012e2a200 RSI: ffffffff89ea9fbf RDI: ffff888048feba58
[ 2698.704633][  T160] RBP: ffff888097151000 R08: 0000000000000001 R09: 0000000000000000
[ 2698.707275][  T160] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888048feba20
[ 2698.710027][  T160] R13: ffff8880293b3c00 R14: ffffc90002b4f658 R15: ffff88804afaa000
[ 2698.712656][  T160] FS:  0000000000000000(0000) GS:ffff888097151000(0000) knlGS:0000000000000000
[ 2698.715621][  T160] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2698.717852][  T160] CR2: ffffed1012e2a200 CR3: 00000000402f6000 CR4: 0000000000352ef0
[ 2698.720777][  T160] Kernel panic - not syncing: Fatal exception
[ 2698.723575][  T160] Kernel Offset: disabled
[ 2698.725040][  T160] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:26:48  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857699f5 RDI=ffffffff9b486f80 RBP=ffffffff9b486f40 RSP=ffffc90002b4edf8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=707573203a465023
R12=0000000000000000 R13=000000000000006c R14=0000000000000010 R15=ffffffff85769990
RIP=ffffffff85769a1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097151000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=ffffed1012e2a200 CR3=00000000402f6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffff88802b33c480 RCX=ffffffff81fbc54e RDX=ffff88801bf68000
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc9000044fcd8 RSP=ffffc9000044fb78
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=ffff88802b533ca0
R12=1ffff92000089f78 R13=ffffed1005667891 R14=0000000000000003 R15=0000000000000001
RIP=ffffffff8207f5f8 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097251000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000033b11ff8 CR3=000000004d1c2000 CR4=00352ef0
DR0=0000000000000003 DR1=0000000000000005 DR2=0000000000000007 DR3=0000000000000010 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000201 RBX=00000000bbfb4bee RCX=ffffffff84f3d5f4 RDX=00000000000002f5
RSI=0000000000000000 RDI=0000000000000007 RBP=ffff888075ad8d0b RSP=ffffc9000382f190
R8 =0000000000000007 R9 =0000000000000000 R10=00000000000002f6 R11=0000000000000012
R12=dffffc0000000000 R13=00000000000002f5 R14=00000000000002f4 R15=0000000000000000
RIP=ffffffff8207f437 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f10fb80b300 ffffffff 00c00000
GS =0000 ffff888097351000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000561501717000 CR3=00000000245d3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000232b 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7873a101ffffffff ffffffffdf0808a6 ffe003140000019b 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0398030408000390 0342080003880300 08000380030fffff ffff020008000398
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800068002010000 0008060a0144980f ffffffff020fffff ffff020fffffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 020fffffffff020f ffffffff02000800 0c01518e0fffffff ff020480080001dd
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 93f5eef9c0c493e4 080008a6ffe00208 00449464bd880100 0000000000001a74
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0066b80300080066 b00306080066a803 0fffffffff0266a0 0310808080800800
ZMM25=d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8 d0b7e5f8d0b7e5f8
ZMM26=d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6 d18105b6d18105b6
ZMM27=e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7 e9ff3af7e9ff3af7
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=753e0000753e0000 753e0000753e0000 753e0000753e0000 753e0000753e0000 753e0000753e0000 753e0000753e0000 753e0000753e0000 753e0000753e0000
info registers vcpu 3

CPU#3
RAX=000000000190436c RBX=ffff88801bfda480 RCX=ffffffff8b8ccc75 RDX=0000000000000001
RSI=ffffffff8c1aeda0 RDI=ffffffff81dde1cb RBP=0000000000000003 RSP=ffffc9000048fdf0
R8 =0000000000000000 R9 =ffffed10056a6795 R10=ffff88802b533cab R11=0000000000000001
R12=ffffed10037fb490 R13=0000000000000003 R14=ffffffff90d98f10 R15=0000000000000000
RIP=ffffffff8b8cb5df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097451000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f9028d19d20 CR3=000000004d11f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000019800000000 0000000700000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000