last executing test programs:

57.135879535s ago: executing program 3 (id=1552):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003400), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003440)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000003500)={0x0, 0x0, &(0x7f00000034c0)={&(0x7f0000000380)={0x24, r2, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x11, 0x3, r3}, @void}}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x4085}, 0x20008080)

57.031910466s ago: executing program 3 (id=1553):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x28, r1, 0x5, 0x70bd29, 0x25dedaff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x1}]}]}, 0x28}}, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
close(r3)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000a80)=@newtfilter={0x94, 0x2c, 0xd3f, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0xc, 0x4}, {0x0, 0x9}, {0xf, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x68, 0x2, [@TCA_U32_SEL={0x54, 0x5, {0x10, 0x8, 0x4, 0xd, 0x6, 0x4, 0x4, 0x7, [{0x5, 0x6, 0x2, 0x8e}, {0x4, 0x200, 0x0, 0x7}, {0x8, 0x3, 0x8, 0x3ff}, {0x2, 0x9, 0x9, 0x6}]}}, @TCA_U32_LINK={0x8, 0x3, 0x5}, @TCA_U32_FLAGS={0x8, 0xb, 0x2}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0x1}, 0x20040054)
ioctl$BTRFS_IOC_QUOTA_CTL(r3, 0xc0109428, &(0x7f0000000080)={0x2, 0x80a})
r7 = memfd_create(&(0x7f00000002c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9\xd6\x1c\x1b*\x9a!?\x7f\xa5\xad\x9a,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{&\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+\x02\x00\x00\x00\x00\x00\x00\x00\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5', 0x2)
write$binfmt_misc(r7, &(0x7f0000000040)="e502", 0x2)
execveat(r7, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

56.972120443s ago: executing program 3 (id=1555):
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000240)={'batadv_slave_0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f00000000c0)={@remote, @private0, @empty, 0x40003, 0x40, 0x5, 0x100, 0x3f00, 0x590043, r2})

56.971660062s ago: executing program 3 (id=1556):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x2000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="240000001300000000000007000000", @ANYRES32=0x0, @ANYBLOB="000000000000000004001a80"], 0x24}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000300)={0x666666666666799})
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
timer_create(0x0, 0x0, &(0x7f0000000000))
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
mmap(&(0x7f000097b000/0x2000)=nil, 0x2000, 0xb, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000042f000/0x800000)=nil, 0x80fd00, 0x15)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x1}, @NFT_OBJECT_QUOTA=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}}, @NFT_MSG_NEWSET={0x15c, 0x9, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_SET_EXPRESSIONS={0x14, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @lookup={{0xb}, @void}}]}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x25}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x11}, @NFTA_SET_DESC={0xfc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_DESC_CONCAT={0xd8, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x81}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffe5c}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffffa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffffc}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf69}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3202}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x401}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x38}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffff908}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ffffffd}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x100}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffffff75}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x3}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x16}, @NFTA_SET_ID={0x8}, @NFTA_SET_DATA_TYPE={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x1a4}, 0x1, 0x0, 0x0, 0x40}, 0x1)
llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

56.790397598s ago: executing program 3 (id=1559):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="ff000000", @ANYRES16=r2, @ANYBLOB="010029bd7000000000000200000008000300", @ANYRES32=r1, @ANYBLOB="0c00990041000000600000000800a0007c030000080026009a03000008009f00"], 0x40}}, 0x0)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f00000003c0), r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x58, r3, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfff}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x401}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x9e40}]}, 0x58}}, 0x4)
r5 = socket(0x10, 0x3, 0x0)
write(r5, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
recvmmsg(r5, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
r8 = gettid()
tkill(r8, 0x7)
capset(&(0x7f0000000040)={0x19980330, r8}, &(0x7f0000000180)={0x401, 0x0, 0x3, 0x0, 0x0, 0x3})
r9 = socket(0xa, 0x1, 0x0)
ioctl(r9, 0x8936, 0x0)
sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r2, 0x200, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x60}]}, 0x24}, 0x1, 0x0, 0x0, 0x8001}, 0x8888)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000314230c2abd7000ffdbdf250900020073797a3100000000080041007369770014003300766972745f77696669300000000000000900020073797a31000000000800410073697700140002"], 0x60}, 0x1, 0x0, 0x0, 0x400c080}, 0x0) (fail_nth: 7)

56.180813934s ago: executing program 3 (id=1560):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
io_setup(0x973, &(0x7f0000000380)=<r1=>0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000280)={'wg0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000001a00010029bd700000000000022020050003c80000000000080002000a01010008000100ac1414aa08000300", @ANYRES32=r3], 0x60}}, 0x0)
unshare(0x0) (async)
r4 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffb, 0x7, 0x4, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="a109a81b133dce", 0x0, 0x0, 0x10012, 0x0, 0x0}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000000c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x20, 0x0) (async)
r5 = eventfd2(0x0, 0x0)
io_submit(r1, 0x1, &(0x7f00000006c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) (async)
io_getevents(r1, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) (async)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
write(r6, 0x0, 0x0) (async)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3, r5}])

56.134710332s ago: executing program 32 (id=1560):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
io_setup(0x973, &(0x7f0000000380)=<r1=>0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000280)={'wg0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000001a00010029bd700000000000022020050003c80000000000080002000a01010008000100ac1414aa08000300", @ANYRES32=r3], 0x60}}, 0x0)
unshare(0x0) (async)
r4 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffb, 0x7, 0x4, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="a109a81b133dce", 0x0, 0x0, 0x10012, 0x0, 0x0}) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000000c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x20, 0x0) (async)
r5 = eventfd2(0x0, 0x0)
io_submit(r1, 0x1, &(0x7f00000006c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) (async)
io_getevents(r1, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) (async)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
write(r6, 0x0, 0x0) (async)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3, r5}])

5.480859453s ago: executing program 0 (id=1951):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_KEY(r0, 0x0, 0x0)

5.401022441s ago: executing program 0 (id=1953):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCOUTQ(r1, 0x5411, &(0x7f0000000080))
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCINITREPORT(r2, 0x4805, 0x0)
ioctl$HIDIOCGUSAGE(r2, 0x501c4814, &(0x7f0000000000)={0x2, 0x100, 0x8b3, 0x8, 0xfffffff7, 0x8})

4.680976799s ago: executing program 1 (id=1962):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070020214200"], 0x50)
socket(0x2c, 0x3, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@file={0x0, './file2\x00'}, 0x6e)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x85, 0x0, &(0x7f0000000500)=0x8f00)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x2d05, &(0x7f00000000c0)={0x0, 0x8e3f, 0x800, 0x2, 0x101}, &(0x7f0000000140), &(0x7f0000000180))
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0), 0xc2000, 0x0)
preadv(r4, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/60, 0x3c}], 0x1, 0x8000, 0x2)
io_uring_register$IORING_REGISTER_MEM_REGION(r3, 0x22, &(0x7f0000000240)={&(0x7f0000000200)={&(0x7f00000001c0), 0x0, 0x0, 0xc45, 0x1}}, 0x1)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r8, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x1, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)

3.621766533s ago: executing program 1 (id=1964):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="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", 0xfc}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356257181e43b6e60349f69ec5f529734f76708a6c5eccb57005c1a513d8030d12c", 0x41}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae3776203e2054240594f1c9b77ad77cf3f5631012fa0788c5b17f98cc34720b0", 0xf3}, {&(0x7f0000000fc0)="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", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe878a", 0x15}, {&(0x7f00000011c0)}, {&(0x7f0000001200)="43979d4537ac96f6e22b12acd1fdd3ffc7ef440e65e2e70d511a408f743d4ce7516f4364a00a041dc7b1ffe56ebc713b158ea1aab13ce3db53ab8af3f76ffaa86df636018175c4a8ea922a193ad08ca30d5031b27a4a87bff93dc12a98b6e4f25b5550d98a5bf3e040a8902083eea93bdbde6da91df3a730dd2b8215e9840f04dd0ab667500fe952fa1b8845c2cee50f8322175049c4a994def6599287fb0f8d61029188945e9b273cded03bf8a0c2da5168461dafc53f865fab513453ed3d95bd82ab0bb24a32deb3a229be42837b0c57e0c60c042d83c7bf866828342f3e6e1bdef6", 0xe3}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667119d193444ed6c60c641f54a3826524167885f2542", 0xbd}], 0x9, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {0x0}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.621556756s ago: executing program 0 (id=1965):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000700)={0x24, &(0x7f0000000480)={0x0, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000280)={&(0x7f0000000200)=[{0x0, 0x4000, 0x0, 0x0}], 0x1})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000940)={0x34, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})

3.539774148s ago: executing program 1 (id=1969):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
r3 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000040)=[{0x48, 0x0, 0x0, 0xffeffffe}, {0x16}]}, 0x10)
sendto$inet6(r3, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x20004815)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="4fc480a5e24611f84f58a96b9fc113e9ed7409143926ddc431a237e93af6a9db9c85c4f758c03cffa79f4f421b5247870fa2c8f83ebf1a4f28a5c0e9638f652c46d80571b850e5a6375c66d1f0bcff0e6082ef36ebe674045522ecd78cc15428d58658efb6326d1b03c457276601337f320100aa4b95af850dfb8d72cfe59a387d9790e509edf9a542a8ab2198f060562cd5437f9ad4f870d3ea35d14f1716515bcbf87bddc058d67de62caa7c41d18b1b82b01d4644303878c7518be74a63cdf314229c7834c2060ef7725d1610122cc383aea9e77dfeabbd06d720b68595435416da69dfbdfa77"], 0x7)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[0x0], 0x0, 0x0, 0x0, 0x1})
r5 = syz_open_dev$dri(0x0, 0x8004, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000440), 0x0})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, 0x0)
r6 = openat$hpet(0xffffff9c, 0x0, 0x50680, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, &(0x7f0000000280)={0xa, 0x4e20, 0x10, @rand_addr=' \x01\x00', 0x100007}, 0x1c)
r8 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x6e, 0x0, 0x2, 0x20, 0x3, 0x2, 0x106c, 0x100, 0x8000000000000, 0x80000004000080, 0x0, 0x8, 0x0, 0x4, 0x0, 0xf496], 0x1, 0x3c4210})
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
sendmsg(r7, &(0x7f00000000c0)={0x0, 0x9511, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
unlink(0x0)

3.371069012s ago: executing program 4 (id=1971):
ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, &(0x7f0000000240)={{0x3, 0x100, 0x5, 0xb7a4, 0x1, 0xffff}, 0x341, [0xc, 0x40, 0xcd6, 0x4, 0x6, 0x0, 0x3, 0x7, 0x9, 0x7a18fde9, 0x9, 0xf12, 0x4, 0x3, 0x378, 0x350bae1a, 0x4, 0x0, 0x1, 0xffff06bd, 0x0, 0xd4f, 0x7, 0xf2, 0x10, 0x5, 0x8, 0x10001, 0x401, 0x80000000, 0x2401, 0x3ca5, 0x1, 0x0, 0xff, 0x4, 0x4, 0x3, 0x0, 0x0, 0x40000000, 0x80000000, 0x7fff, 0x7, 0x3, 0xa, 0x0, 0x10000, 0x401, 0x8, 0xffff, 0x91ba, 0x7, 0x9, 0x1, 0xb6, 0x24, 0xcb, 0x5, 0x7f, 0x5, 0x311, 0x66d1, 0xfffffffd, 0xa7d6, 0xb6eb, 0xc74, 0x77, 0x1, 0xff, 0x5cb5, 0xfffffffe, 0x401, 0xedf4, 0x4, 0x1000, 0x6, 0xfffffffe, 0x8001, 0xc1, 0x1, 0x8, 0x1, 0x32, 0x98, 0x7f, 0x0, 0x401, 0x2, 0x2, 0x4680, 0x7, 0xe665, 0x3c6e, 0x3, 0x40, 0x80, 0x4b, 0x8000, 0x2, 0xb, 0x6, 0x4fa4, 0x80000002, 0x1, 0xb, 0x0, 0xfffffffa, 0x3, 0x9, 0xfd, 0x101, 0x4, 0x40, 0xa, 0x1b, 0x1ff, 0x7ff, 0x2, 0x80000000, 0xffff, 0x9, 0x0, 0x6, 0x2, 0x1, 0x3, 0xa0, 0xf, 0x1ff, 0x9, 0x7, 0x6, 0x400, 0x8, 0xff2, 0x6, 0x0, 0x6, 0x0, 0x9, 0x1, 0xf1a, 0x664, 0x4, 0x9, 0x9, 0x2, 0x4, 0xfffffffd, 0x10, 0x0, 0x9, 0x10000, 0x1, 0x9, 0xf7a, 0xc6, 0x1, 0x4, 0x6, 0xffffffff, 0x6, 0x10001, 0x8, 0x68, 0x7, 0x1, 0x5, 0x3, 0x9a3f, 0x400000, 0x0, 0x80000067, 0xffffff7e, 0x7, 0x10000000, 0x10001, 0x7, 0x3, 0x10, 0x10a, 0x2, 0x40, 0x1c, 0x80, 0xb5f8, 0x8bc, 0x3, 0x101, 0x5, 0x63, 0x4, 0x8001, 0x10, 0x1000, 0x288c, 0x1ffe, 0x73ee, 0x1, 0x5, 0x9, 0x7fffffff, 0x73, 0x7, 0x8, 0x6, 0x400, 0x40, 0x0, 0x0, 0x0, 0x546c, 0x981, 0x5aa, 0x7fff, 0x7, 0x4, 0x8, 0x6688, 0x45e3, 0x5, 0x7, 0x1, 0x5, 0x3, 0x0, 0x1, 0x2, 0xffffffff, 0x4, 0xce, 0xf, 0x0, 0x1, 0x667, 0x3, 0x0, 0x9, 0x9, 0x37d, 0x10001, 0xc, 0x1, 0x1, 0x2, 0x6, 0x4, 0x6, 0x1, 0x9, 0x6, 0xfffffffa, 0x2, 0x0, 0x9, 0x5, 0x2, 0x7, 0x3, 0xffffff1b, 0x9, 0x2, 0xd, 0x34ea, 0x10000, 0x0, 0x80000001, 0x8, 0x8000, 0x3a, 0x10, 0x8, 0x9, 0x5, 0x1, 0x6, 0x10001, 0x0, 0x4, 0x10000, 0x4, 0xffff, 0xe, 0x89, 0x2, 0x7, 0x1, 0x73, 0x3, 0x9, 0x4, 0x1, 0x9, 0x0, 0x8, 0x0, 0x2, 0x80000004, 0x29, 0x9, 0x0, 0x4, 0x4, 0x0, 0x1, 0x4, 0x5, 0x4, 0x10001, 0xf, 0x9, 0x100, 0x4, 0x59b, 0x7, 0x8, 0x9, 0x3, 0x2, 0x4, 0xbf, 0x0, 0x8, 0x40, 0xd3, 0x7, 0x1, 0x89aa, 0x8, 0x7, 0xf0ce, 0x4, 0x1, 0x0, 0x2, 0xc6, 0x1000, 0x1, 0x937, 0xa, 0x6, 0x3, 0xffffffff, 0x5, 0x9, 0x5, 0xffffffff, 0xbe, 0x1, 0x7, 0x0, 0xffffffff, 0x0, 0x3d6, 0x0, 0xc, 0x6, 0x7, 0xfffffeff, 0x4, 0x2, 0x7fff, 0x101, 0x7, 0x6, 0x706, 0x2, 0x49, 0x10, 0xfffffff7, 0xfffff772, 0x8, 0x80000000, 0x6, 0x1, 0xa9c, 0x9, 0x9, 0x1, 0x2, 0x5, 0x1000, 0x5, 0x1ff, 0x9, 0x3, 0x3, 0x10001, 0xffff0000, 0xf, 0x1, 0xffffa5ba, 0xffffa9b4, 0x8, 0x4, 0x8000005, 0x3, 0x4b5f, 0x6, 0xa, 0xffffffff, 0x1, 0x80000000, 0xb, 0x0, 0xc8f, 0x1, 0x7, 0x8, 0x1, 0x10000, 0x57dc, 0x818a, 0x10, 0x8, 0x10, 0xfffffffc, 0xfffff001, 0xa, 0x5, 0x5, 0x4, 0xfff, 0x9, 0x10, 0xfffffffd, 0x4, 0xc2, 0x7f, 0x4, 0x2, 0x80000000, 0xd, 0x3, 0x1, 0x0, 0x5, 0xb6, 0x101, 0x401, 0x2, 0x7, 0xc, 0x6623258, 0xf2, 0x741, 0xae6, 0x9, 0xffffa0ae, 0x9, 0x6, 0x2, 0x8, 0x9, 0x1, 0x7f, 0x9a, 0x9, 0xb, 0x800, 0x4, 0x3ff, 0x5, 0x7, 0x7, 0x8, 0xfe, 0x7f, 0x9, 0x4, 0x2, 0x20000000, 0x2, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x8000001, 0x0, 0xfff, 0x101, 0x4, 0x0, 0x96c6, 0xc, 0x5, 0xfff, 0x100, 0xffff, 0x1, 0x401, 0xf0, 0x0, 0xfffff53d, 0x9, 0x2, 0x6, 0x0, 0x6, 0x4b15, 0x10000, 0x1, 0x9, 0x1, 0xd, 0x9, 0x4, 0xfffffe01, 0x1, 0x6, 0x0, 0x3, 0x10001, 0x1, 0x7, 0x1, 0x5, 0x8, 0xffffc487, 0x200, 0x10001, 0x37c, 0x7, 0x6, 0x6, 0x8, 0xfffffe00, 0x1, 0x1, 0x0, 0xe, 0x0, 0x3, 0x4, 0x80000000, 0xb46d, 0x3, 0x1000, 0x1eb4bce6, 0x10, 0x8, 0x1, 0x5, 0x1, 0x5, 0x9, 0x1000, 0x7, 0x62f2f805, 0x9, 0x3, 0xffffffff, 0x9, 0x7f, 0x6, 0x8, 0x40, 0x5, 0x2, 0xa, 0x5, 0x6, 0x80000000, 0x28, 0x8, 0x7, 0x7, 0x1, 0x5, 0x9, 0x6709, 0x80000001, 0x0, 0x80, 0x8, 0x6, 0x0, 0xa95a, 0xff, 0x5, 0x2, 0x2, 0x4, 0x10000, 0x80000001, 0x5, 0x1c00, 0x9, 0x0, 0xb7, 0x3, 0xff, 0x9, 0xffff, 0x80, 0xfea5, 0x7fff, 0x7, 0x7, 0x7, 0x7485, 0x9, 0x8, 0x0, 0x5, 0xf, 0x5, 0xe, 0x8, 0x1000, 0x3, 0x7, 0x382d, 0x459, 0xcad, 0x9, 0x0, 0x2, 0x9, 0x6, 0x20000a4, 0xe0, 0xfffffffb, 0x5, 0xffffffff, 0x2, 0x7, 0xa05a, 0x0, 0x0, 0x0, 0x35, 0x8, 0x1, 0x1, 0x30, 0xffffff7e, 0x1, 0x2, 0x9, 0x3, 0x7, 0x8, 0x8, 0x4000, 0x1, 0x4, 0x15294b70, 0x3, 0x3, 0x2, 0x43, 0x3, 0x9, 0x5, 0x80000000, 0x9, 0x0, 0x5, 0x81, 0x1, 0x2, 0x3fd, 0x1df, 0x6, 0x6, 0xfffffffa, 0x1a, 0x9, 0x2, 0x9, 0x1, 0x9, 0x7, 0x2c1, 0x9e95, 0x2, 0xfffffedd, 0x30c8, 0x2, 0x38a0, 0x7b, 0x0, 0x8, 0x9, 0x6, 0x9, 0x9, 0x8, 0x5, 0x8, 0x1ff, 0x7fff, 0x3, 0x8000002, 0x8, 0x2b, 0x200006, 0x4, 0x7, 0x2, 0xfb4, 0xbf8, 0x7, 0x405, 0x6, 0x4, 0x8001, 0x9, 0x8, 0x3, 0x6ae574d2, 0x6, 0xfffffe00, 0x1000, 0x5, 0x92, 0x3, 0x7fffffff, 0xd7, 0x8001, 0x905, 0x3, 0x6, 0xfffffb31, 0xb, 0x4, 0x7, 0x8, 0x1, 0x6, 0x1, 0xff, 0x100, 0x8, 0x3, 0x6, 0x80000000, 0x0, 0x100a, 0x7fffffff, 0x7fff, 0x2, 0xfffffff8, 0x2, 0x9af, 0x10001, 0x8, 0x4, 0x8, 0x6, 0x7742348d, 0x5, 0x5, 0x1f, 0x40, 0x0, 0x6, 0x7fffffff, 0x7, 0x7, 0x8, 0x17f, 0x6, 0x2, 0x5, 0x6, 0x1, 0xb, 0xe, 0x5, 0x1, 0xfe7, 0xfffffffc, 0x8, 0x7ff, 0x3e9, 0x0, 0x3, 0x2000, 0xd, 0x3, 0x4, 0x3, 0x81, 0x8, 0x14, 0x8, 0x9, 0x6, 0xffff, 0xf28c, 0x7, 0x6, 0x4, 0x7fffffff, 0xffff, 0x7fffffff, 0xc9, 0x2, 0x0, 0x924, 0x6, 0x100, 0x1, 0x5, 0xffff351b, 0x8, 0xfffffffb, 0x7, 0x9, 0x2, 0x5, 0x4, 0x1, 0x4, 0xff, 0xee, 0x2, 0x4, 0x8, 0x9f, 0x7, 0x3, 0x9, 0xc9, 0x1, 0x1, 0x1, 0xfffffff7, 0x0, 0x5, 0x5, 0x6, 0x400, 0x51, 0x7, 0xefb, 0xb8, 0x8, 0x5, 0xfffffff7, 0x7, 0x7, 0x5, 0x6330, 0x0, 0x6, 0xea, 0x0, 0xfff, 0x809, 0x6, 0x0, 0x6, 0xffff, 0xfffffffa, 0x3, 0x0, 0x1, 0x6, 0xfffffc00, 0x5, 0x7, 0x2ec, 0x9, 0x6, 0x3ff, 0x6, 0xfff, 0x0, 0xa7b, 0x62cc, 0xfffffff7, 0x7, 0x40, 0xa, 0x8, 0x3, 0xe, 0x1, 0x1, 0xc, 0x40, 0x3, 0x4, 0x5, 0x5, 0x7ff, 0x5, 0x8, 0x5, 0x3, 0x9, 0x2, 0x80000001, 0x54, 0x400, 0x1, 0x8, 0xa, 0x9, 0xc0, 0x3, 0x72, 0x80, 0x1000, 0x7, 0x800, 0x6, 0xd19, 0x3, 0x93c, 0x6, 0x0, 0x0, 0xe, 0x5, 0x3, 0xfffffffa, 0xa01, 0xf3, 0xffffff00, 0x8, 0xe, 0x3, 0x3ff, 0x5, 0x2, 0x6, 0xfffffff8, 0xffff, 0xfffffff9, 0x9, 0x5, 0x62, 0x8, 0x1, 0xfffffffb, 0x1af88, 0x2, 0x9, 0x7, 0x0, 0x7, 0x8, 0x10000, 0x40, 0x8, 0x7, 0x2b, 0x6, 0x10, 0x5, 0x200, 0x7fff, 0x6, 0x3, 0x8, 0x10, 0x4, 0x6, 0x633, 0xf05, 0x0, 0x101, 0x200, 0x7, 0x7ff, 0x0, 0x1, 0x1, 0x10000, 0x9, 0x40, 0x9, 0x0, 0x7f, 0x8, 0x6, 0xe, 0x3, 0x80000001, 0x0, 0x8, 0x8, 0x7, 0xdd, 0x8, 0x89, 0x0, 0x100, 0x1, 0x9, 0xe75, 0x400, 0x1, 0x8, 0x200, 0xe9ab, 0xfffffff8, 0x8000, 0x7, 0x2, 0x2, 0x43, 0x3ff, 0x8, 0x7, 0x9, 0x1, 0x6, 0x7, 0xa, 0xf, 0xf39d, 0x71, 0xfff, 0x5, 0x8]})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc0200000000000000000000000000006401010200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="040000000000f18d50001100ac1414aa000000000000000000000000ffffffff0084ffffff00000000000000e0000002000000000000000000000000fe8000000000000000000000000000aa3c04"], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3.301180397s ago: executing program 4 (id=1972):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x842)
write$nci(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="400404"], 0x7)
write$nci(r0, &(0x7f00000003c0)=@NCI_OP_CORE_INIT_RSP={0x0, 0x1, 0x2, 0x1, 0x3, {{0x0, 0x100000, 0x33, "99af6600f3c24d60af38d680334276e26aa8e3e1c82495bbddc0f46f4adefc23ee9acbc2c0151f51f765d19f1d21f08cc7172b"}, {0x7, 0x9, 0x5, 0x7, 0x3, 0x100}}}, 0x47)

3.000953877s ago: executing program 2 (id=1974):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}, 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1a0, 0x12, 0xffffffffffffffff, 0xdb542000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x2000000000000013, 0x0, 0x0, 0x6, 0xb9, &(0x7f0000000140)=""/185, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="d40000001b0001000000000000000000fc000000000000000000000000000000fe88000000000000000000000000000100000000000000000000002000000000", @ANYBLOB="339f5c327a66b5300be551d3e38a5340b515352b227f6316419770cad87eec614d9f6014f0fda411563ed8e993fb42f4c55b03352664a79884ab97a30dfb4abf891e920cadb0c3baa596b09e4602bd5c15212d50741af3cdf395450e4e0f3ef8d2942d05d40797e534be330eb81e80bf8ad1927a1820b9a29179a68e7b5f043df4b82c346ae508336e2bdfe7af941076487a17222b2b25f53504ed7aa9115be31def8c9e35984644d7fb8c4788d6616405dc3248c66c60b92420a26aa72ce0a121a2be99efce5615a9aa79de1e36e003693fc3177a3113112094ec0bf013be2dd3", @ANYRES32=0x0, @ANYBLOB="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"], 0xd4}, 0x1, 0x0, 0x0, 0x4044001}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
r6 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {}, {}, {0xffe0, 0x5}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048850)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)

2.901390818s ago: executing program 2 (id=1975):
syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400})
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000140)={r1, 0x0, 0x25, 0x0, @val=@netfilter={0x1, 0x0, 0x7}}, 0x20)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x0)

1.67038697s ago: executing program 2 (id=1976):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000340)={'wlan1\x00', 0x100})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb0100180000000000000040000000400000000c0000000400000001000084010000000a00000003000000060000000000000000000105000000200000000000000000000003000000000200000002000000000000000061002e2e61610061005f0000"], 0x0, 0x64}, 0x28)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x200, 0x800, 0x6}}}}]}, 0x44}}, 0x40080)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x2c, 0x2c, 0xd27, 0x70bd2b, 0x2, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {0x1}, {0x8, 0x4}}, [@TCA_RATE={0x6, 0x5, {0x47, 0x4}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x2)
close(r5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="56c78e3c733d76696e65459beb1fb664f6ce6c0c7274696f7874656e642c6163638173733d616e792c63616368653d66736361636865"])
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0xee01, 0x1000)
chdir(&(0x7f0000000000)='./file0\x00')
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0x24}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000200)="27030200000314000e001f3c002400000000ff8800000000000000000000000000000000000085dc9d9839dc1336", 0x2e}], 0x1}, 0x4005)

1.550428746s ago: executing program 2 (id=1977):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="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", 0xfc}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356257181e43b6e60349f69ec5f529734f76708a6c5eccb57005c1a513d8030d12c", 0x41}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae3776203e2054240594f1c9b77ad77cf3f5631012fa0788c5b17f98cc34720b0", 0xf3}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d34273a3baad9692140de74d9294c555a8c2e0d53acea79b788b5eb1a12ada17eda2b2fb96c439ce16e6266afda6613fd7c90be9a9dfcd1b099fe6b023b725241a6e1048c700e7a939bd3a38f1101213b81c252dd8c44b7e647940438343d0d082507d218a952e6d77ec0918968c74f220c981a3797fb6cadfd6723a75c5c4da33e830ecf602c55bc60831ddd694f15728f4d1eacad82a03540713f52f9485138574e5b6aec693c2c613e442d5306c2ef1c8ad8dda8d005f3f3bacb5991d1c18db228185e4d2fcca72d87d81df01c142428158ad7ba84dd6c65d24a8d094308433219872eeda0c235f8be3088a880", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe878a", 0x15}, {&(0x7f00000011c0)}, {&(0x7f0000001200)="43979d4537ac96f6e22b12acd1fdd3ffc7ef440e65e2e70d511a408f743d4ce7516f4364a00a041dc7b1ffe56ebc713b158ea1aab13ce3db53ab8af3f76ffaa86df636018175c4a8ea922a193ad08ca30d5031b27a4a87bff93dc12a98b6e4f25b5550d98a5bf3e040a8902083eea93bdbde6da91df3a730dd2b8215e9840f04dd0ab667500fe952fa1b8845c2cee50f8322175049c4a994def6599287fb0f8d61029188945e9b273cded03bf8a0c2da5168461dafc53f865fab513453ed3d95bd82ab0bb24a32deb3a229be42837b0c57e0c60c042d83c7bf866828342f3e6e1bdef6", 0xe3}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667119d193444ed6c60c641f54a3826524167885f2542", 0xbd}], 0x9, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {0x0}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.291660037s ago: executing program 2 (id=1978):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x60, &(0x7f0000000140)={&(0x7f0000000080)={0x50, r0, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x64}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}]}]}, 0x50}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1000000)

366.435297ms ago: executing program 0 (id=1979):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

240.039844ms ago: executing program 0 (id=1980):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="d542f6300b61ca7913e7cd7b4036afcfddb3c77fc63db30ef223f1cc4fcdcbb56655be4873ea15e1a9d348fadc935180e702560acae65d42d95f6ddcae59879a1ce7e78eb197a0c8231a504b2614ac6dfd9a5760fe75ba4204694d382eb51806597cde99cedde3f0edd8bd3fce154f83e47f422d0e5bf427c23771a122bd0369cec32bbe791bfc2c0fce202d51df0862c31baa7b80bab6d64c1d5826a7f4c1982e3693e7a0677f2ad388ce872b890394a3ecfd1cec45ba7966945271fc033565d4a9bb17a41aacf550c4510ba99a24b48eab32e5d7549de9bae7954e0f750b55f706de3d5001638a1260dd8d2ad735d9ec409711851badf7e170fc50", 0xfc}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356257181e43b6e60349f69ec5f529734f76708a6c5eccb57005c1a513d8030d12c", 0x41}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae3776203e2054240594f1c9b77ad77cf3f5631012fa0788c5b17f98cc34720b0", 0xf3}, {&(0x7f0000000fc0)="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", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe878a", 0x15}, {&(0x7f00000011c0)}, {&(0x7f0000001200)="43979d4537ac96f6e22b12acd1fdd3ffc7ef440e65e2e70d511a408f743d4ce7516f4364a00a041dc7b1ffe56ebc713b158ea1aab13ce3db53ab8af3f76ffaa86df636018175c4a8ea922a193ad08ca30d5031b27a4a87bff93dc12a98b6e4f25b5550d98a5bf3e040a8902083eea93bdbde6da91df3a730dd2b8215e9840f04dd0ab667500fe952fa1b8845c2cee50f8322175049c4a994def6599287fb0f8d61029188945e9b273cded03bf8a0c2da5168461dafc53f865fab513453ed3d95bd82ab0bb24a32deb3a229be42837b0c57e0c60c042d83c7bf866828342f3e6e1bdef6", 0xe3}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667119d193444ed6c60c641f54a3826524167885f2542b1bef1", 0xc0}], 0x9, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f", 0xcd}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

239.831031ms ago: executing program 2 (id=1981):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
ioctl$EVIOCGMASK(0xffffffffffffffff, 0x5b02, 0x0)

239.457231ms ago: executing program 4 (id=1982):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0xc}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f00000001c0)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x41100, 0x0, '\x00', 0x0, @sched_cls, r1, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94) (async)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSIG(r2, 0x40045436, 0xd) (async)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, 0x0, 0x20000050) (async)
r3 = mq_open(&(0x7f0000000180)='&\xaf\x12}N\xf3oW\'\x00', 0x9998bdb00e53b971, 0x80, 0x0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000088000000240000007f00000001"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0xca, r4}, 0x38) (async, rerun: 32)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000040)={0x0, &(0x7f0000000000)=""/20, &(0x7f0000000600), &(0x7f0000000540), 0x3, r4}, 0x38) (async, rerun: 32)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/custom0\x00', 0x0, 0x0) (async)
mq_notify(r3, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r5, 0x4b4a, &(0x7f0000000040)=""/28)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
read(r6, &(0x7f0000000500)=""/247, 0xf7)
r7 = mq_open(&(0x7f0000000340)='\xc2\x92\xf5\xb4h\x97p\x06^\xd5j,}\xa6k\xe5<\xbd\xca8\\\x19\x1d\x18:\xea:_\x85\xeb\xf3\xc7\x90\xd2z,\xcdZ\x03q\xb1\xa2\x8c8\xba\xe4\x06\xa2\x11\xc2\xc5\xce;\xd0*\t\x00\x00\x00\x00\x00\x00g\x8aN\xf2v;\xab-\x84\xc8\"\x94$\xc3X\xdbFh7#\x0es\aE\xa8\x17\xd4\xc1\xa5!\t\xe6\xdc\xdd\xba\x94\x9a\xa0\x929f\xc9k+\x98\xc1\xe8\x17Lp\x91-\xdfh\x9cV$P\x92d\x1f\xf9\xdae\xc8\xbe\xfd\xbbM\x06acdS\xaa\xbd\xcf\xda\xc7\xf4\x89g\x0f\x80\x05\xb8w\xc0O\x82,\x03q&\xc6mi{{\xd1\xa8\xe6\xb01\x15\xee\xdc`\x0e\xfa/A\x0e\xd2\x7f\x94T/5T\x1c\xe6,O_:\xa5R\xce=\x1a\x1d\xf5\xbdKhw\xc4\x94\xec0)h\xcfs\x19\xc98\xdf\x9bM\x89\x8a\x1cu)st)\x96\xe3\x14\xfb\xefl?\x9aY\xda\x94\xe7e]\xa4a\xbaG\xb0\foi\x8e<\xb5#J\x91\xa1\x9e+\xb1t\x88e', 0x1, 0x27, 0x0)
mq_timedreceive(r7, &(0x7f0000000080)=""/127, 0x7f, 0x80000000, &(0x7f0000000100)={0x77359400})
mq_timedsend(r7, 0x0, 0x0, 0xa19, 0x0)

239.148899ms ago: executing program 1 (id=1983):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_proto_private(r0, 0x89ef, &(0x7f0000000140)="8ef86d4e27f32d16d72a86e60bce0e673178637df50174d8d6f15a3a703822c127a6f06b0aadbdb239467eebcc46d0746442bcd4d454aff461e7a979b9dc45418a0bddae50009fc5fbcd5877ce3d33a2e61c8fc9208d7608e12fbc95e5499ef67d0cab4aa8f7e3fb80410e903ad12331c5d17f4d64557dda284598af3dbe15329a3c9e2617f4329f8a0271ade7a19c4a849c7906a3f954e78859bbc4111082f88860817a97a7c5a7239bf19c")
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r1, &(0x7f0000000040), 0x10) (async, rerun: 32)
r2 = socket$inet_tcp(0x2, 0x1, 0x0) (rerun: 32)
setsockopt$inet_tcp_buf(r2, 0x6, 0xb, &(0x7f0000000100)="5dce6d1545ca25db8673ffbcfbd735e5e55d6d40fa86dcb3b212f6d757df4b273ebf6e2c3a", 0x25) (async)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4e20, @rand_addr=0x64010102}}, 0x0, 0x0, 0x3c, 0x0, "f768a9c2af58878e275887da88f13b8f7649b7c4662342b9e0a2968818f42d1bb92cea9c43a4d511c371dbcd83ecebc42428bd0a048fd201e5822e9130ce0fead4f313ce67906db3f58a3196b9dae4a3"}, 0xd8) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2}, 0x2, r5}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@dellink={0x44, 0x10, 0x100, 0x0, 0x25cfdbfe, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_VER={0x5}, @IFLA_GRE_REMOTE={0x8, 0x7, @private=0xa010101}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)

238.992749ms ago: executing program 4 (id=1984):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x130, 0x0, 0x8, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x2f}, @NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x233}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_REG_RULES={0xec, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1000}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xb9}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7f}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffa}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2a0}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x3ff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x3}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x74}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x130}, 0x1, 0x0, 0x0, 0x80}, 0x2004c880)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000280)=ANY=[@ANYBLOB="88020000", @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x48040)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r1, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x1e}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

171.540726ms ago: executing program 1 (id=1985):
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000300)={0x57, 0x0, 0x8, {0x0, 0x1}, {0x74, 0x2}, @rumble={0x1, 0x8}})
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="b8000000190000010000000000000000e00000020000000000000000000000000000000069408c41f5ab7e72ea4f4c17680000000000000000000000000000000000000a000000870000008b36fe98f00b77af8acecea4177386698b049e11c14b9a03217cc7dbd10d7536dd8c35d5f18ce9f609039dc0c6782523c0806198a154fa0994636b1cccb782a6c1f19cd55d7ef53ae067136ce7be64c04916f4b14bee2dd4", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f7ffffffffffffff0000000000000000000000000000000000000000000000008000000000000000ffffff7f000000000000000000000000fbffffffffffffff000000000000000000000000000000000000000000000002000000000000000000000000b66b6e000000000000000000"], 0xb8}}, 0x2c000010)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
write$char_usb(r1, &(0x7f0000000040)="e2", 0xff0f)
ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000000940)=""/4096)

170.811288ms ago: executing program 4 (id=1986):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="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", 0xfc}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356257181e43b6e60349f69ec5f529734f76708a6c5eccb57005c1a513d8030d12c", 0x41}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae3776203e2054240594f1c9b77ad77cf3f5631012fa0788c5b17f98cc34720b0", 0xf3}, {&(0x7f0000000fc0)="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", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe878a", 0x15}, {&(0x7f00000011c0)}, {&(0x7f0000001200)="43979d4537ac96f6e22b12acd1fdd3ffc7ef440e65e2e70d511a408f743d4ce7516f4364a00a041dc7b1ffe56ebc713b158ea1aab13ce3db53ab8af3f76ffaa86df636018175c4a8ea922a193ad08ca30d5031b27a4a87bff93dc12a98b6e4f25b5550d98a5bf3e040a8902083eea93bdbde6da91df3a730dd2b8215e9840f04dd0ab667500fe952fa1b8845c2cee50f8322175049c4a994def6599287fb0f8d61029188945e9b273cded03bf8a0c2da5168461dafc53f865fab513453ed3d95bd82ab0bb24a32deb3a229be42837b0c57e0c60c042d83c7bf866828342f3e6e1bdef6", 0xe3}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667119d193444ed6c60c641f54a3826524167885f2542", 0xbd}], 0x9, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {0x0}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

120.898302ms ago: executing program 1 (id=1987):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000700)={0x24, &(0x7f0000000480)={0x0, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000280)={&(0x7f0000000200)=[{0x0, 0x4000, 0x0, 0x0}], 0x1})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000940)={0x34, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})

1.11027ms ago: executing program 0 (id=1988):
r0 = userfaultfd(0x801)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80, 0x1c}, 'port1\x00', 0x0, 0x10004a, 0x10001, 0x8000008, 0x3, 0x20000004, 0x3ff, 0x0, 0x2, 0xfe})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d5, 0x1101, 0xff})
close(r1)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x7, 0x100}, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x140, 0x82)
r5 = fanotify_init(0x81, 0x40000)
fanotify_mark(r5, 0x105, 0x800101b, r4, 0x0)
read$FUSE(r5, &(0x7f0000002300)={0x2020}, 0x2020)
ptrace(0x10, r3)
ptrace$poke(0x4, r3, &(0x7f00000000c0), 0x3ff)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
waitid$P_PIDFD(0x2, 0xffffffffffffffff, 0x0, 0x4, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, 0x0)
iopl(0x3)
syz_io_uring_setup(0x35e7, &(0x7f00000003c0)={0x0, 0x0, 0x10100, 0x2, 0x3c5}, 0xfffffffffffffffe, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, 0x0)
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYRESDEC=r1, @ANYRESDEC, @ANYRESDEC, @ANYRES16, @ANYRESHEX, @ANYRESOCT, @ANYRES32, @ANYRESHEX, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x18840}, 0x4000841)

0s ago: executing program 4 (id=1989):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = eventfd(0x0)
poll(&(0x7f0000000000), 0x0, 0xc6)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x6, 0xa}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8, 0x1, 0xfffffffe}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24000000}, 0x20004000)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r1}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000}, [@call={0x85, 0x0, 0x0, 0x7f}]}, &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, r4}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001300)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
ppoll(&(0x7f0000001780)=[{r6, 0x2108}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x111}}, 0x20)

kernel console output (not intermixed with test programs):

] em28xx 7-1:0.0: Freeing device
[  276.557048][ T1343] usb 6-1: USB disconnect, device number 56
[  276.564800][ T1343] em28xx 6-1:0.0: Disconnecting em28xx
[  276.569907][T10497] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1565'.
[  276.590821][   T53] em28xx 6-1:0.0: Registering input extension
[  276.594179][ T1343] em28xx 6-1:0.0: Closing input extension
[  276.602038][ T1343] em28xx 6-1:0.0: Freeing device
[  276.664487][ T6002] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  276.667280][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  276.670934][ T6002] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  276.674772][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  276.678376][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  276.683719][ T6002] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  276.686396][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  276.689888][ T6002] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  276.694017][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  276.697449][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  276.701667][ T6002] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  276.704370][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  276.707858][ T6002] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  276.712048][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  276.715902][ T6002] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  276.721642][ T6002] usb 9-1: string descriptor 0 read error: -22
[  276.724077][ T6002] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  276.727062][ T6002] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.735684][ T6002] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  277.212945][   T63] Bluetooth: hci2: command tx timeout
[  277.378311][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1574'.
[  277.390552][T10523] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  277.432802][ T6126] usb 6-1: new high-speed USB device number 57 using dummy_hcd
[  277.583026][ T6126] usb 6-1: Using ep0 maxpacket: 8
[  277.587444][ T6126] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  277.592132][ T6126] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  277.596552][ T6126] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  277.600571][ T6126] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  277.606205][ T6126] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  277.609146][ T6126] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.819288][ T6126] usb 6-1: usb_control_msg returned -32
[  277.824272][ T6126] usbtmc 6-1:16.0: can't read capabilities
[  277.835881][ T6126] usb 6-1: USB disconnect, device number 57
[  277.961572][T10530] binder: 10529:10530 ioctl c0306201 200000000080 returned -14
[  278.041453][T10535] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  278.048774][T10535] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1578'.
[  278.156170][T10538] comedi comedi4: comedi_config --init_data is deprecated
[  278.224182][T10548] binfmt_misc: register: failed to install interpreter file ./file1
[  278.277260][T10552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1583'.
[  278.288763][T10552] tipc: Enabling <eth:lo> not permitted
[  278.291309][T10552] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  278.395766][T10559] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  278.398904][T10559] syzkaller0: entered promiscuous mode
[  278.400948][T10559] syzkaller0: entered allmulticast mode
[  278.421450][T10557] tmpfs: Bad value for 'mpol'
[  278.424919][T10557] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  278.475255][T10565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1588'.
[  278.568895][T10558] tipc: Resetting bearer <eth:syzkaller0>
[  278.582095][T10558] tipc: Disabling bearer <eth:syzkaller0>
[  278.647816][T10573] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  278.692754][ T5967] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[  278.832799][ T5967] usb 5-1: device descriptor read/64, error -71
[  278.972715][   T34] usb 7-1: new high-speed USB device number 57 using dummy_hcd
[  279.072714][ T5967] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[  279.132749][   T34] usb 7-1: Using ep0 maxpacket: 32
[  279.136566][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  279.140550][   T34] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  279.146742][   T34] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  279.149977][   T34] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  279.152715][   T34] usb 7-1: Product: syz
[  279.154053][   T34] usb 7-1: Manufacturer: syz
[  279.155720][   T34] usb 7-1: SerialNumber: syz
[  279.159124][   T34] usb 7-1: config 0 descriptor??
[  279.162927][   T34] hub 7-1:0.0: bad descriptor, ignoring hub
[  279.164841][   T34] hub 7-1:0.0: probe with driver hub failed with error -5
[  279.202707][ T5967] usb 5-1: device descriptor read/64, error -71
[  279.303202][   T63] Bluetooth: hci2: command tx timeout
[  279.312931][ T5967] usb usb5-port1: attempt power cycle
[  279.652707][ T5967] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[  279.673341][ T5967] usb 5-1: device descriptor read/8, error -71
[  279.812762][ T5994] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[  279.912786][ T5967] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[  279.933895][ T5967] usb 5-1: device descriptor read/8, error -71
[  279.972652][ T5994] usb 6-1: Using ep0 maxpacket: 8
[  279.975659][ T5994] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  279.979138][ T5994] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  279.981991][ T5994] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.986315][ T5994] usb 6-1: config 0 descriptor??
[  280.043131][ T5967] usb usb5-port1: unable to enumerate USB device
[  280.323495][   T53] usb 7-1: USB disconnect, device number 57
[  281.294341][   T53] usb 9-1: USB disconnect, device number 2
[  281.296661][ T5994] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  281.318142][ T5994] usb 6-1: USB disconnect, device number 58
[  281.373145][   T63] Bluetooth: hci2: command tx timeout
[  281.579419][   T40] kauditd_printk_skb: 199 callbacks suppressed
[  281.579437][   T40] audit: type=1400 audit(1774361536.856:2381): avc:  denied  { watch watch_reads } for  pid=10590 comm="syz.0.1596" path="pipe:[46723]" dev="pipefs" ino=46723 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  281.586948][T10593] FAULT_INJECTION: forcing a failure.
[  281.586948][T10593] name failslab, interval 1, probability 0, space 0, times 0
[  281.597825][T10593] CPU: 0 UID: 0 PID: 10593 Comm: syz.4.1597 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.597844][T10593] Tainted: [L]=SOFTLOCKUP
[  281.597848][T10593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  281.597855][T10593] Call Trace:
[  281.597860][T10593]  <TASK>
[  281.597865][T10593]  dump_stack_lvl+0x100/0x190
[  281.597888][T10593]  should_fail_ex.cold+0x5/0xa
[  281.597904][T10593]  ? ovl_alloc_entry+0x21/0x70
[  281.597921][T10593]  should_failslab+0xc2/0x120
[  281.597934][T10593]  __kmalloc_noprof+0xe0/0x850
[  281.597951][T10593]  ? __kmalloc_noprof+0x320/0x850
[  281.597970][T10593]  ovl_alloc_entry+0x21/0x70
[  281.597987][T10593]  ovl_lookup_layers+0xf1c/0x2ac0
[  281.598012][T10593]  ? __pfx_ovl_lookup_layers+0x10/0x10
[  281.598030][T10593]  ? lock_acquire+0x1cf/0x380
[  281.598045][T10593]  ? find_held_lock+0x2b/0x80
[  281.598060][T10593]  ? rcu_read_unlock+0x17/0x60
[  281.598073][T10593]  ? rcu_read_unlock+0x17/0x60
[  281.598093][T10593]  ovl_lookup+0x4a8/0x6b0
[  281.598116][T10593]  ? __memcg_slab_post_alloc_hook+0x51b/0x990
[  281.598139][T10593]  ? __pfx_ovl_lookup+0x10/0x10
[  281.598162][T10593]  ? rcu_is_watching+0x12/0xc0
[  281.598180][T10593]  ? do_raw_spin_lock+0x128/0x260
[  281.598197][T10593]  ? do_raw_spin_unlock+0x145/0x1e0
[  281.598211][T10593]  ? _raw_spin_unlock+0x28/0x50
[  281.598227][T10593]  lookup_one_qstr_excl+0x1d1/0x250
[  281.598244][T10593]  ? mnt_want_write+0x161/0x450
[  281.598256][T10593]  filename_unlinkat+0x275/0x730
[  281.598270][T10593]  ? __might_fault+0xc5/0x140
[  281.598287][T10593]  ? __pfx_filename_unlinkat+0x10/0x10
[  281.598306][T10593]  ? do_getname+0x191/0x390
[  281.598323][T10593]  __x64_sys_unlink+0x46/0x70
[  281.598337][T10593]  do_syscall_64+0x106/0xf80
[  281.598353][T10593]  ? clear_bhb_loop+0x40/0x90
[  281.598368][T10593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.598381][T10593] RIP: 0033:0x7f6017b9c799
[  281.598422][T10593] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.598436][T10593] RSP: 002b:00007f60189c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  281.598448][T10593] RAX: ffffffffffffffda RBX: 00007f6017e15fa0 RCX: 00007f6017b9c799
[  281.598456][T10593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000002c0
[  281.598463][T10593] RBP: 00007f60189c8090 R08: 0000000000000000 R09: 0000000000000000
[  281.598470][T10593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.598477][T10593] R13: 00007f6017e16038 R14: 00007f6017e15fa0 R15: 00007fff1321cf58
[  281.598493][T10593]  </TASK>
[  281.823725][   T40] audit: type=1326 audit(1774361537.106:2382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.882138][T10605] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1601'.
[  281.893091][   T40] audit: type=1326 audit(1774361537.106:2383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.902879][   T40] audit: type=1326 audit(1774361537.106:2384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.912256][   T40] audit: type=1326 audit(1774361537.106:2385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.922024][   T40] audit: type=1326 audit(1774361537.106:2386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.931756][   T40] audit: type=1326 audit(1774361537.136:2387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.943160][   T40] audit: type=1326 audit(1774361537.136:2388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.945814][T10606] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  281.952841][   T40] audit: type=1326 audit(1774361537.136:2389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  281.965716][   T40] audit: type=1326 audit(1774361537.136:2390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10596 comm="syz.0.1599" exe="/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7ff13599c799 code=0x7ffc0000
[  282.096669][T10614] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=41 sclass=netlink_tcpdiag_socket pid=10614 comm=syz.4.1605
[  282.332759][   T34] usb 7-1: new high-speed USB device number 58 using dummy_hcd
[  282.502876][   T34] usb 7-1: Using ep0 maxpacket: 8
[  282.507301][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  282.511889][   T34] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  282.516137][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.522275][   T34] usb 7-1: config 0 descriptor??
[  282.704508][T10629] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  282.707450][T10629] syzkaller0: entered promiscuous mode
[  282.709256][T10629] syzkaller0: entered allmulticast mode
[  282.723387][T10629] syzkaller0: MTU too low for tipc bearer
[  282.726825][T10629] tipc: Disabling bearer <eth:syzkaller0>
[  282.769059][   T34] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  282.831153][T10631] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1611'.
[  282.835276][T10631] FAULT_INJECTION: forcing a failure.
[  282.835276][T10631] name failslab, interval 1, probability 0, space 0, times 0
[  282.840323][T10631] CPU: 0 UID: 0 PID: 10631 Comm: syz.0.1611 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  282.840351][T10631] Tainted: [L]=SOFTLOCKUP
[  282.840357][T10631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  282.840367][T10631] Call Trace:
[  282.840375][T10631]  <TASK>
[  282.840383][T10631]  dump_stack_lvl+0x100/0x190
[  282.840416][T10631]  should_fail_ex.cold+0x5/0xa
[  282.840440][T10631]  should_failslab+0xc2/0x120
[  282.840458][T10631]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  282.840483][T10631]  ? skb_clone+0x190/0x400
[  282.840511][T10631]  skb_clone+0x190/0x400
[  282.840534][T10631]  netlink_deliver_tap+0xaed/0xcc0
[  282.840564][T10631]  netlink_unicast+0x70c/0x870
[  282.840591][T10631]  ? __pfx_netlink_unicast+0x10/0x10
[  282.840615][T10631]  ? __alloc_skb+0x5b7/0x710
[  282.840636][T10631]  ? genl_rcv_msg+0x4be/0x800
[  282.840659][T10631]  netlink_ack+0x655/0xb80
[  282.840690][T10631]  netlink_rcv_skb+0x333/0x420
[  282.840825][T10631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  282.840851][T10631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  282.840886][T10631]  ? netlink_deliver_tap+0x1ae/0xcc0
[  282.840913][T10631]  genl_rcv+0x28/0x40
[  282.840938][T10631]  netlink_unicast+0x5aa/0x870
[  282.840965][T10631]  ? __pfx_netlink_unicast+0x10/0x10
[  282.841000][T10631]  netlink_sendmsg+0x8b0/0xda0
[  282.841028][T10631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.841051][T10631]  ? __might_fault+0x20/0x140
[  282.841083][T10631]  ____sys_sendmsg+0x9e1/0xb70
[  282.841108][T10631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.841134][T10631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.841171][T10631]  ___sys_sendmsg+0x190/0x1e0
[  282.841190][T10631]  ? __pfx____sys_sendmsg+0x10/0x10
[  282.841236][T10631]  __sys_sendmsg+0x170/0x220
[  282.841259][T10631]  ? __pfx___sys_sendmsg+0x10/0x10
[  282.841296][T10631]  do_syscall_64+0x106/0xf80
[  282.841320][T10631]  ? clear_bhb_loop+0x40/0x90
[  282.841341][T10631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.841359][T10631] RIP: 0033:0x7ff13599c799
[  282.841374][T10631] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  282.841390][T10631] RSP: 002b:00007ff133bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.841407][T10631] RAX: ffffffffffffffda RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  282.841417][T10631] RDX: 0000000000048040 RSI: 0000200000000240 RDI: 0000000000000003
[  282.841428][T10631] RBP: 00007ff133bf6090 R08: 0000000000000000 R09: 0000000000000000
[  282.841438][T10631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.841448][T10631] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  282.841472][T10631]  </TASK>
[  282.975289][   T25] block nbd0: Connection timed out, retrying (0/5 alive)
[  282.979665][   T25] block nbd0: Connection timed out, retrying (0/5 alive)
[  282.983049][   T25] block nbd0: Connection timed out, retrying (0/5 alive)
[  282.985976][   T25] block nbd0: Connection timed out, retrying (0/5 alive)
[  282.989302][   T25] block nbd0: Dead connection, failed to find a fallback
[  282.992956][   T25] block nbd0: shutting down sockets
[  282.995464][   T25] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.000129][   T25] Buffer I/O error on dev nbd0, logical block 3, async page read
[  283.003987][   T25] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.007913][   T25] Buffer I/O error on dev nbd0, logical block 2, async page read
[  283.011138][   T25] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.016024][   T25] Buffer I/O error on dev nbd0, logical block 1, async page read
[  283.019252][   T25] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.023180][   T25] Buffer I/O error on dev nbd0, logical block 0, async page read
[  283.028205][ T6066] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.032878][ T6066] Buffer I/O error on dev nbd0, logical block 0, async page read
[  283.036199][ T6066] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.040024][ T6066] Buffer I/O error on dev nbd0, logical block 1, async page read
[  283.043191][ T6066] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.046982][ T6066] Buffer I/O error on dev nbd0, logical block 2, async page read
[  283.050200][ T6066] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.055213][ T6066] Buffer I/O error on dev nbd0, logical block 3, async page read
[  283.058214][ T6066] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.062240][ T6066] Buffer I/O error on dev nbd0, logical block 0, async page read
[  283.066077][ T6066] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  283.069410][ T6066] Buffer I/O error on dev nbd0, logical block 1, async page read
[  283.072467][ T6066] ldm_validate_partition_table(): Disk read failed.
[  283.075061][   T34] usb 7-1: USB disconnect, device number 58
[  283.075305][ T6066] Dev nbd0: unable to read RDB block 0
[  283.079622][ T6066]  nbd0: unable to read partition table
[  283.088708][ T6066] ldm_validate_partition_table(): Disk read failed.
[  283.091776][ T6066] Dev nbd0: unable to read RDB block 0
[  283.095600][ T6066]  nbd0: unable to read partition table
[  283.454005][   T63] Bluetooth: hci2: command tx timeout
[  283.470250][T10659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1619'.
[  283.476225][T10659] syzkaller0: entered promiscuous mode
[  283.478352][T10659] syzkaller0: entered allmulticast mode
[  283.669353][T10673] FAULT_INJECTION: forcing a failure.
[  283.669353][T10673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.675946][T10676] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1625'.
[  283.676607][T10673] CPU: 3 UID: 0 PID: 10673 Comm: syz.2.1623 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  283.676627][T10673] Tainted: [L]=SOFTLOCKUP
[  283.676632][T10673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  283.676639][T10673] Call Trace:
[  283.676644][T10673]  <TASK>
[  283.676649][T10673]  dump_stack_lvl+0x100/0x190
[  283.676674][T10673]  should_fail_ex.cold+0x5/0xa
[  283.676691][T10673]  _copy_to_user+0x32/0xd0
[  283.676707][T10673]  simple_read_from_buffer+0xcb/0x170
[  283.676723][T10673]  proc_fail_nth_read+0x1af/0x230
[  283.676742][T10673]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.676761][T10673]  ? rw_verify_area+0xce/0x6d0
[  283.676779][T10673]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.676797][T10673]  vfs_read+0x1e4/0xb30
[  283.676818][T10673]  ? __pfx_vfs_read+0x10/0x10
[  283.676837][T10673]  ? __fget_files+0x215/0x3d0
[  283.676854][T10673]  ? __fget_files+0x21f/0x3d0
[  283.676872][T10673]  ksys_read+0x12a/0x250
[  283.676883][T10673]  ? __pfx_ksys_read+0x10/0x10
[  283.676894][T10673]  ? fput+0x79/0x100
[  283.676913][T10673]  do_syscall_64+0x106/0xf80
[  283.676931][T10673]  ? clear_bhb_loop+0x40/0x90
[  283.676949][T10673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.676963][T10673] RIP: 0033:0x7f97c595cfce
[  283.676974][T10673] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  283.676986][T10673] RSP: 002b:00007f97c6934fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  283.676999][T10673] RAX: ffffffffffffffda RBX: 00007f97c69356c0 RCX: 00007f97c595cfce
[  283.677007][T10673] RDX: 000000000000000f RSI: 00007f97c69350a0 RDI: 0000000000000006
[  283.677014][T10673] RBP: 00007f97c6935090 R08: 0000000000000000 R09: 0000000000000000
[  283.677022][T10673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.677029][T10673] R13: 00007f97c5c16038 R14: 00007f97c5c15fa0 R15: 00007fff6a5e6608
[  283.677044][T10673]  </TASK>
[  283.722676][ T5994] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  283.724623][T10679] netlink: 'syz.2.1626': attribute type 4 has an invalid length.
[  283.763212][T10679] netlink: 'syz.2.1626': attribute type 1 has an invalid length.
[  283.765602][T10679] netlink: 228 bytes leftover after parsing attributes in process `syz.2.1626'.
[  283.798130][T10681] program syz.1.1627 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.885219][ T5994] usb 9-1: Using ep0 maxpacket: 8
[  283.888978][ T5994] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  283.899363][ T5994] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  283.903451][ T5994] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  283.907402][ T5994] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  283.913200][ T5994] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  283.917011][ T5994] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.931986][T10692] virt_wifi0 speed is unknown, defaulting to 1000
[  284.133582][   T53] usb 6-1: new high-speed USB device number 59 using dummy_hcd
[  284.139203][ T5994] usb 9-1: GET_CAPABILITIES returned 0
[  284.141635][ T5994] usbtmc 9-1:16.0: can't read capabilities
[  284.282741][   T53] usb 6-1: Using ep0 maxpacket: 32
[  284.286587][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  284.290722][   T53] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  284.297121][   T53] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  284.301105][   T53] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  284.305570][   T53] usb 6-1: Product: syz
[  284.307379][   T53] usb 6-1: Manufacturer: syz
[  284.309356][   T53] usb 6-1: SerialNumber: syz
[  284.315787][   T53] usb 6-1: config 0 descriptor??
[  284.320716][   T53] hub 6-1:0.0: bad descriptor, ignoring hub
[  284.323787][   T53] hub 6-1:0.0: probe with driver hub failed with error -5
[  284.523702][T10690] usbtmc 9-1:16.0: send_request_dev_dep_msg_in returned -90
[  284.967459][T10714] binder: 10713:10714 ioctl c0306201 200000000080 returned -14
[  284.971841][T10714] FAULT_INJECTION: forcing a failure.
[  284.971841][T10714] name failslab, interval 1, probability 0, space 0, times 0
[  284.977152][T10714] CPU: 0 UID: 0 PID: 10714 Comm: syz.0.1636 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  284.977180][T10714] Tainted: [L]=SOFTLOCKUP
[  284.977187][T10714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  284.977198][T10714] Call Trace:
[  284.977205][T10714]  <TASK>
[  284.977211][T10714]  dump_stack_lvl+0x100/0x190
[  284.977245][T10714]  should_fail_ex.cold+0x5/0xa
[  284.977270][T10714]  should_failslab+0xc2/0x120
[  284.977290][T10714]  __kmalloc_cache_noprof+0x7a/0x6f0
[  284.977313][T10714]  ? binder_alloc_new_buf+0x1988/0x3100
[  284.977347][T10714]  binder_alloc_new_buf+0x1988/0x3100
[  284.977387][T10714]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  284.977422][T10714]  binder_transaction+0x1f70/0x9ee0
[  284.977468][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977492][T10714]  ? __pfx_binder_transaction+0x10/0x10
[  284.977524][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977547][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977578][T10714]  ? find_held_lock+0x2b/0x80
[  284.977600][T10714]  ? is_bpf_text_address+0x8a/0x1a0
[  284.977626][T10714]  ? is_bpf_text_address+0x8a/0x1a0
[  284.977655][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977674][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977692][T10714]  ? __kernel_text_address+0xd/0x30
[  284.977713][T10714]  ? unwind_get_return_address+0x59/0xa0
[  284.977743][T10714]  ? find_held_lock+0x2b/0x80
[  284.977764][T10714]  ? __might_fault+0xc5/0x140
[  284.977789][T10714]  ? __might_fault+0xc5/0x140
[  284.977821][T10714]  binder_thread_write+0x131f/0x4dd0
[  284.977850][T10714]  ? __x64_sys_ioctl+0xb7/0x210
[  284.977882][T10714]  ? __lock_acquire+0x4a5/0x2630
[  284.977905][T10714]  ? __pfx_binder_thread_write+0x10/0x10
[  284.977933][T10714]  ? find_held_lock+0x2b/0x80
[  284.977972][T10714]  ? binder_debug+0xe0/0x190
[  284.977996][T10714]  ? __pfx_binder_debug+0x10/0x10
[  284.978021][T10714]  ? binder_debug+0xe0/0x190
[  284.978044][T10714]  ? __pfx_binder_debug+0x10/0x10
[  284.978080][T10714]  binder_ioctl+0x2941/0x7610
[  284.978115][T10714]  ? tomoyo_path_number_perm+0x188/0x580
[  284.978146][T10714]  ? __pfx_binder_ioctl+0x10/0x10
[  284.978175][T10714]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  284.978203][T10714]  ? do_vfs_ioctl+0x226/0x13e0
[  284.978230][T10714]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  284.978257][T10714]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  284.978291][T10714]  ? hook_file_ioctl_common+0x146/0x410
[  284.978317][T10714]  ? selinux_file_ioctl+0x139/0x290
[  284.978341][T10714]  ? selinux_file_ioctl+0xb4/0x290
[  284.978367][T10714]  ? __pfx_binder_ioctl+0x10/0x10
[  284.978418][T10714]  __x64_sys_ioctl+0x18e/0x210
[  284.978447][T10714]  do_syscall_64+0x106/0xf80
[  284.978471][T10714]  ? clear_bhb_loop+0x40/0x90
[  284.978494][T10714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.978512][T10714] RIP: 0033:0x7ff13599c799
[  284.978529][T10714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  284.978546][T10714] RSP: 002b:00007ff133bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  284.978566][T10714] RAX: ffffffffffffffda RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  284.978578][T10714] RDX: 0000200000000180 RSI: 00000000c0306201 RDI: 0000000000000003
[  284.978589][T10714] RBP: 00007ff133bf6090 R08: 0000000000000000 R09: 0000000000000000
[  284.978599][T10714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.978610][T10714] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  284.978634][T10714]  </TASK>
[  285.172775][T10718] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.176067][T10718] batadv_slave_0: entered promiscuous mode
[  285.178474][T10718] batadv_slave_0: entered allmulticast mode
[  285.198551][T10720] FAULT_INJECTION: forcing a failure.
[  285.198551][T10720] name failslab, interval 1, probability 0, space 0, times 0
[  285.203828][T10720] CPU: 3 UID: 0 PID: 10720 Comm: syz.0.1639 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  285.203855][T10720] Tainted: [L]=SOFTLOCKUP
[  285.203862][T10720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  285.203871][T10720] Call Trace:
[  285.203876][T10720]  <TASK>
[  285.203882][T10720]  dump_stack_lvl+0x100/0x190
[  285.203913][T10720]  should_fail_ex.cold+0x5/0xa
[  285.203938][T10720]  should_failslab+0xc2/0x120
[  285.203958][T10720]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  285.203983][T10720]  ? skb_clone+0x190/0x400
[  285.204006][T10720]  skb_clone+0x190/0x400
[  285.204030][T10720]  netlink_deliver_tap+0xaed/0xcc0
[  285.204057][T10720]  netlink_unicast+0x70c/0x870
[  285.204082][T10720]  ? __pfx_netlink_unicast+0x10/0x10
[  285.204107][T10720]  ? __alloc_skb+0x5b7/0x710
[  285.204125][T10720]  ? genl_rcv_msg+0x4be/0x800
[  285.204147][T10720]  netlink_ack+0x655/0xb80
[  285.204180][T10720]  netlink_rcv_skb+0x333/0x420
[  285.204207][T10720]  ? __pfx_genl_rcv_msg+0x10/0x10
[  285.204224][T10720]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.204255][T10720]  ? netlink_deliver_tap+0x1ae/0xcc0
[  285.204286][T10720]  genl_rcv+0x28/0x40
[  285.204312][T10720]  netlink_unicast+0x5aa/0x870
[  285.204341][T10720]  ? __pfx_netlink_unicast+0x10/0x10
[  285.204378][T10720]  netlink_sendmsg+0x8b0/0xda0
[  285.204410][T10720]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.204434][T10720]  ? __might_fault+0x20/0x140
[  285.204466][T10720]  ____sys_sendmsg+0x9e1/0xb70
[  285.204486][T10720]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.204514][T10720]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.204553][T10720]  ___sys_sendmsg+0x190/0x1e0
[  285.204575][T10720]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.204622][T10720]  __sys_sendmsg+0x170/0x220
[  285.204652][T10720]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.204691][T10720]  do_syscall_64+0x106/0xf80
[  285.204716][T10720]  ? clear_bhb_loop+0x40/0x90
[  285.204738][T10720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.204756][T10720] RIP: 0033:0x7ff13599c799
[  285.204773][T10720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  285.204789][T10720] RSP: 002b:00007ff133bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  285.204807][T10720] RAX: ffffffffffffffda RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  285.204819][T10720] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  285.204829][T10720] RBP: 00007ff133bf6090 R08: 0000000000000000 R09: 0000000000000000
[  285.204840][T10720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.204849][T10720] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  285.204874][T10720]  </TASK>
[  285.443077][ T5994] usb 6-1: USB disconnect, device number 59
[  285.712797][ T6002] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[  285.862832][ T6002] usb 5-1: Using ep0 maxpacket: 16
[  285.867262][ T6002] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  285.874203][ T6002] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  285.878097][ T6002] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.881997][ T6002] usb 5-1: Product: syz
[  285.884239][ T6002] usb 5-1: Manufacturer: syz
[  285.886464][ T6002] usb 5-1: SerialNumber: syz
[  285.893535][ T6002] usb 5-1: config 0 descriptor??
[  285.898945][ T6002] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  285.904326][ T6002] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  286.490436][ T5967] usb 9-1: USB disconnect, device number 3
[  286.516051][ T6002] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  286.595488][   T40] kauditd_printk_skb: 8312 callbacks suppressed
[  286.595502][   T40] audit: type=1326 audit(1774361541.856:10703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.606330][   T40] audit: type=1326 audit(1774361541.876:10704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.615896][   T40] audit: type=1326 audit(1774361541.876:10705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.630319][   T40] audit: type=1326 audit(1774361541.876:10706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.639154][   T40] audit: type=1326 audit(1774361541.876:10707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.647928][   T40] audit: type=1326 audit(1774361541.876:10708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.656028][   T40] audit: type=1326 audit(1774361541.876:10709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.664144][   T40] audit: type=1326 audit(1774361541.876:10710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.672742][   T40] audit: type=1326 audit(1774361541.876:10711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.680455][   T40] audit: type=1326 audit(1774361541.876:10712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10727 comm="syz.2.1642" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x50000
[  286.736937][T10759] fuse: Bad value for 'fd'
[  286.816707][T10763] 9pnet_virtio: no channels available for device syz
[  286.823639][T10763] 9pnet_virtio: no channels available for device syz
[  286.828743][T10763] 9pnet_virtio: no channels available for device syz
[  286.831856][T10763] 9pnet_virtio: no channels available for device syz
[  286.837108][T10763] 9pnet_virtio: no channels available for device syz
[  286.840543][T10763] 9pnet_virtio: no channels available for device syz
[  286.845579][T10763] 9pnet_virtio: no channels available for device syz
[  287.087711][ T6126] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  287.178797][ T6002] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  287.182000][ T6002] em28xx 5-1:0.0: board has no eeprom
[  287.245645][ T6126] usb 9-1: Using ep0 maxpacket: 32
[  287.250161][ T6126] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  287.257542][ T6126] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  287.261523][ T6126] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  287.266503][ T6126] usb 9-1: Product: syz
[  287.268620][ T6126] usb 9-1: Manufacturer: syz
[  287.271532][ T6126] usb 9-1: SerialNumber: syz
[  287.275957][ T6126] usb 9-1: config 0 descriptor??
[  287.278825][T10765] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  287.293906][ T6126] hub 9-1:0.0: bad descriptor, ignoring hub
[  287.296380][ T6126] hub 9-1:0.0: probe with driver hub failed with error -5
[  287.385040][T10730] em28xx 5-1:0.0: read from i2c device at 0x0 failed with unknown error (status=65)
[  287.643245][ T6002] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  287.646013][ T6002] em28xx 5-1:0.0: dvb set to bulk mode.
[  287.658613][   T34] em28xx 5-1:0.0: Binding DVB extension
[  287.661412][ T6002] usb 5-1: USB disconnect, device number 71
[  287.666030][ T6002] em28xx 5-1:0.0: Disconnecting em28xx
[  287.700844][   T34] em28xx 5-1:0.0: Registering input extension
[  287.705933][ T6002] em28xx 5-1:0.0: Closing input extension
[  287.716366][ T6002] em28xx 5-1:0.0: Freeing device
[  287.731527][T10783] delete_channel: no stack
[  287.784981][T10787] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1658'.
[  287.855314][T10789] erspan0: entered promiscuous mode
[  288.118326][T10800] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1662'.
[  288.134244][T10800] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5129 sclass=netlink_route_socket pid=10800 comm=syz.0.1662
[  288.402956][ T5967] usb 9-1: USB disconnect, device number 4
[  288.407356][T10810] syzkaller0: entered promiscuous mode
[  288.409916][T10810] syzkaller0: entered allmulticast mode
[  288.913024][ T1343] usb 7-1: new high-speed USB device number 59 using dummy_hcd
[  289.064206][ T1343] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  289.073201][ T1343] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  289.078507][ T1343] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  289.082259][ T1343] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  289.084047][T10828] syzkaller0: entered promiscuous mode
[  289.090895][T10828] syzkaller0: entered allmulticast mode
[  289.095591][ T1343] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  289.104543][ T1343] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  289.108117][ T1343] usb 7-1: Product: syz
[  289.113419][ T1343] usb 7-1: Manufacturer: syz
[  289.126575][ T1343] cdc_wdm 7-1:1.0: skipping garbage
[  289.128803][ T1343] cdc_wdm 7-1:1.0: skipping garbage
[  289.131027][ T1343] cdc_wdm 7-1:1.0: skipping garbage
[  289.136276][ T1343] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  289.330101][ T6126] usb 7-1: USB disconnect, device number 59
[  289.330690][T10846] netlink: 'syz.4.1679': attribute type 9 has an invalid length.
[  289.337668][T10846] netlink: 'syz.4.1679': attribute type 11 has an invalid length.
[  289.342614][T10846] netlink: 'syz.4.1679': attribute type 12 has an invalid length.
[  289.345900][T10846] netlink: 210020 bytes leftover after parsing attributes in process `syz.4.1679'.
[  289.447614][T10847] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  290.002711][ T6126] usb 7-1: new high-speed USB device number 60 using dummy_hcd
[  290.140440][T10864] netlink: 'syz.0.1685': attribute type 10 has an invalid length.
[  290.146745][T10864] macvlan0: entered allmulticast mode
[  290.149455][T10864] veth1_vlan: entered allmulticast mode
[  290.154236][T10864] team0: Port device macvlan0 added
[  290.168232][ T6126] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  290.171901][ T6126] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  290.182937][ T6126] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  290.186729][ T6126] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  290.201314][ T6126] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  290.205588][ T6126] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  290.208908][ T6126] usb 7-1: Product: syz
[  290.210687][ T6126] usb 7-1: Manufacturer: syz
[  290.227367][ T6126] cdc_wdm 7-1:1.0: skipping garbage
[  290.229821][ T6126] cdc_wdm 7-1:1.0: skipping garbage
[  290.232079][ T6126] cdc_wdm 7-1:1.0: skipping garbage
[  290.242246][ T6126] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  290.283250][T10867] program syz.0.1686 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  290.336801][T10867] binder: 10866:10867 ioctl c0306201 2000000001c0 returned -14
[  290.428694][ T6126] usb 7-1: USB disconnect, device number 60
[  290.642811][T10195] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[  290.792771][T10195] usb 5-1: Using ep0 maxpacket: 8
[  290.797289][T10195] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  290.801869][T10195] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  290.806972][T10195] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  290.811138][T10195] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  290.820642][T10195] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  290.825140][T10195] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.035026][T10195] usb 5-1: usb_control_msg returned -32
[  291.037594][T10195] usbtmc 5-1:16.0: can't read capabilities
[  291.067273][T10195] usb 5-1: USB disconnect, device number 72
[  291.083254][T10879] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  291.087194][T10879] syzkaller0: entered promiscuous mode
[  291.090609][T10879] syzkaller0: entered allmulticast mode
[  291.116248][T10879] syzkaller0: MTU too low for tipc bearer
[  291.118726][T10879] tipc: Disabling bearer <eth:syzkaller0>
[  291.196255][T10881] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1691'.
[  291.199288][T10881] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1691'.
[  291.266270][T10885] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  291.319777][T10887] can0: slcan on ttynull.
[  291.324924][T10887] ptrace attach of "/syz-executor exec"[10455] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                b\x0a��\x0c  !��      \x07
  �����     �      �   �   �       �       ?�j}6ٱ����Ğ� ����Dl����\x0a���9:���$�V�Q���\x09<Y�k^Ο6�\x0d
\x0cPwڀ��,� �l�HJA[v�a�Ou$\x1b\x07.�  -uY:(  �>d�'�Z���bW�zr‘�Q������``V�\x5c4fL\x0a�6\x0az^k`q0ȟ
[  291.327490][T10887] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1694'.
[  291.478449][T10884] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  291.502779][T10884] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  291.512792][T10886] can0 (unregistered): slcan off ttynull.
[  291.529071][T10884] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  291.945344][ T5994] usb 7-1: new high-speed USB device number 61 using dummy_hcd
[  292.082776][ T5967] usb 5-1: new high-speed USB device number 73 using dummy_hcd
[  292.092954][T10913] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.1700'.
[  292.102421][T10913] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1700'.
[  292.111748][ T5994] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  292.114840][T10913] netlink: 'syz.1.1700': attribute type 39 has an invalid length.
[  292.117310][ T5994] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  292.120548][ T5994] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  292.126463][ T5994] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  292.130236][ T5994] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  292.135492][ T5994] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  292.138300][ T5994] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  292.140793][ T5994] usb 7-1: Product: syz
[  292.142124][ T5994] usb 7-1: Manufacturer: syz
[  292.153719][ T5994] cdc_wdm 7-1:1.0: skipping garbage
[  292.155542][ T5994] cdc_wdm 7-1:1.0: skipping garbage
[  292.157246][ T5994] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  292.242715][ T5981] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  292.245216][ T5967] usb 5-1: Using ep0 maxpacket: 16
[  292.248577][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  292.252873][ T5967] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  292.255891][ T5967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.258560][ T5967] usb 5-1: Product: syz
[  292.259950][ T5967] usb 5-1: Manufacturer: syz
[  292.261519][ T5967] usb 5-1: SerialNumber: syz
[  292.266747][ T5967] usb 5-1: config 0 descriptor??
[  292.270476][ T5967] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  292.273712][ T5967] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  292.323253][T10917] FAULT_INJECTION: forcing a failure.
[  292.323253][T10917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.327583][T10917] CPU: 3 UID: 0 PID: 10917 Comm: syz.1.1701 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  292.327610][T10917] Tainted: [L]=SOFTLOCKUP
[  292.327617][T10917] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  292.327628][T10917] Call Trace:
[  292.327635][T10917]  <TASK>
[  292.327642][T10917]  dump_stack_lvl+0x100/0x190
[  292.327675][T10917]  should_fail_ex.cold+0x5/0xa
[  292.327700][T10917]  _copy_to_user+0x32/0xd0
[  292.327721][T10917]  simple_read_from_buffer+0xcb/0x170
[  292.327739][T10917]  proc_fail_nth_read+0x1af/0x230
[  292.327757][T10917]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  292.327775][T10917]  ? rw_verify_area+0xce/0x6d0
[  292.327791][T10917]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  292.327807][T10917]  vfs_read+0x1e4/0xb30
[  292.327826][T10917]  ? __pfx_vfs_read+0x10/0x10
[  292.327843][T10917]  ? __fget_files+0x215/0x3d0
[  292.327859][T10917]  ? __fget_files+0x21f/0x3d0
[  292.327875][T10917]  ksys_read+0x12a/0x250
[  292.327886][T10917]  ? __pfx_ksys_read+0x10/0x10
[  292.327900][T10917]  do_syscall_64+0x106/0xf80
[  292.327916][T10917]  ? clear_bhb_loop+0x40/0x90
[  292.327929][T10917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.327941][T10917] RIP: 0033:0x7f69f2b5cfce
[  292.327952][T10917] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  292.327963][T10917] RSP: 002b:00007f69f3a2efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  292.327975][T10917] RAX: ffffffffffffffda RBX: 00007f69f3a2f6c0 RCX: 00007f69f2b5cfce
[  292.327982][T10917] RDX: 000000000000000f RSI: 00007f69f3a2f0a0 RDI: 0000000000000004
[  292.327989][T10917] RBP: 00007f69f3a2f090 R08: 0000000000000000 R09: 0000000000000000
[  292.327995][T10917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  292.328002][T10917] R13: 00007f69f2e16038 R14: 00007f69f2e15fa0 R15: 00007ffc567f81b8
[  292.328017][T10917]  </TASK>
[  292.356828][ T5994] usb 7-1: USB disconnect, device number 61
[  292.410873][T10919] binder_alloc: 10918: binder_alloc_buf, no vma
[  292.422819][ T5981] usb 9-1: Using ep0 maxpacket: 8
[  292.431537][ T5981] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  292.434924][ T5981] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  292.437804][ T5981] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.442298][ T5981] usb 9-1: config 0 descriptor??
[  292.462109][T10921] FAULT_INJECTION: forcing a failure.
[  292.462109][T10921] name failslab, interval 1, probability 0, space 0, times 0
[  292.467778][T10921] CPU: 0 UID: 0 PID: 10921 Comm: syz.1.1703 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  292.467799][T10921] Tainted: [L]=SOFTLOCKUP
[  292.467804][T10921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  292.467811][T10921] Call Trace:
[  292.467816][T10921]  <TASK>
[  292.467821][T10921]  dump_stack_lvl+0x100/0x190
[  292.467870][T10921]  should_fail_ex.cold+0x5/0xa
[  292.467886][T10921]  should_failslab+0xc2/0x120
[  292.467899][T10921]  __kmalloc_cache_noprof+0x7a/0x6f0
[  292.467914][T10921]  ? fl_change+0x176/0x7a50
[  292.467931][T10921]  fl_change+0x176/0x7a50
[  292.467948][T10921]  ? __lock_acquire+0x4a5/0x2630
[  292.467959][T10921]  ? trace_contention_end+0x140/0x180
[  292.467971][T10921]  ? find_held_lock+0x2b/0x80
[  292.467986][T10921]  ? tcf_chain0_head_change.isra.0+0xec/0x130
[  292.468001][T10921]  ? tcf_chain0_head_change.isra.0+0xec/0x130
[  292.468014][T10921]  ? find_held_lock+0x2b/0x80
[  292.468031][T10921]  ? __pfx_fl_change+0x10/0x10
[  292.468044][T10921]  ? find_held_lock+0x2b/0x80
[  292.468059][T10921]  ? fl_get+0x20a/0x3d0
[  292.468070][T10921]  ? fl_get+0x20a/0x3d0
[  292.468085][T10921]  ? fl_get+0x214/0x3d0
[  292.468100][T10921]  ? __pfx_fl_get+0x10/0x10
[  292.468114][T10921]  ? __pfx_fl_change+0x10/0x10
[  292.468127][T10921]  tc_new_tfilter+0x9df/0x24a0
[  292.468151][T10921]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  292.468165][T10921]  ? __pfx_tc_new_tfilter+0x10/0x10
[  292.468187][T10921]  ? __lock_acquire+0x4a5/0x2630
[  292.468205][T10921]  ? find_held_lock+0x2b/0x80
[  292.468221][T10921]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  292.468240][T10921]  ? __pfx_tc_new_tfilter+0x10/0x10
[  292.468257][T10921]  rtnetlink_rcv_msg+0x95e/0xe90
[  292.468274][T10921]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  292.468294][T10921]  ? ref_tracker_free+0x37e/0x6c0
[  292.468309][T10921]  netlink_rcv_skb+0x159/0x420
[  292.468326][T10921]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  292.468342][T10921]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  292.468365][T10921]  ? netlink_deliver_tap+0x1ae/0xcc0
[  292.468383][T10921]  netlink_unicast+0x5aa/0x870
[  292.468402][T10921]  ? __pfx_netlink_unicast+0x10/0x10
[  292.468424][T10921]  netlink_sendmsg+0x8b0/0xda0
[  292.468444][T10921]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.468460][T10921]  ? __might_fault+0x20/0x140
[  292.468481][T10921]  ____sys_sendmsg+0x9e1/0xb70
[  292.468499][T10921]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.468517][T10921]  ? __pfx_____sys_sendmsg+0x10/0x10
[  292.468542][T10921]  ___sys_sendmsg+0x190/0x1e0
[  292.468559][T10921]  ? __pfx____sys_sendmsg+0x10/0x10
[  292.468588][T10921]  __sys_sendmsg+0x170/0x220
[  292.468603][T10921]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.468628][T10921]  do_syscall_64+0x106/0xf80
[  292.468643][T10921]  ? clear_bhb_loop+0x40/0x90
[  292.468658][T10921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.468669][T10921] RIP: 0033:0x7f69f2b9c799
[  292.468680][T10921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  292.468690][T10921] RSP: 002b:00007f69f3a2f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.468702][T10921] RAX: ffffffffffffffda RBX: 00007f69f2e15fa0 RCX: 00007f69f2b9c799
[  292.468709][T10921] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  292.468716][T10921] RBP: 00007f69f3a2f090 R08: 0000000000000000 R09: 0000000000000000
[  292.468723][T10921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  292.468729][T10921] R13: 00007f69f2e16038 R14: 00007f69f2e15fa0 R15: 00007ffc567f81b8
[  292.468743][T10921]  </TASK>
[  292.652486][ T5981] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  292.862192][ T5994] usb 9-1: USB disconnect, device number 5
[  292.881198][ T5967] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  293.032720][ T6002] usb 7-1: new high-speed USB device number 62 using dummy_hcd
[  293.194422][ T6002] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  293.197288][ T6002] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  293.200994][ T6002] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  293.204057][ T6002] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  293.207820][ T6002] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  293.212985][ T6002] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  293.216509][ T6002] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  293.219548][ T6002] usb 7-1: Product: syz
[  293.221611][ T6002] usb 7-1: Manufacturer: syz
[  293.227204][ T6002] cdc_wdm 7-1:1.0: skipping garbage
[  293.229062][ T6002] cdc_wdm 7-1:1.0: skipping garbage
[  293.230805][ T6002] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  293.427998][ T5994] usb 7-1: USB disconnect, device number 62
[  293.456839][T10938] FAULT_INJECTION: forcing a failure.
[  293.456839][T10938] name failslab, interval 1, probability 0, space 0, times 0
[  293.462244][T10938] CPU: 3 UID: 0 PID: 10938 Comm: syz.4.1709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  293.462263][T10938] Tainted: [L]=SOFTLOCKUP
[  293.462268][T10938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  293.462275][T10938] Call Trace:
[  293.462280][T10938]  <TASK>
[  293.462285][T10938]  dump_stack_lvl+0x100/0x190
[  293.462308][T10938]  should_fail_ex.cold+0x5/0xa
[  293.462354][T10938]  should_failslab+0xc2/0x120
[  293.462371][T10938]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  293.462394][T10938]  ? security_inode_alloc+0x3b/0x2c0
[  293.462414][T10938]  ? lockdep_init_map_type+0x5c/0x250
[  293.462428][T10938]  security_inode_alloc+0x3b/0x2c0
[  293.462444][T10938]  inode_init_always_gfp+0xced/0x1040
[  293.462460][T10938]  alloc_inode+0x8e/0x250
[  293.462476][T10938]  new_inode+0x22/0x1c0
[  293.462500][T10938]  debugfs_create_dir+0xc4/0x440
[  293.462516][T10938]  ieee80211_debugfs_key_add+0x187/0x6f0
[  293.462547][T10938]  ? __pfx_ieee80211_debugfs_key_add+0x10/0x10
[  293.462566][T10938]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  293.462587][T10938]  ? ieee80211_key_replace+0x668/0x3490
[  293.462605][T10938]  ieee80211_key_link+0x617/0x14b0
[  293.462619][T10938]  ? trace_kmalloc+0x101/0x130
[  293.462631][T10938]  ? __pfx_ieee80211_key_link+0x10/0x10
[  293.462647][T10938]  ? __asan_memcpy+0x3c/0x60
[  293.462663][T10938]  ? ieee80211_key_alloc+0xb89/0x11e0
[  293.462680][T10938]  ieee80211_add_key+0x710/0xd10
[  293.462697][T10938]  ? nl80211_put_txq_stats+0xa93/0xb10
[  293.462715][T10938]  rdev_add_key+0xf9/0x360
[  293.462730][T10938]  nl80211_new_key+0x405/0x7f0
[  293.462750][T10938]  ? __pfx_nl80211_new_key+0x10/0x10
[  293.462770][T10938]  ? nl80211_pre_doit+0x19a/0xae0
[  293.462785][T10938]  genl_family_rcv_msg_doit+0x214/0x300
[  293.462801][T10938]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  293.462825][T10938]  ? bpf_lsm_capable+0x9/0x10
[  293.462842][T10938]  ? security_capable+0x80/0x260
[  293.462864][T10938]  ? ns_capable+0xd2/0xf0
[  293.462889][T10938]  genl_rcv_msg+0x560/0x800
[  293.462912][T10938]  ? __pfx_genl_rcv_msg+0x10/0x10
[  293.462929][T10938]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  293.462943][T10938]  ? __pfx_nl80211_new_key+0x10/0x10
[  293.462958][T10938]  ? __pfx_nl80211_post_doit+0x10/0x10
[  293.462976][T10938]  netlink_rcv_skb+0x159/0x420
[  293.462994][T10938]  ? __pfx_genl_rcv_msg+0x10/0x10
[  293.463006][T10938]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  293.463029][T10938]  ? netlink_deliver_tap+0x1ae/0xcc0
[  293.463048][T10938]  genl_rcv+0x28/0x40
[  293.463065][T10938]  netlink_unicast+0x5aa/0x870
[  293.463084][T10938]  ? __pfx_netlink_unicast+0x10/0x10
[  293.463106][T10938]  netlink_sendmsg+0x8b0/0xda0
[  293.463126][T10938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.463142][T10938]  ? __might_fault+0x20/0x140
[  293.463163][T10938]  ____sys_sendmsg+0x9e1/0xb70
[  293.463181][T10938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.463199][T10938]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.463224][T10938]  ___sys_sendmsg+0x190/0x1e0
[  293.463237][T10938]  ? __pfx____sys_sendmsg+0x10/0x10
[  293.463267][T10938]  __sys_sendmsg+0x170/0x220
[  293.463282][T10938]  ? __pfx___sys_sendmsg+0x10/0x10
[  293.463307][T10938]  do_syscall_64+0x106/0xf80
[  293.463323][T10938]  ? clear_bhb_loop+0x40/0x90
[  293.463338][T10938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.463350][T10938] RIP: 0033:0x7f6017b9c799
[  293.463361][T10938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  293.463372][T10938] RSP: 002b:00007f60189c8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.463384][T10938] RAX: ffffffffffffffda RBX: 00007f6017e15fa0 RCX: 00007f6017b9c799
[  293.463391][T10938] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  293.463398][T10938] RBP: 00007f60189c8090 R08: 0000000000000000 R09: 0000000000000000
[  293.463405][T10938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  293.463411][T10938] R13: 00007f6017e16038 R14: 00007f6017e15fa0 R15: 00007fff1321cf58
[  293.463427][T10938]  </TASK>
[  293.594577][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  293.597264][ T5967] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  293.599440][T10938] debugfs: out of free dentries, can not create directory '1'
[  293.601755][ T5967] em28xx 5-1:0.0: board has no eeprom
[  293.701928][T10943] binder_alloc: 10942: binder_alloc_buf, no vma
[  293.807900][T10909] em28xx 5-1:0.0: read from i2c device at 0x0 failed with unknown error (status=65)
[  294.062685][ T5967] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  294.066015][ T5967] em28xx 5-1:0.0: dvb set to bulk mode.
[  294.074103][ T5981] em28xx 5-1:0.0: Binding DVB extension
[  294.078286][ T5967] usb 5-1: USB disconnect, device number 73
[  294.090510][ T5967] em28xx 5-1:0.0: Disconnecting em28xx
[  294.126733][ T5981] em28xx 5-1:0.0: Registering input extension
[  294.129476][ T5967] em28xx 5-1:0.0: Closing input extension
[  294.147439][ T5967] em28xx 5-1:0.0: Freeing device
[  294.147950][T10967] fuse: Bad value for 'fd'
[  294.208590][T10970] Cannot find add_set index 46338 as target
[  294.246261][T10973] syz_tun: entered allmulticast mode
[  294.252452][T10973] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16154 sclass=netlink_route_socket pid=10973 comm=syz.4.1722
[  294.258897][T10972] syz_tun: left allmulticast mode
[  294.298269][T10977] netlink: 'syz.4.1724': attribute type 25 has an invalid length.
[  294.302245][T10977] netlink: 'syz.4.1724': attribute type 1 has an invalid length.
[  294.306910][T10977] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.310160][T10977] FAULT_INJECTION: forcing a failure.
[  294.310160][T10977] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.316073][T10977] CPU: 3 UID: 0 PID: 10977 Comm: syz.4.1724 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  294.316099][T10977] Tainted: [L]=SOFTLOCKUP
[  294.316106][T10977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  294.316115][T10977] Call Trace:
[  294.316120][T10977]  <TASK>
[  294.316128][T10977]  dump_stack_lvl+0x100/0x190
[  294.316161][T10977]  should_fail_ex.cold+0x5/0xa
[  294.316185][T10977]  _copy_to_user+0x32/0xd0
[  294.316207][T10977]  simple_read_from_buffer+0xcb/0x170
[  294.316227][T10977]  proc_fail_nth_read+0x1af/0x230
[  294.316251][T10977]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  294.316277][T10977]  ? rw_verify_area+0xce/0x6d0
[  294.316302][T10977]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  294.316327][T10977]  vfs_read+0x1e4/0xb30
[  294.316354][T10977]  ? __pfx_vfs_read+0x10/0x10
[  294.316378][T10977]  ? __fget_files+0x215/0x3d0
[  294.316403][T10977]  ? __fget_files+0x21f/0x3d0
[  294.316429][T10977]  ksys_read+0x12a/0x250
[  294.316445][T10977]  ? __pfx_ksys_read+0x10/0x10
[  294.316469][T10977]  do_syscall_64+0x106/0xf80
[  294.316490][T10977]  ? clear_bhb_loop+0x40/0x90
[  294.316512][T10977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.316536][T10977] RIP: 0033:0x7f6017b5cfce
[  294.316552][T10977] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  294.316568][T10977] RSP: 002b:00007f60189c7fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  294.316585][T10977] RAX: ffffffffffffffda RBX: 00007f60189c86c0 RCX: 00007f6017b5cfce
[  294.316596][T10977] RDX: 000000000000000f RSI: 00007f60189c80a0 RDI: 0000000000000004
[  294.316605][T10977] RBP: 00007f60189c8090 R08: 0000000000000000 R09: 0000000000000000
[  294.316614][T10977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  294.316624][T10977] R13: 00007f6017e16038 R14: 00007f6017e15fa0 R15: 00007fff1321cf58
[  294.316648][T10977]  </TASK>
[  294.318361][T10979] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  294.407255][T10982] syzkaller0: entered promiscuous mode
[  294.409873][T10982] syzkaller0: entered allmulticast mode
[  294.414900][T10978] tipc: Resetting bearer <eth:syzkaller0>
[  294.429964][T10978] tipc: Disabling bearer <eth:syzkaller0>
[  294.529110][T10987] syzkaller0: entered promiscuous mode
[  294.531398][T10987] syzkaller0: entered allmulticast mode
[  294.705667][   T40] kauditd_printk_skb: 13462 callbacks suppressed
[  294.705679][   T40] audit: type=1400 audit(1774361549.986:24175): avc:  denied  { append } for  pid=11000 comm="syz.0.1733" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  294.986049][T11002] cgroup: fork rejected by pids controller in /syz0
[  295.442930][ T6126] usb 5-1: new high-speed USB device number 74 using dummy_hcd
[  295.592772][ T6126] usb 5-1: Using ep0 maxpacket: 8
[  295.596597][ T6126] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  295.599277][ T6126] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  295.602526][ T6126] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  295.606184][ T6126] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  295.609411][ T6126] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  295.613886][ T6126] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  295.614104][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  295.616837][ T6126] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.835005][ T6126] usb 5-1: usb_control_msg returned -32
[  295.836868][ T6126] usbtmc 5-1:16.0: can't read capabilities
[  295.839377][T11140] support for cryptoloop has been removed.  Use dm-crypt instead.
[  295.855242][T11140] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  295.859874][T11140] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  295.896938][T11142] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1735'.
[  295.936555][   T40] audit: type=1400 audit(1774361551.216:24176): avc:  denied  { listen } for  pid=11144 comm="syz.2.1736" lport=54444 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  295.947073][   T40] audit: type=1400 audit(1774361551.216:24177): avc:  denied  { read } for  pid=11144 comm="syz.2.1736" lport=54444 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  296.082082][T11151] tipc: Started in network mode
[  296.084268][T11151] tipc: Node identity ee9c94cd8855, cluster identity 4711
[  296.087221][T11151] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  296.090958][T11151] syzkaller0: entered promiscuous mode
[  296.093954][T11151] syzkaller0: entered allmulticast mode
[  296.099317][T11150] tipc: Resetting bearer <eth:syzkaller0>
[  296.111044][T11150] tipc: Disabling bearer <eth:syzkaller0>
[  296.223137][T11154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1739'.
[  296.269764][T11157] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1740'.
[  296.274526][T11156] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1740'.
[  296.363203][   T40] audit: type=1800 audit(1774361551.646:24178): pid=11162 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.4.1742" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  296.383205][T11162] bridge0: port 2(bridge_slave_1) entered disabled state
[  296.386061][T11162] bridge_slave_1: left allmulticast mode
[  296.387883][T11162] bridge_slave_1: left promiscuous mode
[  296.389859][T11162] bridge0: port 2(bridge_slave_1) entered disabled state
[  296.398498][T11162] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  296.414346][T11162] overlayfs: failed to get index nlink (file1/file0, err=-61)
[  296.459804][T11164] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1743'.
[  296.802804][ T5981] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  296.856572][T11177] syzkaller0: entered promiscuous mode
[  296.858963][T11177] syzkaller0: entered allmulticast mode
[  296.974741][ T5981] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  296.978209][ T5981] usb 9-1: config 0 has no interfaces?
[  296.981754][ T5981] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  296.984981][ T5981] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.987693][ T5981] usb 9-1: Product: syz
[  296.989101][ T5981] usb 9-1: Manufacturer: syz
[  296.990904][ T5981] usb 9-1: SerialNumber: syz
[  296.994723][ T5981] usb 9-1: config 0 descriptor??
[  297.219992][   T40] audit: type=1400 audit(1774361552.496:24179): avc:  denied  { write } for  pid=11165 comm="syz.4.1744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  297.222826][T11166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1744'.
[  297.267069][   T40] audit: type=1400 audit(1774361552.546:24180): avc:  denied  { wake_alarm } for  pid=11165 comm="syz.4.1744" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  297.297544][ T6126] usb 9-1: USB disconnect, device number 6
[  297.693405][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  298.039967][T11192] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  298.043238][T11193] syzkaller0: entered promiscuous mode
[  298.046025][T11193] syzkaller0: entered allmulticast mode
[  298.051320][T11189] tipc: Resetting bearer <eth:syzkaller0>
[  298.067164][T11189] tipc: Disabling bearer <eth:syzkaller0>
[  298.114136][T11202] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  298.120679][T11202] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57 sclass=netlink_route_socket pid=11202 comm=syz.2.1748
[  298.221526][   T34] usb 5-1: USB disconnect, device number 74
[  298.226730][T11210] siw: device registration error -23
[  298.381180][T11229] syzkaller0: entered promiscuous mode
[  298.385604][T11229] syzkaller0: entered allmulticast mode
[  298.507664][T11233] xt_connbytes: Forcing CT accounting to be enabled
[  298.535396][T11233] overlayfs: failed to clone upperpath
[  298.541029][   T40] audit: type=1400 audit(1774361553.816:24181): avc:  denied  { getopt } for  pid=11231 comm="syz.2.1757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  298.582696][   T34] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[  298.687827][T11237] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1758'.
[  298.745497][   T34] usb 5-1: Using ep0 maxpacket: 8
[  298.761342][   T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  298.765174][   T34] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  298.768155][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.775516][   T34] usb 5-1: config 0 descriptor??
[  298.838173][T11239] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1758'.
[  298.841057][T11239] nbd: device at index 64 is going down
[  298.948577][T10498] udevd[10498]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  298.990036][   T34] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  299.597152][T11248] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  299.600172][T11249] syzkaller0: entered promiscuous mode
[  299.602644][T11249] syzkaller0: entered allmulticast mode
[  299.609287][T11243] tipc: Resetting bearer <eth:syzkaller0>
[  299.620416][T11243] tipc: Disabling bearer <eth:syzkaller0>
[  299.965840][   T40] audit: type=1400 audit(1774361555.246:24182): avc:  denied  { read } for  pid=11271 comm="syz.1.1767" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  299.979413][   T40] audit: type=1400 audit(1774361555.246:24183): avc:  denied  { open } for  pid=11271 comm="syz.1.1767" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  300.033654][ T5994] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  300.120693][ T5981] usb 5-1: USB disconnect, device number 75
[  300.194812][ T5994] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  300.197833][ T5994] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  300.199028][T11280] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  300.201720][ T5994] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  300.207755][ T5994] usb 9-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  300.210131][T11281] bridge_slave_0: left allmulticast mode
[  300.211474][ T5994] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  300.213412][T11281] bridge_slave_0: left promiscuous mode
[  300.214716][T11281] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.218547][ T5994] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  300.224712][ T5994] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  300.228778][ T5994] usb 9-1: Product: syz
[  300.230504][T11281] bridge_slave_1: left allmulticast mode
[  300.230968][ T5994] usb 9-1: Manufacturer: syz
[  300.235834][T11281] bridge_slave_1: left promiscuous mode
[  300.237857][T11281] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.242214][ T5994] cdc_wdm 9-1:1.0: skipping garbage
[  300.245664][ T5994] cdc_wdm 9-1:1.0: skipping garbage
[  300.246149][T11281] bond0: (slave bond_slave_0): Releasing backup interface
[  300.247935][ T5994] cdc_wdm 9-1:1.0: probe with driver cdc_wdm failed with error -22
[  300.252716][ T1343] usb 6-1: new high-speed USB device number 60 using dummy_hcd
[  300.260614][T11281] bond0: (slave bond_slave_1): Releasing backup interface
[  300.268142][T11281] team0: Port device team_slave_0 removed
[  300.273383][T11281] team0: Port device team_slave_1 removed
[  300.276330][T11281] batman_adv: batadv0: Removing interface: batadv_slave_0
[  300.280743][T11281] batman_adv: batadv0: Removing interface: batadv_slave_1
[  300.285021][T11281] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  300.293581][T11280] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  300.341240][T11285] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  300.344943][T11285] syzkaller0: entered promiscuous mode
[  300.346859][T11285] syzkaller0: entered allmulticast mode
[  300.351202][T11284] tipc: Resetting bearer <eth:syzkaller0>
[  300.366648][T11284] tipc: Disabling bearer <eth:syzkaller0>
[  300.392711][   T34] usb 7-1: new high-speed USB device number 63 using dummy_hcd
[  300.403191][ T1343] usb 6-1: Using ep0 maxpacket: 8
[  300.406363][ T1343] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  300.410192][ T1343] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  300.414714][ T1343] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.419142][ T1343] usb 6-1: config 0 descriptor??
[  300.443827][ T5981] usb 9-1: USB disconnect, device number 7
[  300.542734][   T34] usb 7-1: Using ep0 maxpacket: 8
[  300.548585][   T34] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  300.552094][   T34] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  300.556543][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  300.560601][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  300.565682][   T34] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  300.571460][   T34] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  300.575606][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.644499][ T1343] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  300.785915][   T34] usb 7-1: usb_control_msg returned -32
[  300.787837][   T34] usbtmc 7-1:16.0: can't read capabilities
[  300.793905][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.796312][   T34] usb 7-1: USB disconnect, device number 63
[  300.796804][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.806012][T11291] netlink: 'syz.0.1774': attribute type 1 has an invalid length.
[  300.823856][T11291] 8021q: adding VLAN 0 to HW filter on device bond1
[  300.899567][ T1343] usb 6-1: USB disconnect, device number 60
[  301.092766][ T6415] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  301.254485][ T6415] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  301.258182][ T6415] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  301.262648][ T6415] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  301.266300][ T6415] usb 9-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  301.270911][ T6415] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  301.277072][ T6415] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  301.280709][ T6415] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  301.284269][ T6415] usb 9-1: Product: syz
[  301.286015][ T6415] usb 9-1: Manufacturer: syz
[  301.292320][ T6415] cdc_wdm 9-1:1.0: skipping garbage
[  301.295381][ T6415] cdc_wdm 9-1:1.0: skipping garbage
[  301.297627][ T6415] cdc_wdm 9-1:1.0: probe with driver cdc_wdm failed with error -22
[  301.447524][T11297] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  301.456544][T11297] cramfs: wrong magic
[  301.492768][ T6415] usb 9-1: USB disconnect, device number 8
[  301.615804][T11304] Invalid option length (155) for dns_resolver key
[  301.659881][T11309] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1780'.
[  301.663930][T11309] openvswitch: netlink: Unexpected mask (mask=200440, allowed=10048)
[  302.528061][   T40] audit: type=1400 audit(1774361557.806:24184): avc:  denied  { watch } for  pid=11318 comm="syz.0.1784" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  302.576151][T11321] netlink: zone id is out of range
[  302.578463][T11321] netlink: zone id is out of range
[  302.580904][T11321] netlink: set zone limit has 8 unknown bytes
[  302.642674][ T5981] usb 7-1: new high-speed USB device number 64 using dummy_hcd
[  302.912669][ T5981] usb 7-1: Using ep0 maxpacket: 8
[  302.916889][ T5981] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  302.920059][ T5981] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  302.924753][ T5981] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  302.928646][ T5981] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  302.933158][ T5981] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  302.939104][ T5981] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  302.948753][   T40] audit: type=1400 audit(1774361558.226:24185): avc:  denied  { write } for  pid=11325 comm="syz.0.1787" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  302.953077][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.035522][T11330] dlm: no locking on control device
[  303.203436][ T5981] usb 7-1: GET_CAPABILITIES returned 0
[  303.206114][ T5981] usbtmc 7-1:16.0: can't read capabilities
[  304.030578][T11340] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  304.034252][T11340] syzkaller0: entered promiscuous mode
[  304.036078][T11340] syzkaller0: entered allmulticast mode
[  304.041067][T11339] tipc: Resetting bearer <eth:syzkaller0>
[  304.055539][T11339] tipc: Disabling bearer <eth:syzkaller0>
[  304.329676][T11345] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1794'.
[  304.462055][   T40] audit: type=1400 audit(1774361559.736:24186): avc:  denied  { remove_name } for  pid=11348 comm="syz.0.1795" name="file0" dev="9p" ino=75235433 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  304.471403][   T40] audit: type=1400 audit(1774361559.736:24187): avc:  denied  { rename } for  pid=11348 comm="syz.0.1795" name="file0" dev="9p" ino=75235433 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  304.481566][   T40] audit: type=1400 audit(1774361559.736:24188): avc:  denied  { unlink } for  pid=11348 comm="syz.0.1795" name="file1" dev="9p" ino=75235435 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  304.889599][T11364] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  304.894684][   T34] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  304.898546][T11364] syzkaller0: entered promiscuous mode
[  304.900864][T11364] syzkaller0: entered allmulticast mode
[  304.909110][T11363] tipc: Resetting bearer <eth:syzkaller0>
[  304.919490][T11363] tipc: Disabling bearer <eth:syzkaller0>
[  305.054087][   T34] usb 9-1: Using ep0 maxpacket: 8
[  305.059715][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  305.065142][   T34] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  305.069035][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.075678][   T34] usb 9-1: config 0 descriptor??
[  305.094579][   T40] audit: type=1400 audit(1774361560.376:24189): avc:  denied  { ioctl } for  pid=11370 comm="syz.0.1804" path="socket:[51927]" dev="sockfs" ino=51927 ioctlcmd=0x5882 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  305.176022][T11373] 9p: Bad value for 'rfdno'
[  305.290359][   T34] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  305.531843][T11383] netlink: 'syz.0.1808': attribute type 11 has an invalid length.
[  305.539477][T11383] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11383 comm=syz.0.1808
[  305.929411][T11389] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  305.947688][T11389] syzkaller0: entered promiscuous mode
[  305.950541][T11389] syzkaller0: entered allmulticast mode
[  305.977843][T11388] tipc: Resetting bearer <eth:syzkaller0>
[  306.053663][T11388] tipc: Disabling bearer <eth:syzkaller0>
[  306.225118][   T40] audit: type=1400 audit(1774361561.506:24190): avc:  denied  { ioctl } for  pid=11393 comm="syz.1.1812" path="socket:[52900]" dev="sockfs" ino=52900 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  306.809528][T11409] binder: 11408:11409 ioctl c0306201 200000000540 returned -14
[  307.303136][T10195] usb 6-1: new high-speed USB device number 61 using dummy_hcd
[  307.472615][T10195] usb 6-1: Using ep0 maxpacket: 8
[  307.477694][T10195] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  307.481177][T10195] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  307.484677][T10195] usb 6-1: config 0 interface 0 has no altsetting 0
[  307.486828][T10195] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  307.489729][T10195] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.495153][T10195] usb 6-1: config 0 descriptor??
[  307.857543][T11418] mmap: syz.0.1821 (11418): VmData 29073408 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  307.911804][T10195] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  307.915026][T10195] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  307.917219][T10195] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  307.919392][T10195] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  307.921635][T10195] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  307.924407][T10195] mcp2221 0003:04D8:00DD.0008: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  308.132910][T10195] usb 6-1: USB disconnect, device number 61
[  308.413242][T11317] usbtmc 7-1:16.0: usb_control_msg returned -110
[  308.424623][T10195] usb 7-1: USB disconnect, device number 64
[  308.439566][   T34] usb 9-1: USB disconnect, device number 9
[  308.505702][T11446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1826'.
[  308.508683][T11446] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1826'.
[  308.572097][T11449] virt_wifi0 speed is unknown, defaulting to 1000
[  308.610510][T11451] syzkaller0: entered promiscuous mode
[  308.613712][T11451] syzkaller0: entered allmulticast mode
[  308.626738][T11452] blk_print_req_error: 138 callbacks suppressed
[  308.626762][T11452] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.637979][T11452] buffer_io_error: 138 callbacks suppressed
[  308.637996][T11452] Buffer I/O error on dev nbd0, logical block 0, async page read
[  308.644795][T11452] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.648632][T11452] Buffer I/O error on dev nbd0, logical block 1, async page read
[  308.651978][T11452] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.656836][T11452] Buffer I/O error on dev nbd0, logical block 2, async page read
[  308.660562][T11452] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.673129][T11452] Buffer I/O error on dev nbd0, logical block 3, async page read
[  308.677127][T11452] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.681519][T11452] Buffer I/O error on dev nbd0, logical block 0, async page read
[  308.690775][T11452] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.702606][T11452] Buffer I/O error on dev nbd0, logical block 1, async page read
[  308.705176][T11452] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.712615][T11452] Buffer I/O error on dev nbd0, logical block 2, async page read
[  308.715846][T11452] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.718869][T11452] Buffer I/O error on dev nbd0, logical block 3, async page read
[  308.722212][T11452] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.725577][T11452] Buffer I/O error on dev nbd0, logical block 0, async page read
[  308.728012][T11452] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  308.730849][T11452] Buffer I/O error on dev nbd0, logical block 1, async page read
[  308.734164][T11452] ldm_validate_partition_table(): Disk read failed.
[  308.736745][T11452] Dev nbd0: unable to read RDB block 0
[  308.739097][T11452]  nbd0: unable to read partition table
[  309.122710][ T5994] usb 6-1: new high-speed USB device number 62 using dummy_hcd
[  309.272726][ T5994] usb 6-1: Using ep0 maxpacket: 8
[  309.276222][ T5994] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  309.278943][ T5994] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  309.282114][ T5994] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  309.285657][ T5994] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  309.288803][ T5994] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  309.292986][ T5994] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  309.295895][ T5994] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.506829][ T5994] usb 6-1: GET_CAPABILITIES returned 0
[  309.509831][ T5994] usbtmc 6-1:16.0: can't read capabilities
[  310.054821][T11470] syz.2.1835 (11470): drop_caches: 2
[  310.057483][T11470] syz.2.1835 (11470): drop_caches: 2
[  310.144037][T11471] ./file1: Can't lookup blockdev
[  310.412274][T11483] syzkaller0: entered promiscuous mode
[  310.414907][T11483] syzkaller0: entered allmulticast mode
[  310.547297][T11487] ALSA: seq fatal error: cannot create timer (-16)
[  310.592404][T11489] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  310.596132][T11489] syzkaller0: entered promiscuous mode
[  310.598456][T11489] syzkaller0: entered allmulticast mode
[  310.613766][T11489] tipc: Resetting bearer <eth:syzkaller0>
[  310.617450][T11488] tipc: Resetting bearer <eth:syzkaller0>
[  310.627558][T11488] tipc: Disabling bearer <eth:syzkaller0>
[  310.737635][   T34] usb 7-1: new high-speed USB device number 65 using dummy_hcd
[  310.903644][   T34] usb 7-1: Using ep0 maxpacket: 32
[  310.906942][   T34] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  310.910314][   T34] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  310.913974][   T34] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  310.917497][   T34] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  310.921632][   T34] usb 7-1: config 0 interface 0 has no altsetting 0
[  310.927777][   T34] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  310.931807][   T34] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  310.937307][   T34] usb 7-1: Product: syz
[  310.939134][   T34] usb 7-1: Manufacturer: syz
[  310.942493][   T34] usb 7-1: SerialNumber: syz
[  310.954139][   T34] usb 7-1: config 0 descriptor??
[  310.968335][   T34] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  310.976378][   T34] ldusb 7-1:0.0: LD USB Device #1 now attached to major 180 minor 1
[  311.455850][T11518] syzkaller0: entered promiscuous mode
[  311.458262][T11518] syzkaller0: entered allmulticast mode
[  311.822649][   T59] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  311.992762][   T59] usb 9-1: Using ep0 maxpacket: 8
[  311.996218][   T59] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  311.999808][   T59] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  312.003092][   T59] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.014338][   T59] usb 9-1: config 0 descriptor??
[  312.692239][T11523] FAULT_INJECTION: forcing a failure.
[  312.692239][T11523] name failslab, interval 1, probability 0, space 0, times 0
[  312.697535][T11523] CPU: 0 UID: 0 PID: 11523 Comm: syz.0.1854 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  312.697563][T11523] Tainted: [L]=SOFTLOCKUP
[  312.697569][T11523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  312.697579][T11523] Call Trace:
[  312.697586][T11523]  <TASK>
[  312.697595][T11523]  dump_stack_lvl+0x100/0x190
[  312.697638][T11523]  should_fail_ex.cold+0x5/0xa
[  312.697667][T11523]  should_failslab+0xc2/0x120
[  312.697685][T11523]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  312.697709][T11523]  ? __alloc_skb+0x140/0x710
[  312.697742][T11523]  __alloc_skb+0x140/0x710
[  312.697762][T11523]  ? __alloc_skb+0x5b7/0x710
[  312.697782][T11523]  ? __pfx___alloc_skb+0x10/0x10
[  312.697808][T11523]  tipc_nl_compat_dumpit+0x295/0x820
[  312.697831][T11523]  tipc_nl_compat_recv+0x973/0xc40
[  312.697852][T11523]  ? __pfx_tipc_nl_compat_recv+0x10/0x10
[  312.697871][T11523]  ? lock_acquire+0x1cf/0x380
[  312.697890][T11523]  ? __pfx_tipc_nl_bearer_dump+0x10/0x10
[  312.697911][T11523]  ? __pfx_tipc_nl_compat_bearer_dump+0x10/0x10
[  312.697933][T11523]  ? __mutex_lock+0x26a/0x1b90
[  312.697958][T11523]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  312.697982][T11523]  genl_family_rcv_msg_doit+0x214/0x300
[  312.698004][T11523]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  312.698022][T11523]  ? genl_get_cmd+0x3ef/0x720
[  312.698053][T11523]  ? __dev_queue_xmit+0x5af/0x4800
[  312.698070][T11523]  ? __radix_tree_lookup+0x217/0x2b0
[  312.698097][T11523]  genl_rcv_msg+0x560/0x800
[  312.698118][T11523]  ? __pfx_genl_rcv_msg+0x10/0x10
[  312.698136][T11523]  ? __pfx_tipc_nl_compat_recv+0x10/0x10
[  312.698162][T11523]  netlink_rcv_skb+0x159/0x420
[  312.698187][T11523]  ? __pfx_genl_rcv_msg+0x10/0x10
[  312.698226][T11523]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  312.698264][T11523]  ? netlink_deliver_tap+0x1ae/0xcc0
[  312.698289][T11523]  genl_rcv+0x28/0x40
[  312.698311][T11523]  netlink_unicast+0x5aa/0x870
[  312.698340][T11523]  ? __pfx_netlink_unicast+0x10/0x10
[  312.698375][T11523]  netlink_sendmsg+0x8b0/0xda0
[  312.698404][T11523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  312.698425][T11523]  ? __might_fault+0x20/0x140
[  312.698458][T11523]  ____sys_sendmsg+0x9e1/0xb70
[  312.698483][T11523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  312.698510][T11523]  ? __pfx_____sys_sendmsg+0x10/0x10
[  312.698545][T11523]  ___sys_sendmsg+0x190/0x1e0
[  312.698566][T11523]  ? __pfx____sys_sendmsg+0x10/0x10
[  312.698615][T11523]  __sys_sendmsg+0x170/0x220
[  312.698639][T11523]  ? __pfx___sys_sendmsg+0x10/0x10
[  312.698679][T11523]  do_syscall_64+0x106/0xf80
[  312.698702][T11523]  ? clear_bhb_loop+0x40/0x90
[  312.698723][T11523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.698742][T11523] RIP: 0033:0x7ff13599c799
[  312.698758][T11523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  312.698775][T11523] RSP: 002b:00007ff133bf6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  312.698791][T11523] RAX: ffffffffffffffda RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  312.698801][T11523] RDX: 0000000004000040 RSI: 0000200000000600 RDI: 0000000000000003
[  312.698812][T11523] RBP: 00007ff133bf6090 R08: 0000000000000000 R09: 0000000000000000
[  312.698822][T11523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.698832][T11523] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  312.698857][T11523]  </TASK>
[  313.050512][T11529] FAULT_INJECTION: forcing a failure.
[  313.050512][T11529] name failslab, interval 1, probability 0, space 0, times 0
[  313.055619][T11529] CPU: 2 UID: 0 PID: 11529 Comm: syz.0.1857 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  313.055648][T11529] Tainted: [L]=SOFTLOCKUP
[  313.055655][T11529] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  313.055665][T11529] Call Trace:
[  313.055674][T11529]  <TASK>
[  313.055682][T11529]  dump_stack_lvl+0x100/0x190
[  313.055721][T11529]  should_fail_ex.cold+0x5/0xa
[  313.055745][T11529]  should_failslab+0xc2/0x120
[  313.055763][T11529]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  313.055787][T11529]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  313.055820][T11529]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  313.055853][T11529]  mmu_topup_memory_caches+0x25/0x170
[  313.055874][T11529]  kvm_mmu_load+0xd6/0x23e0
[  313.055893][T11529]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  313.055916][T11529]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  313.055944][T11529]  ? __pfx_kvm_mmu_load+0x10/0x10
[  313.055962][T11529]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  313.055989][T11529]  ? kvm_check_and_inject_events+0x961/0x10c0
[  313.056010][T11529]  ? record_steal_time+0x3f0/0xbe0
[  313.056038][T11529]  vcpu_run+0x39f4/0x5ca0
[  313.056067][T11529]  ? __pfx_vcpu_run+0x10/0x10
[  313.056096][T11529]  ? rcu_is_watching+0x12/0xc0
[  313.056121][T11529]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  313.056141][T11529]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  313.056174][T11529]  kvm_vcpu_ioctl+0x730/0x1730
[  313.056202][T11529]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  313.056226][T11529]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  313.056252][T11529]  ? do_vfs_ioctl+0x226/0x13e0
[  313.056278][T11529]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  313.056303][T11529]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  313.056348][T11529]  ? __fget_files+0x215/0x3d0
[  313.056365][T11529]  ? hook_file_ioctl_common+0x146/0x410
[  313.056390][T11529]  ? selinux_file_ioctl+0x139/0x290
[  313.056413][T11529]  ? selinux_file_ioctl+0xb4/0x290
[  313.056437][T11529]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  313.056462][T11529]  __x64_sys_ioctl+0x18e/0x210
[  313.056489][T11529]  do_syscall_64+0x106/0xf80
[  313.056511][T11529]  ? clear_bhb_loop+0x40/0x90
[  313.056532][T11529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.056550][T11529] RIP: 0033:0x7ff13599c799
[  313.056566][T11529] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  313.056583][T11529] RSP: 002b:00007ff133bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  313.056600][T11529] RAX: ffffffffffffffda RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  313.056612][T11529] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  313.056623][T11529] RBP: 00007ff133bf6090 R08: 0000000000000000 R09: 0000000000000000
[  313.056634][T11529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  313.056644][T11529] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  313.056669][T11529]  </TASK>
[  313.522718][   T34] usb 5-1: new high-speed USB device number 76 using dummy_hcd
[  313.674304][   T34] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  313.677161][   T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  313.681233][   T34] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  313.684551][   T34] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  313.687108][   T34] usb 5-1: Manufacturer: syz
[  313.690560][   T34] usb 5-1: config 0 descriptor??
[  313.732592][   T34] rc_core: IR keymap rc-hauppauge not found
[  313.735018][   T34] Registered IR keymap rc-empty
[  313.737747][   T34] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  313.742897][   T34] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input44
[  313.914301][ T6126] usb 5-1: USB disconnect, device number 76
[  314.173756][   T63] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  314.177433][   T63] Bluetooth: hci2: Injecting HCI hardware error event
[  314.180939][   T63] Bluetooth: hci2: hardware error 0x00
[  314.732909][T11466] usbtmc 6-1:16.0: usb_control_msg returned -110
[  314.737716][   T59] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior2
[  314.747868][ T6126] usb 6-1: USB disconnect, device number 62
[  314.764634][   T34] usb 7-1: USB disconnect, device number 65
[  314.773746][   T34] ldusb 7-1:0.0: LD USB Device #1 now disconnected
[  314.828180][ T5981] usb 9-1: USB disconnect, device number 10
[  314.853276][T11538] kernel read not supported for file /policy (pid: 11538 comm: syz.1.1860)
[  314.859406][   T40] audit: type=1400 audit(1774361570.126:24191): avc:  denied  { module_load } for  pid=11537 comm="syz.1.1860" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=system permissive=1
[  314.879228][   T40] audit: type=1400 audit(1774361570.156:24192): avc:  denied  { ioctl } for  pid=11537 comm="syz.1.1860" path="socket:[51038]" dev="sockfs" ino=51038 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  314.889650][T11538] syzkaller1: entered promiscuous mode
[  314.892095][T11538] syzkaller1: entered allmulticast mode
[  315.005882][T11545] binder_alloc: 11544: binder_alloc_buf, no vma
[  315.113588][T11549] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=11549 comm=syz.4.1864
[  315.136428][T11549] binder: 11546:11549 ioctl c00c620f 200000000040 returned -22
[  315.386576][T11554] overlayfs: failed to resolve './file0': -2
[  315.405999][T11554] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1866'.
[  315.852758][ T6126] usb 6-1: new high-speed USB device number 63 using dummy_hcd
[  315.962657][T10195] usb 7-1: new high-speed USB device number 66 using dummy_hcd
[  316.002673][ T6126] usb 6-1: Using ep0 maxpacket: 8
[  316.006123][ T6126] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  316.009873][ T6126] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  316.013024][ T6126] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.017119][ T6126] usb 6-1: config 0 descriptor??
[  316.112657][T10195] usb 7-1: Using ep0 maxpacket: 8
[  316.115995][T10195] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  316.119607][T10195] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  316.122801][T10195] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.133348][T10195] usb 7-1: config 0 descriptor??
[  316.162673][ T5981] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  316.252870][   T63] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  316.275254][ T6126] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  316.290178][ T6126] usb 6-1: USB disconnect, device number 63
[  316.312621][ T5981] usb 9-1: Using ep0 maxpacket: 8
[  316.315760][ T5981] usb 9-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.319335][ T5981] usb 9-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.323269][ T5981] usb 9-1: config 0 interface 0 has no altsetting 0
[  316.326332][ T5981] usb 9-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  316.330263][ T5981] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.335494][ T5981] usb 9-1: config 0 descriptor??
[  316.341989][T10195] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  316.641813][T11575] all: renamed from bridge_slave_0
[  316.744159][ T5981] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  316.746703][ T5981] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  316.749149][ T5981] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  316.751694][ T5981] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  316.754484][ T5981] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  316.757366][ T5981] mcp2221 0003:04D8:00DD.0009: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0
[  316.948438][ T5981] usb 9-1: USB disconnect, device number 11
[  317.161473][ T5981] usb 7-1: USB disconnect, device number 66
[  317.387756][T11591] syz_tun: entered allmulticast mode
[  317.391386][T11590] syz_tun: left allmulticast mode
[  317.434114][T11593] fuse: Bad value for 'fd'
[  317.752662][ T6126] usb 9-1: new full-speed USB device number 12 using dummy_hcd
[  317.868599][T11606] ubi31: attaching mtd0
[  317.873648][T11606] ubi31: scanning is finished
[  317.875585][T11606] ubi31: empty MTD device detected
[  317.904519][ T6126] usb 9-1: config 1 interface 0 altsetting 1 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  317.908196][ T6126] usb 9-1: config 1 interface 0 altsetting 1 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  317.912094][ T6126] usb 9-1: config 1 interface 0 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  317.933546][ T6126] usb 9-1: config 1 interface 0 has no altsetting 0
[  317.937296][ T6126] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  317.940207][ T6126] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.943092][ T6126] usb 9-1: Product: ࠾
[  317.944720][ T6126] usb 9-1: Manufacturer: 恏龻繬螵全阏튝就ҝ᩷⃽挧⤗鋓噤쓱굥腜摢徹Ⴆ䣼✫⒀ῇ졄诼磇윂㣪㺃亮㻢㷇화茢犵ఆ웞袀䶾ꖢ㷸躗ޕﺲ鏷萈䰇ꭍ싳齊ᬖꡧꞂᝑ䨣첹䴥쉆≽푦鄱ﻩ೫⍇䫛源篻嚂ꝝ褓䵛侑呥፾쨤뗠黪雸䃈퟈喵텙㈚ꌌ䀜示ー췛楃薷釃賞
[  317.954536][ T6126] usb 9-1: SerialNumber: ጆᓒᢼ肠ߐ퇭ｼ璜饰╉歺釹俰攢ܦ붑珗씰瘈琜쯲롤Ṋ
[  317.964314][T11595] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  317.967095][T11595] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  317.970538][T11595] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  318.008320][T11606] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  318.011485][T11606] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  318.014782][T11606] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  318.017862][T11606] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  318.021073][T11606] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  318.024607][T11606] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  318.028359][T11606] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3384301319
[  318.032646][T11606] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  318.039383][T11609] ubi31: background thread "ubi_bgt31d" started, PID 11609
[  318.244537][ T6126] cdc_ether 9-1:1.0: probe with driver cdc_ether failed with error -71
[  318.251604][ T6126] usb 9-1: USB disconnect, device number 12
[  318.285020][   T40] audit: type=1400 audit(1774361573.566:24193): avc:  denied  { create } for  pid=11610 comm="syz.1.1886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  318.295429][   T40] audit: type=1400 audit(1774361573.566:24194): avc:  denied  { map } for  pid=11610 comm="syz.1.1886" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  318.306878][   T40] audit: type=1400 audit(1774361573.566:24195): avc:  denied  { execute } for  pid=11610 comm="syz.1.1886" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  318.317363][   T40] audit: type=1400 audit(1774361573.566:24196): avc:  denied  { write } for  pid=11610 comm="syz.1.1886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  318.389301][T11614] syzkaller0: entered promiscuous mode
[  318.391729][T11614] syzkaller0: entered allmulticast mode
[  319.062944][ T6415] usb 7-1: new high-speed USB device number 67 using dummy_hcd
[  319.212738][ T6415] usb 7-1: Using ep0 maxpacket: 8
[  319.216699][ T6415] usb 7-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  319.220240][ T6415] usb 7-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  319.223716][ T6415] usb 7-1: config 0 interface 0 has no altsetting 0
[  319.225818][ T6415] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  319.228676][ T6415] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.232718][ T6415] usb 7-1: config 0 descriptor??
[  319.612994][ T6126] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  319.639125][ T6415] mcp2221 0003:04D8:00DD.000A: unknown main item tag 0x0
[  319.641349][ T6415] mcp2221 0003:04D8:00DD.000A: unknown main item tag 0x0
[  319.647779][ T6415] mcp2221 0003:04D8:00DD.000A: unknown main item tag 0x0
[  319.650018][ T6415] mcp2221 0003:04D8:00DD.000A: unknown main item tag 0x0
[  319.652333][ T6415] mcp2221 0003:04D8:00DD.000A: unknown main item tag 0x0
[  319.655224][ T6415] mcp2221 0003:04D8:00DD.000A: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  319.687977][T11578] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  319.762669][ T6126] usb 9-1: Using ep0 maxpacket: 8
[  319.773235][ T6126] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  319.779244][ T6126] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  319.785844][ T6126] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  319.790036][ T6126] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  319.794245][ T6126] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  319.799582][ T6126] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  319.803659][ T6126] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.820856][T11626] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  319.839928][    T9] usb 7-1: USB disconnect, device number 67
[  319.987228][T11642] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13329 sclass=netlink_route_socket pid=11642 comm=syz.1.1899
[  320.015078][ T6126] usb 9-1: usb_control_msg returned -32
[  320.017388][ T6126] usbtmc 9-1:16.0: can't read capabilities
[  320.049147][T11644] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1899'.
[  320.167442][   T40] audit: type=1800 audit(1774361575.436:24197): pid=11649 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1900" name="file0" dev="tmpfs" ino=2512 res=0 errno=0
[  320.431777][T11653] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1903'.
[  320.461219][T11655] syzkaller0: entered promiscuous mode
[  320.464552][T11655] syzkaller0: entered allmulticast mode
[  320.546013][T11661] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1907'.
[  320.574440][T11663] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1908'.
[  320.585925][T11663] ip6gre1: entered promiscuous mode
[  320.587599][T11663] ip6gre1: entered allmulticast mode
[  320.593071][T11663] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61726 sclass=netlink_route_socket pid=11663 comm=syz.2.1908
[  320.598285][T11663] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  320.600068][   T40] audit: type=1400 audit(1774361575.876:24198): avc:  denied  { watch_mount } for  pid=11664 comm="syz.0.1909" path="/542" dev="tmpfs" ino=2898 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  320.842762][ T6415] usb 5-1: new full-speed USB device number 77 using dummy_hcd
[  320.892934][ T5981] usb 7-1: new high-speed USB device number 68 using dummy_hcd
[  320.981161][T11669] fuse: Bad value for 'fd'
[  321.008057][ T6415] usb 5-1: not running at top speed; connect to a high speed hub
[  321.016875][ T6415] usb 5-1: config 64 has an invalid interface number: 103 but max is 0
[  321.019791][ T6415] usb 5-1: config 64 has no interface number 0
[  321.021852][ T6415] usb 5-1: config 64 interface 103 altsetting 3 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  321.026470][ T6415] usb 5-1: config 64 interface 103 altsetting 3 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  321.030080][ T6415] usb 5-1: config 64 interface 103 altsetting 3 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  321.034220][ T6415] usb 5-1: config 64 interface 103 altsetting 3 endpoint 0xE has invalid maxpacket 503, setting to 64
[  321.037655][ T6415] usb 5-1: config 64 interface 103 altsetting 3 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  321.041070][ T6415] usb 5-1: config 64 interface 103 altsetting 3 has a duplicate endpoint with address 0x3, skipping
[  321.045025][ T6415] usb 5-1: config 64 interface 103 has no altsetting 0
[  321.049056][ T6415] usb 5-1: New USB device found, idVendor=054c, idProduct=0066, bcdDevice=bc.0e
[  321.052145][ T6415] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.052910][ T5981] usb 7-1: Using ep0 maxpacket: 8
[  321.054888][ T6415] usb 5-1: Product: І
[  321.058078][ T5981] usb 7-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  321.058596][ T6415] usb 5-1: Manufacturer: ѕ
[  321.062187][ T5981] usb 7-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  321.063950][ T6415] usb 5-1: SerialNumber: 、
[  321.069367][ T5981] usb 7-1: config 0 interface 0 has no altsetting 0
[  321.072102][ T5981] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  321.076416][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.082303][ T5981] usb 7-1: config 0 descriptor??
[  321.118124][   T40] audit: type=1400 audit(1774361576.396:24199): avc:  denied  { read } for  pid=11679 comm="syz.1.1914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  321.253980][T11685] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  321.257900][T11685] netlink: 'syz.1.1916': attribute type 1 has an invalid length.
[  321.263556][T11685] 9p: Invalid uid '0x00000000ffffffff'
[  321.276250][ T6415] usb 5-1: active config #64 != 1 ??
[  321.292434][ T6415] usb 5-1: USB disconnect, device number 77
[  321.495426][ T5981] mcp2221 0003:04D8:00DD.000B: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  321.563006][ T5994] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[  321.691843][   T59] usb 7-1: USB disconnect, device number 68
[  321.722652][ T5994] usb 6-1: Using ep0 maxpacket: 8
[  321.726211][ T5994] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  321.730668][ T5994] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  321.734483][ T5994] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.740779][ T5994] usb 6-1: config 0 descriptor??
[  321.839640][T11690] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1918'.
[  321.976615][T11696] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  322.026198][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  322.028847][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  322.042012][ T5994] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  322.052956][ T5994] usb 6-1: USB disconnect, device number 64
[  322.109889][T11702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1923'.
[  322.160221][T11704] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.1924'.
[  322.271508][   T40] audit: type=1400 audit(1774361577.546:24200): avc:  denied  { ioctl } for  pid=11716 comm="syz.2.1928" path="socket:[55759]" dev="sockfs" ino=55759 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  322.339976][   T59] usb 9-1: USB disconnect, device number 13
[  322.378863][T11721] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1930'.
[  322.482696][ T5994] usb 5-1: new high-speed USB device number 78 using dummy_hcd
[  322.642788][ T5994] usb 5-1: Using ep0 maxpacket: 8
[  322.646692][ T5994] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  322.650875][ T5994] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  322.655213][ T5994] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.661639][ T5994] usb 5-1: config 0 descriptor??
[  322.672905][ T6126] usb 7-1: new high-speed USB device number 69 using dummy_hcd
[  322.832739][ T6126] usb 7-1: Using ep0 maxpacket: 8
[  322.836477][ T6126] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  322.841129][ T6126] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  322.848619][ T6126] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  322.852996][ T6126] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  322.859154][ T6126] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  322.863157][ T6126] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.874043][ T5994] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  323.022628][ T5994] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[  323.076318][ T6126] usb 7-1: GET_CAPABILITIES returned 0
[  323.078181][ T6126] usbtmc 7-1:16.0: can't read capabilities
[  323.172717][ T5994] usb 6-1: Using ep0 maxpacket: 8
[  323.175615][ T5994] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  323.179149][ T5994] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  323.182379][ T5994] usb 6-1: config 0 interface 0 has no altsetting 0
[  323.184620][ T5994] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  323.187510][ T5994] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.191749][ T5994] usb 6-1: config 0 descriptor??
[  323.352317][ T5981] usb 5-1: USB disconnect, device number 78
[  323.507733][ T6126] usb 7-1: USB disconnect, device number 69
[  323.611537][ T5994] hid_parser_main: 5 callbacks suppressed
[  323.611557][ T5994] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  323.617163][ T5994] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  323.620163][ T5994] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  323.625119][ T5994] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  323.628031][ T5994] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  323.631644][ T5994] mcp2221 0003:04D8:00DD.000C: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  323.807818][ T6415] usb 6-1: USB disconnect, device number 65
[  324.079874][T11754] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1939'.
[  324.382743][ T6415] usb 5-1: new high-speed USB device number 79 using dummy_hcd
[  324.542777][ T6415] usb 5-1: Using ep0 maxpacket: 8
[  324.553964][ T6415] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  324.562678][ T6415] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  324.566593][ T6415] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.583947][ T6415] usb 5-1: config 0 descriptor??
[  324.885342][ T6415] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  324.894886][ T6415] usb 5-1: USB disconnect, device number 79
[  325.721848][T11784] fuse: Bad value for 'user_id'
[  325.723849][T11784] fuse: Bad value for 'user_id'
[  325.730295][T11783] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  325.735554][T11783] syzkaller0: entered promiscuous mode
[  325.737864][T11783] syzkaller0: entered allmulticast mode
[  325.763196][T11783] tipc: Resetting bearer <eth:syzkaller0>
[  325.770964][T11781] tipc: Resetting bearer <eth:syzkaller0>
[  325.783734][T11781] tipc: Disabling bearer <eth:syzkaller0>
[  325.866273][T11791] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1952'.
[  325.991854][   T40] audit: type=1326 audit(1774361581.266:24201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.000084][   T40] audit: type=1326 audit(1774361581.266:24202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.008381][   T40] audit: type=1326 audit(1774361581.276:24203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.017793][   T40] audit: type=1326 audit(1774361581.276:24204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.025506][   T40] audit: type=1326 audit(1774361581.276:24205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.033495][   T40] audit: type=1326 audit(1774361581.286:24206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.041754][   T40] audit: type=1326 audit(1774361581.286:24207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.053579][ T5994] usb 5-1: new high-speed USB device number 80 using dummy_hcd
[  326.053639][   T40] audit: type=1326 audit(1774361581.286:24208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.071262][   T40] audit: type=1326 audit(1774361581.296:24209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.078540][T11797] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  326.082216][   T40] audit: type=1326 audit(1774361581.296:24210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.2.1954" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c599c799 code=0x7ffc0000
[  326.098400][T11797] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  326.284241][T11806] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  326.284269][T11806] overlayfs: failed to set xattr on upper
[  326.284275][T11806] overlayfs: ...falling back to redirect_dir=nofollow.
[  326.284280][T11806] overlayfs: ...falling back to index=off.
[  326.284284][T11806] overlayfs: ...falling back to uuid=null.
[  326.284295][T11806] overlayfs: maximum fs stacking depth exceeded
[  326.284291][ T5994] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  326.284357][ T5994] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.284383][ T5994] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.284404][ T5994] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  326.284459][ T5994] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  326.284481][ T5994] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.286926][ T5994] usb 5-1: config 0 descriptor??
[  326.423358][ T1343] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  326.429808][T11810] fuse: Bad value for 'user_id'
[  326.431965][T11810] fuse: Bad value for 'user_id'
[  326.582739][ T1343] usb 9-1: Using ep0 maxpacket: 8
[  326.595862][ T1343] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  326.600239][ T1343] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  326.604447][ T1343] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.611282][ T1343] usb 9-1: config 0 descriptor??
[  326.664473][T11816] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  326.675659][T11816] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  326.734258][ T5994] plantronics 0003:047F:FFFF.000D: reserved main item tag 0xd
[  326.758369][ T5994] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  327.004637][ T6415] usb 5-1: USB disconnect, device number 80
[  327.027020][ T1343] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  327.069153][ T1343] usb 9-1: USB disconnect, device number 14
[  327.136635][ T5998] usb 8-1: [UEAGLE-ATM] firmware is not available
[  327.142674][   T10] usb 8-1: [UEAGLE-ATM] firmware is not available
[  327.145426][  T831] usb 8-1: [UEAGLE-ATM] firmware is not available
[  327.802763][ T1343] usb 5-1: new high-speed USB device number 81 using dummy_hcd
[  327.962659][ T1343] usb 5-1: Using ep0 maxpacket: 16
[  327.973594][ T1343] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  327.979166][ T1343] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  327.983055][ T1343] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  327.986260][ T1343] usb 5-1: Product: syz
[  327.988154][ T1343] usb 5-1: Manufacturer: syz
[  327.990245][ T1343] usb 5-1: SerialNumber: syz
[  327.994305][ T1343] usb 5-1: config 0 descriptor??
[  327.998240][ T1343] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  328.002140][ T1343] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  328.025106][T11849] xt_hashlimit: size too large, truncated to 1048576
[  328.126094][T11853] kernel profiling enabled (shift: 5)
[  328.202405][T11855] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1974'.
[  328.542675][ T6415] usb 7-1: new high-speed USB device number 70 using dummy_hcd
[  328.602148][ T1343] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  328.692731][ T6415] usb 7-1: Using ep0 maxpacket: 8
[  328.697782][ T6415] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  328.702469][ T6415] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  328.706639][ T6415] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.714254][ T6415] usb 7-1: config 0 descriptor??
[  329.000324][ T6415] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  329.008745][ T6415] usb 7-1: USB disconnect, device number 70
[  329.264808][ T1343] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  329.267826][ T1343] em28xx 5-1:0.0: board has no eeprom
[  329.546829][T11860] syzkaller0: entered promiscuous mode
[  329.548737][T11860] syzkaller0: entered allmulticast mode
[  330.332846][T11827] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  330.392639][ T1343] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  330.395180][ T1343] em28xx 5-1:0.0: dvb set to bulk mode.
[  330.398158][ T6415] em28xx 5-1:0.0: Binding DVB extension
[  330.402643][ T1343] usb 5-1: USB disconnect, device number 81
[  330.405243][ T1343] em28xx 5-1:0.0: Disconnecting em28xx
[  330.419100][ T6415] em28xx 5-1:0.0: Registering input extension
[  330.421920][ T1343] em28xx 5-1:0.0: Closing input extension
[  330.434811][ T1343] em28xx 5-1:0.0: Freeing device
[  330.904100][T11843] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  331.182857][T10195] usb 7-1: new high-speed USB device number 71 using dummy_hcd
[  331.232819][T11897] ------------[ cut here ]------------
[  331.235473][T11897] kernel BUG at fs/netfs/iterator.c:248!
[  331.237722][T11897] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  331.240903][T11897] CPU: 3 UID: 0 PID: 11897 Comm: syz.0.1988 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  331.245782][T11897] Tainted: [L]=SOFTLOCKUP
[  331.247136][T11897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  331.250633][T11897] RIP: 0010:netfs_limit_iter+0x100d/0x1100
[  331.251959][   T40] kauditd_printk_skb: 122 callbacks suppressed
[  331.251975][   T40] audit: type=1400 audit(1774361586.526:24333): avc:  denied  { write } for  pid=5887 comm="syz-executor" path="pipe:[6444]" dev="pipefs" ino=6444 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  331.252612][T11897] Code: ff e9 a4 f4 ff ff 48 89 de 48 c7 c7 e0 c5 ab 8e e8 e8 09 74 fe e9 59 f6 ff ff e8 3e e7 b1 ff e9 6f f6 ff ff e8 f4 58 45 ff 90 <0f> 0b e8 9c e6 b1 ff e9 cd f9 ff ff 4c 89 f6 48 c7 c7 60 c6 ab 8e
[  331.252626][T11897] RSP: 0018:ffffc90006c26d18 EFLAGS: 00010293
[  331.252636][T11897] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff82c3791b
[  331.252643][T11897] RDX: ffff8880283aa4c0 RSI: ffffffff82c3884c RDI: ffff8880283aa4c0
[  331.252651][T11897] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000005
[  331.252657][T11897] R10: 0000000000000003 R11: 0000000000000012 R12: 000000007fffffff
[  331.252664][T11897] R13: 1ffff92000d84da9 R14: ffff88805a2d4f60 R15: ffff88802537c780
[  331.252672][T11897] FS:  00007ff133bf66c0(0000) GS:ffff8880d663f000(0000) knlGS:0000000000000000
[  331.252695][T11897] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  331.252704][T11897] CR2: 0000200000000080 CR3: 000000002d211000 CR4: 0000000000352ef0
[  331.252712][T11897] Call Trace:
[  331.252716][T11897]  <TASK>
[  331.252721][T11897]  ? do_raw_spin_lock+0x128/0x260
[  331.252735][T11897]  ? find_held_lock+0x2b/0x80
[  331.252750][T11897]  ? __pfx_netfs_limit_iter+0x10/0x10
[  331.252767][T11897]  ? do_raw_spin_unlock+0x145/0x1e0
[  331.252780][T11897]  ? _raw_spin_unlock+0x28/0x50
[  331.252803][T11897]  ? netfs_prepare_write+0x486/0x7a0
[  331.252823][T11897]  netfs_unbuffered_write+0x25d/0x2080
[  331.252850][T11897]  netfs_unbuffered_write_iter_locked+0x801/0xab0
[  331.252877][T11897]  netfs_unbuffered_write_iter+0x40c/0x710
[  331.252927][T11897]  ? __pfx_v9fs_file_write_iter+0x10/0x10
[  331.252951][T11897]  v9fs_file_write_iter+0xbf/0x100
[  331.252968][T11897]  __kernel_write_iter+0x2ac/0x920
[  331.252987][T11897]  ? __pfx___kernel_write_iter+0x10/0x10
[  331.253005][T11897]  ? kasan_save_stack+0x3f/0x50
[  331.253021][T11897]  ? kasan_save_stack+0x30/0x50
[  331.253038][T11897]  ? irqentry_exit+0x1f8/0x670
[  331.253053][T11897]  ? asm_exc_page_fault+0x26/0x30
[  331.253066][T11897]  __kernel_write+0xf6/0x140
[  331.253083][T11897]  ? __pfx___kernel_write+0x10/0x10
[  331.253104][T11897]  dump_emit+0x21f/0x330
[  331.253119][T11897]  ? __pfx_dump_emit+0x10/0x10
[  331.330646][T11897]  elf_core_dump+0x2127/0x3d10
[  331.332287][T11897]  ? __pfx_elf_core_dump+0x10/0x10
[  331.333942][T11897]  ? kasan_save_stack+0x3f/0x50
[  331.335592][T11897]  ? kasan_save_stack+0x30/0x50
[  331.337492][T11897]  ? __kasan_kmalloc+0xaa/0xb0
[  331.339251][T11897]  ? __kvmalloc_node_noprof+0x360/0xa00
[  331.341335][T11897]  ? vfs_coredump+0x2105/0x5570
[  331.343150][T11897]  ? asm_exc_page_fault+0x26/0x30
[  331.344876][T11897]  ? vfs_coredump+0x27bc/0x5570
[  331.346481][T11897]  vfs_coredump+0x27bc/0x5570
[  331.347996][T11897]  ? __pfx_vfs_coredump+0x10/0x10
[  331.349649][T11897]  ? __lock_acquire+0x4a5/0x2630
[  331.351262][T11897]  ? lock_acquire+0x1cf/0x380
[  331.352787][T11897]  ? is_bpf_text_address+0x8a/0x1a0
[  331.354514][T11897]  ? bpf_ksym_find+0x128/0x1c0
[  331.356034][T11897]  ? __kernel_text_address+0xd/0x30
[  331.357679][T11897]  ? unwind_get_return_address+0x59/0xa0
[  331.359498][T11897]  ? arch_stack_walk+0xa6/0xf0
[  331.361046][T11897]  ? __sigqueue_free+0xbe/0x2a0
[  331.362647][T11897]  ? stack_trace_save+0x8e/0xc0
[  331.364193][T11897]  ? __pfx_stack_trace_save+0x10/0x10
[  331.365922][T11897]  ? stack_depot_save_flags+0x27/0x9d0
[  331.367663][T11897]  ? __lock_acquire+0x4a5/0x2630
[  331.369312][T11897]  ? proc_coredump_connector+0x2d3/0x4f0
[  331.371125][T11897]  ? __pfx_proc_coredump_connector+0x10/0x10
[  331.373030][T11897]  ? rcu_is_watching+0x12/0xc0
[  331.374576][T11897]  get_signal+0x1f2a/0x21e0
[  331.376090][T11897]  ? __pfx_get_signal+0x10/0x10
[  331.377612][T11897]  ? force_sig_fault+0xc3/0x100
[  331.379252][T11897]  arch_do_signal_or_restart+0x91/0x7a0
[  331.381199][T11897]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  331.383213][T11897]  ? __bad_area_nosemaphore+0x320/0x3f0
[  331.385008][T11897]  irqentry_exit+0x1f8/0x670
[  331.386515][T11897]  asm_exc_page_fault+0x26/0x30
[  331.388052][T11897] RIP: 0033:0x7ff13599c7a1
[  331.389546][T11897] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  331.395667][T11897] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  331.397589][T11897] RAX: 0000000000000000 RBX: 00007ff135c15fa0 RCX: 00007ff13599c799
[  331.400071][T11897] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  331.402942][T11897] RBP: 00007ff135a32c99 R08: 0000000000000000 R09: 0000000000000000
[  331.405335][T11897] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  331.407749][T11897] R13: 00007ff135c16038 R14: 00007ff135c15fa0 R15: 00007ffc5ededb08
[  331.410172][T11897]  </TASK>
[  331.411230][T11897] Modules linked in:
[  331.412876][ T5998] usb 6-1: new high-speed USB device number 66 using dummy_hcd
[  331.413268][T11897] ---[ end trace 0000000000000000 ]---
[  331.429649][T11897] RIP: 0010:netfs_limit_iter+0x100d/0x1100
[  331.431924][T11897] Code: ff e9 a4 f4 ff ff 48 89 de 48 c7 c7 e0 c5 ab 8e e8 e8 09 74 fe e9 59 f6 ff ff e8 3e e7 b1 ff e9 6f f6 ff ff e8 f4 58 45 ff 90 <0f> 0b e8 9c e6 b1 ff e9 cd f9 ff ff 4c 89 f6 48 c7 c7 60 c6 ab 8e
[  331.432844][T11900] netfs: Couldn't get user pages (rc=-14)
[  331.442725][T10195] usb 7-1: Using ep0 maxpacket: 8
[  331.470121][T11897] RSP: 0018:ffffc90006c26d18 EFLAGS: 00010293
[  331.472230][T11897] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff82c3791b
[  331.474858][T10195] usb 7-1: device descriptor read/all, error -71
[  331.477631][T11897] RDX: ffff8880283aa4c0 RSI: ffffffff82c3884c RDI: ffff8880283aa4c0
[  331.483042][T11897] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000005
[  331.486139][T11897] R10: 0000000000000003 R11: 0000000000000012 R12: 000000007fffffff
[  331.489221][T11897] R13: 1ffff92000d84da9 R14: ffff88805a2d4f60 R15: ffff88802537c780
[  331.492489][T11897] FS:  00007ff133bf66c0(0000) GS:ffff8880d633f000(0000) knlGS:0000000000000000
[  331.498521][T11897] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  331.501489][T11897] CR2: 000055eae6724060 CR3: 000000002d211000 CR4: 0000000000352ef0
[  331.505079][T11897] Kernel panic - not syncing: Fatal exception
[  331.508946][T11897] Kernel Offset: disabled
[  331.510783][T11897] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:08:50  Registers:
info registers vcpu 0

CPU#0
RAX=00000000005d4b81 RBX=ffffffff8e4975c0 RCX=ffffffff8b908c75 RDX=0000000000000000
RSI=ffffffff8de788a7 RDI=ffffffff8c1b1220 RBP=0000000000000000 RSP=ffffffff8e407e00
R8 =0000000000000001 R9 =ffffed100d48679d R10=ffff88806a433ceb R11=0000000000000000
R12=0000000000000000 R13=fffffbfff1c92eb8 R14=0000000000000000 R15=ffffffff90d9ad10
RIP=ffffffff8b9075df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d633f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffc5edecf80 CR3=0000000032b3f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff917d61fc RDX=1ffffffff22fac40
RSI=0000000000000000 RDI=ffffffff90f50a3c RBP=ffffc900036670d0 RSP=ffffc90003667018
R8 =ffffffff917d626e R9 =0000000000000000 R10=ffffc90003667088 R11=000000000000f36f
R12=ffffc900036670d8 R13=ffffc90003667088 R14=ffffc900036670bd R15=ffffffff917d6201
RIP=ffffffff81b82416 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f491702c300 ffffffff 00c00000
GS =0000 ffff8880d643f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055ac94b8af40 CR3=000000002b617000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000001000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=406fa714a67d6dc1 2b232e6ae843509d 406fa714a67d6dc1 2b232e6ae843509d 406fa714a67d6dc1 2b232e6ae843509d 406fa714a67d6dc1 2b232e6ae843509d
ZMM18=9480945adb0e65f1 0c576292d9cda892 9480945adb0e65f1 0c576292d9cda892 9480945adb0e65f1 0c576292d9cda892 9480945adb0e65f1 0c576292d9cda892
ZMM19=900a000000000000 0000000000000004 900a000000000000 0000000000000003 900a000000000000 0000000000000002 900a000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0484000884031404 0008800308100007 8004180800049c08 000100000208060a
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0171ba3008000780 0300080006100020 1000060273b40810 0000042608000c08
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000100000008060a 016fbc2080808082 0800000300080002 1000141000060073
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0410000004060677 ac00232d6332692f 7665642f01ffffff ffffffffffe90800
ZMM25=0c5762920c576292 0c5762920c576292 0c5762920c576292 0c5762920c576292 0c5762920c576292 0c5762920c576292 0c5762920c576292 0c5762920c576292
ZMM26=db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1 db0e65f1db0e65f1
ZMM27=9480945a9480945a 9480945a9480945a 9480945a9480945a 9480945a9480945a 9480945a9480945a 9480945a9480945a 9480945a9480945a 9480945a9480945a
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000 8f0a00008f0a0000
info registers vcpu 2

CPU#2
RAX=ffffc9000013d000 RBX=ffff88802a23a400 RCX=ffffffff81e8eafb RDX=1ffff11005447507
RSI=ffffffff8683cef4 RDI=ffff88802a23a838 RBP=0000000000000001 RSP=ffffc90000648ea8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000648ff8
R12=ffffc9000013d008 R13=dffffc0000000000 R14=ffff88802a23a828 R15=0000000000000000
RIP=ffffffff8683cf42 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d653f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000000148 CR3=000000002c4bd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 64656772656d5f6f 692e7166622e6f69
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff6a5e6af6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff6a5e6af6 00007fff6a5e6afc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f97c5a3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f97c5a332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f97c5a33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f97c5a332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857a4435 RDI=ffffffff9b4a6b40 RBP=ffffffff9b4a6b00 RSP=ffffc90006c265f8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2e7a7973203a5043
R12=0000000000000000 R13=0000000000000020 R14=0000000000000010 R15=ffffffff857a43d0
RIP=ffffffff857a445f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007ff133bf66c0 ffffffff 00c00000
GS =0000 ffff8880d663f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000000080 CR3=000000002d211000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f736e6f69746365 6e6e6f632f657375
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc567f86a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc567f86a6 00007ffc567f86ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f69f2c3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f69f2c332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f69f2c33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f69f2c332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000