last executing test programs:

11.216545132s ago: executing program 3 (id=1066):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9f, 0x6, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x10000000, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r3 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r4 = getpgrp(0x0)
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, 0xffffffffffffffff, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000004000)='./file0\x00', 0x6000, 0x2, &(0x7f0000004040))
fstat(r3, &(0x7f0000004140))
lstat(&(0x7f00000041c0)='./file0\x00', &(0x7f0000004200))
getresuid(&(0x7f0000004280), &(0x7f00000042c0), &(0x7f0000004300))
getgid()
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000"], 0x0)
syz_usb_control_io(r5, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

7.964666089s ago: executing program 3 (id=1081):
creat(0x0, 0x49)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0), 0x10410, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x42082, 0x0)
read$FUSE(r3, &(0x7f0000001940)={0x2020}, 0x2020)

7.951971966s ago: executing program 3 (id=1082):
creat(&(0x7f0000001200)='./file0\x00', 0x41)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
mount(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000240)='ecryptfs\x00', 0x2000080, 0x0)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r2, {0x7, 0x1f, 0x1, 0x61f285, 0xfffd}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dec7505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d9813bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdcd4b1c037c2b30bef455984f3e8ed19d69e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705074fe5e985497dcf052b9f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453541bb79f9e0be9a55588e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff75a6de77a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e439b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10f6791824dbe0a7725d534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb55bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eee747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = openat$pmem0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BLKPG(r4, 0x1269, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@getchain={0x24, 0x66, 0xfcd66a900070b359, 0xa6ff, 0xffffffa6, {0x0, 0x0, 0x0, r7, {}, {}, {0xd, 0x6}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r8 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read(r8, &(0x7f0000000000), 0x2000)
io_setup(0x202, &(0x7f0000000200)=<r9=>0x0)
truncate(&(0x7f00000001c0)='./file0\x00', 0x5195)
io_submit(r9, 0x20, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r3, &(0x7f00000000c0)='!', 0xb7f40}])
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000002c0), 0x2200800, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f00000024c0)='./file0\x00', 0x105c42, 0x5)

6.202170813s ago: executing program 2 (id=1085):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="5000000010004b0400000000000000007a005e85", @ANYRES32=0x0, @ANYBLOB="00000000000000000a000100aaaaaaaaaabb000024001280090001007866726d000000001400028008000200030000000800010004000000"], 0x50}}, 0x0)
eventfd(0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000980))
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='source', &(0x7f0000000180)='b:::\x00\xef\xdfB\xfa=\xe3\xd1\x9d\xe1\xbfUlJ4]y-,\x8a\x03\x91xu\x9cP\xdc\xe5\x95\xa2@\x9c\x98\xa4\xd2\xd4}\xc8]7N\xf3\x0e\'\xa0x\xfbdt\xb4\x1fW\xe7\xbe\xaf\x01.zT\xab\x92I\x104\x8c\x18\x16\x1c\x8a\x8e\xfd\x8b{ZVHZ2\xd3\xd6-~\x96\x80#\xee)+L\xf1\x00\xd5p\xe7 \x8c\xd2\a\x1e\xae\xb4\xe8\xd1\xe1\xed\xb8\x94\xb2*\x1c\xaeG\x1e\xdb\xc0Q\xb9`K\xffG\xc0\xa2\xb41\xac\x98\x01\xde}:\b\xa0Oq\xec\xa8\xf0\x8f\xe3\xa17\xe3\xd7\x9c^\x90\xfal\xbe\x81\x9a\xa4\x00K', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)

5.272494905s ago: executing program 2 (id=1087):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getpeername(r0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) (async)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x72472f56e825969, 0x20c44fb6edc09a38, r1, 0x2b12f000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x72472f56e825969, 0x20c44fb6edc09a38, r1, 0x2b12f000)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e21, @broadcast}}}, 0x2e)
io_uring_setup(0x1cd5, &(0x7f0000000440)={0x0, 0x1, 0x40, 0x0, 0xfffffffe}) (async)
r2 = io_uring_setup(0x1cd5, &(0x7f0000000440)={0x0, 0x1, 0x40, 0x0, 0xfffffffe})
r3 = io_uring_setup(0x89a, &(0x7f0000000580)={0x0, 0x6bea, 0x1000, 0x1, 0xc2})
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x1e, 0x20000002, r4)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$SIOCGETSGCNT(0xffffffffffffffff, 0x89e1, &(0x7f0000000040)={@multicast2, @local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0) (async)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)

5.197599598s ago: executing program 2 (id=1088):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_io_uring_setup(0x1000700a, 0x0, 0x0, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r4 = dup(r3)
bind$bt_l2cap(r4, &(0x7f0000000080), 0xe)
listen(r3, 0x9)
accept4$vsock_stream(r4, 0x0, 0x0, 0x80000)
shutdown(r3, 0x0)
r5 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000020000402505a1a440000000010109023b0020010000000904004012020600fd0524060700000000000000240f01000000000700feff000905828343340ebedded020002000000090503020004060800cec5b2a7511e4113d0cf592df12823473a67976e4ae6f5ec4e061d0b7761b6e5197c2056c4d6dda3403f9f0130f0e82941e0d9b68c3d4eba3715f28fe61d345826f0b2288d0588a9f47c0e919f895af7bf0b3e493456468409696e02979c823c92625331b867a7edf9120a5b5beba168f8cda83cf778c15ed7a0cc82b87854b2a314e61f701bc568c0fae2957cb9422ec5b29c087a806d97b4"], 0x0)
syz_usb_control_io$cdc_ecm(r5, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x521303, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f00000009c0)={@host})
r7 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000001140), 0x20402, 0x0)
write$P9_RXATTRCREATE(r7, 0x0, 0x12)
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r7, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper, 0x3}, {@local, 0x3}, 0x400, "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"}, 0x418})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x803)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000040)=0x4)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

4.588506991s ago: executing program 3 (id=1092):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x0, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$key(0xffffffffffffffff, &(0x7f00000007c0)={0x400000000000000, 0x0, 0x0}, 0x20004808)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000080)=0x4, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x76)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x5)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r3 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f00000000c0)=0x8000)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TCXONC(r4, 0x540a, 0x0)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f00000000c0)=@get={0x1, &(0x7f0000001a00)=""/174, 0xe15d})
openat$ptmx(0xffffff9c, &(0x7f0000000240), 0x40000, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r5, &(0x7f00000057c0), 0x0, 0x0)
setsockopt$sock_int(r5, 0x1, 0x21, 0x0, 0x0)
shutdown(r5, 0x1)

3.642472662s ago: executing program 3 (id=1097):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x10000000, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r3 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r4 = getpgrp(0x0)
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x1000})
statx(0xffffffffffffff9c, &(0x7f0000004000)='./file0\x00', 0x6000, 0x2, &(0x7f0000004040))
fstat(r3, &(0x7f0000004140))
lstat(&(0x7f00000041c0)='./file0\x00', &(0x7f0000004200))
getresuid(&(0x7f0000004280), &(0x7f00000042c0), &(0x7f0000004300))
getgid()
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000"], 0x0)
syz_usb_control_io(r5, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

2.22704893s ago: executing program 1 (id=1105):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0xa, 0x3, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0xfffffffe, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x1000007, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x4, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x0, 0x5, 0x3c, 0x90, 0x6, 0x1, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12b, 0x8000, 0x1, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x1ff, 0xfffffffe, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8, 0x9, 0x400, 0x1, 0x6, 0x1, 0xff, 0x1005, 0x7, 0x5f31, 0x4, 0xffffffff, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x3, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x8, 0x3, 0x4, 0x1, 0x7, 0x6, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x3, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x5, 0x3b, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x4, 0x54fe12d2, 0xbf, 0x101, 0x3, 0x400000, 0xfffffff9, 0x0, 0xd, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x6, 0xbb31, 0x3, 0xfffffffc, 0x5, 0x938, 0x6, 0x6, 0x10, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0x7fffffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000003, 0x5, 0x8, 0xfffbffff, 0x3, 0x3, 0x4, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x0, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0xfffffffe, 0x2, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0xf, &(0x7f00000002c0), 0x161)
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x31, &(0x7f0000000640)=r0, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x40, r3, 0x1, 0x2, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x10, 0xbd, [0x2f3e, 0x9, 0x0, 0x9, 0x2, 0x9]}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000c00)=ANY=[@ANYBLOB="54030000", @ANYRES16=r3, @ANYBLOB="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"], 0x354}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000050)
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r6 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$char_usb(r6, &(0x7f0000000040)="e2", 0x918)

2.173319982s ago: executing program 1 (id=1107):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x9, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r0 = socket(0x2a, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$ttyS3(0xffffff9c, 0x0, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet(0x2, 0x2000000080002, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10001}, 0x20048084)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0)
openat(0xffffffffffffffff, 0x0, 0x808c0, 0x112)
sendmsg$nl_route(r2, 0x0, 0x0)
syz_open_dev$video4linux(&(0x7f0000000080), 0x4, 0xc000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3000000013000100000000000000000007000000", @ANYRES32=r7, @ANYBLOB="000000000000000010000c800c0022"], 0x30}}, 0x0)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f00000001c0)={@private1, r7}, 0x14)
pipe(&(0x7f0000000180))
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x4a24, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r8, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)

1.945673101s ago: executing program 1 (id=1111):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x24, r1, 0x331, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}}, 0x0) (fail_nth: 4)

1.885094153s ago: executing program 1 (id=1112):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x100, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x6, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xbd, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x15, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x7}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r1, 0x4610, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0)
recvfrom$packet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000019340), 0x0, 0x0)
read$msr(r3, &(0x7f0000000300)=""/102400, 0x19000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000019380)=@newtaction={0x14, 0x30, 0xb, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = semget$private(0x0, 0x207, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001500)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x57000000, 0x54, 0x54, 0x3, [@const={0x1}, @enum64={0xb, 0x5, 0x0, 0x13, 0x1, 0x1, [{0x9, 0x8, 0xe6}, {0xc, 0x9, 0x1}, {0x6, 0xff, 0x8}, {0x8, 0x3, 0x7fff}, {0x8, 0x9, 0x8}]}]}, {0x0, [0x4f]}}, 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000240)={{0x0, 0xee01, 0xffffffffffffffff}})
r5 = io_uring_setup(0x40fc, &(0x7f0000000640)={0x0, 0x0, 0x10, 0x1})
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1}}], 0x1, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_procs(r7, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f00000001c0), 0x12)

1.884273071s ago: executing program 2 (id=1113):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000354000/0x3000)=nil, 0x3000, 0x2000002, 0x10010, 0xffffffffffffffff, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x40000, 0x2})
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x3, 0x12)
r5 = openat$null(0xffffff9c, &(0x7f00000001c0), 0x800, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000380)=@IORING_OP_RENAMEAT={0x23, 0x11, 0x0, r4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='./file0\x00', r5, 0x0, 0x0, {0x0, r6}})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r7, 0x800000010d, 0x2, &(0x7f00000002c0), 0x0)
r8 = socket$can_bcm(0x1d, 0x2, 0x2)
r9 = syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5d, 0x80, 0x0, 0x89}, &(0x7f0000000240)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r8, 0x0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000b40)=[{0x0}, {0x0}], 0x2}})
io_uring_enter(r9, 0x47f9, 0x0, 0x0, 0x0, 0x0)

1.884044954s ago: executing program 0 (id=1114):
openat$rfkill(0xffffff9c, &(0x7f0000000040), 0x40480, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)
openat$nci(0xffffff9c, &(0x7f0000000000), 0x2, 0xff07)

1.778147045s ago: executing program 0 (id=1115):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0xc00d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c2700000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001980)={0x9, {"a2e3ad214fc752f99f2909094bf70e0dd038e7ff7fc6e5539b324c078b089b07333b6c1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31300d076d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000000), &(0x7f0000000140)='%pB    \x00'}, 0x1c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x27, 0x0, 0x0, 0x0, 0x0, 0x200, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xe1}, 0x50)

1.682150209s ago: executing program 0 (id=1116):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x40, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
clock_getres(0x6, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x17)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4003, &(0x7f0000000000)=0x6, 0x5, 0x2)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xd)
r2 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x1, 0x0, 0x0, 0x40000000000, 0xffe4, 0x2, 0x0, 0x3e})
r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_ro(r3, 0x0, 0x275a, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r4 = openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
map_shadow_stack(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1)
ioctl$VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000000)={0xfffffdff, 0x3147504d, 0x1, @stepwise={0x2, 0xd22d, 0x80000001, 0x4, 0x0, 0x6}})
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r6, 0x4008ae8a, 0x0)

1.456637803s ago: executing program 0 (id=1117):
creat(0x0, 0x49)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0), 0x10410, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x42082, 0x0)
read$FUSE(r3, &(0x7f0000001940)={0x2020}, 0x2020)

1.402769191s ago: executing program 0 (id=1118):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x0, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$key(0xffffffffffffffff, &(0x7f00000007c0)={0x400000000000000, 0x0, 0x0}, 0x20004808)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000080)=0x4, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x76)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x5)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
r3 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f00000000c0)=0x8000)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TCXONC(r4, 0x540a, 0x0)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f00000000c0)=@get={0x1, &(0x7f0000001a00)=""/174, 0xe15d})
openat$ptmx(0xffffff9c, &(0x7f0000000240), 0x40000, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r5, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x21, 0x0, 0x0)
shutdown(r5, 0x1)

912.93119ms ago: executing program 2 (id=1119):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1202, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000200)={@host})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, &(0x7f00000001c0)={@hyper})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r0, 0x7b0, &(0x7f00000002c0)={@hyper})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$dlm_control(0xffffff9c, &(0x7f0000000100), 0x80000, 0x0)
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x3)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c000000020601000000000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000240007800c00028008000140ac14142b0c0001800800014080ffffff050014002000000005000500020000000500010006"], 0x6c}}, 0x0)
symlink(&(0x7f00000049c0)='.\x00', &(0x7f00000059c0)='./file0\x00')
ioctl$TUNSETLINK(r1, 0x400454cd, 0x313)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x9}, 0x0, &(0x7f00000002c0)={0x3ff, 0xffffffffffbfffff, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0x0)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

895.715233ms ago: executing program 1 (id=1120):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={<r3=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f00000001c0)={r3, 0x7, 0x2, "1c99"}, 0xa)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = accept4(r6, 0x0, 0x0, 0x0)
sendto$packet(r7, &(0x7f0000000780)="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", 0xf61, 0x8010, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r7)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001ac0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_IIF={0x8, 0x4, r5}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20008020}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@ipv4_newroute={0x30, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x800}, [@RTA_MULTIPATH={0xc, 0x9, {0x8}}, @RTA_GATEWAY={0x8, 0x5, @multicast1}]}, 0x30}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
socket(0x400000000010, 0x3, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
shutdown(r2, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) (async)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f00000001c0)={r3, 0x7, 0x2, "1c99"}, 0xa) (async)
socket$unix(0x1, 0x1, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) (async)
socket$alg(0x26, 0x5, 0x0) (async)
bind$alg(r6, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-aesni)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) (async)
accept4(r6, 0x0, 0x0, 0x0) (async)
sendto$packet(r7, &(0x7f0000000780)="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", 0xf61, 0x8010, 0x0, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r7) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001ac0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_IIF={0x8, 0x4, r5}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20008020}, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@ipv4_newroute={0x30, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x800}, [@RTA_MULTIPATH={0xc, 0x9, {0x8}}, @RTA_GATEWAY={0x8, 0x5, @multicast1}]}, 0x30}}, 0x0) (async)

581.496957ms ago: executing program 1 (id=1121):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_io_uring_setup(0x1000700a, 0x0, 0x0, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r4 = dup(r3)
bind$bt_l2cap(r4, &(0x7f0000000080), 0xe)
listen(r3, 0x9)
accept4$vsock_stream(r4, 0x0, 0x0, 0x80000)
shutdown(r3, 0x0)
r5 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000020000402505a1a440000000010109023b0020010000000904004012020600fd0524060700000000000000240f01000000000700feff000905828343340ebedded020002000000090503020004060800cec5b2a7511e4113d0cf592df12823473a67976e4ae6f5ec4e061d0b7761b6e5197c2056c4d6dda3403f9f0130f0e82941e0d9b68c3d4eba3715f28fe61d345826f0b2288d0588a9f47c0e919f895af7bf0b3e493456468409696e02979c823c92625331b867a7edf9120a5b5beba168f8cda83cf778c15ed7a0cc82b87854b2a314e61f701bc568c0fae2957cb9422ec5b29c087a806d97b4"], 0x0)
syz_usb_control_io$cdc_ecm(r5, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x521303, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f00000009c0)={@host})
r7 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000001140), 0x20402, 0x0)
write$P9_RXATTRCREATE(r7, 0x0, 0x12)
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r7, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper, 0x3}, {@local, 0x3}, 0x400, "1710194b070000000000000056d243acca17147843aa07e4676b6e5e13d51fe3b442ddd575b7ea5ad5807b65f6ffac80b65547d4a62858f758a3c310e491a45dff1707cfb8288781aa397d3e28b552db90c3fd57f459b4e3da5126b8a63a25e860e40c989341b468c18735dc9f41aab946ee5d5b95a65deb8a11af66212c0a3802da8734cf65656145658ef881a33b771b9134fe2e1407a2ffeb9ae90b1cd06a1e2438c7cd1667c0d3dc53f15fd720ed9adc68ca0bf8cb3a5f3e8f2b48ec05a30d52182f3be35dc35ddad91cd4123051996b09000000791773011420d79b507bba3f90ba48eb066b68d56570e96cdac68675271dc756c582705ced77c094ae8f12a4f268fd1c5ed18f1264e27fcc5d2cced8dc50569b03dffbb749caffa1748c5f7c5fc60a7264e04c53bef6c2cba5ed946d420a97a2fa74cb564f80206f75b408bb69c27ab96ae43936e5c497bc56409f13221e4736c3229193f32dfeae901c32027c5941b73beee853b0fcccfb97d02b8675ca92bfe97adcf83d49f8a405dc9be0cfbaa239a73b40b37ee1c03ae15bf08b050700d3ae80c131b6a0f958a0b5e09653d5d541c29fa4203671c3e8d3898a5618d7d05e7742dad4a6696ae13deef6c402e2afea4acf40d2c14ed5092a438170f1681d4b97eab16fcbfa86d7a361c02f89069d58c2b32c58d5ef7babf62b97c7ac97e413f53bea59cdbf72fc1c14718b1fa6306da64c9700df190c356a9e972d9e63cc9b0383cc8cab28a02a4b3d4f8b96d485dedb3e6a3f4e40d110676dc8de884d3f915b04f220072d4d68697b106faa3577b5011f3144f235439f1aac9f59d37adcc58ba20f209442df7c1309834bdd3933c0796e2975fa5e9b5cc2653b15b7be37172df2d84329307831f2977cac3cca11676512ead351e00d09889681f9e0e6c172f2d0c3c15eb75ffe6297aecc1cc9d3ebc80735a50b07c7b1eedadbc9f637e26dd4035322abcb77f93fcd9feb2c33bf37c34595dc9bb2e16ada83dc541f98880dd6d4e0ef38e27adf412d1e08a5c1ce83acdc4f40674d9dc14fbff2f42eb71ba5fac19fc742e00c4c15154fcf8f79ad4cd4c8183d4b2d9693eab7f0da562a9ffba7058b272b280611d877f0b05dda462a5e605ea5a8803ad17ce5a9c5f88ec6fef54f407f5f26dc218b21ac5899d03946fdc4d95791f09a272ef0f1388d718c3d38727b1fbbb2c9f22f2d5091c2d0963b971ab47406130e3ca8e201609c34d4379f75257240f9ff0fe921e29bdcc1319bf77a469739ebfc1d1f8605bfb6d46c0cdc31692254715082be9152eabb5a9f2c562c06a985f573b63f02aad0eb63ff970e5a9a28d289b657cd20dc572238ef1d5bbc57041f77c70fca6b5314b6bff2a9b1a03ed2269456e6467664ac0ec2d2304916885fd1f91d5c3b32b924de00"}, 0x418})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x803)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000040)=0x4)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

442.47231ms ago: executing program 0 (id=1122):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = fanotify_init(0x4, 0x8000)
fanotify_mark(r2, 0x20, 0x10, r1, &(0x7f0000000400)='./file0\x00')
r3 = eventfd2(0x0, 0x0)
writev(r3, &(0x7f0000000040)=[{&(0x7f00000000c0)="1f49b320ce08a98e", 0x8}, {&(0x7f0000000140)="ee", 0x1}], 0x2)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c000000100001000000000000000000030000001800018013000000f5fc06d82911bed62fc295496584b5007be44445b226081a75dbec194172e02a9c48fa90cb575452a8ce946bcf9af1180cae62742ea1b1278a0b5b2b3d43c31a5f29bb1ac865b510088028c6dc460f414c94e82d87d09126f5851d1a399f6bd47488d39036028de865925bc92e64f44fcadbd847c5be3c5b46c2e9738603533881bb456496a86f087395e07b253d0d9e83fbc9d1fa23c571a5251e0c380362a958d0323f23265aa090fa086a11ef4411dcb3ae90d745b7daf86900"/226], 0x2c}}, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_subtree(r8, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)
write$cgroup_subtree(r9, &(0x7f00000001c0)={[{0x2d, 'cpu'}]}, 0x5)
pipe(&(0x7f0000000100)={<r10=>0xffffffffffffffff})
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
accept4$unix(r10, &(0x7f0000000200)=@abs, 0x0, 0x80800)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x118, &(0x7f0000000440)=0x1, 0x0, 0x4)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x24000080}, 0x20044080)
syz_usb_connect$cdc_ecm(0x1, 0x4d, &(0x7f0000000500)=ANY=[@ANYBLOB="1201002350004333871900082545a1a440000102030109023b000101011008092406000005240003000d24a0391be0e3b3425f0000000000004f0180030200"/81], &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}]})

207.048551ms ago: executing program 3 (id=1123):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r2 = creat(&(0x7f0000000340)='./file0/file0\x00', 0x0)
ftruncate(r2, 0xfff)
ioctl$TCSBRKP(r2, 0x5425, 0x6)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0xc2)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000000)='./file0\x00', 0x900000d2)
read(r4, 0x0, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r5, 0x84, 0x8, 0x0, 0x0)
write$char_usb(r2, &(0x7f0000000240)="8c80", 0x2)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r6}, 0x10)
ioctl$SNDCTL_DSP_GETIPTR(r1, 0x800c5011, &(0x7f00000000c0))
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000900)=0x15)
writev(r8, &(0x7f0000000b00)=[{&(0x7f0000000940)='\r', 0xfdef}], 0x2)
sendmsg$netlink(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000100081000000e0000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r9, 0x0, 0x2, 0x0, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$inet6(r5, &(0x7f0000003a00)=[{{&(0x7f0000000b40)={0xa, 0x4e21, 0x900000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}, 0x1c, &(0x7f0000001600)=[{&(0x7f0000000e40)="af", 0x1}], 0x1}}], 0x1, 0xc0c0)
close_range(r3, 0xffffffffffffffff, 0x0)

0s ago: executing program 2 (id=1124):
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_open_dev$vim2m(0x0, 0x1ff, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe)
bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {}, {}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000bf980000000000005608008cb18b18845e9334cb91f2cbff01ef8500000007000000b70000000000"], &(0x7f0000000980)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES32=0x0], 0x104}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=@newtaction={0xb8, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0xa4, 0x1, [@m_bpf={0xa0, 0x1, 0x0, 0x0, {{0x8}, {0x40, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_OPS={0x24, 0x4, [{0x5, 0x1, 0xef, 0x9}, {0xdb34, 0x70, 0x3, 0x2}, {0x0, 0x6, 0x9, 0x3}, {0x5, 0x3, 0xff, 0x5}]}]}, {0x3b, 0x6, "b3ca598fab1a88f715ab6762898f112a3468bd4dc30ac9d4f1e66b5fb30986e1886f7a094646f296d3f31adebad1cb4a72dc2b424e738d"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x488c4}, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000477e7869b38ed17a00"/24], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000fc0)='contention_end\x00', r5}, 0x18)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x1, &(0x7f0000001200)={0xa, 0x4e22, 0x1, @mcast2, 0x8000}, 0x1c)
syz_open_dev$tty1(0xc, 0x4, 0x1)
mount$bind(&(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x11080, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
socket$packet(0x11, 0x3, 0x300)

kernel console output (not intermixed with test programs):

adv_slave_0
[  136.073040][ T8074] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.076484][ T8074] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.089200][ T8074] bond1: (slave bond2): Releasing backup interface
[  136.093319][ T8074] bond3: (slave batadv1): Releasing backup interface
[  136.099018][ T8074] gretap1: left promiscuous mode
[  136.100978][ T8074] bridge0: port 3(gretap1) entered disabled state
[  136.658138][ T8097] netlink: 4 bytes leftover after parsing attributes in process `syz.2.590'.
[  136.706752][ T1329] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  136.878141][ T1329] usb 5-1: Using ep0 maxpacket: 8
[  136.883775][ T1329] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  136.887810][ T1329] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  136.891575][ T1329] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  136.897740][ T1329] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  136.903927][ T1329] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  136.907416][ T1329] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.922945][ T1329] usbtmc 5-1:16.0: bulk endpoints not found
[  137.104099][ T8103] netlink: 'syz.3.592': attribute type 1 has an invalid length.
[  137.139560][ T8103] 8021q: adding VLAN 0 to HW filter on device bond1
[  137.162603][ T8103] bond1: (slave gretap1): making interface the new active one
[  137.166311][ T8103] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  137.286549][ T8103] vlan2: entered promiscuous mode
[  137.290986][ T8103] bond1: entered promiscuous mode
[  137.294345][ T8103] gretap1: entered promiscuous mode
[  137.297237][ T8103] vlan2: entered allmulticast mode
[  137.299324][ T8103] bond1: entered allmulticast mode
[  137.301810][ T8103] gretap1: entered allmulticast mode
[  138.634612][ T8141] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  138.743022][ T8146] FAULT_INJECTION: forcing a failure.
[  138.743022][ T8146] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.747831][ T8146] CPU: 3 UID: 0 PID: 8146 Comm: syz.3.605 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  138.751709][ T8146] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.755660][ T8146] Call Trace:
[  138.756873][ T8146]  <TASK>
[  138.757981][ T8146]  dump_stack_lvl+0x16c/0x1f0
[  138.759724][ T8146]  should_fail_ex+0x497/0x5b0
[  138.761648][ T8146]  _copy_from_user+0x2e/0xd0
[  138.763449][ T8146]  get_compat_msghdr+0xa8/0x170
[  138.765328][ T8146]  ? __pfx_get_compat_msghdr+0x10/0x10
[  138.767326][ T8146]  ? __pfx__kstrtoull+0x10/0x10
[  138.769096][ T8146]  ? ___sys_sendmsg+0x142/0x1e0
[  138.770924][ T8146]  ___sys_sendmsg+0x1b0/0x1e0
[  138.772730][ T8146]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.774693][ T8146]  ? __pfx_kstrtouint+0x10/0x10
[  138.776529][ T8146]  ? trace_lock_acquire+0x14e/0x1f0
[  138.778448][ T8146]  ? __pfx___might_resched+0x10/0x10
[  138.780435][ T8146]  __sys_sendmmsg+0x2fa/0x420
[  138.782237][ T8146]  ? __pfx___sys_sendmmsg+0x10/0x10
[  138.784134][ T8146]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  138.786374][ T8146]  ? fput+0x67/0x440
[  138.787843][ T8146]  ? ksys_write+0x1ba/0x250
[  138.788383][ T8147] vlan2: entered allmulticast mode
[  138.789513][ T8146]  ? __pfx_ksys_write+0x10/0x10
[  138.789537][ T8146]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  138.789554][ T8146]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  138.791631][ T8147] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  138.793367][ T8146]  __do_fast_syscall_32+0x73/0x120
[  138.793398][ T8146]  do_fast_syscall_32+0x32/0x80
[  138.793419][ T8146]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  138.806523][ T8146] RIP: 0023:0xf7f82579
[  138.808049][ T8146] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  138.815104][ T8146] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  138.818221][ T8146] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003cc0
[  138.821161][ T8146] RDX: 0000000000000172 RSI: 0000000004001c00 RDI: 0000000000000000
[  138.824110][ T8146] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  138.827049][ T8146] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  138.830104][ T8146] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  138.833042][ T8146]  </TASK>
[  138.836163][ T8147] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[  139.273581][ T5979] usb 5-1: USB disconnect, device number 16
[  139.286456][   T39] audit: type=1326 audit(1734888651.639:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8152 comm="syz.2.607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd8579 code=0x7ffc0000
[  139.306344][   T39] audit: type=1326 audit(1734888651.639:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8152 comm="syz.2.607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd8579 code=0x7ffc0000
[  139.321568][ T8155] FAULT_INJECTION: forcing a failure.
[  139.321568][ T8155] name failslab, interval 1, probability 0, space 0, times 0
[  139.327852][ T8155] CPU: 1 UID: 0 PID: 8155 Comm: syz.2.608 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  139.333289][ T8155] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.338926][ T8155] Call Trace:
[  139.340692][ T8155]  <TASK>
[  139.342321][ T8155]  dump_stack_lvl+0x16c/0x1f0
[  139.344695][ T8155]  should_fail_ex+0x497/0x5b0
[  139.347087][ T8155]  should_failslab+0xc2/0x120
[  139.349528][ T8155]  __kmalloc_cache_noprof+0x68/0x420
[  139.352454][ T8155]  sctp_add_bind_addr+0x9d/0x3e0
[  139.354963][ T8155]  sctp_copy_local_addr_list+0x39e/0x5a0
[  139.357842][ T8155]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  139.360792][ T8155]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  139.363068][ T8155]  ? sctp_bind_addr_copy+0xe0/0x530
[  139.364737][ T8155]  sctp_bind_addr_copy+0xe0/0x530
[  139.366640][ T8155]  sctp_connect_new_asoc+0x1d8/0x790
[  139.368633][ T8155]  ? lock_release+0x4e2/0x6f0
[  139.370643][ T8155]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  139.372777][ T8155]  ? rcu_is_watching+0x12/0xc0
[  139.374346][ T8155]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  139.376075][ T8155]  sctp_sendmsg+0x162a/0x1f10
[  139.377750][ T8155]  ? __pfx_sctp_sendmsg+0x10/0x10
[  139.380203][ T8155]  ? __pfx_aa_sk_perm+0x10/0x10
[  139.382175][ T8155]  ? __pfx_sctp_sendmsg+0x10/0x10
[  139.384024][ T8155]  inet_sendmsg+0x119/0x140
[  139.385613][ T8155]  __sys_sendto+0x42a/0x4f0
[  139.387265][ T8155]  ? __pfx___sys_sendto+0x10/0x10
[  139.388966][ T8155]  ? ksys_write+0x1ba/0x250
[  139.391562][ T8155]  ? __pfx_ksys_write+0x10/0x10
[  139.393182][ T8155]  __ia32_sys_sendto+0xdd/0x1b0
[  139.394759][ T8155]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  139.396892][ T8155]  __do_fast_syscall_32+0x73/0x120
[  139.398589][ T8155]  do_fast_syscall_32+0x32/0x80
[  139.400167][ T8155]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.402223][ T8155] RIP: 0023:0xf7fd8579
[  139.403509][ T8155] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.411163][ T8155] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  139.414356][ T8155] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[  139.417477][ T8155] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000002005ffe4
[  139.420749][ T8155] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  139.423964][ T8155] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.427563][ T8155] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.431232][ T8155]  </TASK>
[  139.464347][ T8161] netlink: 'syz.0.611': attribute type 10 has an invalid length.
[  139.466627][ T8161] netlink: 40 bytes leftover after parsing attributes in process `syz.0.611'.
[  139.470525][ T8161] A link change request failed with some changes committed already. Interface vlan1 may have been left with an inconsistent configuration, please check.
[  139.678713][ T8175] netlink: 'syz.1.614': attribute type 10 has an invalid length.
[  139.684749][ T8175] batman_adv: batadv0: Adding interface: team0
[  139.687037][ T8175] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  139.697177][ T8175] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  140.080935][ T8202] vivid-007: disconnect
[  140.082883][ T8201] vivid-007: reconnect
[  140.187531][ T8205] netlink: 4 bytes leftover after parsing attributes in process `syz.1.624'.
[  141.192764][ T5979] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  141.374784][ T5979] usb 5-1: Using ep0 maxpacket: 8
[  141.385474][ T5979] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  141.388203][ T5979] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  141.391352][ T5979] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  141.394527][ T5979] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  141.398273][ T5979] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  141.402580][ T5979] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  141.405545][ T5979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.643725][ T5979] usb 5-1: usb_control_msg returned -32
[  141.645948][ T5979] usbtmc 5-1:16.0: can't read capabilities
[  142.020815][ T8243] usbtmc 5-1:16.0: control status returned 0
[  142.274518][   T25] usb 5-1: USB disconnect, device number 17
[  142.440792][ T8247] wireguard0: entered promiscuous mode
[  142.443828][ T8247] wireguard0: entered allmulticast mode
[  142.883184][ T8263] fuse: Unknown parameter 'ÿÿ0x0000000000000001'
[  142.953318][ T8266] netlink: 'syz.0.640': attribute type 2 has an invalid length.
[  143.055822][ T8270] netlink: 20 bytes leftover after parsing attributes in process `syz.0.641'.
[  143.058990][ T8270] nbd: must specify at least one socket
[  143.332069][ T1015] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  143.503181][ T1015] usb 8-1: Using ep0 maxpacket: 8
[  143.504653][ T8279] FAULT_INJECTION: forcing a failure.
[  143.504653][ T8279] name failslab, interval 1, probability 0, space 0, times 0
[  143.506266][ T1015] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  143.509689][ T8279] CPU: 2 UID: 0 PID: 8279 Comm: syz.1.644 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  143.513182][ T1015] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  143.517004][ T8279] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.517019][ T8279] Call Trace:
[  143.517025][ T8279]  <TASK>
[  143.517033][ T8279]  dump_stack_lvl+0x16c/0x1f0
[  143.517058][ T8279]  should_fail_ex+0x497/0x5b0
[  143.517078][ T8279]  ? fs_reclaim_acquire+0xae/0x150
[  143.517098][ T8279]  should_failslab+0xc2/0x120
[  143.521165][ T1015] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  143.524273][ T8279]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  143.525554][ T1015] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  143.526607][ T8279]  ? __alloc_skb+0x2b3/0x380
[  143.528275][ T1015] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  143.530000][ T8279]  __alloc_skb+0x2b3/0x380
[  143.531841][ T1015] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.533560][ T8279]  ? __pfx___alloc_skb+0x10/0x10
[  143.554549][ T8279]  ? lock_acquire+0x2f/0xb0
[  143.556257][ T8279]  netlink_alloc_large_skb+0x69/0x130
[  143.558225][ T8279]  netlink_sendmsg+0x689/0xd70
[  143.560047][ T8279]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.562048][ T8279]  ____sys_sendmsg+0x9ae/0xb40
[  143.563807][ T8279]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.565818][ T8279]  ? get_compat_msghdr+0x11b/0x170
[  143.567708][ T8279]  ? rcu_is_watching+0x12/0xc0
[  143.569476][ T8279]  ? lock_release+0x4e2/0x6f0
[  143.571263][ T8279]  ? get_pid_task+0xfc/0x250
[  143.573069][ T8279]  ___sys_sendmsg+0x135/0x1e0
[  143.574956][ T8279]  ? get_pid_task+0x35/0x250
[  143.576781][ T8279]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.578790][ T8279]  ? lock_release+0x4e2/0x6f0
[  143.580611][ T8279]  ? __pfx_lock_release+0x10/0x10
[  143.582482][ T8279]  ? trace_lock_acquire+0x14e/0x1f0
[  143.584429][ T8279]  ? __fget_files+0x206/0x3a0
[  143.586168][ T8279]  __sys_sendmsg+0x16e/0x220
[  143.587890][ T8279]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.589811][ T8279]  ? rcu_is_watching+0x12/0xc0
[  143.591547][ T8279]  __do_fast_syscall_32+0x73/0x120
[  143.593506][ T8279]  do_fast_syscall_32+0x32/0x80
[  143.595329][ T8279]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.597665][ T8279] RIP: 0023:0xf7f5f579
[  143.599171][ T8279] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.606170][ T8279] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  143.609229][ T8279] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  143.612158][ T8279] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  143.615136][ T8279] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.618056][ T8279] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.620995][ T8279] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.623595][ T8279]  </TASK>
[  143.684764][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  143.684820][   T39] audit: type=1800 audit(1734888655.752:84): pid=8284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.646" name="file0" dev="overlay" ino=12 res=0 errno=0
[  143.753109][ T1015] usb 8-1: GET_CAPABILITIES returned 0
[  143.755024][ T1015] usbtmc 8-1:16.0: can't read capabilities
[  144.016658][ T8271] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.023183][ T8271] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.028986][   T25] usb 8-1: USB disconnect, device number 13
[  145.447385][ T5979] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  145.609934][ T5979] usb 5-1: Using ep0 maxpacket: 8
[  145.615411][ T5979] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  145.619347][ T5979] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  145.622878][ T5979] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  145.626284][ T5979] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  145.630894][ T5979] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  145.634245][ T5979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.666485][ T5979] usbtmc 5-1:16.0: bulk endpoints not found
[  145.930734][ T1329] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  146.018228][ T8328] netlink: 'syz.1.656': attribute type 1 has an invalid length.
[  146.038099][ T8331] FAULT_INJECTION: forcing a failure.
[  146.038099][ T8331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.045482][ T8331] CPU: 2 UID: 0 PID: 8331 Comm: syz.2.657 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  146.049289][ T8331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.053260][ T8331] Call Trace:
[  146.054510][ T8331]  <TASK>
[  146.055575][ T8331]  dump_stack_lvl+0x16c/0x1f0
[  146.057351][ T8331]  should_fail_ex+0x497/0x5b0
[  146.059144][ T8331]  _copy_to_user+0x32/0xd0
[  146.060790][ T8331]  simple_read_from_buffer+0xd0/0x160
[  146.062834][ T8331]  proc_fail_nth_read+0x198/0x270
[  146.064740][ T8331]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  146.066788][ T8331]  ? bpf_lsm_file_permission+0x9/0x10
[  146.068808][ T8331]  ? security_file_permission+0x71/0x210
[  146.070865][ T8331]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  146.072930][ T8331]  vfs_read+0x1df/0xbe0
[  146.074417][ T8331]  ? __fget_files+0x1fc/0x3a0
[  146.076135][ T8331]  ? __pfx___mutex_lock+0x10/0x10
[  146.078046][ T8331]  ? __pfx_vfs_read+0x10/0x10
[  146.079851][ T8331]  ? __fget_files+0x206/0x3a0
[  146.081682][ T8331]  ksys_read+0x12b/0x250
[  146.083286][ T8331]  ? __pfx_ksys_read+0x10/0x10
[  146.085104][ T8331]  ? rcu_is_watching+0x12/0xc0
[  146.086918][ T8331]  __do_fast_syscall_32+0x73/0x120
[  146.088883][ T8331]  do_fast_syscall_32+0x32/0x80
[  146.090697][ T8331]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.091114][ T1329] usb 8-1: Using ep0 maxpacket: 8
[  146.092950][ T8331] RIP: 0023:0xf7fd8579
[  146.092969][ T8331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.092985][ T8331] RSP: 002b:00000000f5126590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  146.093002][ T8331] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5126620
[  146.096260][ T1329] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  146.096331][ T8331] RDX: 000000000000000f RSI: 00000000f7463ff4 RDI: 0000000000000000
[  146.104630][ T1329] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  146.105464][ T8331] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  146.108174][ T1329] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  146.111805][ T8331] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  146.114948][ T1329] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  146.117954][ T8331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.120677][ T1329] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  146.123872][ T8331]  </TASK>
[  146.137576][ T1329] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.141865][ T1329] usbtmc 8-1:16.0: bulk endpoints not found
[  146.216776][ T8337] Malformed UNC in devname
[  146.216776][ T8337] 
[  146.219272][ T8337] CIFS: VFS: Malformed UNC in devname
[  146.433228][ T1015] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  146.572251][ T1015] usb 6-1: device descriptor read/64, error -71
[  146.839589][ T1015] usb 6-1: new low-speed USB device number 12 using dummy_hcd
[  146.999921][ T1015] usb 6-1: device descriptor read/64, error -71
[  147.128443][ T1015] usb usb6-port1: attempt power cycle
[  147.502495][ T1015] usb 6-1: new low-speed USB device number 13 using dummy_hcd
[  147.524784][ T1015] usb 6-1: device descriptor read/8, error -71
[  147.780505][ T1015] usb 6-1: new low-speed USB device number 14 using dummy_hcd
[  147.802277][ T1015] usb 6-1: device descriptor read/8, error -71
[  147.919801][ T1015] usb usb6-port1: unable to enumerate USB device
[  147.999489][ T1329] usb 5-1: USB disconnect, device number 18
[  148.017663][ T8343] netlink: 8 bytes leftover after parsing attributes in process `syz.0.662'.
[  148.079132][ T8344] fuse: Unknown parameter '®SëLé©0è~fd'
[  148.714431][ T1329] usb 8-1: USB disconnect, device number 14
[  149.341945][ T6179] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  149.524838][ T6179] usb 8-1: Using ep0 maxpacket: 8
[  149.530975][ T6179] usb 8-1: config 0 has no interfaces?
[  149.533891][ T6179] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  149.537288][ T6179] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.544926][ T6179] usb 8-1: config 0 descriptor??
[  149.768725][ T6179] usb 8-1: USB disconnect, device number 15
[  150.061115][ T8369] qnx6: unable to read the first superblock
[  150.666102][ T8409] FAULT_INJECTION: forcing a failure.
[  150.666102][ T8409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.671433][ T8409] CPU: 1 UID: 0 PID: 8409 Comm: syz.0.678 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  150.675357][ T8409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.679206][ T8409] Call Trace:
[  150.680460][ T8409]  <TASK>
[  150.681562][ T8409]  dump_stack_lvl+0x16c/0x1f0
[  150.682944][ T8409]  should_fail_ex+0x497/0x5b0
[  150.684421][ T8409]  _copy_from_iter+0x4a5/0x1400
[  150.686128][ T8409]  ? __pfx__copy_from_iter+0x10/0x10
[  150.688125][ T8409]  ? tomoyo_audit_inet_log+0x235/0x330
[  150.690129][ T8409]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  150.692418][ T8409]  ? __check_object_size+0xad/0x710
[  150.694336][ T8409]  ? rcu_is_watching+0x12/0xc0
[  150.696115][ T8409]  ping_common_sendmsg+0xc7/0x2d0
[  150.698010][ T8409]  ping_v4_sendmsg+0x191/0x1a00
[  150.699833][ T8409]  ? ip4_datagram_release_cb+0x21a/0xbb0
[  150.701956][ T8409]  ? __pfx_lock_release+0x10/0x10
[  150.703826][ T8409]  ? __pfx_ping_v4_sendmsg+0x10/0x10
[  150.705820][ T8409]  ? ip4_datagram_release_cb+0xc8/0xbb0
[  150.707891][ T8409]  ? rcu_is_watching+0x12/0xc0
[  150.709676][ T8409]  ? lock_release+0x4e2/0x6f0
[  150.711432][ T8409]  ? inet_autobind+0x145/0x1a0
[  150.713221][ T8409]  ? lock_acquire+0x2f/0xb0
[  150.714893][ T8409]  ? release_sock+0x21/0x220
[  150.716629][ T8409]  ? inet_autobind+0x145/0x1a0
[  150.718435][ T8409]  ? __local_bh_enable_ip+0xa4/0x120
[  150.720408][ T8409]  ? inet_autobind+0x14a/0x1a0
[  150.722222][ T8409]  ? __pfx_ping_v4_sendmsg+0x10/0x10
[  150.724196][ T8409]  inet_sendmsg+0x119/0x140
[  150.725946][ T8409]  ____sys_sendmsg+0x907/0xb40
[  150.727758][ T8409]  ? __pfx_____sys_sendmsg+0x10/0x10
[  150.729774][ T8409]  ? get_compat_msghdr+0x11b/0x170
[  150.731670][ T8409]  ? rcu_is_watching+0x12/0xc0
[  150.733459][ T8409]  ? lock_release+0x4e2/0x6f0
[  150.735189][ T8409]  ? get_pid_task+0xfc/0x250
[  150.736907][ T8409]  ___sys_sendmsg+0x135/0x1e0
[  150.738630][ T8409]  ? get_pid_task+0x35/0x250
[  150.740305][ T8409]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.742288][ T8409]  ? lock_release+0x4e2/0x6f0
[  150.744112][ T8409]  ? __pfx_lock_release+0x10/0x10
[  150.745997][ T8409]  ? trace_lock_acquire+0x14e/0x1f0
[  150.747943][ T8409]  ? __fget_files+0x206/0x3a0
[  150.749735][ T8409]  __sys_sendmsg+0x16e/0x220
[  150.751475][ T8409]  ? __pfx___sys_sendmsg+0x10/0x10
[  150.753416][ T8409]  ? rcu_is_watching+0x12/0xc0
[  150.755255][ T8409]  __do_fast_syscall_32+0x73/0x120
[  150.757114][ T8409]  do_fast_syscall_32+0x32/0x80
[  150.758983][ T8409]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.761369][ T8409] RIP: 0023:0xf7f05579
[  150.762897][ T8409] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.769965][ T8409] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  150.773061][ T8409] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  150.775937][ T8409] RDX: 0000000000040010 RSI: 0000000000000000 RDI: 0000000000000000
[  150.778880][ T8409] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.781826][ T8409] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.784731][ T8409] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.787655][ T8409]  </TASK>
[  150.814931][ T8407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.677'.
[  150.908565][ T8413] support for the xor transformation has been removed.
[  154.008882][ T8473] netlink: 'syz.0.697': attribute type 1 has an invalid length.
[  154.011685][ T8473] netlink: 12 bytes leftover after parsing attributes in process `syz.0.697'.
[  155.185584][   T39] audit: type=1326 audit(1734888666.507:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.194209][   T39] audit: type=1326 audit(1734888666.507:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.202690][   T39] audit: type=1326 audit(1734888666.517:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.211029][   T39] audit: type=1326 audit(1734888666.517:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.221007][   T39] audit: type=1326 audit(1734888666.517:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.228813][   T39] audit: type=1326 audit(1734888666.517:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.237146][   T39] audit: type=1326 audit(1734888666.517:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.307641][   T39] audit: type=1326 audit(1734888666.629:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.360545][ T1015] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  155.394154][   T39] audit: type=1326 audit(1734888666.713:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.457049][ T4463] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  155.461059][   T39] audit: type=1326 audit(1734888666.769:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8496 comm="syz.1.704" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f5f579 code=0x7ffc0000
[  155.531565][ T1015] usb 5-1: Using ep0 maxpacket: 8
[  155.534497][ T1015] usb 5-1: config 0 has no interfaces?
[  155.536259][ T1015] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  155.538987][ T1015] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.542966][ T1015] usb 5-1: config 0 descriptor??
[  155.617656][ T4463] usb 6-1: Using ep0 maxpacket: 16
[  155.624162][ T4463] usb 6-1: config 0 interface 0 has no altsetting 0
[  155.626804][ T4463] usb 6-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[  155.630438][ T4463] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.634614][ T4463] usb 6-1: config 0 descriptor??
[  155.764977][  T832] usb 5-1: USB disconnect, device number 19
[  155.955474][ T8512] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  156.203731][ T4463] usbhid 6-1:0.0: can't add hid device: -71
[  156.205948][ T4463] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  156.211898][ T4463] usb 6-1: USB disconnect, device number 15
[  157.579584][ T8572] netlink: 124 bytes leftover after parsing attributes in process `syz.3.724'.
[  157.936562][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  158.757316][ T8599] bridge1: entered promiscuous mode
[  158.759524][ T8599] bridge1: entered allmulticast mode
[  158.763351][ T8599] team0: Device bridge1 is up. Set it down before adding it as a team port
[  158.986910][ T8603] binder: 8602:8603 ioctl c0306201 20000bc0 returned -14
[  159.152002][ T8615] netlink: 'syz.3.737': attribute type 10 has an invalid length.
[  159.743763][ T1329] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  159.893446][ T6179] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  159.915447][ T1329] usb 6-1: Using ep0 maxpacket: 8
[  159.920207][ T1329] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  159.925210][ T1329] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  159.930864][ T1329] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  159.934467][ T1329] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  159.944594][ T1329] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  159.947525][ T1329] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.953888][ T1329] usbtmc 6-1:16.0: bulk endpoints not found
[  160.053783][ T6179] usb 5-1: Using ep0 maxpacket: 8
[  160.056869][ T6179] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  160.060316][ T6179] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  160.063785][ T6179] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  160.067741][ T6179] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  160.072546][ T6179] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  160.076188][ T6179] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.298144][ T6179] usb 5-1: usb_control_msg returned -32
[  160.300302][ T6179] usbtmc 5-1:16.0: can't read capabilities
[  160.364676][ T8641] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  160.369710][ T8641] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  160.708889][ T8643] batadv_slave_1: entered promiscuous mode
[  160.730687][ T8643] batadv_slave_1: left promiscuous mode
[  160.733411][  T832] usb 5-1: USB disconnect, device number 20
[  160.847082][ T8654] netlink: 92 bytes leftover after parsing attributes in process `syz.2.751'.
[  160.850466][ T8654] netlink: 92 bytes leftover after parsing attributes in process `syz.2.751'.
[  160.893442][ T8657] random: crng reseeded on system resumption
[  160.899779][ T8657] FAULT_INJECTION: forcing a failure.
[  160.899779][ T8657] name failslab, interval 1, probability 0, space 0, times 0
[  160.904741][ T8657] CPU: 0 UID: 0 PID: 8657 Comm: syz.0.752 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  160.908653][ T8657] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.912976][ T8657] Call Trace:
[  160.914218][ T8657]  <TASK>
[  160.915315][ T8657]  dump_stack_lvl+0x16c/0x1f0
[  160.917129][ T8657]  should_fail_ex+0x497/0x5b0
[  160.918867][ T8657]  ? fs_reclaim_acquire+0xae/0x150
[  160.920738][ T8657]  should_failslab+0xc2/0x120
[  160.922447][ T8657]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  160.924565][ T8657]  ? __alloc_skb+0x2b3/0x380
[  160.926284][ T8657]  ? bpf_lsm_capable+0x9/0x10
[  160.928001][ T8657]  __alloc_skb+0x2b3/0x380
[  160.929657][ T8657]  ? __pfx___alloc_skb+0x10/0x10
[  160.931467][ T8657]  ? genl_rcv_msg+0x4a0/0x800
[  160.933171][ T8657]  ? genl_rcv_msg+0x4bd/0x800
[  160.934915][ T8657]  netlink_ack+0x164/0xb20
[  160.936556][ T8657]  netlink_rcv_skb+0x327/0x410
[  160.938351][ T8657]  ? __pfx_genl_rcv_msg+0x10/0x10
[  160.940224][ T8657]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  160.942181][ T8657]  ? down_read+0xc9/0x330
[  160.943752][ T8657]  ? __pfx_down_read+0x10/0x10
[  160.945535][ T8657]  ? netlink_deliver_tap+0x1ae/0xca0
[  160.947479][ T8657]  genl_rcv+0x28/0x40
[  160.948970][ T8657]  netlink_unicast+0x53c/0x7f0
[  160.950779][ T8657]  ? __pfx_netlink_unicast+0x10/0x10
[  160.952786][ T8657]  ? __phys_addr_symbol+0x30/0x80
[  160.954601][ T8657]  ? __check_object_size+0x488/0x710
[  160.956353][ T8657]  netlink_sendmsg+0x8b8/0xd70
[  160.957921][ T8657]  ? __pfx_netlink_sendmsg+0x10/0x10
[  160.959627][ T8657]  ____sys_sendmsg+0x9ae/0xb40
[  160.961184][ T8657]  ? __pfx_____sys_sendmsg+0x10/0x10
[  160.962900][ T8657]  ? get_compat_msghdr+0x11b/0x170
[  160.964526][ T8657]  ? rcu_is_watching+0x12/0xc0
[  160.966289][ T8657]  ? lock_release+0x4e2/0x6f0
[  160.968005][ T8657]  ? get_pid_task+0xfc/0x250
[  160.969639][ T8657]  ___sys_sendmsg+0x135/0x1e0
[  160.971316][ T8657]  ? get_pid_task+0x35/0x250
[  160.972997][ T8657]  ? __pfx____sys_sendmsg+0x10/0x10
[  160.974879][ T8657]  ? lock_release+0x4e2/0x6f0
[  160.976568][ T8657]  ? __pfx_lock_release+0x10/0x10
[  160.978436][ T8657]  ? trace_lock_acquire+0x14e/0x1f0
[  160.980464][ T8657]  ? __fget_files+0x206/0x3a0
[  160.982242][ T8657]  __sys_sendmsg+0x16e/0x220
[  160.983822][ T8657]  ? __pfx___sys_sendmsg+0x10/0x10
[  160.985697][ T8657]  ? rcu_is_watching+0x12/0xc0
[  160.987458][ T8657]  __do_fast_syscall_32+0x73/0x120
[  160.989304][ T8657]  do_fast_syscall_32+0x32/0x80
[  160.991057][ T8657]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.993323][ T8657] RIP: 0023:0xf7f05579
[  160.994812][ T8657] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.001795][ T8657] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  161.004857][ T8657] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000000
[  161.007734][ T8657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  161.010633][ T8657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.013261][ T8657] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.015756][ T8657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.018582][ T8657]  </TASK>
[  161.219048][ T1329] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  161.390334][ T1329] usb 8-1: Using ep0 maxpacket: 8
[  161.396516][ T1329] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  161.400520][ T1329] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  161.404527][ T1329] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  161.408262][ T1329] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  161.428974][ T1329] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  161.432364][ T1329] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.438164][ T1329] usbtmc 8-1:16.0: bulk endpoints not found
[  161.958851][ T8672] netlink: 16 bytes leftover after parsing attributes in process `syz.2.757'.
[  161.962435][ T8673] netlink: 20 bytes leftover after parsing attributes in process `syz.2.757'.
[  161.965659][ T8672] netlink: 20 bytes leftover after parsing attributes in process `syz.2.757'.
[  162.109773][ T8687] FAULT_INJECTION: forcing a failure.
[  162.109773][ T8687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.114618][ T8687] CPU: 2 UID: 0 PID: 8687 Comm: syz.0.759 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  162.118493][ T8687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.122387][ T8687] Call Trace:
[  162.123615][ T8687]  <TASK>
[  162.124715][ T8687]  dump_stack_lvl+0x16c/0x1f0
[  162.126470][ T8687]  should_fail_ex+0x497/0x5b0
[  162.128214][ T8687]  _copy_from_user+0x2e/0xd0
[  162.129922][ T8687]  generic_map_update_batch+0x3ff/0x5f0
[  162.131957][ T8687]  ? __pfx_generic_map_update_batch+0x10/0x10
[  162.134141][ T8687]  ? __fget_files+0x206/0x3a0
[  162.135851][ T8687]  ? __pfx_generic_map_update_batch+0x10/0x10
[  162.138073][ T8687]  bpf_map_do_batch+0x576/0x640
[  162.140108][ T8687]  __sys_bpf+0x1c9f/0x57a0
[  162.141766][ T8687]  ? __pfx_lock_release+0x10/0x10
[  162.143651][ T8687]  ? __pfx___sys_bpf+0x10/0x10
[  162.145567][ T8687]  ? vfs_write+0x306/0x1150
[  162.147037][ T8687]  ? __mutex_unlock_slowpath+0x164/0x690
[  162.148846][ T8687]  ? fput+0x67/0x440
[  162.150122][ T8687]  ? ksys_write+0x1ba/0x250
[  162.151745][ T8687]  ? __pfx_ksys_write+0x10/0x10
[  162.153590][ T8687]  __ia32_sys_bpf+0x76/0xe0
[  162.155299][ T8687]  __do_fast_syscall_32+0x73/0x120
[  162.157190][ T8687]  do_fast_syscall_32+0x32/0x80
[  162.159000][ T8687]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  162.161281][ T8687] RIP: 0023:0xf7f05579
[  162.162812][ T8687] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  162.169817][ T8687] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  162.175888][ T8687] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000020000200
[  162.178872][ T8687] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  162.181877][ T8687] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  162.184789][ T8687] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  162.187719][ T8687] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  162.190690][ T8687]  </TASK>
[  162.435650][ T1329] usb 6-1: USB disconnect, device number 16
[  162.676911][ T8724] fuse: Bad value for 'group_id'
[  162.678846][ T8724] fuse: Bad value for 'group_id'
[  162.912741][ T8732] Cannot find set identified by id 0 to match
[  162.916778][ T8732] hub 5-0:1.0: USB hub found
[  162.919499][ T8732] hub 5-0:1.0: 1 port detected
[  163.192571][ T8744] netlink: 'syz.2.782': attribute type 10 has an invalid length.
[  163.195928][ T8744] syz_tun: entered promiscuous mode
[  163.201867][ T8744] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  163.488440][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  163.495758][ T8753] Bluetooth: hci4: Frame reassembly failed (-84)
[  163.998715][ T1329] usb 8-1: USB disconnect, device number 16
[  164.165136][ T8764] FAULT_INJECTION: forcing a failure.
[  164.165136][ T8764] name failslab, interval 1, probability 0, space 0, times 0
[  164.169850][ T8764] CPU: 2 UID: 0 PID: 8764 Comm: syz.3.788 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  164.173725][ T8764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.177252][ T8764] Call Trace:
[  164.178501][ T8764]  <TASK>
[  164.179597][ T8764]  dump_stack_lvl+0x16c/0x1f0
[  164.181358][ T8764]  should_fail_ex+0x497/0x5b0
[  164.183090][ T8764]  should_failslab+0xc2/0x120
[  164.184824][ T8764]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  164.186800][ T8764]  ? skb_clone+0x190/0x3f0
[  164.188474][ T8764]  skb_clone+0x190/0x3f0
[  164.190007][ T8764]  netlink_deliver_tap+0xafd/0xca0
[  164.191920][ T8764]  netlink_unicast+0x5e1/0x7f0
[  164.193653][ T8764]  ? __pfx_netlink_unicast+0x10/0x10
[  164.195585][ T8764]  ? __phys_addr_symbol+0x30/0x80
[  164.197415][ T8764]  ? __check_object_size+0x488/0x710
[  164.199363][ T8764]  netlink_sendmsg+0x8b8/0xd70
[  164.201122][ T8764]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.203084][ T8764]  ____sys_sendmsg+0x9ae/0xb40
[  164.204851][ T8764]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.206813][ T8764]  ? get_compat_msghdr+0x11b/0x170
[  164.208673][ T8764]  ? rcu_is_watching+0x12/0xc0
[  164.210426][ T8764]  ? lock_release+0x4e2/0x6f0
[  164.212160][ T8764]  ? get_pid_task+0xfc/0x250
[  164.213858][ T8764]  ___sys_sendmsg+0x135/0x1e0
[  164.215401][ T8764]  ? get_pid_task+0x35/0x250
[  164.217047][ T8764]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.218897][ T8764]  ? lock_release+0x4e2/0x6f0
[  164.220623][ T8764]  ? __pfx_lock_release+0x10/0x10
[  164.222456][ T8764]  ? trace_lock_acquire+0x14e/0x1f0
[  164.224347][ T8764]  ? __fget_files+0x206/0x3a0
[  164.226039][ T8764]  __sys_sendmsg+0x16e/0x220
[  164.227710][ T8764]  ? __pfx___sys_sendmsg+0x10/0x10
[  164.229576][ T8764]  ? rcu_is_watching+0x12/0xc0
[  164.231342][ T8764]  __do_fast_syscall_32+0x73/0x120
[  164.233223][ T8764]  do_fast_syscall_32+0x32/0x80
[  164.235005][ T8764]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.237307][ T8764] RIP: 0023:0xf7f82579
[  164.238826][ T8764] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.245806][ T8764] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  164.248779][ T8764] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000600
[  164.251671][ T8764] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.254452][ T8764] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.257328][ T8764] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.260338][ T8764] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.263188][ T8764]  </TASK>
[  164.268020][ T8764] netlink: 'syz.3.788': attribute type 10 has an invalid length.
[  164.287631][   T12] bond0: (slave syz_tun): link status definitely down, disabling slave
[  165.548921][   T25] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  165.689413][ T5943] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  165.709178][   T25] usb 5-1: Using ep0 maxpacket: 8
[  165.712781][   T25] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  165.716550][   T25] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  165.720345][   T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  165.724025][   T25] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  165.728649][   T25] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  165.732131][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.738539][   T25] usbtmc 5-1:16.0: bulk endpoints not found
[  167.387559][ T4463] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  167.437630][ T8821] xt_TPROXY: Can be used only with -p tcp or -p udp
[  167.560742][ T4463] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  167.564353][ T4463] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 32
[  167.567241][ T4463] usb 6-1: config 1 interface 0 altsetting 64 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  167.572206][ T4463] usb 6-1: config 1 interface 0 has no altsetting 0
[  167.580186][ T4463] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  167.601994][ T4463] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  167.610361][ T4463] usb 6-1: SerialNumber: syz
[  167.791494][ T8829] netlink: 8 bytes leftover after parsing attributes in process `syz.2.804'.
[  167.935702][ T8834] 9pnet_fd: Insufficient options for proto=fd
[  167.941589][ T8834] vxcan3: entered promiscuous mode
[  167.943713][ T8834] vxcan3: entered allmulticast mode
[  167.986990][ T4463] usb 6-1: bad CDC descriptors
[  168.016693][ T8834] [U] 
[  168.260242][   T25] usb 6-1: USB disconnect, device number 17
[  168.356745][ T1329] usb 5-1: USB disconnect, device number 21
[  169.356159][   T39] kauditd_printk_skb: 73 callbacks suppressed
[  169.356174][   T39] audit: type=1326 audit(1734888679.771:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.1.815" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f5f579 code=0x0
[  169.403738][ T8871] Bluetooth: MGMT ver 1.23
[  169.405459][ T8871] FAULT_INJECTION: forcing a failure.
[  169.405459][ T8871] name failslab, interval 1, probability 0, space 0, times 0
[  169.410373][ T8871] CPU: 3 UID: 0 PID: 8871 Comm: syz.1.815 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  169.414215][ T8871] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.417733][ T8871] Call Trace:
[  169.418856][ T8871]  <TASK>
[  169.419837][ T8871]  dump_stack_lvl+0x16c/0x1f0
[  169.421449][ T8871]  should_fail_ex+0x497/0x5b0
[  169.423016][ T8871]  ? fs_reclaim_acquire+0xae/0x150
[  169.424702][ T8871]  should_failslab+0xc2/0x120
[  169.426252][ T8871]  __kmalloc_cache_noprof+0x68/0x420
[  169.428019][ T8871]  mgmt_pending_new+0x5b/0x290
[  169.429411][ T8871]  mgmt_pending_add+0x36/0x160
[  169.430767][ T8871]  remove_adv_monitor+0x124/0x1b0
[  169.432469][ T8871]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  169.434132][ T8871]  hci_sock_sendmsg+0x1528/0x25e0
[  169.435719][ T8871]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  169.437409][ T8871]  sock_write_iter+0x4fe/0x5b0
[  169.438937][ T8871]  ? __pfx_sock_write_iter+0x10/0x10
[  169.440587][ T8871]  ? bpf_lsm_file_permission+0x9/0x10
[  169.442364][ T8871]  ? security_file_permission+0x71/0x210
[  169.444211][ T8871]  vfs_write+0x5ae/0x1150
[  169.445622][ T8871]  ? __pfx_sock_write_iter+0x10/0x10
[  169.447382][ T8871]  ? __pfx_vfs_write+0x10/0x10
[  169.448981][ T8871]  ? __fget_files+0x40/0x3a0
[  169.450483][ T8871]  ksys_write+0x207/0x250
[  169.451877][ T8871]  ? __pfx_ksys_write+0x10/0x10
[  169.453433][ T8871]  ? rcu_is_watching+0x12/0xc0
[  169.454970][ T8871]  __do_fast_syscall_32+0x73/0x120
[  169.456641][ T8871]  do_fast_syscall_32+0x32/0x80
[  169.458276][ T8871]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.460308][ T8871] RIP: 0023:0xf7f5f579
[  169.461647][ T8871] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.467712][ T8871] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  169.470315][ T8871] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000580
[  169.472866][ T8871] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  169.475263][ T8871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.477656][ T8871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.480004][ T8871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.482529][ T8871]  </TASK>
[  169.483559][    C3] vkms_vblank_simulate: vblank timer overrun
[  169.752978][ T8874] program syz.0.816 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  169.828030][ T5979] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  169.969421][ T5979] usb 8-1: Using ep0 maxpacket: 8
[  169.972723][ T5979] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  169.976462][ T5979] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  169.980114][ T5979] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  169.983743][ T5979] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  169.988602][ T5979] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  169.991963][ T5979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.997887][ T5979] usbtmc 8-1:16.0: bulk endpoints not found
[  172.100148][ T6179] IPVS: starting estimator thread 0...
[  172.191525][ T8922] IPVS: using max 36 ests per chain, 86400 per kthread
[  172.246348][ T5979] usb 8-1: USB disconnect, device number 17
[  172.488860][ T8928] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  172.943118][ T8920] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  173.961432][ T5979] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  174.178038][ T5979] usb 6-1: Using ep0 maxpacket: 8
[  174.180778][ T5979] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  174.183487][ T5979] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  174.186122][ T5979] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  174.189324][ T5979] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  174.193968][ T5979] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  174.197727][ T5979] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.202499][ T5979] usbtmc 6-1:16.0: bulk endpoints not found
[  175.499093][ T8975] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  175.625122][   T62] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  175.781395][   T62] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  175.785198][   T62] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 32
[  175.788623][   T62] usb 5-1: config 1 interface 0 altsetting 64 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  175.793889][   T62] usb 5-1: config 1 interface 0 has no altsetting 0
[  175.797375][   T62] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  175.801027][   T62] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  175.804057][   T62] usb 5-1: SerialNumber: syz
[  176.067273][   T62] usb 5-1: bad CDC descriptors
[  176.334898][ T4463] usb 5-1: USB disconnect, device number 22
[  176.673389][ T5979] usb 6-1: USB disconnect, device number 18
[  176.977169][ T8987] FAULT_INJECTION: forcing a failure.
[  176.977169][ T8987] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.982171][ T8987] CPU: 1 UID: 0 PID: 8987 Comm: syz.0.850 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  176.986020][ T8987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.989922][ T8987] Call Trace:
[  176.991179][ T8987]  <TASK>
[  176.992331][ T8987]  dump_stack_lvl+0x16c/0x1f0
[  176.993993][ T8987]  should_fail_ex+0x497/0x5b0
[  176.995732][ T8987]  _copy_from_user+0x2e/0xd0
[  176.997520][ T8987]  memdup_user+0x71/0xd0
[  176.999146][ T8987]  proc_pid_attr_write+0x22e/0x790
[  177.001059][ T8987]  ? __pfx_proc_pid_attr_write+0x10/0x10
[  177.003028][ T8987]  vfs_write+0x24c/0x1150
[  177.004682][ T8987]  ? __fget_files+0x1fc/0x3a0
[  177.006452][ T8987]  ? __pfx___mutex_lock+0x10/0x10
[  177.008349][ T8987]  ? __pfx_vfs_write+0x10/0x10
[  177.010152][ T8987]  ? __fget_files+0x206/0x3a0
[  177.011951][ T8987]  ksys_write+0x12b/0x250
[  177.013588][ T8987]  ? __pfx_ksys_write+0x10/0x10
[  177.015411][ T8987]  ? rcu_is_watching+0x12/0xc0
[  177.017228][ T8987]  __do_fast_syscall_32+0x73/0x120
[  177.019183][ T8987]  do_fast_syscall_32+0x32/0x80
[  177.021031][ T8987]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.023450][ T8987] RIP: 0023:0xf7f05579
[  177.025052][ T8987] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  177.032077][ T8987] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  177.035125][ T8987] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020002a80
[  177.038066][ T8987] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000
[  177.040982][ T8987] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  177.043837][ T8987] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  177.046522][ T8987] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  177.049253][ T8987]  </TASK>
[  177.050641][ T5979] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  177.056491][ T8987] input: syz1 as /devices/virtual/input/input12
[  177.234605][ T5979] usb 6-1: Using ep0 maxpacket: 16
[  177.237878][ T5979] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  177.241418][ T5979] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  177.244450][ T5979] usb 6-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  177.247216][ T5979] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.251268][ T5979] usb 6-1: config 0 descriptor??
[  177.688371][ T5979] appleir 0003:05AC:8241.0005: unknown main item tag 0x0
[  177.691072][ T5979] appleir 0003:05AC:8241.0005: unknown main item tag 0x0
[  177.693623][ T5979] appleir 0003:05AC:8241.0005: unknown main item tag 0x0
[  177.706450][ T5979] appleir 0003:05AC:8241.0005: unknown main item tag 0x0
[  177.709056][ T5979] appleir 0003:05AC:8241.0005: unknown main item tag 0x0
[  177.711966][ T5979] appleir 0003:05AC:8241.0005: No inputs registered, leaving
[  177.718501][ T5979] appleir 0003:05AC:8241.0005: hiddev0,hidraw1: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.1-1/input0
[  178.033306][ T5979] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  178.212799][ T5979] usb 8-1: Using ep0 maxpacket: 8
[  178.216548][ T5979] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  178.220463][ T5979] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  178.233439][ T5979] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  178.237635][ T5979] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  178.242691][ T5979] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  178.246207][ T5979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.249233][ T5979] usbtmc 8-1:16.0: bulk endpoints not found
[  178.383912][ T9018] netlink: 4 bytes leftover after parsing attributes in process `syz.2.859'.
[  178.413246][ T9020] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  178.415629][ T9020] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  178.419090][ T9020] vhci_hcd vhci_hcd.0: Device attached
[  178.427647][ T9021] vhci_hcd: connection closed
[  178.427849][   T11] vhci_hcd: stop threads
[  178.431052][   T11] vhci_hcd: release socket
[  178.432781][   T11] vhci_hcd: disconnect device
[  179.268823][ T5979] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  179.364003][ T5977] usb 6-1: reset high-speed USB device number 19 using dummy_hcd
[  179.427944][ T5979] usb 5-1: Using ep0 maxpacket: 8
[  179.432758][ T5979] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  179.436615][ T5979] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  179.440314][ T5979] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  179.443947][ T5979] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  179.448745][ T5979] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  179.452113][ T5979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.457406][ T5979] usbtmc 5-1:16.0: bulk endpoints not found
[  179.856911][ T9012] overlayfs: statfs failed on './file0'
[  180.318643][ T5977] usb 6-1: device descriptor read/64, error -71
[  180.336078][ T9047] FAULT_INJECTION: forcing a failure.
[  180.336078][ T9047] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  180.340973][ T9047] CPU: 1 UID: 0 PID: 9047 Comm: syz.2.869 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  180.344640][ T9047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.347676][ T9047] Call Trace:
[  180.348577][ T9047]  <TASK>
[  180.349426][ T9047]  dump_stack_lvl+0x16c/0x1f0
[  180.350889][ T9047]  should_fail_ex+0x497/0x5b0
[  180.352425][ T9047]  ? fs_reclaim_acquire+0xae/0x150
[  180.353949][ T9047]  should_fail_alloc_page+0xe7/0x130
[  180.355390][ T9047]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  180.357003][ T9047]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  180.358610][ T9047]  __alloc_pages_noprof+0x190/0x25b0
[  180.360004][ T9047]  ? rcu_is_watching+0x12/0xc0
[  180.361282][ T9047]  ? lock_release+0x4e2/0x6f0
[  180.363328][ T9047]  ? stack_depot_save_flags+0x36d/0x9e0
[  180.365325][ T9047]  ? __pfx_lock_release+0x10/0x10
[  180.367130][ T9047]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  180.369113][ T9047]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  180.371256][ T9047]  ? trace_irq_enable.constprop.0+0xea/0x140
[  180.373465][ T9047]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  180.375626][ T9047]  ? stack_depot_save_flags+0x36d/0x9e0
[  180.377633][ T9047]  ? kasan_save_stack+0x42/0x60
[  180.379323][ T9047]  ? kasan_save_stack+0x33/0x60
[  180.381137][ T9047]  ? kasan_save_track+0x14/0x30
[  180.382968][ T9047]  ? __kasan_slab_alloc+0x89/0x90
[  180.384828][ T9047]  ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0
[  180.387023][ T9047]  ? alloc_vmap_area+0x636/0x2a70
[  180.388933][ T9047]  ? __get_vm_area_node+0x19e/0x2f0
[  180.390826][ T9047]  ? __vmalloc_node_range_noprof+0x26a/0x1530
[  180.392945][ T9047]  ? vmalloc_noprof+0x6b/0x90
[  180.394592][ T9047]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.396777][ T9047]  ? policy_nodemask+0xea/0x4e0
[  180.398602][ T9047]  alloc_pages_mpol_noprof+0x2c9/0x610
[  180.400691][ T9047]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  180.402929][ T9047]  ? do_raw_spin_lock+0x12d/0x2c0
[  180.404833][ T9047]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  180.407125][ T9047]  ? lock_acquire+0x2f/0xb0
[  180.408824][ T9047]  ? kasan_populate_vmalloc_pte+0xfb/0x160
[  180.410837][ T9047]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  180.413164][ T9047]  get_free_pages_noprof+0xc/0x40
[  180.414997][ T9047]  kasan_populate_vmalloc_pte+0x2d/0x160
[  180.417014][ T9047]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  180.419132][ T9047]  __apply_to_page_range+0x5fd/0xd30
[  180.420937][ T9047]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  180.423268][ T9047]  ? __pfx___apply_to_page_range+0x10/0x10
[  180.425348][ T9047]  ? insert_vmap_area+0x2ef/0x4d0
[  180.427241][ T9047]  alloc_vmap_area+0x93e/0x2a70
[  180.429044][ T9047]  ? __pfx_alloc_vmap_area+0x10/0x10
[  180.431042][ T9047]  __get_vm_area_node+0x19e/0x2f0
[  180.432958][ T9047]  ? stack_depot_save_flags+0x36d/0x9e0
[  180.435114][ T9047]  __vmalloc_node_range_noprof+0x26a/0x1530
[  180.437299][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.439242][ T9047]  ? __mutex_trylock_common+0xea/0x250
[  180.441263][ T9047]  ? rcu_is_watching+0x12/0xc0
[  180.443008][ T9047]  ? lock_release+0x4e2/0x6f0
[  180.444676][ T9047]  ? do_alloc_pages+0xd3/0x270
[  180.446524][ T9047]  ? __pfx_lock_release+0x10/0x10
[  180.448342][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.450320][ T9047]  ? trace_contention_end+0xee/0x140
[  180.452308][ T9047]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  180.454688][ T9047]  ? __mutex_unlock_slowpath+0x164/0x690
[  180.456821][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.458799][ T9047]  vmalloc_noprof+0x6b/0x90
[  180.460505][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.462450][ T9047]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  180.464623][ T9047]  __snd_dma_alloc_pages+0x50/0x90
[  180.466476][ T9047]  snd_dma_alloc_dir_pages+0x151/0x240
[  180.468481][ T9047]  do_alloc_pages+0x115/0x270
[  180.470177][ T9047]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  180.472092][ T9047]  snd_pcm_hw_params+0x15e6/0x1b20
[  180.473789][ T9047]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  180.475652][ T9047]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  180.477993][ T9047]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  180.480457][ T9047]  ? kfree+0x14f/0x4b0
[  180.481911][ T9047]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  180.483625][ T9047]  snd_pcm_oss_change_params_locked+0x1410/0x3a50
[  180.485426][ T9047]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  180.487174][ T9047]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.488900][ T9047]  ? __pfx___mutex_lock+0x10/0x10
[  180.490274][ T9047]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  180.491952][ T9047]  snd_pcm_oss_ioctl+0x154e/0x3780
[  180.493810][ T9047]  ? trace_lock_acquire+0x14e/0x1f0
[  180.495552][ T9047]  ? __fget_files+0x40/0x3a0
[  180.496867][ T9047]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  180.498628][ T9047]  ? __fget_files+0x206/0x3a0
[  180.499987][ T9047]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  180.502048][ T9047]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  180.503621][ T9047]  __do_fast_syscall_32+0x73/0x120
[  180.505361][ T9047]  do_fast_syscall_32+0x32/0x80
[  180.506838][ T9047]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.509054][ T9047] RIP: 0023:0xf7fd8579
[  180.510200][ T9047] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  180.516385][ T9047] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  180.519204][ T9047] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045017
[  180.521387][ T9047] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  180.523573][ T9047] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  180.525705][ T9047] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  180.527704][ T9047] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  180.529835][ T9047]  </TASK>
[  180.531447][ T9047] syz.2.869: vmalloc error: size 1048576, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  180.536096][ T9047] CPU: 0 UID: 0 PID: 9047 Comm: syz.2.869 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  180.539275][ T9047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.542096][ T9047] Call Trace:
[  180.543064][ T9047]  <TASK>
[  180.543880][ T9047]  dump_stack_lvl+0x16c/0x1f0
[  180.545338][ T9047]  warn_alloc+0x24d/0x3a0
[  180.546576][ T9047]  ? __pfx_warn_alloc+0x10/0x10
[  180.548112][ T9047]  ? kfree+0x14f/0x4b0
[  180.549273][ T9047]  ? __get_vm_area_node+0x1dc/0x2f0
[  180.550600][ T9047]  __vmalloc_node_range_noprof+0xd27/0x1530
[  180.552216][ T9047]  ? __mutex_trylock_common+0xea/0x250
[  180.553455][ T9047]  ? rcu_is_watching+0x12/0xc0
[  180.555060][ T9047]  ? lock_release+0x4e2/0x6f0
[  180.556449][ T9047]  ? do_alloc_pages+0xd3/0x270
[  180.557668][ T9047]  ? __pfx_lock_release+0x10/0x10
[  180.558962][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.560480][ T9047]  ? trace_contention_end+0xee/0x140
[  180.562062][ T9047]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  180.563863][ T9047]  ? __mutex_unlock_slowpath+0x164/0x690
[  180.565359][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.566741][ T9047]  vmalloc_noprof+0x6b/0x90
[  180.568256][ T9047]  ? __snd_dma_alloc_pages+0x50/0x90
[  180.569722][ T9047]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  180.571260][ T9047]  __snd_dma_alloc_pages+0x50/0x90
[  180.572889][ T9047]  snd_dma_alloc_dir_pages+0x151/0x240
[  180.574338][ T9047]  do_alloc_pages+0x115/0x270
[  180.575516][ T9047]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  180.576925][ T9047]  snd_pcm_hw_params+0x15e6/0x1b20
[  180.578359][ T9047]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  180.579850][ T9047]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  180.581615][ T9047]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  180.582796][ T5977] usb 6-1: reset high-speed USB device number 19 using dummy_hcd
[  180.583477][ T9047]  ? kfree+0x14f/0x4b0
[  180.586963][ T5977] usb 6-1: device reset changed ep0 maxpacket size!
[  180.587379][ T9047]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  180.590194][   T62] usb 6-1: USB disconnect, device number 19
[  180.591662][ T9047]  snd_pcm_oss_change_params_locked+0x1410/0x3a50
[  180.596030][ T9047]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  180.598282][ T9047]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.600242][ T9047]  ? __pfx___mutex_lock+0x10/0x10
[  180.601865][ T9047]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  180.603391][ T9047]  snd_pcm_oss_ioctl+0x154e/0x3780
[  180.604887][ T9047]  ? trace_lock_acquire+0x14e/0x1f0
[  180.606256][ T9047]  ? __fget_files+0x40/0x3a0
[  180.607553][ T9047]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  180.609090][ T9047]  ? __fget_files+0x206/0x3a0
[  180.610456][ T9047]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  180.612270][ T9047]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  180.613873][ T9047]  __do_fast_syscall_32+0x73/0x120
[  180.615591][ T9047]  do_fast_syscall_32+0x32/0x80
[  180.617308][ T9047]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.619579][ T9047] RIP: 0023:0xf7fd8579
[  180.621026][ T9047] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  180.627668][ T9047] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  180.630546][ T9047] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045017
[  180.633370][ T9047] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  180.636119][ T9047] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  180.638878][ T9047] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  180.641056][ T9047] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  180.643130][ T9047]  </TASK>
[  180.644200][ T9047] Mem-Info:
[  180.645087][ T9047] active_anon:10324 inactive_anon:42 isolated_anon:0
[  180.645087][ T9047]  active_file:18540 inactive_file:26363 isolated_file:0
[  180.645087][ T9047]  unevictable:1768 dirty:132 writeback:0
[  180.645087][ T9047]  slab_reclaimable:7554 slab_unreclaimable:57528
[  180.645087][ T9047]  mapped:29712 shmem:7821 pagetables:747
[  180.645087][ T9047]  sec_pagetables:307 bounce:0
[  180.645087][ T9047]  kernel_misc_reclaimable:0
[  180.645087][ T9047]  free:58152 free_pcp:1038 free_cma:0
[  180.660581][ T9047] Node 0 active_anon:4348kB inactive_anon:164kB active_file:308kB inactive_file:952kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5336kB dirty:20kB writeback:0kB shmem:8160kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9756kB pagetables:744kB sec_pagetables:1148kB all_unreclaimable? yes
[  180.670557][ T9047] Node 1 active_anon:36948kB inactive_anon:4kB active_file:73852kB inactive_file:104500kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:113512kB dirty:508kB writeback:0kB shmem:23124kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:2628kB pagetables:2244kB sec_pagetables:80kB all_unreclaimable? no
[  180.680417][ T9047] Node 0 DMA free:2944kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:256kB local_pcp:48kB free_cma:0kB
[  180.689143][ T9047] lowmem_reserve[]: 0 273 0 0 0
[  180.690697][ T9047] Node 0 DMA32 free:18584kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:4344kB inactive_anon:164kB active_file:308kB inactive_file:952kB unevictable:3536kB writepending:20kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:1308kB local_pcp:560kB free_cma:0kB
[  180.700821][ T9047] lowmem_reserve[]: 0 0 0 0 0
[  180.702646][ T9047] Node 1 DMA32 free:211080kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:36948kB inactive_anon:4kB active_file:73852kB inactive_file:104500kB unevictable:3536kB writepending:508kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:2572kB local_pcp:800kB free_cma:0kB
[  180.712016][ T9047] lowmem_reserve[]: 0 0 0 0 0
[  180.713387][ T9047] Node 0 DMA: 42*4kB (UME) 77*8kB (UME) 23*16kB (UME) 40*32kB (UME) 6*64kB (UME) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2944kB
[  180.717650][ T9047] Node 0 DMA32: 38*4kB (UMH) 34*8kB (MEH) 15*16kB (UMH) 100*32kB (UMEH) 44*64kB (UMEH) 13*128kB (UMEH) 2*256kB (EH) 3*512kB (UM) 2*1024kB (UM) 1*2048kB (M) 1*4096kB (M) = 18584kB
[  180.722374][ T9047] Node 1 DMA32: 85*4kB (UME) 356*8kB (UME) 650*16kB (UME) 413*32kB (UME) 345*64kB (UME) 51*128kB (UME) 48*256kB (UME) 46*512kB (UME) 33*1024kB (UME) 16*2048kB (UME) 13*4096kB (UME) = 211060kB
[  180.727263][ T9047] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  180.730017][ T9047] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  180.730941][   T62] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  180.732812][ T9047] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  180.738092][ T9047] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  180.741270][ T9047] 52459 total pagecache pages
[  180.742726][ T9047] 110 pages in swap cache
[  180.743845][ T9047] Free swap  = 118996kB
[  180.744877][ T9047] Total swap = 124996kB
[  180.745904][ T9047] 524155 pages RAM
[  180.746837][ T9047] 0 pages HighMem/MovableOnly
[  180.748065][ T9047] 206675 pages reserved
[  180.749151][ T9047] 0 pages cma reserved
[  180.766129][   T56] usb 8-1: USB disconnect, device number 18
[  180.900593][   T62] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.904543][   T62] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.908218][   T62] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  180.913269][   T62] usb 6-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00
[  180.916243][   T62] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.920102][   T62] usb 6-1: config 0 descriptor??
[  181.387632][ T9072] block device autoloading is deprecated and will be removed.
[  181.395120][ T9071] md: md2 stopped.
[  181.428858][   T62] usbhid 6-1:0.0: can't add hid device: -71
[  181.431514][   T62] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  181.436581][   T62] usb 6-1: USB disconnect, device number 20
[  181.873312][ T9078] netlink: 4 bytes leftover after parsing attributes in process `syz.2.878'.
[  182.020510][   T56] usb 5-1: USB disconnect, device number 23
[  182.152056][ T9093] vcan0: tx drop: invalid da for name 0x00feffffffffffff
[  182.574537][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.577249][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.112560][ T1329] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  183.272352][ T1329] usb 8-1: Using ep0 maxpacket: 8
[  183.275571][ T1329] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  183.278667][ T1329] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  183.281213][ T1329] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  183.283842][ T1329] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  183.287458][ T1329] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  183.290324][ T1329] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.295199][ T1329] usbtmc 8-1:16.0: bulk endpoints not found
[  183.500041][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880687ba400: rx timeout, send abort
[  183.503023][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880687ba800: rx timeout, send abort
[  183.506177][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880687ba400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  183.510487][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880687ba800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  185.414522][ T1015] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  185.539964][ T9140] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  185.542303][ T9140] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  185.545403][ T9140] vhci_hcd vhci_hcd.0: Device attached
[  185.587060][ T1015] usb 6-1: Using ep0 maxpacket: 8
[  185.592615][ T1015] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  185.596637][ T1015] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  185.600323][ T1015] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  185.603471][ T1015] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  185.607772][ T1015] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  185.610188][ T1015] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.614856][ T1015] usbtmc 6-1:16.0: bulk endpoints not found
[  185.734451][ T5977] vhci_hcd: vhci_device speed not set
[  185.798690][ T5977] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  185.854790][ T1329] usb 8-1: USB disconnect, device number 19
[  186.963192][ T9143] vhci_hcd: connection reset by peer
[  186.965433][   T92] vhci_hcd: stop threads
[  186.967034][   T92] vhci_hcd: release socket
[  186.968742][   T92] vhci_hcd: disconnect device
[  187.868533][ T9200] netlink: 76 bytes leftover after parsing attributes in process `syz.3.915'.
[  188.354835][   T56] usb 6-1: USB disconnect, device number 21
[  188.636749][ T9229] vivid-000: =================  START STATUS  =================
[  188.639405][ T9229] vivid-000: Generate PTS: true
[  188.641037][ T9229] vivid-000: Generate SCR: true
[  188.642956][ T9229] tpg source WxH: 320x180 (R'G'B)
[  188.644822][ T9229] tpg field: 1
[  188.646011][ T9229] tpg crop: 320x180@0x0
[  188.647377][ T9229] tpg compose: 320x180@0x0
[  188.649091][ T9229] tpg colorspace: 2
[  188.651523][ T9229] tpg transfer function: 0/2
[  188.653101][ T9229] tpg quantization: 1/2
[  188.654511][ T9229] tpg RGB range: 0/2
[  188.655857][ T9229] vivid-000: ==================  END STATUS  ==================
[  189.376008][ T9240] FAULT_INJECTION: forcing a failure.
[  189.376008][ T9240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.386747][ T9240] CPU: 3 UID: 0 PID: 9240 Comm: syz.1.925 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  189.390295][ T9240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.393829][ T9240] Call Trace:
[  189.394925][ T9240]  <TASK>
[  189.395932][ T9240]  dump_stack_lvl+0x16c/0x1f0
[  189.397501][ T9240]  should_fail_ex+0x497/0x5b0
[  189.399095][ T9240]  _copy_from_user+0x2e/0xd0
[  189.400607][ T9240]  io_submit_one+0xbc/0x1da0
[  189.402147][ T9240]  ? do_user_addr_fault+0x83d/0x13f0
[  189.403919][ T9240]  ? __pfx_io_submit_one+0x10/0x10
[  189.405592][ T9240]  ? rcu_is_watching+0x12/0xc0
[  189.407193][ T9240]  ? lock_release+0x4e2/0x6f0
[  189.408780][ T9240]  ? __might_fault+0x13b/0x190
[  189.410364][ T9240]  ? lock_acquire+0x2f/0xb0
[  189.412057][ T9240]  ? __might_fault+0xe3/0x190
[  189.413651][ T9240]  ? __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  189.415634][ T9240]  __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  189.417531][ T9240]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  189.419573][ T9240]  ? rcu_is_watching+0x12/0xc0
[  189.421216][ T9240]  __do_fast_syscall_32+0x73/0x120
[  189.422987][ T9240]  do_fast_syscall_32+0x32/0x80
[  189.424672][ T9240]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.426808][ T9240] RIP: 0023:0xf7f5f579
[  189.428141][ T9240] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.434546][ T9240] RSP: 002b:00000000f4eea55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  189.437346][ T9240] RAX: ffffffffffffffda RBX: 00000000f508d000 RCX: 000000000000003b
[  189.440026][ T9240] RDX: 0000000020000540 RSI: 0000000000000000 RDI: 0000000000000000
[  189.442734][ T9240] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  189.445404][ T9240] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  189.448063][ T9240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.450683][ T9240]  </TASK>
[  189.451837][    C3] vkms_vblank_simulate: vblank timer overrun
[  190.852299][ T9269] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  191.221576][ T5977] vhci_hcd: vhci_device speed not set
[  191.526950][ T9277] netlink: 'syz.0.936': attribute type 1 has an invalid length.
[  191.529703][ T9277] netlink: 224 bytes leftover after parsing attributes in process `syz.0.936'.
[  191.534623][ T9277] netlink: 'syz.0.936': attribute type 2 has an invalid length.
[  191.548484][ T9277] team0 (unregistering): Port device team_slave_0 removed
[  191.554345][ T9277] team0 (unregistering): Port device team_slave_1 removed
[  191.667474][ T9282] netlink: 'syz.0.938': attribute type 4 has an invalid length.
[  191.672791][ T9282] netlink: 'syz.0.938': attribute type 4 has an invalid length.
[  191.705712][ T9284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.939'.
[  192.040161][ T9299] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  192.122996][ T9299] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  192.353319][ T9315] overlayfs: missing 'lowerdir'
[  193.030860][ T9317] netlink: 36 bytes leftover after parsing attributes in process `syz.1.948'.
[  193.453982][ T9321] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  193.455880][ T9321] overlayfs: failed to set xattr on upper
[  193.457441][ T9321] overlayfs: ...falling back to redirect_dir=nofollow.
[  193.459260][ T9321] overlayfs: ...falling back to index=off.
[  193.460915][ T9321] overlayfs: ...falling back to uuid=null.
[  193.625304][ T9333] FAULT_INJECTION: forcing a failure.
[  193.625304][ T9333] name failslab, interval 1, probability 0, space 0, times 0
[  193.629603][ T9333] CPU: 1 UID: 0 PID: 9333 Comm: syz.2.952 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  193.633154][ T9333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.636747][ T9333] Call Trace:
[  193.637879][ T9333]  <TASK>
[  193.638903][ T9333]  dump_stack_lvl+0x16c/0x1f0
[  193.640519][ T9333]  should_fail_ex+0x497/0x5b0
[  193.642154][ T9333]  ? fs_reclaim_acquire+0xae/0x150
[  193.643911][ T9333]  should_failslab+0xc2/0x120
[  193.645511][ T9333]  __kmalloc_noprof+0xce/0x4f0
[  193.647147][ T9333]  ? kvm_io_bus_register_dev+0x470/0x740
[  193.649069][ T9333]  ? kvm_io_bus_register_dev+0x1b4/0x740
[  193.650959][ T9333]  kvm_io_bus_register_dev+0x1b4/0x740
[  193.652838][ T9333]  kvm_pic_init+0x25e/0x380
[  193.654381][ T9333]  kvm_arch_vm_ioctl+0x935/0x1ca0
[  193.656113][ T9333]  ? __pv_queued_spin_lock_slowpath+0x28a/0xc90
[  193.658199][ T9333]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  193.660038][ T9333]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  193.662321][ T9333]  ? arch_scale_cpu_capacity+0x15/0xb0
[  193.664189][ T9333]  ? dl_scaled_delta_exec+0xdd/0x2e0
[  193.665991][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.667560][ T9333]  ? lock_release+0x4e2/0x6f0
[  193.669111][ T9333]  ? __schedule+0x3d67/0x5ad0
[  193.670700][ T9333]  ? __pfx_lock_release+0x10/0x10
[  193.672410][ T9333]  ? update_curr+0x59e/0x800
[  193.673975][ T9333]  ? __pfx_lock_unpin_lock+0x10/0x10
[  193.675772][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.677451][ T9333]  ? trace_irq_enable.constprop.0+0xea/0x140
[  193.679594][ T9333]  ? __schedule+0x3d6c/0x5ad0
[  193.681283][ T9333]  ? do_user_addr_fault+0x60d/0x13f0
[  193.683069][ T9333]  ? page_ext_get+0x34/0x310
[  193.684659][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.686284][ T9333]  ? lock_release+0x4e2/0x6f0
[  193.687887][ T9333]  ? is_bpf_text_address+0x8a/0x1a0
[  193.689672][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.691355][ T9333]  ? lock_release+0x4e2/0x6f0
[  193.692969][ T9333]  ? is_bpf_text_address+0x8a/0x1a0
[  193.694735][ T9333]  ? __pfx_lock_release+0x10/0x10
[  193.696482][ T9333]  ? trace_lock_acquire+0x14e/0x1f0
[  193.698263][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.699902][ T9333]  ? lock_release+0x4e2/0x6f0
[  193.701517][ T9333]  ? is_bpf_text_address+0x8a/0x1a0
[  193.703287][ T9333]  ? __pfx_lock_release+0x10/0x10
[  193.705016][ T9333]  ? trace_lock_acquire+0x14e/0x1f0
[  193.706758][ T9333]  ? is_bpf_text_address+0x30/0x1a0
[  193.708523][ T9333]  ? lock_acquire+0x2f/0xb0
[  193.710055][ T9333]  ? is_bpf_text_address+0x30/0x1a0
[  193.711830][ T9333]  ? bpf_ksym_find+0x124/0x1c0
[  193.713462][ T9333]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  193.715538][ T9333]  ? is_bpf_text_address+0x94/0x1a0
[  193.717303][ T9333]  ? kernel_text_address+0x8d/0x100
[  193.719061][ T9333]  ? __kernel_text_address+0xd/0x40
[  193.720918][ T9333]  kvm_vm_ioctl+0x1a87/0x3df0
[  193.723056][ T9333]  ? stack_trace_save+0x95/0xd0
[  193.724819][ T9333]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  193.726559][ T9333]  ? __pfx___schedule+0x10/0x10
[  193.728228][ T9333]  ? stack_depot_save_flags+0x28/0x9e0
[  193.730073][ T9333]  ? kasan_save_stack+0x42/0x60
[  193.731782][ T9333]  ? kasan_save_stack+0x33/0x60
[  193.733429][ T9333]  ? kasan_save_track+0x14/0x30
[  193.735154][ T9333]  ? kasan_save_free_info+0x3b/0x60
[  193.736935][ T9333]  ? __kasan_slab_free+0x51/0x70
[  193.738674][ T9333]  ? kfree+0x14f/0x4b0
[  193.740081][ T9333]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  193.741968][ T9333]  ? security_file_ioctl_compat+0x9b/0x240
[  193.743959][ T9333]  ? __do_compat_sys_ioctl+0x4e/0x2c0
[  193.745780][ T9333]  ? __do_fast_syscall_32+0x73/0x120
[  193.747585][ T9333]  ? do_fast_syscall_32+0x32/0x80
[  193.749311][ T9333]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.751557][ T9333]  ? kvm_arch_vm_compat_ioctl+0x2d1/0x480
[  193.753519][ T9333]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  193.755662][ T9333]  ? rcu_is_watching+0x12/0xc0
[  193.757294][ T9333]  ? lock_release+0x4e2/0x6f0
[  193.758993][ T9333]  ? tomoyo_path_number_perm+0x298/0x5b0
[  193.760899][ T9333]  ? __pfx_lock_release+0x10/0x10
[  193.762657][ T9333]  ? kfree+0x14f/0x4b0
[  193.764107][ T9333]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  193.766169][ T9333]  ? tomoyo_path_number_perm+0x190/0x5b0
[  193.768139][ T9333]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  193.770187][ T9333]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  193.772228][ T9333]  ? do_vfs_ioctl+0x513/0x1950
[  193.773911][ T9333]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  193.775640][ T9333]  ? preempt_count_add+0x76/0x150
[  193.777367][ T9333]  kvm_vm_compat_ioctl+0x399/0x440
[  193.779141][ T9333]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  193.781057][ T9333]  ? __pfx_lock_release+0x10/0x10
[  193.782823][ T9333]  ? trace_lock_acquire+0x14e/0x1f0
[  193.784713][ T9333]  ? __fget_files+0x40/0x3a0
[  193.786343][ T9333]  ? __fget_files+0x206/0x3a0
[  193.788168][ T9333]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  193.790127][ T9333]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  193.792033][ T9333]  __do_fast_syscall_32+0x73/0x120
[  193.793826][ T9333]  do_fast_syscall_32+0x32/0x80
[  193.795697][ T9333]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.797915][ T9333] RIP: 0023:0xf7fd8579
[  193.799347][ T9333] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.805620][ T9333] RSP: 002b:00000000f510555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  193.808367][ T9333] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000ae60
[  193.811056][ T9333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  193.813894][ T9333] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.816706][ T9333] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  193.819536][ T9333] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.822335][ T9333]  </TASK>
[  193.885992][ T9340] netlink: 4 bytes leftover after parsing attributes in process `syz.3.953'.
[  194.479592][   T62] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  194.575674][  T832] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  194.591446][   T56] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  194.639742][   T62] usb 5-1: Using ep0 maxpacket: 8
[  194.643001][   T62] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  194.646746][   T62] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  194.650036][   T62] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  194.654289][   T62] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  194.658484][   T62] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  194.662545][   T62] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.673603][   T62] hub 5-1:1.0: bad descriptor, ignoring hub
[  194.675795][   T62] hub 5-1:1.0: probe with driver hub failed with error -5
[  194.678534][   T62] cdc_wdm 5-1:1.0: skipping garbage
[  194.680538][   T62] cdc_wdm 5-1:1.0: skipping garbage
[  194.683396][   T62] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  194.685582][   T62] cdc_wdm 5-1:1.0: Unknown control protocol
[  194.746505][   T56] usb 8-1: Using ep0 maxpacket: 8
[  194.746703][  T832] usb 6-1: Using ep0 maxpacket: 8
[  194.749730][   T56] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  194.751443][  T832] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  194.753914][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  194.756996][  T832] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  194.760782][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  194.764046][  T832] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  194.767536][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  194.771483][  T832] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  194.775539][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  194.779531][  T832] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.782228][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.786847][  T832] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  194.793307][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.800049][   T56] usbtmc 8-1:16.0: bulk endpoints not found
[  195.024206][  T832] usb 6-1: usb_control_msg returned -32
[  195.026260][  T832] usbtmc 6-1:16.0: can't read capabilities
[  195.164962][   T62] usb 5-1: USB disconnect, device number 24
[  197.309356][   T62] usb 6-1: USB disconnect, device number 22
[  197.329010][ T9392] netlink: 4 bytes leftover after parsing attributes in process `syz.1.969'.
[  197.353274][   T56] usb 8-1: USB disconnect, device number 20
[  197.908964][   T56] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  198.079887][   T56] usb 8-1: Using ep0 maxpacket: 8
[  198.083715][   T56] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  198.087558][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  198.091597][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  198.095258][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  198.100057][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  198.103517][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.109057][   T56] usbtmc 8-1:16.0: bulk endpoints not found
[  198.208090][ T1329] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  198.368346][ T1329] usb 5-1: Using ep0 maxpacket: 8
[  198.371807][ T1329] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  198.375062][ T1329] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  198.378035][ T1329] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  198.380970][ T1329] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  198.384367][ T1329] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  198.386763][ T1329] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.390996][ T1329] usbtmc 5-1:16.0: bulk endpoints not found
[  199.096526][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  200.338565][ T9431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.981'.
[  200.921958][ T1329] usb 8-1: USB disconnect, device number 21
[  200.933504][   T56] usb 5-1: USB disconnect, device number 25
[  201.184934][ T9463] input: syz0 as /devices/virtual/input/input17
[  201.376892][ T9469] virtio-fs: tag </dev/sr0> not found
[  201.393095][ T9470] virtio-fs: tag </dev/sr0> not found
[  201.466844][   T56] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  201.637785][   T56] usb 5-1: Using ep0 maxpacket: 8
[  201.642118][   T56] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  201.645566][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  201.648949][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  201.652371][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  201.656306][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  201.660966][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.669680][   T56] usbtmc 5-1:16.0: bulk endpoints not found
[  201.958361][   T56] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  202.118642][   T56] usb 6-1: Using ep0 maxpacket: 8
[  202.123089][   T56] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  202.127893][   T56] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  202.131109][   T56] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  202.133643][   T56] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  202.137033][   T56] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  202.139875][   T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.144342][   T56] usbtmc 6-1:16.0: bulk endpoints not found
[  202.232113][ T9481] autofs: Unknown parameter '/dev/nvme-fabrics'
[  202.261149][ T9483] IPv4: Oversized IP packet from 172.20.20.24
[  202.263053][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  202.264788][    C2] IPv4: Oversized IP packet from 172.20.20.24
[  203.276428][ T9496] FAULT_INJECTION: forcing a failure.
[  203.276428][ T9496] name failslab, interval 1, probability 0, space 0, times 0
[  203.279854][ T9496] CPU: 2 UID: 0 PID: 9496 Comm: syz.3.1002 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  203.283409][ T9496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.286223][ T9496] Call Trace:
[  203.287328][ T9496]  <TASK>
[  203.288153][ T9496]  dump_stack_lvl+0x16c/0x1f0
[  203.289420][ T9496]  should_fail_ex+0x497/0x5b0
[  203.290670][ T9496]  ? fs_reclaim_acquire+0xae/0x150
[  203.292066][ T9496]  should_failslab+0xc2/0x120
[  203.293330][ T9496]  __kmalloc_cache_noprof+0x68/0x420
[  203.294716][ T9496]  ? kobject_init_and_add+0x124/0x190
[  203.296136][ T9496]  kobject_uevent_env+0x265/0x1670
[  203.297495][ T9496]  rpc_sysfs_xprt_setup+0x208/0x2f0
[  203.299248][ T9496]  xprt_switch_alloc+0x2b8/0x3a0
[  203.301035][ T9496]  rpc_create_xprt+0x2ae/0x410
[  203.302719][ T9496]  rpc_create+0x454/0x7e0
[  203.304235][ T9496]  ? __pfx_rpc_create+0x10/0x10
[  203.305894][ T9496]  ? __mutex_trylock_common+0xea/0x250
[  203.307782][ T9496]  ? rcu_is_watching+0x12/0xc0
[  203.309448][ T9496]  ? __pfx___mutex_trylock_common+0x10/0x10
[  203.311563][ T9496]  ? rpcb_create_local+0x100/0x270
[  203.313378][ T9496]  ? rcu_is_watching+0x12/0xc0
[  203.315117][ T9496]  rpcb_create_af_local+0x10d/0x300
[  203.317012][ T9496]  ? __pfx_rpcb_create_af_local+0x10/0x10
[  203.319089][ T9496]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  203.320906][ T9496]  ? lock_acquire+0x2f/0xb0
[  203.322108][ T9496]  ? rpcb_create_local+0x148/0x270
[  203.323352][ T9496]  rpcb_create_local+0x1ee/0x270
[  203.324663][ T9496]  svc_bind+0x1e8/0x260
[  203.325742][ T9496]  nfsd_create_serv+0x32c/0x510
[  203.326999][ T9496]  ? __pfx_nfsd_create_serv+0x10/0x10
[  203.328458][ T9496]  ? __nla_validate_parse+0x605/0x2b10
[  203.329889][ T9496]  nfsd_nl_listener_set_doit+0xeb/0x1b40
[  203.331828][ T9496]  ? __pfx___nla_validate_parse+0x10/0x10
[  203.333313][ T9496]  ? rcu_is_watching+0x12/0xc0
[  203.334561][ T9496]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  203.336177][ T9496]  ? __nla_parse+0x40/0x60
[  203.337351][ T9496]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  203.339523][ T9496]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  203.341856][ T9496]  genl_family_rcv_msg_doit+0x202/0x2f0
[  203.343735][ T9496]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  203.345877][ T9496]  ? __pfx_stack_trace_save+0x10/0x10
[  203.347812][ T9496]  ? genl_get_cmd+0x195/0x580
[  203.349333][ T9496]  ? bpf_lsm_capable+0x9/0x10
[  203.350922][ T9496]  ? security_capable+0x7e/0x260
[  203.352624][ T9496]  genl_rcv_msg+0x565/0x800
[  203.354318][ T9496]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.356198][ T9496]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  203.358473][ T9496]  netlink_rcv_skb+0x165/0x410
[  203.360083][ T9496]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.361468][ T9496]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  203.363238][ T9496]  ? down_read+0xc9/0x330
[  203.364844][ T9496]  ? __pfx_down_read+0x10/0x10
[  203.366570][ T9496]  ? netlink_deliver_tap+0x1ae/0xca0
[  203.368532][ T9496]  genl_rcv+0x28/0x40
[  203.369990][ T9496]  netlink_unicast+0x53c/0x7f0
[  203.371396][ T9496]  ? __pfx_netlink_unicast+0x10/0x10
[  203.372797][ T9496]  ? __phys_addr_symbol+0x30/0x80
[  203.374104][ T9496]  ? __check_object_size+0x488/0x710
[  203.375509][ T9496]  netlink_sendmsg+0x8b8/0xd70
[  203.376834][ T9496]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.378471][ T9496]  ____sys_sendmsg+0x9ae/0xb40
[  203.380115][ T9496]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.381598][ T9496]  ? get_compat_msghdr+0x11b/0x170
[  203.383098][ T9496]  ? rcu_is_watching+0x12/0xc0
[  203.384375][ T9496]  ? lock_release+0x4e2/0x6f0
[  203.385716][ T9496]  ? get_pid_task+0xfc/0x250
[  203.386840][ T9496]  ___sys_sendmsg+0x135/0x1e0
[  203.388112][ T9496]  ? get_pid_task+0x35/0x250
[  203.389338][ T9496]  ? __pfx____sys_sendmsg+0x10/0x10
[  203.390718][ T9496]  ? lock_release+0x4e2/0x6f0
[  203.392023][ T9496]  ? __pfx_lock_release+0x10/0x10
[  203.393370][ T9496]  ? trace_lock_acquire+0x14e/0x1f0
[  203.395124][ T9496]  ? __fget_files+0x206/0x3a0
[  203.396494][ T9496]  __sys_sendmsg+0x16e/0x220
[  203.397727][ T9496]  ? __pfx___sys_sendmsg+0x10/0x10
[  203.399383][ T9496]  ? rcu_is_watching+0x12/0xc0
[  203.400921][ T9496]  __do_fast_syscall_32+0x73/0x120
[  203.402281][ T9496]  do_fast_syscall_32+0x32/0x80
[  203.403604][ T9496]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  203.405266][ T9496] RIP: 0023:0xf7f82579
[  203.406334][ T9496] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.411917][ T9496] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  203.414138][ T9496] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  203.416246][ T9496] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  203.418770][ T9496] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.421298][ T9496] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.424013][ T9496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.426677][ T9496]  </TASK>
[  204.212400][   T56] usb 5-1: USB disconnect, device number 26
[  204.679073][   T56] usb 6-1: USB disconnect, device number 23
[  211.189899][ T9504] capability: warning: `syz.1.1004' uses deprecated v2 capabilities in a way that may be insecure
[  211.210230][ T9507] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1006'.
[  211.218094][ T9499] netlink: 'syz.0.1003': attribute type 1 has an invalid length.
[  211.220220][ T9499] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1003'.
[  211.270898][ T9507] binder: 9501:9507 ioctl c0306201 20000400 returned -14
[  212.395521][ T9540] 9pnet_fd: Insufficient options for proto=fd
[  212.665468][ T9550] fuse: Bad value for 'group_id'
[  212.666871][ T9550] fuse: Bad value for 'group_id'
[  212.671002][ T9553] FAULT_INJECTION: forcing a failure.
[  212.671002][ T9553] name failslab, interval 1, probability 0, space 0, times 0
[  212.674826][ T9553] CPU: 3 UID: 0 PID: 9553 Comm: syz.3.1014 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  212.678651][ T9553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.682346][ T9553] Call Trace:
[  212.683528][ T9553]  <TASK>
[  212.684572][ T9553]  dump_stack_lvl+0x16c/0x1f0
[  212.686228][ T9553]  should_fail_ex+0x497/0x5b0
[  212.687902][ T9553]  ? fs_reclaim_acquire+0xae/0x150
[  212.689696][ T9553]  should_failslab+0xc2/0x120
[  212.691394][ T9553]  __kmalloc_cache_noprof+0x68/0x420
[  212.693258][ T9553]  ? kasan_save_track+0x14/0x30
[  212.694961][ T9553]  kvm_dev_ioctl+0xa44/0x1aa0
[  212.696630][ T9553]  ? trace_lock_acquire+0x14e/0x1f0
[  212.698470][ T9553]  ? __fget_files+0x40/0x3a0
[  212.700108][ T9553]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  212.701923][ T9553]  ? __fget_files+0x206/0x3a0
[  212.703577][ T9553]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  212.705369][ T9553]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  212.707206][ T9553]  __do_fast_syscall_32+0x73/0x120
[  212.709010][ T9553]  do_fast_syscall_32+0x32/0x80
[  212.710718][ T9553]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.712943][ T9553] RIP: 0023:0xf7f82579
[  212.714357][ T9553] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.720808][ T9553] RSP: 002b:00000000f50b555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  212.723723][ T9553] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ae01
[  212.726424][ T9553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.729144][ T9553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.731916][ T9553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.734651][ T9553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.737398][ T9553]  </TASK>
[  212.738572][    C3] vkms_vblank_simulate: vblank timer overrun
[  212.867672][ T1329] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  213.027857][ T1329] usb 6-1: Using ep0 maxpacket: 8
[  213.031151][ T1329] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  213.034956][ T1329] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  213.038649][ T1329] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  213.042215][ T1329] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  213.046890][ T1329] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  213.050272][ T1329] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.055652][ T1329] usbtmc 6-1:16.0: bulk endpoints not found
[  213.818581][ T5977] IPVS: starting estimator thread 0...
[  213.925360][ T9579] IPVS: using max 70 ests per chain, 168000 per kthread
[  214.931738][ T9607] FAULT_INJECTION: forcing a failure.
[  214.931738][ T9607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.935592][ T9607] CPU: 2 UID: 0 PID: 9607 Comm: syz.2.1033 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  214.938953][ T9607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.942474][ T9607] Call Trace:
[  214.943579][ T9607]  <TASK>
[  214.944542][ T9607]  dump_stack_lvl+0x16c/0x1f0
[  214.946080][ T9607]  should_fail_ex+0x497/0x5b0
[  214.947613][ T9607]  _copy_from_user+0x2e/0xd0
[  214.949117][ T9607]  input_event_from_user+0x22d/0x3b0
[  214.950781][ T9607]  ? __pfx_input_event_from_user+0x10/0x10
[  214.952805][ T9607]  ? input_inject_event+0x193/0x370
[  214.954584][ T9607]  evdev_write+0x377/0x750
[  214.955821][ T9607]  ? __pfx_evdev_write+0x10/0x10
[  214.957088][ T9607]  ? bpf_lsm_file_permission+0x9/0x10
[  214.958480][ T9607]  ? security_file_permission+0x71/0x210
[  214.960075][ T9607]  ? __pfx_evdev_write+0x10/0x10
[  214.961518][ T9607]  vfs_write+0x24c/0x1150
[  214.962676][ T9607]  ? __fget_files+0x1fc/0x3a0
[  214.964104][ T9607]  ? __pfx_lock_release+0x10/0x10
[  214.965545][ T9607]  ? __pfx_vfs_write+0x10/0x10
[  214.966911][ T9607]  ? __fget_files+0x40/0x3a0
[  214.968103][ T9607]  ? lock_acquire+0x2f/0xb0
[  214.969428][ T9607]  ? __fget_files+0x40/0x3a0
[  214.970652][ T9607]  ? __fget_files+0x206/0x3a0
[  214.971996][ T9607]  ksys_write+0x207/0x250
[  214.973142][ T9607]  ? __pfx_ksys_write+0x10/0x10
[  214.974392][ T9607]  ? rcu_is_watching+0x12/0xc0
[  214.975633][ T9607]  __do_fast_syscall_32+0x73/0x120
[  214.976930][ T9607]  do_fast_syscall_32+0x32/0x80
[  214.978296][ T9607]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  214.980009][ T9607] RIP: 0023:0xf7fd8579
[  214.981118][ T9607] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  214.986322][ T9607] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  214.988570][ T9607] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[  214.990780][ T9607] RDX: 0000000000002250 RSI: 0000000000000000 RDI: 0000000000000000
[  214.993350][ T9607] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  214.995890][ T9607] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  214.998591][ T9607] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  215.001384][ T9607]  </TASK>
[  215.037623][   T56] usb 6-1: USB disconnect, device number 24
[  215.226629][ T9627] netlink: 'syz.3.1039': attribute type 5 has an invalid length.
[  215.245187][ T9627] veth0_to_batadv: entered promiscuous mode
[  215.248948][ T9626] veth0_to_batadv: left promiscuous mode
[  215.401204][ T9638] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1042'.
[  215.670593][ T9657] bridge0: port 3(hsr_slave_1) entered blocking state
[  215.672949][ T9657] bridge0: port 3(hsr_slave_1) entered disabled state
[  215.675219][ T9657] hsr_slave_1: entered allmulticast mode
[  215.677884][ T9657] hsr_slave_1: left allmulticast mode
[  215.792320][ T5977] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  215.957460][ T5977] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  215.961350][ T5977] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 32
[  215.964574][ T5977] usb 6-1: config 1 interface 0 altsetting 64 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  215.966309][   T56] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  215.969370][ T5977] usb 6-1: config 1 interface 0 has no altsetting 0
[  215.975251][ T5977] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  215.981039][ T5977] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  215.983962][ T5977] usb 6-1: SerialNumber: syz
[  216.137290][   T56] usb 5-1: Using ep0 maxpacket: 8
[  216.143697][   T56] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  216.148940][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  216.152495][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  216.156021][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  216.160933][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  216.164202][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.216847][ T5977] usb 6-1: bad CDC descriptors
[  216.247814][   T56] usbtmc 5-1:16.0: bulk endpoints not found
[  216.536376][   T64] usb 6-1: USB disconnect, device number 25
[  216.829371][ T9671] dccp_close: ABORT with 36 bytes unread
[  217.615613][ T5977] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  217.771939][ T5977] usb 6-1: Using ep0 maxpacket: 8
[  217.775438][ T5977] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  217.779159][ T5977] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  217.782785][ T5977] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  217.786202][ T5977] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  217.790743][ T5977] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  217.794093][ T5977] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.799579][ T5977] usbtmc 6-1:16.0: bulk endpoints not found
[  218.669869][ T9694] FAULT_INJECTION: forcing a failure.
[  218.669869][ T9694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  218.674332][ T9694] CPU: 2 UID: 0 PID: 9694 Comm: syz.3.1057 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  218.678217][ T9694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.681919][ T9694] Call Trace:
[  218.683099][ T9694]  <TASK>
[  218.684171][ T9694]  dump_stack_lvl+0x16c/0x1f0
[  218.685833][ T9694]  should_fail_ex+0x497/0x5b0
[  218.687035][ T9694]  _copy_from_user+0x2e/0xd0
[  218.688543][ T9694]  kstrtouint_from_user+0xd7/0x1c0
[  218.690053][   T56] usb 5-1: USB disconnect, device number 27
[  218.690204][ T9694]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  218.694139][ T9694]  ? __mutex_trylock_common+0xea/0x250
[  218.696014][ T9694]  proc_fail_nth_write+0x84/0x250
[  218.697778][ T9694]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  218.699797][ T9694]  ? ksys_write+0x12b/0x250
[  218.701438][ T9694]  ? lock_acquire+0x2f/0xb0
[  218.703087][ T9694]  ? ksys_write+0x12b/0x250
[  218.704745][ T9694]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  218.706186][ T9694]  vfs_write+0x24c/0x1150
[  218.707324][ T9694]  ? __fget_files+0x1fc/0x3a0
[  218.708544][ T9694]  ? __pfx___mutex_lock+0x10/0x10
[  218.709844][ T9694]  ? __pfx_vfs_write+0x10/0x10
[  218.711122][ T9694]  ? __fget_files+0x206/0x3a0
[  218.712450][ T9694]  ksys_write+0x12b/0x250
[  218.713571][ T9694]  ? __pfx_ksys_write+0x10/0x10
[  218.714828][ T9694]  ? rcu_is_watching+0x12/0xc0
[  218.716071][ T9694]  __do_fast_syscall_32+0x73/0x120
[  218.717379][ T9694]  do_fast_syscall_32+0x32/0x80
[  218.718662][ T9694]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  218.720324][ T9694] RIP: 0023:0xf7f82579
[  218.721469][ T9694] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  218.727916][ T9694] RSP: 002b:00000000f50d6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  218.730455][ T9694] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50d6620
[  218.733178][ T9694] RDX: 0000000000000001 RSI: 00000000f7413ff4 RDI: 0000000000000000
[  218.735809][ T9694] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  218.738277][ T9694] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  218.740718][ T9694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  218.743227][ T9694]  </TASK>
[  219.546091][ T9719] netlink: 'syz.3.1065': attribute type 29 has an invalid length.
[  219.549942][ T9719] netlink: 'syz.3.1065': attribute type 29 has an invalid length.
[  219.553620][ T9719] netlink: 'syz.3.1065': attribute type 29 has an invalid length.
[  220.037174][   T56] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  220.208156][   T56] usb 8-1: Using ep0 maxpacket: 8
[  220.214176][   T56] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  220.217942][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  220.221586][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  220.225242][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  220.230067][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  220.233510][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.248974][   T56] usbtmc 8-1:16.0: bulk endpoints not found
[  220.399324][   T56] usb 6-1: USB disconnect, device number 26
[  220.489794][ T9735] smc: net device wg0 applied user defined pnetid SYZ0
[  221.390704][ T9749] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1074'.
[  221.394076][ T9749] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1074'.
[  222.698045][   T56] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  222.732532][   T39] audit: type=1804 audit(1734888730.220:169): pid=9769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1080" name="/newroot/257/bus/bus" dev="overlay" ino=1422 res=1 errno=0
[  222.821543][ T9443] usb 8-1: USB disconnect, device number 22
[  222.869311][   T56] usb 5-1: Using ep0 maxpacket: 8
[  222.872960][   T56] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  222.873455][ T9773] Device name cannot be null; rc = [-22]
[  222.876449][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  222.876472][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  222.887745][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  222.893325][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  222.897124][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.906456][   T56] usbtmc 5-1:16.0: bulk endpoints not found
[  222.922078][ T1329] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  223.093047][ T1329] usb 6-1: Using ep0 maxpacket: 8
[  223.096184][ T1329] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  223.099894][ T1329] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  223.103488][ T1329] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  223.107275][ T1329] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  223.111944][ T1329] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  223.115267][ T1329] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.121420][ T1329] usbtmc 6-1:16.0: bulk endpoints not found
[  224.616409][   T64] libceph: connect (1)[c::]:6789 error -101
[  224.618713][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  224.672194][   T64] libceph: connect (1)[b::]:6789 error -101
[  224.675169][   T64] libceph: mon0 (1)[b::]:6789 connect error
[  224.899181][   T64] libceph: connect (1)[c::]:6789 error -101
[  224.901493][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  224.963217][   T64] libceph: connect (1)[b::]:6789 error -101
[  224.965469][   T64] libceph: mon0 (1)[b::]:6789 connect error
[  225.401928][ T1329] usb 5-1: USB disconnect, device number 28
[  225.444435][   T64] libceph: connect (1)[c::]:6789 error -101
[  225.446694][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  225.489688][ T9785] ceph: No mds server is up or the cluster is laggy
[  225.492351][ T9788] ceph: No mds server is up or the cluster is laggy
[  225.741998][ T1329] usb 6-1: USB disconnect, device number 27
[  226.322108][ T9818] netlink: 'syz.1.1093': attribute type 1 has an invalid length.
[  226.324973][ T9818] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1093'.
[  226.464748][ T9826] vivid-003: disconnect
[  227.154668][ T9816] vivid-003: reconnect
[  227.211388][ T9864] FAULT_INJECTION: forcing a failure.
[  227.211388][ T9864] name failslab, interval 1, probability 0, space 0, times 0
[  227.216355][ T9864] CPU: 2 UID: 0 PID: 9864 Comm: syz.1.1098 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  227.220234][ T9864] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.224063][ T9864] Call Trace:
[  227.225318][ T9864]  <TASK>
[  227.226431][ T9864]  dump_stack_lvl+0x16c/0x1f0
[  227.228210][ T9864]  should_fail_ex+0x497/0x5b0
[  227.229874][ T9864]  ? fs_reclaim_acquire+0xae/0x150
[  227.231835][ T9864]  should_failslab+0xc2/0x120
[  227.233587][ T9864]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  227.235581][ T9864]  ? skb_clone+0x190/0x3f0
[  227.237278][ T9864]  skb_clone+0x190/0x3f0
[  227.238871][ T9864]  nfnetlink_rcv_batch+0x1d9/0x24e0
[  227.240852][ T9864]  ? trace_irq_enable.constprop.0+0xea/0x140
[  227.243076][ T9864]  ? kmem_cache_free+0x152/0x4c0
[  227.244968][ T9864]  ? kfree_skbmem+0x1a4/0x1f0
[  227.246740][ T9864]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  227.248862][ T9864]  ? __pfx_lock_release+0x10/0x10
[  227.250717][ T9864]  ? rcu_is_watching+0x12/0xc0
[  227.252513][ T9864]  ? trace_irq_enable.constprop.0+0xea/0x140
[  227.254749][ T9864]  ? __pfx___dev_queue_xmit+0x10/0x10
[  227.256722][ T9864]  ? __nla_validate_parse+0x605/0x2b10
[  227.258743][ T9864]  ? __pfx_aa_get_newest_label+0x10/0x10
[  227.260857][ T9864]  ? __pfx___nla_validate_parse+0x10/0x10
[  227.263043][ T9864]  ? apparmor_capable+0x114/0x1d0
[  227.264824][ T9864]  ? __nla_parse+0x40/0x60
[  227.266373][ T9864]  nfnetlink_rcv+0x3c3/0x430
[  227.268048][ T9864]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  227.269880][ T9864]  netlink_unicast+0x53c/0x7f0
[  227.271678][ T9864]  ? __pfx_netlink_unicast+0x10/0x10
[  227.273580][ T9864]  ? __phys_addr_symbol+0x30/0x80
[  227.275406][ T9864]  ? __check_object_size+0x488/0x710
[  227.277320][ T9864]  netlink_sendmsg+0x8b8/0xd70
[  227.279044][ T9864]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.280953][ T9864]  ____sys_sendmsg+0x9ae/0xb40
[  227.282627][ T9864]  ? __pfx_____sys_sendmsg+0x10/0x10
[  227.284454][ T9864]  ? get_compat_msghdr+0x11b/0x170
[  227.286241][ T9864]  ? rcu_is_watching+0x12/0xc0
[  227.287913][ T9864]  ? lock_release+0x4e2/0x6f0
[  227.289633][ T9864]  ? get_pid_task+0xfc/0x250
[  227.291389][ T9864]  ___sys_sendmsg+0x135/0x1e0
[  227.293131][ T9864]  ? get_pid_task+0x35/0x250
[  227.294835][ T9864]  ? __pfx____sys_sendmsg+0x10/0x10
[  227.297332][ T9864]  ? lock_release+0x4e2/0x6f0
[  227.299120][ T9864]  ? __pfx_lock_release+0x10/0x10
[  227.301605][ T9864]  ? trace_lock_acquire+0x14e/0x1f0
[  227.303581][ T9864]  ? __fget_files+0x206/0x3a0
[  227.305313][ T9864]  __sys_sendmsg+0x16e/0x220
[  227.306931][ T9864]  ? __pfx___sys_sendmsg+0x10/0x10
[  227.308759][ T9864]  ? rcu_is_watching+0x12/0xc0
[  227.310465][ T9864]  __do_fast_syscall_32+0x73/0x120
[  227.312325][ T9864]  do_fast_syscall_32+0x32/0x80
[  227.314040][ T9864]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.316268][ T9864] RIP: 0023:0xf7f5f579
[  227.317793][ T9864] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.325167][ T9864] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  227.328270][ T9864] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  227.331206][ T9864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  227.334182][ T9864] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  227.337044][ T9864] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.339960][ T9864] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.342818][ T9864]  </TASK>
[  227.389897][ T9869] 9pnet_fd: Insufficient options for proto=fd
[  227.678127][ T1329] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  227.858492][ T1329] usb 8-1: Using ep0 maxpacket: 8
[  227.861675][ T1329] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  227.865459][ T1329] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  227.868920][ T1329] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  227.872333][ T1329] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  227.876813][ T1329] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  227.888951][ T1329] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.894789][ T1329] usbtmc 8-1:16.0: bulk endpoints not found
[  228.673986][ T9892] netlink: 'syz.1.1107': attribute type 34 has an invalid length.
[  228.789188][ T9901] FAULT_INJECTION: forcing a failure.
[  228.789188][ T9901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  228.793822][ T9901] CPU: 2 UID: 0 PID: 9901 Comm: syz.1.1111 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  228.797363][ T9901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  228.801247][ T9901] Call Trace:
[  228.802456][ T9901]  <TASK>
[  228.803542][ T9901]  dump_stack_lvl+0x16c/0x1f0
[  228.805248][ T9901]  should_fail_ex+0x497/0x5b0
[  228.806967][ T9901]  _copy_from_iter+0x29b/0x1400
[  228.808691][ T9901]  ? trace_lock_acquire+0x14e/0x1f0
[  228.810476][ T9901]  ? __alloc_skb+0x200/0x380
[  228.812155][ T9901]  ? __virt_addr_valid+0x1a4/0x590
[  228.813961][ T9901]  ? __pfx__copy_from_iter+0x10/0x10
[  228.815813][ T9901]  ? __virt_addr_valid+0x1a4/0x590
[  228.817615][ T9901]  ? __virt_addr_valid+0x5e/0x590
[  228.819391][ T9901]  ? __phys_addr_symbol+0x30/0x80
[  228.821237][ T9901]  ? __check_object_size+0x488/0x710
[  228.823141][ T9901]  netlink_sendmsg+0x813/0xd70
[  228.824882][ T9901]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.826771][ T9901]  ____sys_sendmsg+0x9ae/0xb40
[  228.828508][ T9901]  ? __pfx_____sys_sendmsg+0x10/0x10
[  228.830409][ T9901]  ? get_compat_msghdr+0x11b/0x170
[  228.832258][ T9901]  ? rcu_is_watching+0x12/0xc0
[  228.833986][ T9901]  ? lock_release+0x4e2/0x6f0
[  228.835702][ T9901]  ? get_pid_task+0xfc/0x250
[  228.837384][ T9901]  ___sys_sendmsg+0x135/0x1e0
[  228.839104][ T9901]  ? get_pid_task+0x35/0x250
[  228.840768][ T9901]  ? __pfx____sys_sendmsg+0x10/0x10
[  228.842732][ T9901]  ? lock_release+0x4e2/0x6f0
[  228.844395][ T9901]  ? __pfx_lock_release+0x10/0x10
[  228.846188][ T9901]  ? trace_lock_acquire+0x14e/0x1f0
[  228.848082][ T9901]  ? __fget_files+0x206/0x3a0
[  228.849779][ T9901]  __sys_sendmsg+0x16e/0x220
[  228.851455][ T9901]  ? __pfx___sys_sendmsg+0x10/0x10
[  228.853373][ T9901]  ? rcu_is_watching+0x12/0xc0
[  228.855155][ T9901]  __do_fast_syscall_32+0x73/0x120
[  228.857039][ T9901]  do_fast_syscall_32+0x32/0x80
[  228.858844][ T9901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  228.861101][ T9901] RIP: 0023:0xf7f5f579
[  228.862565][ T9901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  228.869326][ T9901] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  228.872297][ T9901] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020004340
[  228.875097][ T9901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  228.877896][ T9901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  228.880702][ T9901] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  228.883504][ T9901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  228.886341][ T9901]  </TASK>
[  230.440071][ T9443] usb 8-1: USB disconnect, device number 23
[  230.485740][ T9946] netlink: 'syz.0.1122': attribute type 1 has an invalid length.
[  230.627489][ T1329] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  230.651171][ T9952] [U] 
[  230.652311][ T9952] [U] 
[  230.653283][ T9952] [U] 
[  230.654305][ T9952] [U] 
[  230.655337][ T9952] [U] 
[  230.656300][ T9952] [U] 
[  230.657284][ T9952] [U] 
[  230.658285][ T9952] [U] 
[  230.659438][ T9952] [U] 
[  230.660435][ T9952] [U] 
[  230.661418][ T9952] [U] 
[  230.662340][ T9952] [U] 
[  230.663376][ T9952] [U] 
[  230.664338][ T9952] [U] 
[  230.665321][ T9952] [U] 
[  230.666322][ T9952] [U] 
[  230.667328][ T9952] [U] 
[  230.668291][ T9952] [U] 
[  230.669237][ T9952] [U] 
[  230.670184][ T9952] [U] 
[  230.671182][ T9952] [U] 
[  230.672163][ T9952] [U] 
[  230.673376][ T9952] [U] 
[  230.674331][ T9952] [U] 
[  230.675415][ T9952] [U] 
[  230.676379][ T9952] [U] 
[  230.677325][ T9952] [U] 
[  230.678324][ T9952] [U] 
[  230.679412][ T9952] [U] 
[  230.680365][ T9952] [U] 
[  230.681355][ T9952] [U] 
[  230.682334][ T9952] [U] 
[  230.683359][ T9952] [U] 
[  230.684431][ T9952] [U] 
[  230.685379][ T9952] [U] 
[  230.686332][ T9952] [U] 
[  230.688023][ T9952] [U] 
[  230.688979][ T9952] [U] 
[  230.689954][ T9952] [U] 
[  230.690896][ T9952] [U] 
[  230.692045][ T9952] [U] 
[  230.693114][ T9952] [U] 
[  230.694180][ T9952] [U] 
[  230.695136][ T9952] [U] 
[  230.696117][ T9952] [U] 
[  230.697067][ T9952] [U] 
[  230.698081][ T9952] [U] 
[  230.699079][ T9952] [U] 
[  230.700165][ T9952] [U] 
[  230.701177][ T9952] [U] 
[  230.702113][ T9952] [U] 
[  230.703050][ T9952] [U] 
[  230.704149][ T9952] [U] 
[  230.705151][ T9952] [U] 
[  230.706116][ T9952] [U] 
[  230.706246][ T9953] netlink: 'syz.3.1123': attribute type 27 has an invalid length.
[  230.707079][ T9952] [U] 
[  230.707131][ T9952] [U] 
[  230.713141][ T9952] [U] 
[  230.714079][ T9952] [U] 
[  230.715028][ T9952] [U] 
[  230.716492][ T9952] [U] 
[  230.717547][ T9952] [U] 
[  230.718581][ T9952] [U] 
[  230.719579][ T9952] [U] 
[  230.720979][ T9952] [U] 
[  230.721971][ T9952] [U] 
[  230.722988][ T9952] [U] 
[  230.724025][ T9952] [U] 
[  230.726186][ T9952] [U] 
[  230.727160][ T9952] [U] 
[  230.728146][ T9952] [U] 
[  230.729084][ T9952] [U] 
[  230.730096][ T9952] [U] 
[  230.731042][ T9952] [U] 
[  230.732075][ T9952] [U] 
[  230.733016][ T9952] [U] 
[  230.734124][ T9952] [U] 
[  230.735083][ T9952] [U] 
[  230.736046][ T9952] [U] 
[  230.736986][ T9952] [U] 
[  230.738006][ T9952] [U] 
[  230.738955][ T9952] [U] 
[  230.739912][ T9952] [U] 
[  230.740903][ T9952] [U] 
[  230.741929][ T9952] [U] 
[  230.742901][ T9952] [U] 
[  230.743863][ T9952] [U] 
[  230.744827][ T9952] [U] 
[  230.746457][ T9952] [U] 
[  230.747436][ T9952] [U] 
[  230.748390][ T9952] [U] 
[  230.749349][ T9952] [U] 
[  230.750358][ T9952] [U] 
[  230.751341][ T9952] [U] 
[  230.752298][ T9952] [U] 
[  230.753251][ T9952] [U] 
[  230.754364][ T9952] [U] 
[  230.755346][ T9952] [U] 
[  230.756290][ T9952] [U] 
[  230.757125][ T9952] [U] 
[  230.762223][ T9952] [U] 
[  230.763205][ T9952] [U] 
[  230.764206][ T9952] [U] 
[  230.765213][ T9952] [U] 
[  230.772712][ T9952] [U] 
[  230.773692][ T9952] [U] 
[  230.774654][ T9952] [U] 
[  230.775626][ T9952] [U] 
[  230.781320][ T9953] syz_tun: left promiscuous mode
[  230.785198][ T9953] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.786348][ T9952] [U] 
[  230.787977][ T9953] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.788743][ T9952] [U] 
[  230.792215][ T9952] [U] 
[  230.793165][ T9952] [U] 
[  230.794171][ T9952] [U] 
[  230.795365][ T9952] [U] 
[  230.796404][ T9952] [U] 
[  230.797353][ T9952] [U] 
[  230.798434][ T9952] [U] 
[  230.799405][ T9952] [U] 
[  230.800356][ T9952] [U] 
[  230.801353][ T9952] [U] 
[  230.802343][ T9952] [U] 
[  230.803325][ T9952] [U] 
[  230.804270][ T9952] [U] 
[  230.805225][ T9952] [U] 
[  230.806247][ T9952] [U] 
[  230.807210][ T9952] [U] 
[  230.808167][ T9952] [U] 
[  230.887061][ T9953] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  230.892506][ T9953] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  230.929002][ T9953] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.932252][ T9953] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.935437][ T9953] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.939195][ T9953] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.951079][ T9953] bond1: left allmulticast mode
[  230.952943][ T9953] gretap1: left allmulticast mode
[  230.954806][ T9953] bond1: left promiscuous mode
[  230.956526][ T9953] gretap1: left promiscuous mode
[  230.963951][ T9953] vlan2: left promiscuous mode
[  230.965858][ T9953] vlan2: left allmulticast mode
[  230.985313][ T1139] BUG: sleeping function called from invalid context at net/core/dev.c:11403
[  230.985836][ T9954] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.988778][ T1139] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 1139, name: kworker/u32:8
[  230.994458][ T9954] 8021q: adding VLAN 0 to HW filter on device team0
[  230.998005][ T1139] preempt_count: 0, expected: 0
[  231.001343][ T1139] RCU nest depth: 1, expected: 0
[  231.003361][ T1139] INFO: lockdep is turned off.
[  231.005273][ T1139] CPU: 1 UID: 0 PID: 1139 Comm: kworker/u32:8 Not tainted 6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  231.009267][ T1139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.013267][ T1139] Workqueue: bond0 bond_mii_monitor
[  231.015191][ T1139] Call Trace:
[  231.016448][ T1139]  <TASK>
[  231.017544][ T1139]  dump_stack_lvl+0x16c/0x1f0
[  231.019308][ T1139]  __might_resched+0x3c0/0x5e0
[  231.021129][ T1139]  ? __pfx___might_resched+0x10/0x10
[  231.023081][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.024866][ T1139]  synchronize_net+0x1b/0x60
[  231.026604][ T1139]  dev_deactivate_many+0x2a1/0xb20
[  231.028507][ T1139]  dev_deactivate+0xf9/0x1c0
[  231.030236][ T1139]  ? __pfx_dev_deactivate+0x10/0x10
[  231.032102][ T1139]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.034158][ T1139]  linkwatch_do_dev+0x11e/0x160
[  231.035981][ T1139]  linkwatch_sync_dev+0x181/0x210
[  231.037882][ T1139]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  231.039988][ T1139]  ethtool_op_get_link+0x1d/0x70
[  231.041854][ T1139]  bond_check_dev_link+0x197/0x430
[  231.043886][ T1139]  ? __pfx_bond_check_dev_link+0x10/0x10
[  231.045890][ T1139]  ? debug_object_deactivate+0x1ef/0x370
[  231.048002][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.049838][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.051485][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.053283][ T1139]  bond_mii_monitor+0x3c1/0x2d90
[  231.055062][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.056754][ T1139]  ? __pfx_bond_mii_monitor+0x10/0x10
[  231.058664][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.060454][ T1139]  ? __schedule+0xe60/0x5ad0
[  231.062136][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.063885][ T1139]  ? process_one_work+0x8bb/0x1b30
[  231.065738][ T1139]  process_one_work+0x958/0x1b30
[  231.067564][ T1139]  ? __pfx_process_one_work+0x10/0x10
[  231.069539][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.071353][ T1139]  ? assign_work+0x1a0/0x250
[  231.073069][ T1139]  worker_thread+0x6c8/0xf00
[  231.074763][ T1139]  ? __pfx_worker_thread+0x10/0x10
[  231.076610][ T1139]  kthread+0x2c1/0x3a0
[  231.078094][ T1139]  ? _raw_spin_unlock_irq+0x23/0x50
[  231.080009][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.081718][ T1139]  ret_from_fork+0x45/0x80
[  231.083410][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.085141][ T1139]  ret_from_fork_asm+0x1a/0x30
[  231.086924][ T1139]  </TASK>
[  231.088670][ T1139] ------------[ cut here ]------------
[  231.090501][ T1139] Voluntary context switch within RCU read-side critical section!
[  231.090590][ T1139] WARNING: CPU: 1 PID: 1139 at kernel/rcu/tree_plugin.h:331 rcu_note_context_switch+0xc5c/0x1ae0
[  231.097287][ T1139] Modules linked in:
[  231.098761][ T1139] CPU: 1 UID: 0 PID: 1139 Comm: kworker/u32:8 Tainted: G        W          6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  231.103084][ T1139] Tainted: [W]=WARN
[  231.104379][ T1139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.107983][ T1139] Workqueue: bond0 bond_mii_monitor
[  231.109740][ T1139] RIP: 0010:rcu_note_context_switch+0xc5c/0x1ae0
[  231.111959][ T1139] Code: 7a 00 4c 8b 54 24 30 48 8b 44 24 28 8b 4c 24 10 e9 c6 03 00 00 c6 05 2f a0 84 0e 01 90 48 c7 c7 c0 a4 4e 8b e8 65 2e d9 ff 90 <0f> 0b 90 90 e9 a8 f4 ff ff 38 d0 7f 08 84 c0 0f 85 2b 08 00 00 80
[  231.118479][ T1139] RSP: 0018:ffffc9000666f390 EFLAGS: 00010082
[  231.120791][ T1139] RAX: 0000000000000000 RBX: ffff88802b53fcc0 RCX: ffffffff815a1729
[  231.123703][ T1139] RDX: ffff8880215f2440 RSI: ffffffff815a1736 RDI: 0000000000000001
[  231.126569][ T1139] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  231.129368][ T1139] R10: 0000000000000000 R11: 000000002d2d2d2d R12: ffff8880215f2440
[  231.132633][ T1139] R13: ffff8880215f2440 R14: ffff8880215f2440 R15: ffff88802b53ed00
[  231.135469][ T1139] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  231.138567][ T1139] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  231.140919][ T1139] CR2: 0000000021000000 CR3: 000000006cffc000 CR4: 0000000000352ef0
[  231.143775][ T1139] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  231.146517][ T1139] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  231.149251][ T1139] Call Trace:
[  231.150465][ T1139]  <TASK>
[  231.151629][ T1139]  ? __warn+0xea/0x3c0
[  231.153155][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.154812][ T1139]  ? rcu_note_context_switch+0xc5c/0x1ae0
[  231.156933][ T1139]  ? report_bug+0x3c0/0x580
[  231.158571][ T1139]  ? handle_bug+0x54/0xa0
[  231.160212][ T1139]  ? exc_invalid_op+0x17/0x50
[  231.161976][ T1139]  ? asm_exc_invalid_op+0x1a/0x20
[  231.163838][ T1139]  ? __warn_printk+0x199/0x350
[  231.165616][ T1139]  ? __warn_printk+0x1a6/0x350
[  231.167315][ T1139]  ? rcu_note_context_switch+0xc5c/0x1ae0
[  231.169398][ T1139]  ? console_flush_all+0x159/0xc60
[  231.171317][ T1139]  ? schedule+0xe7/0x350
[  231.172874][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.174621][ T1139]  ? schedule+0xe7/0x350
[  231.176212][ T1139]  __schedule+0x297/0x5ad0
[  231.177853][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.179519][ T1139]  ? bpf_trace_run4+0x27a/0x5a0
[  231.181349][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.183115][ T1139]  ? trace_lock_acquire+0x14e/0x1f0
[  231.185048][ T1139]  ? strncpy_from_kernel_nofault+0x18b/0x260
[  231.187257][ T1139]  ? __pfx___schedule+0x10/0x10
[  231.189110][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.190864][ T1139]  ? schedule+0x298/0x350
[  231.192491][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.194348][ T1139]  ? trace_lock_acquire+0x14e/0x1f0
[  231.196307][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.198233][ T1139]  ? __mutex_trylock_common+0x78/0x250
[  231.200265][ T1139]  ? schedule+0x1fd/0x350
[  231.201905][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.203595][ T1139]  ? schedule+0x1fd/0x350
[  231.205208][ T1139]  schedule+0xe7/0x350
[  231.206716][ T1139]  schedule_preempt_disabled+0x13/0x30
[  231.208770][ T1139]  __mutex_lock+0x62b/0xa60
[  231.210471][ T1139]  ? exp_funnel_lock+0x1a4/0x3b0
[  231.212346][ T1139]  ? __pfx___mutex_lock+0x10/0x10
[  231.214195][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.216020][ T1139]  ? exp_funnel_lock+0x171/0x3b0
[  231.217895][ T1139]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  231.219924][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.221625][ T1139]  ? exp_funnel_lock+0x13c/0x3b0
[  231.223409][ T1139]  ? exp_funnel_lock+0x1a4/0x3b0
[  231.225202][ T1139]  exp_funnel_lock+0x1a4/0x3b0
[  231.226984][ T1139]  ? __pfx_exp_funnel_lock+0x10/0x10
[  231.228961][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.230725][ T1139]  ? __might_resched+0x6a/0x5e0
[  231.232565][ T1139]  ? trace_irq_enable.constprop.0+0xea/0x140
[  231.234834][ T1139]  ? __pfx___might_resched+0x10/0x10
[  231.237314][ T1139]  ? dev_deactivate_many+0x1bc/0xb20
[  231.239305][ T1139]  synchronize_rcu_expedited+0x290/0x450
[  231.241377][ T1139]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  231.243620][ T1139]  ? dump_stack_lvl+0x1a1/0x1f0
[  231.245350][ T1139]  ? dump_stack_lvl+0x1a3/0x1f0
[  231.247030][ T1139]  ? add_taint+0x5f/0xd0
[  231.248600][ T1139]  ? __pfx___might_resched+0x10/0x10
[  231.250504][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.252303][ T1139]  synchronize_net+0x3e/0x60
[  231.253850][ T1139]  dev_deactivate_many+0x2a1/0xb20
[  231.255531][ T1139]  dev_deactivate+0xf9/0x1c0
[  231.257042][ T1139]  ? __pfx_dev_deactivate+0x10/0x10
[  231.258719][ T1139]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.260819][ T1139]  linkwatch_do_dev+0x11e/0x160
[  231.262561][ T1139]  linkwatch_sync_dev+0x181/0x210
[  231.264386][ T1139]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  231.266205][ T1139]  ethtool_op_get_link+0x1d/0x70
[  231.267814][ T1139]  bond_check_dev_link+0x197/0x430
[  231.269459][ T1139]  ? __pfx_bond_check_dev_link+0x10/0x10
[  231.271524][ T1139]  ? debug_object_deactivate+0x1ef/0x370
[  231.273634][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.275592][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.277281][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.279154][ T1139]  bond_mii_monitor+0x3c1/0x2d90
[  231.281044][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.282790][ T1139]  ? __pfx_bond_mii_monitor+0x10/0x10
[  231.284814][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.286556][ T1139]  ? __schedule+0xe60/0x5ad0
[  231.288279][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.289815][ T1139]  ? process_one_work+0x8bb/0x1b30
[  231.291514][ T1139]  process_one_work+0x958/0x1b30
[  231.293193][ T1139]  ? __pfx_process_one_work+0x10/0x10
[  231.295084][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.296681][ T1139]  ? assign_work+0x1a0/0x250
[  231.298339][ T1139]  worker_thread+0x6c8/0xf00
[  231.300093][ T1139]  ? __pfx_worker_thread+0x10/0x10
[  231.302012][ T1139]  kthread+0x2c1/0x3a0
[  231.303592][ T1139]  ? _raw_spin_unlock_irq+0x23/0x50
[  231.305507][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.307203][ T1139]  ret_from_fork+0x45/0x80
[  231.308879][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.310536][ T1139]  ret_from_fork_asm+0x1a/0x30
[  231.312189][ T1139]  </TASK>
[  231.313225][ T1139] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  231.315889][ T1139] CPU: 1 UID: 0 PID: 1139 Comm: kworker/u32:8 Tainted: G        W          6.13.0-rc3-syzkaller-00289-g48f506ad0b68 #0
[  231.320514][ T1139] Tainted: [W]=WARN
[  231.321988][ T1139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.326023][ T1139] Workqueue: bond0 bond_mii_monitor
[  231.328028][ T1139] Call Trace:
[  231.329336][ T1139]  <TASK>
[  231.330463][ T1139]  dump_stack_lvl+0x3d/0x1f0
[  231.332260][ T1139]  panic+0x71d/0x800
[  231.333829][ T1139]  ? __pfx_panic+0x10/0x10
[  231.335518][ T1139]  ? show_trace_log_lvl+0x29d/0x3d0
[  231.337449][ T1139]  ? check_panic_on_warn+0x1f/0xb0
[  231.339395][ T1139]  ? rcu_note_context_switch+0xc5c/0x1ae0
[  231.341521][ T1139]  check_panic_on_warn+0xab/0xb0
[  231.343378][ T1139]  __warn+0xf6/0x3c0
[  231.344854][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.346554][ T1139]  ? rcu_note_context_switch+0xc5c/0x1ae0
[  231.348653][ T1139]  report_bug+0x3c0/0x580
[  231.350314][ T1139]  handle_bug+0x54/0xa0
[  231.352007][ T1139]  exc_invalid_op+0x17/0x50
[  231.353650][ T1139]  asm_exc_invalid_op+0x1a/0x20
[  231.355467][ T1139] RIP: 0010:rcu_note_context_switch+0xc5c/0x1ae0
[  231.357856][ T1139] Code: 7a 00 4c 8b 54 24 30 48 8b 44 24 28 8b 4c 24 10 e9 c6 03 00 00 c6 05 2f a0 84 0e 01 90 48 c7 c7 c0 a4 4e 8b e8 65 2e d9 ff 90 <0f> 0b 90 90 e9 a8 f4 ff ff 38 d0 7f 08 84 c0 0f 85 2b 08 00 00 80
[  231.364905][ T1139] RSP: 0018:ffffc9000666f390 EFLAGS: 00010082
[  231.367263][ T1139] RAX: 0000000000000000 RBX: ffff88802b53fcc0 RCX: ffffffff815a1729
[  231.370306][ T1139] RDX: ffff8880215f2440 RSI: ffffffff815a1736 RDI: 0000000000000001
[  231.373261][ T1139] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  231.376194][ T1139] R10: 0000000000000000 R11: 000000002d2d2d2d R12: ffff8880215f2440
[  231.379133][ T1139] R13: ffff8880215f2440 R14: ffff8880215f2440 R15: ffff88802b53ed00
[  231.382161][ T1139]  ? __warn_printk+0x199/0x350
[  231.383788][ T1139]  ? __warn_printk+0x1a6/0x350
[  231.385357][ T1139]  ? console_flush_all+0x159/0xc60
[  231.387052][ T1139]  ? schedule+0xe7/0x350
[  231.388458][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.390030][ T1139]  ? schedule+0xe7/0x350
[  231.391740][ T1139]  __schedule+0x297/0x5ad0
[  231.393470][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.395309][ T1139]  ? bpf_trace_run4+0x27a/0x5a0
[  231.397219][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.399129][ T1139]  ? trace_lock_acquire+0x14e/0x1f0
[  231.401175][ T1139]  ? strncpy_from_kernel_nofault+0x18b/0x260
[  231.403538][ T1139]  ? __pfx___schedule+0x10/0x10
[  231.405398][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.407159][ T1139]  ? schedule+0x298/0x350
[  231.408798][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.410783][ T1139]  ? trace_lock_acquire+0x14e/0x1f0
[  231.412620][ T1139]  ? __pfx_lock_release+0x10/0x10
[  231.414310][ T1139]  ? __mutex_trylock_common+0x78/0x250
[  231.416061][ T1139]  ? schedule+0x1fd/0x350
[  231.417493][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.418956][ T1139]  ? schedule+0x1fd/0x350
[  231.420365][ T1139]  schedule+0xe7/0x350
[  231.421976][ T1139]  schedule_preempt_disabled+0x13/0x30
[  231.423997][ T1139]  __mutex_lock+0x62b/0xa60
[  231.425749][ T1139]  ? exp_funnel_lock+0x1a4/0x3b0
[  231.427635][ T1139]  ? __pfx___mutex_lock+0x10/0x10
[  231.429496][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.431330][ T1139]  ? exp_funnel_lock+0x171/0x3b0
[  231.433248][ T1139]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  231.435211][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.436942][ T1139]  ? exp_funnel_lock+0x13c/0x3b0
[  231.438846][ T1139]  ? exp_funnel_lock+0x1a4/0x3b0
[  231.440659][ T1139]  exp_funnel_lock+0x1a4/0x3b0
[  231.442503][ T1139]  ? __pfx_exp_funnel_lock+0x10/0x10
[  231.444474][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.446225][ T1139]  ? __might_resched+0x6a/0x5e0
[  231.448050][ T1139]  ? trace_irq_enable.constprop.0+0xea/0x140
[  231.450297][ T1139]  ? __pfx___might_resched+0x10/0x10
[  231.452286][ T1139]  ? dev_deactivate_many+0x1bc/0xb20
[  231.454277][ T1139]  synchronize_rcu_expedited+0x290/0x450
[  231.456334][ T1139]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  231.458674][ T1139]  ? dump_stack_lvl+0x1a1/0x1f0
[  231.460494][ T1139]  ? dump_stack_lvl+0x1a3/0x1f0
[  231.462403][ T1139]  ? add_taint+0x5f/0xd0
[  231.464049][ T1139]  ? __pfx___might_resched+0x10/0x10
[  231.466030][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.467867][ T1139]  synchronize_net+0x3e/0x60
[  231.469588][ T1139]  dev_deactivate_many+0x2a1/0xb20
[  231.471542][ T1139]  dev_deactivate+0xf9/0x1c0
[  231.473171][ T1139]  ? __pfx_dev_deactivate+0x10/0x10
[  231.474865][ T1139]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.476975][ T1139]  linkwatch_do_dev+0x11e/0x160
[  231.478775][ T1139]  linkwatch_sync_dev+0x181/0x210
[  231.480609][ T1139]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  231.482460][ T1139]  ethtool_op_get_link+0x1d/0x70
[  231.484040][ T1139]  bond_check_dev_link+0x197/0x430
[  231.485769][ T1139]  ? __pfx_bond_check_dev_link+0x10/0x10
[  231.487616][ T1139]  ? debug_object_deactivate+0x1ef/0x370
[  231.489470][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.491249][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.492911][ T1139]  ? bond_mii_monitor+0x140/0x2d90
[  231.494770][ T1139]  bond_mii_monitor+0x3c1/0x2d90
[  231.496427][ T1139]  ? lock_release+0x4e2/0x6f0
[  231.497666][ T1139]  ? __pfx_bond_mii_monitor+0x10/0x10
[  231.499550][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.501308][ T1139]  ? __schedule+0xe60/0x5ad0
[  231.503019][ T1139]  ? lock_acquire+0x2f/0xb0
[  231.504697][ T1139]  ? process_one_work+0x8bb/0x1b30
[  231.506554][ T1139]  process_one_work+0x958/0x1b30
[  231.508352][ T1139]  ? __pfx_process_one_work+0x10/0x10
[  231.510253][ T1139]  ? rcu_is_watching+0x12/0xc0
[  231.512111][ T1139]  ? assign_work+0x1a0/0x250
[  231.513847][ T1139]  worker_thread+0x6c8/0xf00
[  231.515228][ T1139]  ? __pfx_worker_thread+0x10/0x10
[  231.517072][ T1139]  kthread+0x2c1/0x3a0
[  231.518390][ T1139]  ? _raw_spin_unlock_irq+0x23/0x50
[  231.520182][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.521934][ T1139]  ret_from_fork+0x45/0x80
[  231.523892][ T1139]  ? __pfx_kthread+0x10/0x10
[  231.526024][ T1139]  ret_from_fork_asm+0x1a/0x30
[  231.527876][ T1139]  </TASK>
[  231.529638][ T1139] Kernel Offset: disabled
[  231.531212][ T1139] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:32:25  Registers:
info registers vcpu 0

CPU#0
EAX=f6baff30 EBX=ffffffff ECX=8498ae78 EDX=ffffffff
ESI=8498ae78 EDI=f6baff30 EBP=f6baff38 ESP=ffe02bf0
EIP=f709ba84 EFL=00000283 [--S---C] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA]
SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 00000000 ffffffff 00c00000
GS =0063 568cc440 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 00000000 ffffffff 00c00000
TR =0040 00003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c37aa68 CR3=000000006c820000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000080000 RBX=0000000000000004 RCX=ffffc9002731b000 RDX=0000000000080000
RSI=ffffffff89040859 RDI=ffffffff8fabfce0 RBP=ffffc90002e0f0b0 RSP=ffffc90002e0ef48
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=1ffff920005c1ded R13=ffff8880461c4000 R14=ffffc90002e0ef88 R15=0000000000000001
RIP=ffffffff8174d3e4 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000021000000 CR3=0000000066f0a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142e65 RDI=ffffffff9a6672c0 RBP=ffffffff9a667280 RSP=ffffc9000666f3f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=696d6f74615f6e69
R12=0000000000000000 R13=0000000000000033 R14=ffffffff85142e00 R15=0000000000000000
RIP=ffffffff85142e8f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5105da4 CR3=0000000077e16000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000287194 RBX=0000000000000003 RCX=ffffffff8b1a3819 RDX=ffffed10056e6fee
RSI=ffffffff8bb16f40 RDI=ffffffff81702e79 RBP=ffffed10036ea488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801b752440 R14=ffffffff901ce490 R15=0000000000000000
RIP=ffffffff8b1a4bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000253b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000006600001 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff140f91f0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20205b3e36000020 5d000030202d2031 3830362074726f70 203020796c696d00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020513436000020 5700003020272031 3230362074726570 2030207366636700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3000203020303020 3030203030202032 203432203936202e 3020302020303020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2000203020203020 2030202030202030 2020302020302020 3020202020203020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a346e3f362a3a32 2a6e692a3e392a6c 3a2a3f6f2a33322a 3f3f2a383f2a3b3f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 36003a3a2a3a3a2a 3a3a2a3a3a2a3c38 2a3e682a6e322a3a 3a2a3a3a2a3a3a2a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000