last executing test programs:

7m22.349731115s ago: executing program 1 (id=1726):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000080)={0x114, 0x31, 0x1, 0x0, 0x0, "", [@nested={0x3, 0x0, 0x0, 0x1, [@typed={0xc, 0x7, 0x0, 0x0, @u64}, @typed={0x14, 0x8, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0)
munlockall()
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000005a80), 0xce5, 0x2400)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f0000005ac0)=""/114)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000010001ffffffffffffcdbdf2500000000a68435a77b4822aa95aa63aaee7846dd920c3e9383dc794086fad3eab5850bc1d207ba9127db041a66b4499c68a73db62d2ec97bb8792fcd1daff4b1cd0baa8f376617079227235645bb5d3bb5bc1fee7d4d1c6d36bca6b3db60b63e8e6881327e70323ab937edbc37ea778cd391a03cb922afa64518f8878901037d0689", @ANYRESDEC=r1, @ANYRES64], 0x34}, 0x1, 0x0, 0x0, 0x200000c0}, 0x55)

7m22.264526218s ago: executing program 1 (id=1728):
socket(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x68280, 0xc4)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$tty1(0xc, 0x4, 0x1)

7m21.359104036s ago: executing program 1 (id=1732):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r1, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xffffffff, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x3)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000002840)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x801004}, 0xc, &(0x7f0000002800)={&(0x7f00000023c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0xe0, 0x6, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x5}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_USERDATA={0x13, 0x7, 0x1, 0x0, "0576258bed44905d123ea2f35b3b95"}, @NFTA_RULE_EXPRESSIONS={0x94, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xb6a1}]}}}, {0x24, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xc}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0x4}]}}}, {0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @immediate={{0xe}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x34, 0x2, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x102, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFT_MSG_DELSET={0x5c, 0xb, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x9}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x20}, @NFTA_SET_OBJ_TYPE={0x8}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELCHAIN={0xe0, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFTA_CHAIN_USERDATA={0xcc, 0xc, "27ea02034644e7a2432b1e495e2e2aebb4c6423ad274315a97c92b7a81e347f6d4b77b3413d8c465aa34f6bb45eaefad79e21b9952fb451db9276afcc8eedc8ad8f8601e47981b9c942de8caa97ab3bbcb457ffcb68a3389fb336fada64e73a87d8ca043719aa203ff4d771ed9e0b1a8b289f990a89a2409c1cd4032ce6115196f3d2afd57c186269e670f8a57c4b6f0d928ef3622702760ecc65e4721e62923038eb8bc995c1b113b86e20aeb7596321604d6fe040d4de097a3b4bcf6de81cc13b18ce1c27c54df"}]}, @NFT_MSG_NEWFLOWTABLE={0x108, 0x16, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xb8, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'caif0\x00'}, {0x14, 0x1, 'veth0_vlan\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'netdevsim0\x00'}, {0x14, 0x1, 'caif0\x00'}, {0x14, 0x1, 'veth1_macvtap\x00'}, {0x14, 0x1, 'vlan0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xbc9}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x101}]}]}, @NFT_MSG_NEWFLOWTABLE={0x20, 0x16, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x4ef577b74065d6eb}}}, 0x3bc}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004840)
mount$pvfs2(&(0x7f00000001c0), 0x0, &(0x7f0000000300), 0x20, &(0x7f0000000280)={[{'#$'}, {'\x00'}, {'/dev/vim2m\x00'}], [{@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@smackfsroot={'smackfsroot', 0x3d, '++'}}]})
openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r7, &(0x7f0000000300)={0x2020}, 0x2020)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x3)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002780)=ANY=[@ANYBLOB="300000003d0007010000000008000000047c000008000880040008001400018006000600800a000008001c00393923cd3871c42815db770645fb5cfa5428", @ANYRES32=0x0, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0xc000)

7m20.479419253s ago: executing program 1 (id=1742):
syz_open_dev$dri(&(0x7f0000000000), 0xffffffff, 0x101040)
r0 = socket$inet6(0xa, 0x5, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000101401002cbd6c00fedbdf25080003000100000008004a0001000000080001000000000008004b0013"], 0x30}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@remote, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @loopback={0xfeffffff00000000, 0x1ff0000aa}, @private2}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000080)={@local, @random="43f9e38454c1", @void, {@can={0xc, {{0x2}, 0x3, 0x2, 0x0, 0x0, "88e04987e3bc6d38"}}}}, &(0x7f00000000c0)={0x1, 0x1, [0x2b, 0x6ee, 0x10, 0xcef]})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, 0x0, &(0x7f0000000140))
ioctl$sock_netdev_private(r2, 0x8914, &(0x7f0000000000))
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KIOCSOUND(r5, 0x4b2f, 0x100)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r7 = dup3(r6, r4, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
r8 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
futex_waitv(&(0x7f0000001100), 0x0, 0x0, 0x0, 0x1)
listen(r8, 0x0)
accept4(r8, 0x0, 0x0, 0x0)
getsockopt$CAN_RAW_LOOPBACK(r7, 0x65, 0x3, &(0x7f0000000280), &(0x7f00000002c0)=0x4)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000000)=0x6, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @loopback}, @in6={0xa, 0x0, 0xffffffff, @private0}], 0x38)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000180)=[@in6={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}], 0x1c)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r7, 0xc0305616, &(0x7f0000000240)={0x0, {0x3, 0x101}})

7m19.650792785s ago: executing program 1 (id=1747):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000080)=[{{&(0x7f0000000240)={0xa, 0x4e21, 0x1, @local, 0x4}, 0x1c, 0x0}}], 0x1, 0x931766f6319eed40)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x7a05, 0x1700)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x8)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendto$inet(r4, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x84, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @remote={0xac, 0x3}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_LABELS_MASK={0x10, 0x17, [0x0, 0x0, 0x0]}, @CTA_LABELS={0x10, 0x16, 0x1, 0x0, [0x0, 0xffffffff, 0x0]}]}, 0x84}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000400)={0x0, 0x4}, 0x8)
getdents(r2, &(0x7f0000000300)=""/104, 0x68)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r6, 0x84, 0x24, 0x0, &(0x7f0000000040))
r7 = syz_open_procfs(0x0, &(0x7f0000000440)='fdinfo/4\x00')
read$FUSE(r7, &(0x7f0000003f80)={0x2020}, 0x2020)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x106}}, 0x20)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB=',', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r9, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

7m19.569640478s ago: executing program 1 (id=1748):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = dup(r0)
r4 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_G_CROP(r4, 0xc014563b, &(0x7f0000000100)={0x9})
read$FUSE(r3, &(0x7f0000000140)={0x2020}, 0x2020)
read$FUSE(r3, &(0x7f0000002180)={0x2020}, 0x2020)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') (async)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) (async)
dup(r0) (async)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
ioctl$VIDIOC_G_CROP(r4, 0xc014563b, &(0x7f0000000100)={0x9}) (async)
read$FUSE(r3, &(0x7f0000000140)={0x2020}, 0x2020) (async)
read$FUSE(r3, &(0x7f0000002180)={0x2020}, 0x2020) (async)

7m4.550466168s ago: executing program 32 (id=1748):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = dup(r0)
r4 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_G_CROP(r4, 0xc014563b, &(0x7f0000000100)={0x9})
read$FUSE(r3, &(0x7f0000000140)={0x2020}, 0x2020)
read$FUSE(r3, &(0x7f0000002180)={0x2020}, 0x2020)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') (async)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) (async)
dup(r0) (async)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
ioctl$VIDIOC_G_CROP(r4, 0xc014563b, &(0x7f0000000100)={0x9}) (async)
read$FUSE(r3, &(0x7f0000000140)={0x2020}, 0x2020) (async)
read$FUSE(r3, &(0x7f0000002180)={0x2020}, 0x2020) (async)

6.467133544s ago: executing program 2 (id=4028):
chroot(0x0)
faccessat(0xffffffffffffffff, 0x0, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
iopl(0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001380)={0x11, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
preadv(r2, &(0x7f0000001240)=[{&(0x7f0000000200)=""/34, 0x22}], 0x1, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
iopl(0x7)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x2, &(0x7f0000002200)=0x1)
r4 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r4, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs={0x1}, 0xb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)

5.557031296s ago: executing program 2 (id=4033):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000000)={0x2, 0x40, @loopback}, 0x5)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x111}}, 0x20)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0xd}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000030b2143c3f5430b5d83ef38dc38b35f33e68f4f21f03f69c2638cce9ace64717e63dd397f05b86ffa3b13c6a649fa75f5e4d9ca7ac97837b688baa831d8620c3204625362b807d36674d2be8c8", @ANYRES32=0x0, @ANYBLOB="0a0000cb2600005f877d130000000000000000000080", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRESDEC=0x0], 0x48)
r3 = socket$packet(0x11, 0xa, 0x300)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x28, &(0x7f0000000000)=0x1, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399eb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)

4.511492425s ago: executing program 2 (id=4039):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r2, @ANYBLOB="060300000000"], 0x24}}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000040))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xffffffff, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usb_connect(0x3, 0x1c, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r8 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r8, &(0x7f0000000100)={0x1d, 0x0, 0x2, {0x3}}, 0x18)
mkdir(&(0x7f0000000100)='./file0\x00', 0xa)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)

3.562967165s ago: executing program 3 (id=4047):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffe}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f00000003c0)="e0f0e71e8ca28286d8ff9156349667371c8b124805a3a95e3f521a2e5257975c146063e126ecf2d86aa3d933cfb4693a08555ee25d69843c182f82e95717545e5c824978b33887cf3592f7796894afa0ea194349283f167769b5c39b037c77cd024ebb26e617ecdcca4867f895637434c7a30504c7ce4873c1c7166276e2bcaf69c13c3b7bff03999351f76043077ed0642e61663d74f50890bf210e5773c6ec4df677f8a1f79124374dff7c60929ce12ad3e28a7ba11a656c3f65b6d9820da09bc94507d7466ecf67a4dfc78b8ccfec5c98083d31abee8cb92e6c1f7072ade1cc57cef89048e349e7610f0daf", 0xed)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000273c15d9e7804184000900fffffffffd"], 0x14}, 0x1, 0x0, 0x0, 0x48091}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r4, 0x9)
setsockopt$inet_tcp_int(r4, 0x6, 0x3, &(0x7f0000000300), 0x4)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001000)=ANY=[@ANYRES16=r0], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x1f2f, 0xf, 0x3253, &(0x7f00000007c0)="9f44948721919580684010a486dd", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)
io_setup(0x3ff, &(0x7f0000000500)=<r6=>0x0)
r7 = openat$tcp_congestion(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0)
io_submit(r6, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r7, 0x0}])
syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_mr_cache\x00')
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

3.092584969s ago: executing program 4 (id=4049):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0xa0880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100feff000037153e370248018080351700d1bd", 0x33fe0}], 0x1}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYRESDEC=r3])

3.010033005s ago: executing program 0 (id=4051):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0xfd, 0xc9}}}, 0x6)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
preadv(r1, &(0x7f0000000740)=[{&(0x7f0000000500)=""/97, 0x61}], 0x1, 0x7fff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@dev={0xfe, 0x80, '\x00', 0x19}, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1}, {0x81, 0x2}, 0x2000000, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)

2.929362603s ago: executing program 4 (id=4052):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0xfffffffc)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, 0x0)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000080)={0x1, 0x83})
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VHOST_RESET_OWNER(r7, 0xaf02, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1ff)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000008c0))

2.416066304s ago: executing program 3 (id=4053):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r4 = eventfd(0xfffffffc)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000080)={0x1, 0x83})
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VHOST_RESET_OWNER(r7, 0xaf02, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000008c0))

2.382764006s ago: executing program 4 (id=4054):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0xa, 0x3, 0x3a)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@getchain={0x5c, 0x66, 0x10, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xf, 0x9}, {0xfff2, 0x6}, {0x9, 0xf}}, [{0x8, 0xb, 0x5}, {0x8, 0xb, 0x1}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x4}, {0x8, 0xb, 0x3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
connect$qrtr(r2, &(0x7f0000000000)={0x2a, 0xffffffff, 0x7ffe}, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
creat(&(0x7f0000000280)='./file0\x00', 0x2)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x6000}})
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
getrlimit(0x0, &(0x7f0000000340))
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0xb, 0x6}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x655c, 0xffffffff, 0x20000000, 0x9, 0x4}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

2.119011513s ago: executing program 3 (id=4055):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000900)={0x0, 0x0, 0x2, 0x7, 0x2000, 0x2}, 0x14)
listen(r0, 0x1ff)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r1, &(0x7f0000000500)="ab", 0x34000, 0x40, &(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10) (fail_nth: 3)

2.052758894s ago: executing program 3 (id=4056):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x2c, 0x4, 0x6, 0x301, 0x0, 0x0, {0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8090}, 0x80)
r3 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0x4533, 0x10100, 0x7, 0x0, 0x0, r1}, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000340)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r7 = fcntl$dupfd(r6, 0x0, r6)
readv(r7, &(0x7f0000000000)=[{&(0x7f0000001140)=""/136, 0x88}], 0x1)

2.052477155s ago: executing program 0 (id=4057):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xffff}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x4, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x3, 0x0, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24008800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
openat$audio1(0xffffffffffffff9c, &(0x7f0000000280), 0x4203, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000003080)={0x0, 0x0, 0x0}, 0x24048045)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
mbind(&(0x7f0000619000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0x1, 0x1, 0x1)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x5b8, 0x0, &(0x7f0000000240), &(0x7f0000000b80))
r5 = creat(&(0x7f00000001c0)='./file0\x00', 0x8)
read$FUSE(r5, &(0x7f000000c400)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f000000a3c0)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x78, 0xfffffffffffffff5, 0x1, {0x410000003, 0xd, 0x0, {0x0, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8001, 0x0, r6}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
listen(r7, 0x40)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
setns(r9, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x117120500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.315755798s ago: executing program 4 (id=4058):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xffff}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x4, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x3, 0x0, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24008800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
openat$audio1(0xffffffffffffff9c, &(0x7f0000000280), 0x4203, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000003080)={0x0, 0x0, 0x0}, 0x24048045)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
mbind(&(0x7f0000619000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0x1, 0x1, 0x1)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x5b8, 0x0, &(0x7f0000000240), &(0x7f0000000b80))
r5 = creat(&(0x7f00000001c0)='./file0\x00', 0x8)
read$FUSE(r5, &(0x7f000000c400)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f000000a3c0)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x78, 0xfffffffffffffff5, 0x1, {0x410000003, 0xd, 0x0, {0x0, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8001, 0x0, r6}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
listen(r7, 0x40)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
setns(r9, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x117120500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.237571918s ago: executing program 2 (id=4059):
r0 = openat$ipvs(0xffffff9c, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r3 = syz_open_dev$loop(0x0, 0x47ffffa, 0x124e01)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001100)={r2, 0x0, {0x0, 0x0, 0x0, 0x1, 0x1000, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b3980000e4d60000000000000d0ec0c1b4edb1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "244333791f045158d97405000000000000040000000100", [0x1ff]}})
writev(r3, &(0x7f0000001640)=[{&(0x7f0000000000)="1a", 0x1}], 0x1)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000, 0x0, 0x0, r0}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000000)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r9=>0x0})
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x2c, r10, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_KEY={0x10, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c8c1}, 0x4004)
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)

1.108261693s ago: executing program 0 (id=4060):
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='updatult user:u'], 0x1a, 0xfffffffffffffffc)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) (fail_nth: 3)

1.10742095s ago: executing program 3 (id=4061):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffe}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f00000003c0)="e0f0e71e8ca28286d8ff9156349667371c8b124805a3a95e3f521a2e5257975c146063e126ecf2d86aa3d933cfb4693a08555ee25d69843c182f82e95717545e5c824978b33887cf3592f7796894afa0ea194349283f167769b5c39b037c77cd024ebb26e617ecdcca4867f895637434c7a30504c7ce4873c1c7166276e2bcaf69c13c3b7bff03999351f76043077ed0642e61663d74f50890bf210e5773c6ec4df677f8a1f79124374dff7c60929ce12ad3e28a7ba11a656c3f65b6d9820da09bc94507d7466ecf67a4dfc78b8ccfec5c98083d31abee8cb92e6c1f7072ade1cc57cef89048e349e7610f0daf", 0xed)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000273c15d9e7804184000900fffffffffd"], 0x14}, 0x1, 0x0, 0x0, 0x48091}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
listen(r4, 0x9)
setsockopt$inet_tcp_int(r4, 0x6, 0x3, &(0x7f0000000300), 0x4)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001000)=ANY=[@ANYRES16=r0], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x1f2f, 0xf, 0x3253, &(0x7f00000007c0)="9f44948721919580684010a486dd", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)
io_setup(0x3ff, &(0x7f0000000500)=<r6=>0x0)
r7 = openat$tcp_congestion(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0)
io_submit(r6, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r7, 0x0}])
syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_mr_cache\x00')
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)

994.18856ms ago: executing program 0 (id=4062):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0xfffffffc)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, 0x0)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000080)={0x1, 0x83})
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VHOST_RESET_OWNER(r7, 0xaf02, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1ff)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000008c0))

491.418863ms ago: executing program 2 (id=4063):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r4 = eventfd(0xfffffffc)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VHOST_RESET_OWNER(r7, 0xaf02, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000008c0))

369.459202ms ago: executing program 0 (id=4064):
r0 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)

319.426683ms ago: executing program 4 (id=4065):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix={0x200, 0x807c2, 0x41414770, 0x8, 0x425, 0x10004, 0x6, 0x2, 0xfeedcafe, 0x3, 0x2, 0x1}})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r2)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r4=>0x0})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r5, &(0x7f0000000040)={0x0, 0x33, &(0x7f0000000340)={&(0x7f00000000c0)={0x3c, r3, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}]}, 0x3c}}, 0x0)

318.909526ms ago: executing program 0 (id=4066):
syz_usbip_server_init(0x5)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r0)
io_uring_setup(0x25c9, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x200002, 0x53})
set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
socket$netlink(0x10, 0x3, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$igmp6(0xa, 0x3, 0x3a)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f00000000c0), 0x4)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@rand_addr=0x64010102, @in6=@empty, 0x0, 0x0, 0x4e20, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0xee01}, {0x4, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffe}, {0x3, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe4)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)
r6 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r6, 0xc010640c, &(0x7f0000000480)={0x13})
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)

318.569216ms ago: executing program 4 (id=4067):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, 0x0, 0x4040001)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect$cdc_ncm(0x0, 0x7a, &(0x7f0000000140)=ANY=[], 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90424fc60040207000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x6, 0x0)
listen(r4, 0x8957)
chdir(0x0)
r5 = open(0x0, 0x8000, 0xad)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r5}, 0x8)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)

148.375329ms ago: executing program 2 (id=4068):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='wg1\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r1, &(0x7f0000000000)=[{0x0}], 0x1, 0xffffffff, 0x79, 0x665d20d7e7a8f124)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001e000100000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="000000040100a1742a0ec92300000000"], 0x28}}, 0x0)
bpf$BPF_TASK_FD_QUERY(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{}, {}, {}, {0x0, 0xd29}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x20000840)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r4, &(0x7f00000004c0)='W', 0x1, 0xe1e129790111904b, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0x1008}, 0x1c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20000080)
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2000, 0x1)
r5 = syz_open_dev$usbfs(0x0, 0x74, 0x101301)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, 0x0)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

0s ago: executing program 3 (id=4069):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xffff}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x4, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x3, 0x0, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24008800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
openat$audio1(0xffffffffffffff9c, &(0x7f0000000280), 0x4203, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000003080)={0x0, 0x0, 0x0}, 0x24048045)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
mbind(&(0x7f0000619000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0x1, 0x1, 0x1)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x5b8, 0x0, &(0x7f0000000240), &(0x7f0000000b80))
r5 = creat(&(0x7f00000001c0)='./file0\x00', 0x8)
read$FUSE(r5, &(0x7f000000c400)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f000000a3c0)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x78, 0xfffffffffffffff5, 0x1, {0x410000003, 0xd, 0x0, {0x0, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8001, 0x0, r6}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
listen(r7, 0x40)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
setns(r9, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x117120500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

kernel console output (not intermixed with test programs):

ber 58 using dummy_hcd
[  647.821116][T16177] usb 8-1: Using ep0 maxpacket: 8
[  647.823956][T16177] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  647.826826][T16177] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  647.829964][T16177] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  647.832588][T16177] usb 8-1: config 250 has no interface number 0
[  647.834692][T16177] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  647.840450][T16177] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  647.843488][T16177] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  647.846370][T16177] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  647.849632][T16177] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  647.854052][T16177] usb 8-1: config 250 interface 228 has no altsetting 0
[  647.857824][T16177] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  647.860571][T16177] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  647.862850][T16177] usb 8-1: Product: syz
[  647.864038][T16177] usb 8-1: SerialNumber: syz
[  647.867819][T16177] hub 8-1:250.228: bad descriptor, ignoring hub
[  647.869732][T16177] hub 8-1:250.228: probe with driver hub failed with error -5
[  648.016953][T17140] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3187'.
[  648.074756][T16177] usblp 8-1:250.228: usblp0: USB Bidirectional printer dev 58 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  648.378570][T17165] x_tables: ip6_tables: cgroup match: used from hooks FORWARD, but only valid from INPUT/OUTPUT/POSTROUTING
[  648.479762][T17172] fuse: Bad value for 'fd'
[  648.909627][ T5961] Bluetooth: Frame is too long (len 29, expected len 4)
[  649.013027][T17138] usb 8-1: reset high-speed USB device number 58 using dummy_hcd
[  649.384329][T17133] netlink: 'syz.3.3185': attribute type 7 has an invalid length.
[  649.386856][T17133] netlink: 212424 bytes leftover after parsing attributes in process `syz.3.3185'.
[  649.601810][ T8059] usb 8-1: USB disconnect, device number 58
[  649.614889][ T8059] usblp0: removed
[  649.904642][T17197] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  650.457579][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  650.460612][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  651.890442][T17232] fuse: Unknown parameter '0x0000000000000004'
[  651.943702][T17234] virt_wifi0 speed is unknown, defaulting to 1000
[  654.340823][ T8059] usb 8-1: new high-speed USB device number 59 using dummy_hcd
[  654.522412][ T8059] usb 8-1: Using ep0 maxpacket: 32
[  654.531610][ T8059] usb 8-1: config index 0 descriptor too short (expected 35577, got 27)
[  654.533959][ T8059] usb 8-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  654.536370][ T8059] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 92
[  654.538850][ T8059] usb 8-1: config 1 has no interface number 0
[  654.540767][ T8059] usb 8-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  654.543770][ T8059] usb 8-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  654.547369][ T8059] usb 8-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  654.549874][ T8059] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.558942][ T8059] snd_usb_pod 8-1:1.1: Line 6 Pocket POD found
[  654.938995][T15816] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  654.971140][ T8059] snd_usb_pod 8-1:1.1: Line 6 Pocket POD now attached
[  655.092200][T15816] usb 5-1: Using ep0 maxpacket: 16
[  655.094783][T15816] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 1024
[  655.097968][T15816] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 1024
[  655.100860][T15816] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  655.103512][T15816] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  655.107597][T15816] usb 5-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  655.110077][T15816] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.112921][T15816] usb 5-1: Product: syz
[  655.114106][T15816] usb 5-1: Manufacturer: syz
[  655.115434][T15816] usb 5-1: SerialNumber: syz
[  655.117579][T15816] usb 5-1: config 0 descriptor??
[  655.121044][T17279] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  655.125963][    C2] port100 5-1:0.0: NFC: Urb failure (status -71)
[  655.127811][T15816] port100 5-1:0.0: NFC: Could not get supported command types
[  655.181277][ T8059] usb 8-1: USB disconnect, device number 59
[  655.196216][ T8059] snd_usb_pod 8-1:1.1: Line 6 Pocket POD now disconnected
[  655.708541][ T1322] usb 5-1: USB disconnect, device number 49
[  656.262652][T17305] fuse: Unknown parameter '0x0000000000000004'
[  656.671349][T17319] netlink: 'syz.0.3240': attribute type 21 has an invalid length.
[  657.008876][T17332] fuse: Unknown parameter '0x0000000000000004'
[  657.679936][ T5961] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  658.928937][T17367] fuse: Unknown parameter '0x0000000000000004'
[  659.832689][T17398] virt_wifi0 speed is unknown, defaulting to 1000
[  660.051898][T17404] fuse: Unknown parameter '0x0000000000000004'
[  661.220270][T15816] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  661.600288][T15816] usb 9-1: Using ep0 maxpacket: 8
[  661.603037][T15816] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  661.605793][T15816] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  661.608465][T15816] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  661.611301][T15816] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  661.614810][T15816] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  661.617324][T15816] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.826958][T15816] usb 9-1: usb_control_msg returned -32
[  661.828616][T15816] usbtmc 9-1:16.0: can't read capabilities
[  662.608835][T15816] usb 9-1: USB disconnect, device number 25
[  663.590164][T16177] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  663.750259][T16177] usb 5-1: Using ep0 maxpacket: 8
[  663.755879][T16177] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  663.759516][T16177] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  663.765064][T16177] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  663.768785][T16177] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  663.773646][T16177] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  663.780146][T16177] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.989835][T16177] usb 5-1: usb_control_msg returned -32
[  663.991608][T16177] usbtmc 5-1:16.0: can't read capabilities
[  664.610774][ T1020] usb 5-1: USB disconnect, device number 50
[  664.702011][T17488] fuse: Unknown parameter 'fd0x0000000000000004'
[  664.778039][T17492] virt_wifi0 speed is unknown, defaulting to 1000
[  664.806831][T17492] input: syz1 as /devices/virtual/input/input51
[  664.828218][T17492] virt_wifi0 speed is unknown, defaulting to 1000
[  664.918218][ T5961] Bluetooth: Frame is too long (len 29, expected len 4)
[  665.478207][T17514] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  666.075075][T17526] FAULT_INJECTION: forcing a failure.
[  666.075075][T17526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  666.078937][T17526] CPU: 0 UID: 0 PID: 17526 Comm: syz.4.3298 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  666.078952][T17526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  666.078958][T17526] Call Trace:
[  666.078961][T17526]  <TASK>
[  666.078965][T17526]  dump_stack_lvl+0x16c/0x1f0
[  666.078985][T17526]  should_fail_ex+0x50a/0x650
[  666.078997][T17526]  _copy_from_user+0x2e/0xd0
[  666.079009][T17526]  get_compat_msghdr+0xa8/0x170
[  666.079022][T17526]  ? __pfx_get_compat_msghdr+0x10/0x10
[  666.079039][T17526]  ___sys_sendmsg+0x1b0/0x1e0
[  666.079057][T17526]  ? __pfx____sys_sendmsg+0x10/0x10
[  666.079077][T17526]  ? __pfx_lock_release+0x10/0x10
[  666.079091][T17526]  ? trace_lock_acquire+0x14e/0x1f0
[  666.079107][T17526]  ? __fget_files+0x206/0x3a0
[  666.079124][T17526]  __sys_sendmsg+0x16e/0x220
[  666.079134][T17526]  ? __pfx___sys_sendmsg+0x10/0x10
[  666.079157][T17526]  __do_fast_syscall_32+0x73/0x120
[  666.079173][T17526]  do_fast_syscall_32+0x32/0x80
[  666.079204][T17526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  666.079222][T17526] RIP: 0023:0xf7fa8579
[  666.079231][T17526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  666.079241][T17526] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  666.079251][T17526] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  666.079257][T17526] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  666.079262][T17526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  666.079272][T17526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  666.079278][T17526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  666.079289][T17526]  </TASK>
[  666.948931][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  667.081718][ T1322] kernel read not supported for file /dsp (pid: 1322 comm: kworker/1:2)
[  667.268779][T17547] netlink: 80 bytes leftover after parsing attributes in process `syz.4.3304'.
[  667.468735][T17554] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3307'.
[  668.708099][T17577] netlink: 80 bytes leftover after parsing attributes in process `syz.2.3313'.
[  669.061628][T17584] /dev/nullb0: Can't open blockdev
[  669.937770][ T5961] Bluetooth: Frame is too long (len 29, expected len 4)
[  671.209886][ T5326] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  671.359780][ T5326] usb 9-1: Using ep0 maxpacket: 16
[  671.363314][ T5326] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  671.367945][ T5326] usb 9-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  671.371415][ T5326] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.375913][ T5326] usb 9-1: config 0 descriptor??
[  671.381205][ T5326] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input52
[  671.582106][T17620] input: syz0 as /devices/virtual/input/input53
[  671.712328][T17636] netlink: 'syz.4.3325': attribute type 8 has an invalid length.
[  671.872994][T17637] bridge0: port 2(bridge_slave_1) entered disabled state
[  672.313896][T17637] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  672.318344][T17637] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  672.321021][T17637] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  672.323721][T17637] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  673.105975][T17651] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3333'.
[  673.108388][T17651] netlink: 'syz.0.3333': attribute type 7 has an invalid length.
[  673.114230][T17651] netlink: 'syz.0.3333': attribute type 8 has an invalid length.
[  673.116798][T17651] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3333'.
[  673.889570][ T5953] Bluetooth: hci2: command 0x0406 tx timeout
[  673.949167][T17673] virt_wifi0 speed is unknown, defaulting to 1000
[  674.005323][ T5347] bcm5974 9-1:0.0: could not read from device
[  674.036207][ T5347] bcm5974 9-1:0.0: could not read from device
[  674.046606][ T5326] usb 9-1: USB disconnect, device number 26
[  674.370538][T17690] netlink: zone id is out of range
[  674.372988][T17690] netlink: zone id is out of range
[  674.374468][T17690] netlink: zone id is out of range
[  674.377501][T17690] netlink: zone id is out of range
[  674.378898][T17690] netlink: zone id is out of range
[  674.381004][T17690] netlink: zone id is out of range
[  674.383242][T17690] netlink: set zone limit has 8 unknown bytes
[  674.457995][T17693] virt_wifi0 speed is unknown, defaulting to 1000
[  675.117791][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  675.126532][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  676.249484][T16177] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  676.399416][T16177] usb 9-1: Using ep0 maxpacket: 16
[  676.402373][T16177] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  676.405930][T16177] usb 9-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  676.409265][T16177] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.412654][T16177] usb 9-1: config 0 descriptor??
[  676.416783][T16177] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input55
[  676.621818][T17720] input: syz0 as /devices/virtual/input/input56
[  676.727652][T17727] netlink: 'syz.4.3352': attribute type 8 has an invalid length.
[  678.176366][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  678.176377][   T40] audit: type=1804 audit(2000000053.002:2804): pid=17748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3357" name="/newroot/259/file0" dev="tmpfs" ino=1377 res=1 errno=0
[  678.182215][T17750] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3358'.
[  679.023868][ T5347] bcm5974 9-1:0.0: could not read from device
[  679.042928][ T5347] bcm5974 9-1:0.0: could not read from device
[  679.047676][T16177] usb 9-1: USB disconnect, device number 27
[  679.979192][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  682.078489][T17809] random: crng reseeded on system resumption
[  682.090384][T17809] Restarting kernel threads ... done.
[  682.287305][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  682.510711][T17825] dvmrp9: entered allmulticast mode
[  682.942288][T17856] overlayfs: missing 'lowerdir'
[  683.449009][   T69] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  683.599010][   T69] usb 5-1: Using ep0 maxpacket: 8
[  683.603122][   T69] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[  683.607547][   T69] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[  683.612258][   T69] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[  683.616988][   T69] usb 5-1: config 250 has no interface number 0
[  683.620662][   T69] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  683.626937][   T69] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  683.630831][ T1322] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  683.635335][   T69] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  683.643761][   T69] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  683.649290][   T69] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  683.658971][   T69] usb 5-1: config 250 interface 228 has no altsetting 0
[  683.662366][   T69] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  683.664943][   T69] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  683.667195][   T69] usb 5-1: Product: syz
[  683.668369][   T69] usb 5-1: SerialNumber: syz
[  683.683445][   T69] hub 5-1:250.228: bad descriptor, ignoring hub
[  683.685405][   T69] hub 5-1:250.228: probe with driver hub failed with error -5
[  683.883155][   T69] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 51 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  683.929001][ T1322] usb 9-1: Using ep0 maxpacket: 8
[  683.935934][ T1322] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  683.939134][ T1322] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  683.942247][ T1322] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  683.945951][ T1322] usb 9-1: config 250 has no interface number 0
[  683.985121][ T1322] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  684.001247][ T1322] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  684.020315][ T1322] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  684.035159][ T1322] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  684.058606][ T1322] usb 9-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  684.088142][ T1322] usb 9-1: config 250 interface 228 has no altsetting 0
[  684.102498][ T1322] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  684.109136][ T1322] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  684.113596][ T1322] usb 9-1: Product: syz
[  684.115917][ T1322] usb 9-1: SerialNumber: syz
[  684.123067][ T1322] hub 9-1:250.228: bad descriptor, ignoring hub
[  684.125973][ T1322] hub 9-1:250.228: probe with driver hub failed with error -5
[  684.321983][T17886] tmpfs: Unknown parameter 'opol'
[  684.469327][T17871] usb 5-1: reset high-speed USB device number 51 using dummy_hcd
[  684.735681][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  684.852071][T17884] netlink: 'syz.0.3383': attribute type 7 has an invalid length.
[  684.854272][T17884] netlink: 212424 bytes leftover after parsing attributes in process `syz.0.3383'.
[  684.859663][ T1322] usblp 9-1:250.228: usblp1: USB Bidirectional printer dev 28 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  685.030543][ T1322] usb 9-1: reset high-speed USB device number 28 using dummy_hcd
[  685.169144][ T6565] usb 5-1: USB disconnect, device number 51
[  685.172004][ T6565] usblp0: removed
[  685.179858][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  685.407872][T17873] netlink: 'syz.4.3384': attribute type 7 has an invalid length.
[  685.410990][T17873] netlink: 212424 bytes leftover after parsing attributes in process `syz.4.3384'.
[  685.800047][T16178] usb 9-1: USB disconnect, device number 28
[  685.813362][T16178] usblp1: removed
[  687.256182][T17933] virt_wifi0 speed is unknown, defaulting to 1000
[  687.465031][T17940] virt_wifi0 speed is unknown, defaulting to 1000
[  687.825311][   T40] audit: type=1326 audit(2000000062.653:2805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17947 comm="syz.3.3403" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f21579 code=0x0
[  688.119648][T17955] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3405'.
[  688.940060][T17978] virt_wifi0 speed is unknown, defaulting to 1000
[  689.860432][T17994] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3415'.
[  689.949724][T17996] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3416'.
[  690.245652][T18004] syz.3.3418: attempt to access beyond end of device
[  690.245652][T18004] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  690.253331][T18004] efs: cannot read volume header
[  690.598627][T16177] usb 8-1: new high-speed USB device number 60 using dummy_hcd
[  690.760148][T16177] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  690.762872][T16177] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  690.767964][T16177] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  690.770512][T16177] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  690.772723][T16177] usb 8-1: Product: syz
[  690.773887][T16177] usb 8-1: Manufacturer: syz
[  690.775202][T16177] usb 8-1: SerialNumber: syz
[  692.023295][T18016] vlan2: entered promiscuous mode
[  692.024862][T18016] vlan2: entered allmulticast mode
[  692.026310][T18016] hsr_slave_1: entered allmulticast mode
[  692.039416][T18016] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3421'.
[  693.259489][ T8059] usb 8-1: USB disconnect, device number 60
[  694.095163][T18048] tmpfs: Unknown parameter 'usrquota’3aK'
[  694.320976][T18055] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3431'.
[  694.735318][ T5961] Bluetooth: Frame is too long (len 29, expected len 4)
[  695.193340][T18071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3439'.
[  696.206683][T18092] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3444'.
[  696.718167][T18115] virt_wifi0 speed is unknown, defaulting to 1000
[  697.482951][T18128] Cannot find add_set index 3 as target
[  698.009569][T18146] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3459'.
[  699.407011][T18177] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  701.130280][T18215] can: request_module (can-proto-0) failed.
[  701.588670][ T8059] usb 9-1: new full-speed USB device number 29 using dummy_hcd
[  701.718905][ T8059] usb 9-1: device descriptor read/64, error -71
[  701.969695][ T8059] usb 9-1: new full-speed USB device number 30 using dummy_hcd
[  702.128058][ T8059] usb 9-1: device descriptor read/64, error -71
[  702.264111][T18240] virt_wifi0 speed is unknown, defaulting to 1000
[  702.269936][ T8059] usb usb9-port1: attempt power cycle
[  702.768070][ T8059] usb 9-1: new full-speed USB device number 31 using dummy_hcd
[  702.788587][ T8059] usb 9-1: device descriptor read/8, error -71
[  702.992147][T18250] virt_wifi0 speed is unknown, defaulting to 1000
[  703.027961][ T8059] usb 9-1: new full-speed USB device number 32 using dummy_hcd
[  703.048547][ T8059] usb 9-1: device descriptor read/8, error -71
[  703.158267][ T8059] usb usb9-port1: unable to enumerate USB device
[  703.289523][ T5961] Bluetooth: hci5: ACL packet for unknown connection handle 200
[  703.648099][T18263] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3493'.
[  706.618408][T18286] netlink: 168 bytes leftover after parsing attributes in process `syz.4.3498'.
[  708.437504][T18328] FAULT_INJECTION: forcing a failure.
[  708.437504][T18328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  708.441736][T18328] CPU: 2 UID: 0 PID: 18328 Comm: syz.4.3509 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  708.441752][T18328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  708.441759][T18328] Call Trace:
[  708.441763][T18328]  <TASK>
[  708.441767][T18328]  dump_stack_lvl+0x16c/0x1f0
[  708.441787][T18328]  should_fail_ex+0x50a/0x650
[  708.441800][T18328]  _copy_from_user+0x2e/0xd0
[  708.441812][T18328]  get_compat_msghdr+0xa8/0x170
[  708.441826][T18328]  ? __pfx_get_compat_msghdr+0x10/0x10
[  708.441846][T18328]  ___sys_sendmsg+0x1b0/0x1e0
[  708.441863][T18328]  ? __pfx____sys_sendmsg+0x10/0x10
[  708.441883][T18328]  ? __pfx_lock_release+0x10/0x10
[  708.441898][T18328]  ? trace_lock_acquire+0x14e/0x1f0
[  708.441913][T18328]  ? __fget_files+0x206/0x3a0
[  708.441931][T18328]  __sys_sendmsg+0x16e/0x220
[  708.441943][T18328]  ? __pfx___sys_sendmsg+0x10/0x10
[  708.441966][T18328]  __do_fast_syscall_32+0x73/0x120
[  708.441982][T18328]  do_fast_syscall_32+0x32/0x80
[  708.441997][T18328]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  708.442015][T18328] RIP: 0023:0xf7fa8579
[  708.442023][T18328] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  708.442034][T18328] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  708.442044][T18328] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  708.442051][T18328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  708.442058][T18328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  708.442064][T18328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  708.442070][T18328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  708.442081][T18328]  </TASK>
[  709.757045][T18346] openvswitch: netlink: nsh attr 2 has unexpected len 0 expected 16
[  709.763048][T18346] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  709.846390][T18350] FAULT_INJECTION: forcing a failure.
[  709.846390][T18350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  709.852031][T18350] CPU: 2 UID: 0 PID: 18350 Comm: syz.4.3516 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  709.852046][T18350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  709.852053][T18350] Call Trace:
[  709.852056][T18350]  <TASK>
[  709.852060][T18350]  dump_stack_lvl+0x16c/0x1f0
[  709.852078][T18350]  should_fail_ex+0x50a/0x650
[  709.852090][T18350]  _copy_from_user+0x2e/0xd0
[  709.852102][T18350]  __ia32_sys_epoll_ctl+0x131/0x1e0
[  709.852117][T18350]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  709.852133][T18350]  __do_fast_syscall_32+0x73/0x120
[  709.852150][T18350]  do_fast_syscall_32+0x32/0x80
[  709.852164][T18350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  709.852181][T18350] RIP: 0023:0xf7fa8579
[  709.852189][T18350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  709.852198][T18350] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  709.852208][T18350] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000003
[  709.852215][T18350] RDX: 0000000000000004 RSI: 0000000080000000 RDI: 0000000000000000
[  709.852220][T18350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  709.852226][T18350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  709.852231][T18350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  709.852243][T18350]  </TASK>
[  709.917270][T18353] kvm: kvm [18352]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[  709.953389][T18356] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3518'.
[  710.015427][T18362] fuse: Bad value for 'group_id'
[  710.017090][T18362] fuse: Bad value for 'group_id'
[  710.254144][T18373] random: crng reseeded on system resumption
[  710.280452][T18376] lo speed is unknown, defaulting to 1000
[  710.281920][T18376] lo speed is unknown, defaulting to 1000
[  710.284152][T18376] lo speed is unknown, defaulting to 1000
[  710.289136][T18376] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  710.295803][T18376] lo speed is unknown, defaulting to 1000
[  710.302442][T18376] lo speed is unknown, defaulting to 1000
[  710.305443][T18376] lo speed is unknown, defaulting to 1000
[  710.308541][T18376] lo speed is unknown, defaulting to 1000
[  710.311745][T18376] lo speed is unknown, defaulting to 1000
[  710.496492][T18379] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3527'.
[  710.657203][T18382] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3528'.
[  710.659746][T18382] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  712.673798][T18440] virt_wifi0 speed is unknown, defaulting to 1000
[  712.677253][T18440] lo speed is unknown, defaulting to 1000
[  714.736766][   T40] audit: type=1326 audit(2000000089.565:2806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.745126][   T40] audit: type=1326 audit(2000000089.575:2807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.753157][   T40] audit: type=1326 audit(2000000089.575:2808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.762288][   T40] audit: type=1326 audit(2000000089.605:2809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.769967][   T40] audit: type=1326 audit(2000000089.605:2810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.777852][   T40] audit: type=1326 audit(2000000089.605:2811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.785674][   T40] audit: type=1326 audit(2000000089.605:2812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.793630][   T40] audit: type=1326 audit(2000000089.605:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.801210][   T40] audit: type=1326 audit(2000000089.605:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18478 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  714.913181][   T40] audit: type=1326 audit(2000000089.745:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.3.3553" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf7f21579 code=0x7ffc0000
[  716.555307][T18516] virt_wifi0 speed is unknown, defaulting to 1000
[  716.559570][T18516] lo speed is unknown, defaulting to 1000
[  716.591279][T18514] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3559'.
[  716.600571][T18520] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3562'.
[  719.130964][T18563] virt_wifi0 speed is unknown, defaulting to 1000
[  719.133322][T18563] lo speed is unknown, defaulting to 1000
[  719.208825][T18568] fuse: Bad value for 'fd'
[  719.998030][T18582] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3577'.
[  720.198469][T18586] fuse: Bad value for 'fd'
[  723.589205][ T5326] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[  723.753112][ T5326] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  723.755571][ T5326] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  723.759258][ T5326] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  723.761778][ T5326] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  723.764782][ T5326] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  723.770457][ T5326] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  723.773164][ T5326] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  723.775396][ T5326] usb 9-1: Product: syz
[  723.776791][ T5326] usb 9-1: Manufacturer: syz
[  723.780550][ T5326] cdc_wdm 9-1:1.0: skipping garbage
[  723.782109][ T5326] cdc_wdm 9-1:1.0: skipping garbage
[  723.785271][ T5326] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  723.787483][ T5326] cdc_wdm 9-1:1.0: Unknown control protocol
[  723.997397][    C3] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  723.999978][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  724.002569][    C3] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  724.005128][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  724.007750][    C3] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  724.010253][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  724.012763][    C3] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  724.015304][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  724.017633][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  724.020875][T16178] usb 9-1: USB disconnect, device number 33
[  724.113259][T16177] usb 8-1: new high-speed USB device number 61 using dummy_hcd
[  724.252015][T16177] usb 8-1: device descriptor read/64, error -71
[  724.519269][T16177] usb 8-1: new high-speed USB device number 62 using dummy_hcd
[  724.658243][T16177] usb 8-1: device descriptor read/64, error -71
[  724.775892][T16177] usb usb8-port1: attempt power cycle
[  725.077901][T18647] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3597'.
[  725.081293][T18647] bridge_slave_1: left allmulticast mode
[  725.083463][T18647] bridge_slave_1: left promiscuous mode
[  725.088467][T18647] bridge0: port 2(bridge_slave_1) entered disabled state
[  725.109032][T18647] bridge_slave_0: left allmulticast mode
[  725.111316][T18647] bridge_slave_0: left promiscuous mode
[  725.113551][T18647] bridge0: port 1(bridge_slave_0) entered disabled state
[  725.150086][T16177] usb 8-1: new high-speed USB device number 63 using dummy_hcd
[  725.172069][T16177] usb 8-1: device descriptor read/8, error -71
[  725.438662][T16177] usb 8-1: new high-speed USB device number 64 using dummy_hcd
[  725.462112][T16177] usb 8-1: device descriptor read/8, error -71
[  725.577850][T16177] usb usb8-port1: unable to enumerate USB device
[  726.742896][   T69] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  726.915521][   T69] usb 5-1: Using ep0 maxpacket: 16
[  726.920629][   T69] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  726.924303][   T69] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  726.927464][   T69] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.930456][   T69] usb 5-1: config 0 descriptor??
[  726.939287][   T69] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input57
[  727.155516][T18665] input: syz0 as /devices/virtual/input/input58
[  727.650787][T18681] virt_wifi0 speed is unknown, defaulting to 1000
[  727.653708][T18681] lo speed is unknown, defaulting to 1000
[  728.628014][ T5326] usb 8-1: new full-speed USB device number 65 using dummy_hcd
[  728.810641][ T5326] usb 8-1: config index 0 descriptor too short (expected 31, got 27)
[  728.813829][ T5326] usb 8-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid wMaxPacketSize 0
[  728.817750][ T5326] usb 8-1: config 1 interface 0 has no altsetting 0
[  728.822363][ T5326] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.72
[  728.825824][ T5326] usb 8-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  728.829110][ T5326] usb 8-1: Product: syz
[  728.830800][ T5326] usb 8-1: Manufacturer: syz
[  728.832595][ T5326] usb 8-1: SerialNumber: syz
[  729.383427][T18697] input: syz1 as /devices/virtual/input/input60
[  729.504364][ T5326] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 65 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  729.648533][ T5347] bcm5974 5-1:0.0: could not read from device
[  729.654295][ T5347] bcm5974 5-1:0.0: could not read from device
[  729.693195][ T5347] bcm5974 5-1:0.0: could not read from device
[  729.697139][ T5347] bcm5974 5-1:0.0: could not read from device
[  729.722032][ T8059] usb 8-1: USB disconnect, device number 65
[  729.730344][T18691] usblp0: removed
[  729.758401][   T69] usb 5-1: USB disconnect, device number 52
[  729.890817][T18702] 9pnet_virtio: no channels available for device syz
[  732.259355][T18734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3618'.
[  732.263617][T18734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3618'.
[  732.554635][T18742] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3621'.
[  732.616995][T18742] netlink: 244 bytes leftover after parsing attributes in process `syz.2.3621'.
[  732.620685][T18742] sock: sock_timestamping_bind_phc: sock not bind to device
[  732.776867][T18754] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3624'.
[  733.139546][T18766] FAULT_INJECTION: forcing a failure.
[  733.139546][T18766] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  733.143213][T18766] CPU: 3 UID: 0 PID: 18766 Comm: syz.0.3627 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  733.143228][T18766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  733.143235][T18766] Call Trace:
[  733.143238][T18766]  <TASK>
[  733.143242][T18766]  dump_stack_lvl+0x16c/0x1f0
[  733.143275][T18766]  should_fail_ex+0x50a/0x650
[  733.143291][T18766]  _copy_from_user+0x2e/0xd0
[  733.143307][T18766]  bpf_ctx_init+0x151/0x1d0
[  733.143322][T18766]  bpf_prog_test_run_nf+0x2a3/0xb10
[  733.143338][T18766]  ? __pfx_bpf_prog_test_run_nf+0x10/0x10
[  733.143357][T18766]  ? fput+0x67/0x440
[  733.143367][T18766]  ? __bpf_prog_get+0xa0/0x290
[  733.143380][T18766]  ? __pfx_bpf_prog_test_run_nf+0x10/0x10
[  733.143395][T18766]  __sys_bpf+0xfc6/0x49c0
[  733.143409][T18766]  ? __pfx_lock_release+0x10/0x10
[  733.143424][T18766]  ? __pfx___sys_bpf+0x10/0x10
[  733.143438][T18766]  ? vfs_write+0x306/0x1150
[  733.143454][T18766]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  733.143476][T18766]  ? fput+0x67/0x440
[  733.143485][T18766]  ? ksys_write+0x1ba/0x250
[  733.143498][T18766]  ? __pfx_ksys_write+0x10/0x10
[  733.143513][T18766]  __ia32_sys_bpf+0x76/0xe0
[  733.143524][T18766]  __do_fast_syscall_32+0x73/0x120
[  733.143539][T18766]  do_fast_syscall_32+0x32/0x80
[  733.143554][T18766]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  733.143570][T18766] RIP: 0023:0xf743e579
[  733.143579][T18766] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  733.143589][T18766] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  733.143599][T18766] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  733.143605][T18766] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  733.143611][T18766] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  733.143616][T18766] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  733.143622][T18766] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  733.143633][T18766]  </TASK>
[  734.712979][T18794] netlink: 80 bytes leftover after parsing attributes in process `syz.2.3635'.
[  734.934613][T18800] virt_wifi0 speed is unknown, defaulting to 1000
[  734.937857][T18800] lo speed is unknown, defaulting to 1000
[  736.315995][T18840] FAULT_INJECTION: forcing a failure.
[  736.315995][T18840] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  736.319716][T18840] CPU: 2 UID: 0 PID: 18840 Comm: syz.3.3649 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  736.319732][T18840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  736.319738][T18840] Call Trace:
[  736.319742][T18840]  <TASK>
[  736.319746][T18840]  dump_stack_lvl+0x16c/0x1f0
[  736.319765][T18840]  should_fail_ex+0x50a/0x650
[  736.319777][T18840]  _copy_from_user+0x2e/0xd0
[  736.319790][T18840]  copy_from_sockptr_offset.constprop.0+0x157/0x190
[  736.319806][T18840]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  736.319822][T18840]  ? __local_bh_enable_ip+0x61/0x120
[  736.319837][T18840]  ? ipv6_setsockopt+0xcb/0x170
[  736.319852][T18840]  do_ipv6_setsockopt+0x1993/0x4520
[  736.319870][T18840]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  736.319886][T18840]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  736.319901][T18840]  ? find_held_lock+0x2d/0x110
[  736.319919][T18840]  ? __pfx___might_resched+0x10/0x10
[  736.319938][T18840]  ? aa_sk_perm+0x2f5/0xb20
[  736.319951][T18840]  ? ipv6_setsockopt+0xcb/0x170
[  736.319964][T18840]  ipv6_setsockopt+0xcb/0x170
[  736.319979][T18840]  tcp_setsockopt+0xa4/0x100
[  736.319993][T18840]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  736.320005][T18840]  do_sock_setsockopt+0x222/0x480
[  736.320017][T18840]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  736.320029][T18840]  ? lock_acquire+0x2f/0xb0
[  736.320048][T18840]  __sys_setsockopt+0x1a0/0x230
[  736.320066][T18840]  __ia32_sys_setsockopt+0xbc/0x160
[  736.320080][T18840]  ? lockdep_hardirqs_on+0x7c/0x110
[  736.320095][T18840]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  736.320110][T18840]  __do_fast_syscall_32+0x73/0x120
[  736.320126][T18840]  do_fast_syscall_32+0x32/0x80
[  736.320140][T18840]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  736.320156][T18840] RIP: 0023:0xf7f21579
[  736.320165][T18840] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  736.320175][T18840] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  736.320184][T18840] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000029
[  736.320190][T18840] RDX: 0000000000000039 RSI: 0000000080000cc0 RDI: 0000000000000110
[  736.320196][T18840] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  736.320202][T18840] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  736.320208][T18840] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  736.320219][T18840]  </TASK>
[  738.470669][T16177] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[  738.630936][T16177] usb 9-1: Using ep0 maxpacket: 8
[  738.634445][T16177] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  738.637876][T16177] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  738.641719][T16177] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  738.645389][T16177] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  738.650038][T16177] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  738.653374][T16177] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  738.874301][T16177] usb 9-1: usb_control_msg returned -32
[  738.875818][T16177] usbtmc 9-1:16.0: can't read capabilities
[  739.476401][ T1322] usb 9-1: USB disconnect, device number 34
[  740.081124][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  740.337803][T18889] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  740.340023][T18889] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  740.349449][T18889] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  740.351229][T18889] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  740.355810][T18889] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  740.357628][T18889] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  740.359579][T18889] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  740.414174][T18901] fuse: Unknown parameter 'seclabel'
[  740.418168][T18901] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3667'.
[  740.795682][T18906] netlink: 'syz.4.3668': attribute type 1 has an invalid length.
[  740.810812][T18906] 8021q: adding VLAN 0 to HW filter on device bond2
[  740.826598][T18906] netlink: 'syz.4.3668': attribute type 1 has an invalid length.
[  741.027168][T18911] virt_wifi0 speed is unknown, defaulting to 1000
[  741.029500][T18911] lo speed is unknown, defaulting to 1000
[  741.538124][T18920] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3671'.
[  741.593866][ T5961] Bluetooth: hci4: unexpected event for opcode 0x0c58
[  742.405597][T18928] FAULT_INJECTION: forcing a failure.
[  742.405597][T18928] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  742.410524][T18928] CPU: 0 UID: 0 PID: 18928 Comm: syz.0.3673 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  742.410545][T18928] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  742.410555][T18928] Call Trace:
[  742.410561][T18928]  <TASK>
[  742.410569][T18928]  dump_stack_lvl+0x16c/0x1f0
[  742.410597][T18928]  should_fail_ex+0x50a/0x650
[  742.410617][T18928]  _copy_from_user+0x2e/0xd0
[  742.410637][T18928]  get_compat_msghdr+0xa8/0x170
[  742.410659][T18928]  ? __pfx_get_compat_msghdr+0x10/0x10
[  742.410689][T18928]  ___sys_sendmsg+0x1b0/0x1e0
[  742.410717][T18928]  ? __pfx____sys_sendmsg+0x10/0x10
[  742.410752][T18928]  ? __pfx_lock_release+0x10/0x10
[  742.410775][T18928]  ? trace_lock_acquire+0x14e/0x1f0
[  742.410802][T18928]  ? __fget_files+0x206/0x3a0
[  742.410832][T18928]  __sys_sendmsg+0x16e/0x220
[  742.410848][T18928]  ? __pfx___sys_sendmsg+0x10/0x10
[  742.410888][T18928]  __do_fast_syscall_32+0x73/0x120
[  742.410915][T18928]  do_fast_syscall_32+0x32/0x80
[  742.410940][T18928]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  742.410967][T18928] RIP: 0023:0xf743e579
[  742.410981][T18928] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  742.410998][T18928] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  742.411015][T18928] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  742.411027][T18928] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  742.411037][T18928] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  742.411047][T18928] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  742.411057][T18928] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  742.411078][T18928]  </TASK>
[  742.511583][ T5961] Bluetooth: hci2: command 0x0406 tx timeout
[  742.511640][ T5953] Bluetooth: hci1: command 0x0405 tx timeout
[  742.513455][ T5961] Bluetooth: hci5: command 0x0406 tx timeout
[  742.648859][T18931] virt_wifi0 speed is unknown, defaulting to 1000
[  742.651235][T18931] lo speed is unknown, defaulting to 1000
[  743.527133][ T5326] usb 8-1: new high-speed USB device number 66 using dummy_hcd
[  743.708867][ T5326] usb 8-1: Using ep0 maxpacket: 8
[  743.723487][ T5326] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  743.725795][ T5326] usb 8-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  743.728726][ T5326] usb 8-1: config 250 has no interfaces?
[  743.731732][ T5326] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  743.734317][ T5326] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  743.736587][ T5326] usb 8-1: Product: syz
[  743.737755][ T5326] usb 8-1: SerialNumber: syz
[  744.567896][T18934] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  744.571219][T18934] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  744.575046][T18934] netlink: 'syz.3.3675': attribute type 7 has an invalid length.
[  744.577561][T18934] netlink: 212424 bytes leftover after parsing attributes in process `syz.3.3675'.
[  744.724489][T14180] Bluetooth: hci2: command 0x0406 tx timeout
[  744.724513][ T5961] Bluetooth: hci5: command 0x0406 tx timeout
[  745.499365][T18955] sctp: [Deprecated]: syz.4.3680 (pid 18955) Use of struct sctp_assoc_value in delayed_ack socket option.
[  745.499365][T18955] Use struct sctp_sack_info instead
[  745.506715][T18961] fuse: Bad value for 'fd'
[  745.604641][T18965] /dev/nullb0: Can't open blockdev
[  745.925175][T14180] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  745.927850][T14180] Bluetooth: hci4: Injecting HCI hardware error event
[  745.931508][ T5961] Bluetooth: hci4: hardware error 0x00
[  746.360591][T16177] usb 8-1: USB disconnect, device number 66
[  746.628102][T18979] Invalid source name
[  746.629732][T18979] UBIFS error (pid: 18979): cannot open "ubifs", error -22
[  746.678494][T18983] FAULT_INJECTION: forcing a failure.
[  746.678494][T18983] name failslab, interval 1, probability 0, space 0, times 0
[  746.688200][T18983] CPU: 3 UID: 0 PID: 18983 Comm: syz.2.3689 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  746.688224][T18983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  746.688235][T18983] Call Trace:
[  746.688241][T18983]  <TASK>
[  746.688248][T18983]  dump_stack_lvl+0x16c/0x1f0
[  746.688278][T18983]  should_fail_ex+0x50a/0x650
[  746.688293][T18983]  ? fs_reclaim_acquire+0xae/0x150
[  746.688317][T18983]  should_failslab+0xc2/0x120
[  746.688334][T18983]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  746.688360][T18983]  ? __pmd_alloc+0xc3/0x870
[  746.688385][T18983]  __pmd_alloc+0xc3/0x870
[  746.688410][T18983]  __handle_mm_fault+0x94a/0x2a40
[  746.688456][T18983]  ? __pfx___handle_mm_fault+0x10/0x10
[  746.688481][T18983]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  746.688520][T18983]  ? find_vma+0xc0/0x140
[  746.688545][T18983]  ? __pfx_find_vma+0x10/0x10
[  746.688569][T18983]  handle_mm_fault+0x3fa/0xaa0
[  746.688598][T18983]  do_user_addr_fault+0x7a3/0x13f0
[  746.688629][T18983]  exc_page_fault+0x5c/0xc0
[  746.688653][T18983]  asm_exc_page_fault+0x26/0x30
[  746.688676][T18983] RIP: 0010:_copy_to_user+0xb6/0xd0
[  746.688695][T18983] Code: 89 ee 48 89 ef e8 0a 28 f7 fc 4d 85 ff 75 a8 e8 90 2d f7 fc 89 de 4c 89 e7 e8 b6 72 59 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  746.688710][T18983] RSP: 0018:ffffc9000df77d98 EFLAGS: 00050246
[  746.688725][T18983] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000008
[  746.688735][T18983] RDX: fffff52001beefbf RSI: ffffc9000df77df0 RDI: 00000000800000c0
[  746.688746][T18983] RBP: 00000000800000c0 R08: 0000000000000000 R09: fffff52001beefbe
[  746.688756][T18983] R10: ffffc9000df77df7 R11: 0000000000000000 R12: ffffc9000df77df0
[  746.688766][T18983] R13: 00000000800000c8 R14: 00007ffffffff000 R15: 0000000000000000
[  746.688789][T18983]  ? _copy_to_user+0xaa/0xd0
[  746.688810][T18983]  put_old_itimerspec32+0xc3/0x1e0
[  746.688833][T18983]  ? __pfx_put_old_itimerspec32+0x10/0x10
[  746.688855][T18983]  ? do_timerfd_gettime+0x297/0x5d0
[  746.688880][T18983]  ? do_user_addr_fault+0xe50/0x13f0
[  746.688906][T18983]  __ia32_sys_timerfd_gettime32+0x141/0x170
[  746.688933][T18983]  ? __pfx___ia32_sys_timerfd_gettime32+0x10/0x10
[  746.688960][T18983]  ? ksys_write+0x1ba/0x250
[  746.688992][T18983]  __do_fast_syscall_32+0x73/0x120
[  746.689019][T18983]  do_fast_syscall_32+0x32/0x80
[  746.689045][T18983]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  746.689071][T18983] RIP: 0023:0xf7f84579
[  746.689084][T18983] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  746.689099][T18983] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000146
[  746.689114][T18983] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  746.689125][T18983] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  746.689135][T18983] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  746.689144][T18983] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  746.689154][T18983] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  746.689176][T18983]  </TASK>
[  746.828361][T18989] bridge3: entered promiscuous mode
[  747.465185][T18998] FAULT_INJECTION: forcing a failure.
[  747.465185][T18998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  747.468666][T18998] CPU: 0 UID: 0 PID: 18998 Comm: syz.3.3694 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  747.468680][T18998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  747.468686][T18998] Call Trace:
[  747.468690][T18998]  <TASK>
[  747.468694][T18998]  dump_stack_lvl+0x16c/0x1f0
[  747.468714][T18998]  should_fail_ex+0x50a/0x650
[  747.468726][T18998]  _copy_to_user+0x32/0xd0
[  747.468739][T18998]  simple_read_from_buffer+0xd0/0x160
[  747.468753][T18998]  proc_fail_nth_read+0x198/0x270
[  747.468766][T18998]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  747.468780][T18998]  ? rw_verify_area+0xcf/0x680
[  747.468792][T18998]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  747.468804][T18998]  vfs_read+0x1df/0xbf0
[  747.468818][T18998]  ? __fget_files+0x1fc/0x3a0
[  747.468833][T18998]  ? __pfx___mutex_lock+0x10/0x10
[  747.468848][T18998]  ? __pfx_vfs_read+0x10/0x10
[  747.468865][T18998]  ? __fget_files+0x206/0x3a0
[  747.468882][T18998]  ksys_read+0x12b/0x250
[  747.468895][T18998]  ? __pfx_ksys_read+0x10/0x10
[  747.468914][T18998]  __do_fast_syscall_32+0x73/0x120
[  747.468931][T18998]  do_fast_syscall_32+0x32/0x80
[  747.468945][T18998]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  747.468962][T18998] RIP: 0023:0xf7f21579
[  747.468970][T18998] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  747.468980][T18998] RSP: 002b:00000000f5046590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  747.468989][T18998] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5046620
[  747.468996][T18998] RDX: 000000000000000f RSI: 00000000f73acff4 RDI: 0000000000000000
[  747.469001][T18998] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  747.469007][T18998] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  747.469013][T18998] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  747.469024][T18998]  </TASK>
[  747.867480][ T5326] usb 8-1: new high-speed USB device number 67 using dummy_hcd
[  748.049263][ T5326] usb 8-1: Using ep0 maxpacket: 16
[  748.052627][ T5326] usb 8-1: config 1 interface 0 altsetting 121 bulk endpoint 0x82 has invalid maxpacket 32
[  748.055776][ T5326] usb 8-1: config 1 interface 0 altsetting 121 bulk endpoint 0x3 has invalid maxpacket 1023
[  748.058536][ T5326] usb 8-1: config 1 interface 0 has no altsetting 0
[  748.072145][ T5326] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  748.075572][ T5326] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  748.077784][ T5326] usb 8-1: Product: syz
[  748.079155][ T5326] usb 8-1: Manufacturer: syz
[  748.080413][ T5326] usb 8-1: SerialNumber: syz
[  748.087657][T19002] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  748.089617][T19002] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  748.145582][T19012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3699'.
[  748.147766][T19012] bridge_slave_0: left allmulticast mode
[  748.149153][T19012] bridge_slave_0: left promiscuous mode
[  748.150653][T19012] bridge0: port 1(bridge_slave_0) entered disabled state
[  748.177561][ T5961] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  748.407719][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  748.454488][ T5326] cdc_ether 8-1:1.0: probe with driver cdc_ether failed with error -71
[  748.458571][ T5326] usb 8-1: USB disconnect, device number 67
[  749.122261][T19025] netlink: 292 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.125632][T19025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.128957][T19025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.133191][T19025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.133453][ T1020] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  749.136517][T19025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.143390][T19025] netlink: 1484 bytes leftover after parsing attributes in process `syz.3.3704'.
[  749.187129][ T1020] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  749.262853][T19031] virt_wifi0 speed is unknown, defaulting to 1000
[  749.265225][T19031] lo speed is unknown, defaulting to 1000
[  749.435940][T19040] sp0: Synchronizing with TNC
[  749.441041][T19039] [U] è
[  749.580217][T19042] fuse: Unknown parameter 'rootsà˜F”ô00000000000000040000'
[  749.600477][T19042] nvme_fabrics: missing parameter 'transport=%s'
[  749.602402][T19042] nvme_fabrics: missing parameter 'nqn=%s'
[  750.051242][T19052] FAULT_INJECTION: forcing a failure.
[  750.051242][T19052] name failslab, interval 1, probability 0, space 0, times 0
[  750.054736][T19052] CPU: 0 UID: 0 PID: 19052 Comm: syz.0.3711 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  750.054750][T19052] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  750.054757][T19052] Call Trace:
[  750.054761][T19052]  <TASK>
[  750.054765][T19052]  dump_stack_lvl+0x16c/0x1f0
[  750.054794][T19052]  should_fail_ex+0x50a/0x650
[  750.054808][T19052]  ? fs_reclaim_acquire+0xae/0x150
[  750.054823][T19052]  should_failslab+0xc2/0x120
[  750.054834][T19052]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  750.054849][T19052]  ? getname_flags.part.0+0x4c/0x550
[  750.054863][T19052]  getname_flags.part.0+0x4c/0x550
[  750.054876][T19052]  getname_flags+0x93/0xf0
[  750.054889][T19052]  __ia32_sys_renameat2+0xd4/0x130
[  750.054901][T19052]  __do_fast_syscall_32+0x73/0x120
[  750.054917][T19052]  do_fast_syscall_32+0x32/0x80
[  750.054932][T19052]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  750.054949][T19052] RIP: 0023:0xf743e579
[  750.054957][T19052] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  750.054967][T19052] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000161
[  750.054977][T19052] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000180
[  750.054983][T19052] RDX: 00000000ffffffff RSI: 0000000080000000 RDI: 0000000000000000
[  750.054989][T19052] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  750.054995][T19052] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  750.055000][T19052] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  750.055012][T19052]  </TASK>
[  752.679921][T19105] netlink: 'syz.0.3729': attribute type 14 has an invalid length.
[  752.862434][T19115] netlink: 'syz.4.3732': attribute type 1 has an invalid length.
[  752.865719][T19115] netlink: 'syz.4.3732': attribute type 1 has an invalid length.
[  753.213691][T19126] FAULT_INJECTION: forcing a failure.
[  753.213691][T19126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  753.218641][T19126] CPU: 3 UID: 0 PID: 19126 Comm: syz.4.3736 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  753.218663][T19126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  753.218673][T19126] Call Trace:
[  753.218679][T19126]  <TASK>
[  753.218686][T19126]  dump_stack_lvl+0x16c/0x1f0
[  753.218714][T19126]  should_fail_ex+0x50a/0x650
[  753.218732][T19126]  _copy_to_user+0x32/0xd0
[  753.218753][T19126]  simple_read_from_buffer+0xd0/0x160
[  753.218777][T19126]  proc_fail_nth_read+0x198/0x270
[  753.218798][T19126]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  753.218820][T19126]  ? rw_verify_area+0xcf/0x680
[  753.218839][T19126]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  753.218858][T19126]  vfs_read+0x1df/0xbf0
[  753.218878][T19126]  ? __fget_files+0x1fc/0x3a0
[  753.218899][T19126]  ? __pfx___mutex_lock+0x10/0x10
[  753.218920][T19126]  ? __pfx_vfs_read+0x10/0x10
[  753.218946][T19126]  ? __fget_files+0x206/0x3a0
[  753.218976][T19126]  ksys_read+0x12b/0x250
[  753.218998][T19126]  ? __pfx_ksys_read+0x10/0x10
[  753.219027][T19126]  __do_fast_syscall_32+0x73/0x120
[  753.219054][T19126]  do_fast_syscall_32+0x32/0x80
[  753.219079][T19126]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  753.219106][T19126] RIP: 0023:0xf7fa8579
[  753.219119][T19126] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  753.219135][T19126] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  753.219151][T19126] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50c6620
[  753.219162][T19126] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  753.219172][T19126] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  753.219181][T19126] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  753.219191][T19126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  753.219213][T19126]  </TASK>
[  753.480937][T19135] netlink: 'syz.4.3739': attribute type 1 has an invalid length.
[  753.657541][ T5326] IPVS: starting estimator thread 0...
[  753.684003][T19145] FAULT_INJECTION: forcing a failure.
[  753.684003][T19145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  753.687594][T19145] CPU: 2 UID: 0 PID: 19145 Comm: syz.4.3742 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  753.687609][T19145] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  753.687616][T19145] Call Trace:
[  753.687619][T19145]  <TASK>
[  753.687624][T19145]  dump_stack_lvl+0x16c/0x1f0
[  753.687642][T19145]  should_fail_ex+0x50a/0x650
[  753.687654][T19145]  _copy_from_user+0x2e/0xd0
[  753.687666][T19145]  __do_sys_add_key+0x22d/0x460
[  753.687683][T19145]  ? __pfx___do_sys_add_key+0x10/0x10
[  753.687698][T19145]  ? ksys_write+0x1ba/0x250
[  753.687717][T19145]  __do_fast_syscall_32+0x73/0x120
[  753.687733][T19145]  do_fast_syscall_32+0x32/0x80
[  753.687748][T19145]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  753.687764][T19145] RIP: 0023:0xf7fa8579
[  753.687772][T19145] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  753.687782][T19145] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[  753.687791][T19145] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[  753.687797][T19145] RDX: 00000000800000c0 RSI: 000000000000001c RDI: 00000000fffffffd
[  753.687804][T19145] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  753.687809][T19145] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  753.687815][T19145] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  753.687826][T19145]  </TASK>
[  753.758236][T19142] IPVS: using max 28 ests per chain, 67200 per kthread
[  754.654472][T19179] FAULT_INJECTION: forcing a failure.
[  754.654472][T19179] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  754.658105][T19179] CPU: 3 UID: 0 PID: 19179 Comm: syz.2.3754 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  754.658128][T19179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  754.658136][T19179] Call Trace:
[  754.658140][T19179]  <TASK>
[  754.658144][T19179]  dump_stack_lvl+0x16c/0x1f0
[  754.658165][T19179]  should_fail_ex+0x50a/0x650
[  754.658189][T19179]  _copy_to_user+0x32/0xd0
[  754.658205][T19179]  simple_read_from_buffer+0xd0/0x160
[  754.658219][T19179]  proc_fail_nth_read+0x198/0x270
[  754.658233][T19179]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  754.658246][T19179]  ? rw_verify_area+0xcf/0x680
[  754.658259][T19179]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  754.658271][T19179]  vfs_read+0x1df/0xbf0
[  754.658286][T19179]  ? __fget_files+0x1fc/0x3a0
[  754.658301][T19179]  ? __pfx___mutex_lock+0x10/0x10
[  754.658316][T19179]  ? __pfx_vfs_read+0x10/0x10
[  754.658332][T19179]  ? __fget_files+0x206/0x3a0
[  754.658350][T19179]  ksys_read+0x12b/0x250
[  754.658363][T19179]  ? __pfx_ksys_read+0x10/0x10
[  754.658405][T19179]  __do_fast_syscall_32+0x73/0x120
[  754.658421][T19179]  do_fast_syscall_32+0x32/0x80
[  754.658437][T19179]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  754.658454][T19179] RIP: 0023:0xf7f84579
[  754.658463][T19179] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  754.658473][T19179] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  754.658483][T19179] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f50a6620
[  754.658489][T19179] RDX: 000000000000000f RSI: 00000000f740cff4 RDI: 0000000000000000
[  754.658495][T19179] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  754.658501][T19179] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  754.658507][T19179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  754.658519][T19179]  </TASK>
[  755.479733][T19202] FAULT_INJECTION: forcing a failure.
[  755.479733][T19202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  755.483464][T19202] CPU: 1 UID: 0 PID: 19202 Comm: syz.0.3763 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  755.483484][T19202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  755.483492][T19202] Call Trace:
[  755.483498][T19202]  <TASK>
[  755.483505][T19202]  dump_stack_lvl+0x16c/0x1f0
[  755.483531][T19202]  should_fail_ex+0x50a/0x650
[  755.483547][T19202]  ? __pfx_nvmf_dev_write+0x10/0x10
[  755.483570][T19202]  ? __pfx_nvmf_dev_write+0x10/0x10
[  755.483585][T19202]  _copy_from_user+0x2e/0xd0
[  755.483598][T19202]  memdup_user_nul+0x72/0x110
[  755.483612][T19202]  nvmf_dev_write+0x71/0xc40
[  755.483626][T19202]  ? bpf_lsm_file_permission+0x9/0x10
[  755.483642][T19202]  ? security_file_permission+0x71/0x210
[  755.483656][T19202]  ? rw_verify_area+0xcf/0x680
[  755.483669][T19202]  ? __pfx_nvmf_dev_write+0x10/0x10
[  755.483684][T19202]  vfs_write+0x24c/0x1150
[  755.483698][T19202]  ? __fget_files+0x1fc/0x3a0
[  755.483713][T19202]  ? __pfx_lock_release+0x10/0x10
[  755.483728][T19202]  ? __pfx_vfs_write+0x10/0x10
[  755.483742][T19202]  ? lock_acquire+0x2f/0xb0
[  755.483754][T19202]  ? __fget_files+0x40/0x3a0
[  755.483769][T19202]  ? __fget_files+0x206/0x3a0
[  755.483787][T19202]  ksys_write+0x12b/0x250
[  755.483800][T19202]  ? __pfx_ksys_write+0x10/0x10
[  755.483817][T19202]  __do_fast_syscall_32+0x73/0x120
[  755.483833][T19202]  do_fast_syscall_32+0x32/0x80
[  755.483848][T19202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  755.483865][T19202] RIP: 0023:0xf743e579
[  755.483873][T19202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  755.483883][T19202] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  755.483894][T19202] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000440
[  755.483900][T19202] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  755.483906][T19202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  755.483911][T19202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  755.483917][T19202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  755.483929][T19202]  </TASK>
[  755.556829][    C1] vkms_vblank_simulate: vblank timer overrun
[  755.559975][T19208] overlayfs: conflicting options: nfs_export=on,index=off
[  755.864142][T16177] usb 9-1: new high-speed USB device number 35 using dummy_hcd
[  755.888369][T19228] FAULT_INJECTION: forcing a failure.
[  755.888369][T19228] name failslab, interval 1, probability 0, space 0, times 0
[  755.891690][T19228] CPU: 2 UID: 0 PID: 19228 Comm: syz.3.3772 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  755.891704][T19228] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  755.891711][T19228] Call Trace:
[  755.891714][T19228]  <TASK>
[  755.891719][T19228]  dump_stack_lvl+0x16c/0x1f0
[  755.891737][T19228]  should_fail_ex+0x50a/0x650
[  755.891747][T19228]  ? fs_reclaim_acquire+0xae/0x150
[  755.891762][T19228]  ? video_usercopy+0x1ac/0x1620
[  755.891774][T19228]  should_failslab+0xc2/0x120
[  755.891785][T19228]  __kmalloc_noprof+0xcb/0x510
[  755.891800][T19228]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  755.891817][T19228]  video_usercopy+0x1ac/0x1620
[  755.891830][T19228]  ? __pfx___video_do_ioctl+0x10/0x10
[  755.891843][T19228]  ? __pfx_video_usercopy+0x10/0x10
[  755.891863][T19228]  v4l2_ioctl+0x1ba/0x250
[  755.891874][T19228]  ? __fget_files+0x141/0x3a0
[  755.891889][T19228]  v4l2_compat_ioctl32+0x214/0x2c0
[  755.891900][T19228]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  755.891911][T19228]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  755.891924][T19228]  __do_fast_syscall_32+0x73/0x120
[  755.891940][T19228]  do_fast_syscall_32+0x32/0x80
[  755.891955][T19228]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  755.891973][T19228] RIP: 0023:0xf7f21579
[  755.891981][T19228] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  755.891991][T19228] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  755.892001][T19228] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0d05605
[  755.892007][T19228] RDX: 0000000080000940 RSI: 0000000000000000 RDI: 0000000000000000
[  755.892013][T19228] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  755.892019][T19228] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  755.892024][T19228] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  755.892036][T19228]  </TASK>
[  756.039432][T16177] usb 9-1: Using ep0 maxpacket: 16
[  756.042539][T16177] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  756.048354][T16177] usb 9-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  756.051563][T16177] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.055457][T16177] usb 9-1: config 0 descriptor??
[  756.060756][T16177] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input61
[  756.088719][T19234] netlink: 'syz.3.3774': attribute type 1 has an invalid length.
[  756.091240][T19234] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3774'.
[  756.145272][T19239] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3774'.
[  756.154762][T19240] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  756.277297][T19212] netlink: 'syz.4.3766': attribute type 8 has an invalid length.
[  756.370874][T19250] kvm: apic: phys broadcast and lowest prio
[  756.450283][T19259] netlink: 'syz.3.3783': attribute type 1 has an invalid length.
[  756.453447][T19259] netlink: 'syz.3.3783': attribute type 3 has an invalid length.
[  756.455859][T19259] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3783'.
[  756.458497][T19259] NCSI netlink: No device for ifindex 0
[  757.182882][T19280] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3789'.
[  757.340945][T19287] misc userio: No port type given on /dev/userio
[  757.342895][T19288] misc userio: No port type given on /dev/userio
[  758.810836][ T5347] bcm5974 9-1:0.0: could not read from device
[  758.813558][ T5347] bcm5974 9-1:0.0: could not read from device
[  758.814093][T16177] usb 9-1: USB disconnect, device number 35
[  759.286798][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  759.286813][   T40] audit: type=1326 audit(2000000131.625:2819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19307 comm="syz.0.3798" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf743e579 code=0x0
[  759.357916][T19309] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  759.862452][T16177] usb 8-1: new high-speed USB device number 68 using dummy_hcd
[  760.343514][T16177] usb 8-1: Using ep0 maxpacket: 8
[  760.347023][T16177] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  760.350340][T16177] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  760.353506][T16177] usb 8-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  760.357602][T16177] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  760.361021][T16177] usb 8-1: config 250 has no interface number 0
[  760.363412][T16177] usb 8-1: config 250 interface 228 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 17
[  760.368457][T16177] usb 8-1: config 250 interface 228 has no altsetting 0
[  760.378404][T16177] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  760.381825][T16177] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  760.384941][T16177] usb 8-1: Product: syz
[  760.386662][T16177] usb 8-1: SerialNumber: syz
[  760.393965][T16177] hub 8-1:250.228: bad descriptor, ignoring hub
[  760.396412][T16177] hub 8-1:250.228: probe with driver hub failed with error -5
[  760.631171][   T69] usb 8-1: USB disconnect, device number 68
[  760.771616][   T40] audit: type=1326 audit(2000000133.019:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19323 comm="syz.2.3802" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f84579 code=0x0
[  761.327204][   T69] usb 8-1: new high-speed USB device number 69 using dummy_hcd
[  761.498102][   T69] usb 8-1: Using ep0 maxpacket: 8
[  761.505756][   T69] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  761.509273][   T69] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  761.512692][   T69] usb 8-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  761.516856][   T69] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  761.520564][   T69] usb 8-1: config 250 has no interface number 0
[  761.523363][   T69] usb 8-1: config 250 interface 228 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 17
[  761.528657][   T69] usb 8-1: config 250 interface 228 has no altsetting 0
[  761.536908][   T69] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  761.540942][   T69] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  761.544281][   T69] usb 8-1: Product: syz
[  761.546127][   T69] usb 8-1: SerialNumber: syz
[  761.567239][   T69] hub 8-1:250.228: bad descriptor, ignoring hub
[  761.569959][   T69] hub 8-1:250.228: probe with driver hub failed with error -5
[  761.779010][T19312] netlink: 'syz.3.3799': attribute type 7 has an invalid length.
[  761.781282][T19312] netlink: 212424 bytes leftover after parsing attributes in process `syz.3.3799'.
[  761.788434][ T5326] usb 8-1: USB disconnect, device number 69
[  761.918399][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  762.058064][T19346] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3808'.
[  762.342576][T16177] usb 9-1: new high-speed USB device number 36 using dummy_hcd
[  762.502963][T16177] usb 9-1: Using ep0 maxpacket: 8
[  762.506665][T16177] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  762.510463][T16177] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  762.514267][T16177] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  762.518202][T16177] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  762.523203][T16177] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  762.526908][T16177] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  762.750864][T16177] usb 9-1: usb_control_msg returned -32
[  762.752559][T16177] usbtmc 9-1:16.0: can't read capabilities
[  763.351598][ T5326] usb 9-1: USB disconnect, device number 36
[  763.953138][T19387] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3822'.
[  764.869587][T19405] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3826'.
[  767.266099][T19443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3836'.
[  767.373999][   T40] audit: type=1326 audit(2000000139.183:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19446 comm="syz.3.3838" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f21579 code=0x0
[  767.837900][T19452] FAULT_INJECTION: forcing a failure.
[  767.837900][T19452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  767.842207][T19452] CPU: 3 UID: 0 PID: 19452 Comm: syz.0.3840 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  767.842227][T19452] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  767.842236][T19452] Call Trace:
[  767.842242][T19452]  <TASK>
[  767.842265][T19452]  dump_stack_lvl+0x16c/0x1f0
[  767.842298][T19452]  should_fail_ex+0x50a/0x650
[  767.842318][T19452]  _copy_from_iter+0x2a1/0x1560
[  767.842335][T19452]  ? trace_lock_acquire+0x14e/0x1f0
[  767.842354][T19452]  ? __pfx__copy_from_iter+0x10/0x10
[  767.842368][T19452]  ? __virt_addr_valid+0x1a4/0x590
[  767.842383][T19452]  ? __virt_addr_valid+0x5e/0x590
[  767.842393][T19452]  ? __phys_addr_symbol+0x30/0x80
[  767.842403][T19452]  ? __check_object_size+0x488/0x710
[  767.842415][T19452]  hci_sock_sendmsg+0x46d/0x25e0
[  767.842427][T19452]  ? __pfx_aa_sk_perm+0x10/0x10
[  767.842440][T19452]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  767.842454][T19452]  sock_write_iter+0x4fe/0x5b0
[  767.842468][T19452]  ? __pfx_sock_write_iter+0x10/0x10
[  767.842484][T19452]  ? bpf_lsm_file_permission+0x9/0x10
[  767.842500][T19452]  ? security_file_permission+0x71/0x210
[  767.842514][T19452]  ? rw_verify_area+0xcf/0x680
[  767.842527][T19452]  vfs_write+0x5ae/0x1150
[  767.842541][T19452]  ? __pfx_sock_write_iter+0x10/0x10
[  767.842557][T19452]  ? __pfx_vfs_write+0x10/0x10
[  767.842577][T19452]  ? __fget_files+0x40/0x3a0
[  767.842607][T19452]  ksys_write+0x207/0x250
[  767.842624][T19452]  ? __pfx_ksys_write+0x10/0x10
[  767.842647][T19452]  __do_fast_syscall_32+0x73/0x120
[  767.842669][T19452]  do_fast_syscall_32+0x32/0x80
[  767.842705][T19452]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  767.842727][T19452] RIP: 0023:0xf743e579
[  767.842736][T19452] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  767.842746][T19452] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  767.842756][T19452] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0
[  767.842762][T19452] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  767.842768][T19452] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  767.842773][T19452] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  767.842779][T19452] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  767.842790][T19452]  </TASK>
[  769.409578][T19490] FAULT_INJECTION: forcing a failure.
[  769.409578][T19490] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  769.413264][T19490] CPU: 2 UID: 0 PID: 19490 Comm: syz.0.3852 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  769.413279][T19490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  769.413286][T19490] Call Trace:
[  769.413290][T19490]  <TASK>
[  769.413294][T19490]  dump_stack_lvl+0x16c/0x1f0
[  769.413314][T19490]  should_fail_ex+0x50a/0x650
[  769.413327][T19490]  _copy_to_user+0x32/0xd0
[  769.413340][T19490]  simple_read_from_buffer+0xd0/0x160
[  769.413355][T19490]  proc_fail_nth_read+0x198/0x270
[  769.413368][T19490]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  769.413381][T19490]  ? rw_verify_area+0xcf/0x680
[  769.413394][T19490]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  769.413406][T19490]  vfs_read+0x1df/0xbf0
[  769.413419][T19490]  ? __fget_files+0x1fc/0x3a0
[  769.413434][T19490]  ? __pfx___mutex_lock+0x10/0x10
[  769.413449][T19490]  ? __pfx_vfs_read+0x10/0x10
[  769.413466][T19490]  ? __fget_files+0x206/0x3a0
[  769.413484][T19490]  ksys_read+0x12b/0x250
[  769.413517][T19490]  ? __pfx_ksys_read+0x10/0x10
[  769.413534][T19490]  __do_fast_syscall_32+0x73/0x120
[  769.413551][T19490]  do_fast_syscall_32+0x32/0x80
[  769.413565][T19490]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  769.413582][T19490] RIP: 0023:0xf743e579
[  769.413590][T19490] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  769.413600][T19490] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  769.413610][T19490] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50c6620
[  769.413617][T19490] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  769.413623][T19490] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  769.413629][T19490] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  769.413634][T19490] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  769.413646][T19490]  </TASK>
[  769.487050][T13059] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  771.644921][   T40] audit: type=1326 audit(2000000143.187:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19532 comm="syz.4.3864" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa8579 code=0x0
[  772.192820][T19552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3872'.
[  772.467554][T19564] FAULT_INJECTION: forcing a failure.
[  772.467554][T19564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  772.473250][T19564] CPU: 3 UID: 0 PID: 19564 Comm: syz.0.3876 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  772.473268][T19564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  772.473275][T19564] Call Trace:
[  772.473279][T19564]  <TASK>
[  772.473284][T19564]  dump_stack_lvl+0x16c/0x1f0
[  772.473303][T19564]  should_fail_ex+0x50a/0x650
[  772.473315][T19564]  _copy_from_iter+0x2a1/0x1560
[  772.473328][T19564]  ? trace_lock_acquire+0x14e/0x1f0
[  772.473341][T19564]  ? __pfx__copy_from_iter+0x10/0x10
[  772.473351][T19564]  ? __virt_addr_valid+0x1a4/0x590
[  772.473364][T19564]  ? __virt_addr_valid+0x5e/0x590
[  772.473374][T19564]  ? __phys_addr_symbol+0x30/0x80
[  772.473384][T19564]  ? __check_object_size+0x488/0x710
[  772.473396][T19564]  skb_copy_datagram_from_iter+0x124/0x710
[  772.473414][T19564]  ? iov_iter_single_seg_count+0x132/0x360
[  772.473427][T19564]  tun_get_user+0x199c/0x3e50
[  772.473442][T19564]  ? find_held_lock+0x2d/0x110
[  772.473453][T19564]  ? __pfx_tun_get_user+0x10/0x10
[  772.473463][T19564]  ? find_held_lock+0x2d/0x110
[  772.473476][T19564]  ? __pfx_lock_release+0x10/0x10
[  772.473496][T19564]  tun_chr_write_iter+0xdc/0x210
[  772.473508][T19564]  vfs_write+0x5ae/0x1150
[  772.473522][T19564]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  772.473534][T19564]  ? __pfx_vfs_write+0x10/0x10
[  772.473548][T19564]  ? __fget_files+0x40/0x3a0
[  772.473569][T19564]  ksys_write+0x12b/0x250
[  772.473582][T19564]  ? __pfx_ksys_write+0x10/0x10
[  772.473599][T19564]  __do_fast_syscall_32+0x73/0x120
[  772.473616][T19564]  do_fast_syscall_32+0x32/0x80
[  772.473631][T19564]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  772.473647][T19564] RIP: 0023:0xf743e579
[  772.473656][T19564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  772.473665][T19564] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  772.473675][T19564] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000340
[  772.473681][T19564] RDX: 0000000000000043 RSI: 0000000000000000 RDI: 0000000000000000
[  772.473687][T19564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  772.473692][T19564] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  772.473698][T19564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  772.473709][T19564]  </TASK>
[  774.616777][   T40] audit: type=1326 audit(2000000145.965:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.624575][   T40] audit: type=1326 audit(2000000145.965:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.632888][   T40] audit: type=1326 audit(2000000145.965:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.639321][   T40] audit: type=1326 audit(2000000145.965:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.645972][   T40] audit: type=1326 audit(2000000145.965:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.654269][   T40] audit: type=1326 audit(2000000145.965:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.663264][   T40] audit: type=1326 audit(2000000145.965:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.671825][   T40] audit: type=1326 audit(2000000145.965:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=330 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.678220][   T40] audit: type=1326 audit(2000000145.965:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.685687][   T40] audit: type=1326 audit(2000000145.965:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19603 comm="syz.4.3888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  774.925480][T13059] usb 9-1: new high-speed USB device number 37 using dummy_hcd
[  775.085854][T13059] usb 9-1: Using ep0 maxpacket: 16
[  775.097446][T13059] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  775.102128][T13059] usb 9-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  775.105382][T13059] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  775.109810][T13059] usb 9-1: config 0 descriptor??
[  775.114534][T13059] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input63
[  775.334312][T19612] netlink: 'syz.4.3890': attribute type 8 has an invalid length.
[  775.879251][T19637] virt_wifi0 speed is unknown, defaulting to 1000
[  775.881666][T19637] lo speed is unknown, defaulting to 1000
[  777.941089][ T5347] bcm5974 9-1:0.0: could not read from device
[  777.947057][ T5347] bcm5974 9-1:0.0: could not read from device
[  778.034700][T13059] usb 9-1: USB disconnect, device number 37
[  778.484820][T19676] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3907'.
[  778.636008][T19679] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  779.197773][T19690] virt_wifi0 speed is unknown, defaulting to 1000
[  779.259042][T19690] lo speed is unknown, defaulting to 1000
[  779.278315][T19699] input: syz0 as /devices/virtual/input/input64
[  779.299699][T19699] netlink: 'syz.3.3913': attribute type 8 has an invalid length.
[  780.469451][T19725] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3916'.
[  780.514614][T19725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3916'.
[  780.556604][T19725] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  780.751928][ T5326] usb 9-1: new high-speed USB device number 38 using dummy_hcd
[  780.912157][ T5326] usb 9-1: Using ep0 maxpacket: 8
[  780.915353][ T5326] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  780.918192][ T5326] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  780.921046][ T5326] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  780.924224][ T5326] usb 9-1: config 250 has no interface number 0
[  780.926398][ T5326] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  780.930264][ T5326] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  780.933792][ T5326] usb 9-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  780.938312][ T5326] usb 9-1: config 250 interface 228 has no altsetting 0
[  780.941926][ T5326] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  780.945215][ T5326] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  780.947760][ T5326] usb 9-1: Product: syz
[  780.949112][ T5326] usb 9-1: SerialNumber: syz
[  780.953148][ T5326] hub 9-1:250.228: bad descriptor, ignoring hub
[  780.954991][ T5326] hub 9-1:250.228: probe with driver hub failed with error -5
[  781.302801][   T69] usb 9-1: USB disconnect, device number 38
[  781.934446][T19744] input: syz0 as /devices/virtual/input/input65
[  781.939999][T19744] netlink: 'syz.0.3925': attribute type 8 has an invalid length.
[  782.002643][   T69] usb 9-1: new high-speed USB device number 39 using dummy_hcd
[  782.195043][   T69] usb 9-1: Using ep0 maxpacket: 8
[  782.197886][   T69] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  782.200644][   T69] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  782.203124][   T69] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  782.205789][   T69] usb 9-1: config 250 has no interface number 0
[  782.207936][   T69] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  782.215098][   T69] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  782.219684][   T69] usb 9-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  782.223664][   T69] usb 9-1: config 250 interface 228 has no altsetting 0
[  782.228384][   T69] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  782.232204][   T69] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  782.234968][   T69] usb 9-1: Product: syz
[  782.236235][   T69] usb 9-1: SerialNumber: syz
[  782.244462][   T69] hub 9-1:250.228: bad descriptor, ignoring hub
[  782.246359][   T69] hub 9-1:250.228: probe with driver hub failed with error -5
[  782.503707][T19723] netlink: 'syz.4.3920': attribute type 7 has an invalid length.
[  782.506201][T19723] netlink: 212424 bytes leftover after parsing attributes in process `syz.4.3920'.
[  782.654952][ T1020] usb 9-1: USB disconnect, device number 39
[  783.135917][T16177] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  783.301138][T16177] usb 5-1: Using ep0 maxpacket: 8
[  783.304258][T16177] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  783.307960][T16177] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  783.310949][T16177] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  783.314897][T16177] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  783.319130][T16177] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  783.321614][T16177] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  783.325841][T16177] hub 5-1:1.0: bad descriptor, ignoring hub
[  783.327519][T16177] hub 5-1:1.0: probe with driver hub failed with error -5
[  783.330001][T16177] cdc_wdm 5-1:1.0: skipping garbage
[  783.331430][T16177] cdc_wdm 5-1:1.0: skipping garbage
[  783.335553][T16177] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  783.337269][T16177] cdc_wdm 5-1:1.0: Unknown control protocol
[  783.755500][T19778] overlayfs: failed to resolve './file0': -2
[  783.805187][T19780] input: syz0 as /devices/virtual/input/input66
[  783.819347][T19780] netlink: 'syz.2.3936': attribute type 8 has an invalid length.
[  783.884404][T16177] usb 5-1: USB disconnect, device number 53
[  784.536326][ T5326] usb 9-1: new high-speed USB device number 40 using dummy_hcd
[  784.696898][ T5326] usb 9-1: Using ep0 maxpacket: 8
[  784.700258][ T5326] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  784.703442][ T5326] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  784.707327][ T5326] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  784.710186][ T5326] usb 9-1: config 250 has no interface number 0
[  784.712467][ T5326] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  784.716737][ T5326] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  784.720837][ T5326] usb 9-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  784.725764][ T5326] usb 9-1: config 250 interface 228 has no altsetting 0
[  784.729888][ T5326] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  784.733280][ T5326] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  784.736395][ T5326] usb 9-1: Product: syz
[  784.737922][ T5326] usb 9-1: SerialNumber: syz
[  784.744975][ T5326] hub 9-1:250.228: bad descriptor, ignoring hub
[  784.747428][ T5326] hub 9-1:250.228: probe with driver hub failed with error -5
[  785.081710][ T5326] usb 9-1: USB disconnect, device number 40
[  785.411448][T19804] FAULT_INJECTION: forcing a failure.
[  785.411448][T19804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  785.416483][T19804] CPU: 3 UID: 0 PID: 19804 Comm: syz.0.3944 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  785.416504][T19804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  785.416513][T19804] Call Trace:
[  785.416517][T19804]  <TASK>
[  785.416523][T19804]  dump_stack_lvl+0x16c/0x1f0
[  785.416550][T19804]  should_fail_ex+0x50a/0x650
[  785.416571][T19804]  _copy_to_user+0x32/0xd0
[  785.416592][T19804]  simple_read_from_buffer+0xd0/0x160
[  785.416616][T19804]  proc_fail_nth_read+0x198/0x270
[  785.416635][T19804]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  785.416655][T19804]  ? rw_verify_area+0xcf/0x680
[  785.416673][T19804]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  785.416691][T19804]  vfs_read+0x1df/0xbf0
[  785.416713][T19804]  ? __fget_files+0x1fc/0x3a0
[  785.416734][T19804]  ? __pfx___mutex_lock+0x10/0x10
[  785.416756][T19804]  ? __pfx_vfs_read+0x10/0x10
[  785.416780][T19804]  ? __fget_files+0x206/0x3a0
[  785.416808][T19804]  ksys_read+0x12b/0x250
[  785.416830][T19804]  ? __pfx_ksys_read+0x10/0x10
[  785.416858][T19804]  __do_fast_syscall_32+0x73/0x120
[  785.416882][T19804]  do_fast_syscall_32+0x32/0x80
[  785.416904][T19804]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  785.416928][T19804] RIP: 0023:0xf743e579
[  785.416941][T19804] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  785.416956][T19804] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  785.416972][T19804] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50c6620
[  785.416981][T19804] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  785.416990][T19804] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  785.416999][T19804] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  785.417008][T19804] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  785.417029][T19804]  </TASK>
[  785.487908][   T69] usb 9-1: new high-speed USB device number 41 using dummy_hcd
[  785.680196][T16177] usb 8-1: new high-speed USB device number 70 using dummy_hcd
[  785.691404][   T69] usb 9-1: Using ep0 maxpacket: 8
[  785.695974][   T69] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  785.698319][   T69] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  785.700599][   T69] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  785.703861][   T69] usb 9-1: config 250 has no interface number 0
[  785.705592][   T69] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  785.708995][   T69] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  785.712657][   T69] usb 9-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  785.716865][   T69] usb 9-1: config 250 interface 228 has no altsetting 0
[  785.719919][   T69] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  785.723014][   T69] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  785.725694][   T69] usb 9-1: Product: syz
[  785.726896][   T69] usb 9-1: SerialNumber: syz
[  785.730162][   T69] hub 9-1:250.228: bad descriptor, ignoring hub
[  785.731960][   T69] hub 9-1:250.228: probe with driver hub failed with error -5
[  785.852625][T16177] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  785.855810][T16177] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  785.858472][T16177] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  785.862349][T16177] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  785.865475][T16177] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  785.869402][T16177] usb 8-1: config 0 descriptor??
[  786.049939][T19783] netlink: 'syz.4.3937': attribute type 7 has an invalid length.
[  786.052121][T19783] netlink: 212424 bytes leftover after parsing attributes in process `syz.4.3937'.
[  786.172171][T16178] usb 9-1: USB disconnect, device number 41
[  786.307045][T16177] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  786.310282][T16177] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  786.325404][T16177] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  786.582262][ T5326] usb 8-1: USB disconnect, device number 70
[  786.649850][T19826] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  786.963378][T15816] usb 9-1: new high-speed USB device number 42 using dummy_hcd
[  787.138551][T15816] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  787.143873][T15816] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  787.148383][T15816] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  787.152518][T15816] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  787.155208][T15816] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.158313][T15816] usb 9-1: config 0 descriptor??
[  787.591033][T15816] plantronics 0003:047F:FFFF.0004: unknown main item tag 0xd
[  787.594791][T15816] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  787.598199][T15816] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  787.861842][T19830] FAULT_INJECTION: forcing a failure.
[  787.861842][T19830] name failslab, interval 1, probability 0, space 0, times 0
[  787.868490][T19830] CPU: 3 UID: 0 PID: 19830 Comm: syz.4.3953 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  787.868507][T19830] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  787.868515][T19830] Call Trace:
[  787.868520][T19830]  <TASK>
[  787.868525][T19830]  dump_stack_lvl+0x16c/0x1f0
[  787.868544][T19830]  should_fail_ex+0x50a/0x650
[  787.868555][T19830]  ? fs_reclaim_acquire+0xae/0x150
[  787.868570][T19830]  ? hiddev_ioctl_usage.isra.0+0xba/0x1650
[  787.868586][T19830]  should_failslab+0xc2/0x120
[  787.868597][T19830]  __kmalloc_cache_noprof+0x68/0x410
[  787.868614][T19830]  hiddev_ioctl_usage.isra.0+0xba/0x1650
[  787.868630][T19830]  ? tomoyo_path_number_perm+0x190/0x590
[  787.868646][T19830]  ? __pfx_hiddev_ioctl_usage.isra.0+0x10/0x10
[  787.868663][T19830]  ? usbhid_init_reports+0x1aa/0x390
[  787.868679][T19830]  hiddev_ioctl+0x641/0x15b0
[  787.868699][T19830]  ? __pfx_hiddev_ioctl+0x10/0x10
[  787.868723][T19830]  ? __fget_files+0x206/0x3a0
[  787.868739][T19830]  ? __pfx_hiddev_ioctl+0x10/0x10
[  787.868754][T19830]  compat_ptr_ioctl+0x6b/0xa0
[  787.868766][T19830]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  787.868777][T19830]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  787.868794][T19830]  __do_fast_syscall_32+0x73/0x120
[  787.868815][T19830]  do_fast_syscall_32+0x32/0x80
[  787.868830][T19830]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  787.868847][T19830] RIP: 0023:0xf7fa8579
[  787.868855][T19830] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  787.868865][T19830] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  787.868875][T19830] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000d01c4813
[  787.868881][T19830] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  787.868887][T19830] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  787.868893][T19830] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  787.868898][T19830] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  787.868910][T19830]  </TASK>
[  787.869793][   T69] usb 9-1: USB disconnect, device number 42
[  788.464154][T19853] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  790.104549][T19875] bond4: entered promiscuous mode
[  790.106094][T19875] bond4: entered allmulticast mode
[  790.107764][T19875] 8021q: adding VLAN 0 to HW filter on device bond4
[  792.453803][T19957] FAULT_INJECTION: forcing a failure.
[  792.453803][T19957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  792.457740][T19957] CPU: 2 UID: 0 PID: 19957 Comm: syz.2.3989 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  792.457755][T19957] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  792.457766][T19957] Call Trace:
[  792.457770][T19957]  <TASK>
[  792.457774][T19957]  dump_stack_lvl+0x16c/0x1f0
[  792.457794][T19957]  should_fail_ex+0x50a/0x650
[  792.457807][T19957]  _copy_from_user+0x2e/0xd0
[  792.457819][T19957]  kstrtouint_from_user+0xd7/0x1c0
[  792.457833][T19957]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  792.457852][T19957]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  792.457868][T19957]  proc_fail_nth_write+0x84/0x250
[  792.457881][T19957]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  792.457893][T19957]  ? ksys_write+0x12b/0x250
[  792.457910][T19957]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  792.457932][T19957]  vfs_write+0x24c/0x1150
[  792.457947][T19957]  ? __fget_files+0x1fc/0x3a0
[  792.457962][T19957]  ? __pfx___mutex_lock+0x10/0x10
[  792.457977][T19957]  ? __pfx_vfs_write+0x10/0x10
[  792.457994][T19957]  ? __fget_files+0x206/0x3a0
[  792.458014][T19957]  ksys_write+0x12b/0x250
[  792.458049][T19957]  ? __pfx_ksys_write+0x10/0x10
[  792.458068][T19957]  __do_fast_syscall_32+0x73/0x120
[  792.458084][T19957]  do_fast_syscall_32+0x32/0x80
[  792.458099][T19957]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  792.458116][T19957] RIP: 0023:0xf7f84579
[  792.458124][T19957] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  792.458134][T19957] RSP: 002b:00000000f5085590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  792.458144][T19957] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5085620
[  792.458150][T19957] RDX: 0000000000000001 RSI: 00000000f740cff4 RDI: 0000000000000000
[  792.458156][T19957] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  792.458161][T19957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  792.458167][T19957] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  792.458179][T19957]  </TASK>
[  793.699084][T19984] FAULT_INJECTION: forcing a failure.
[  793.699084][T19984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  793.704357][T19984] CPU: 0 UID: 0 PID: 19984 Comm: syz.2.3997 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  793.704380][T19984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  793.704391][T19984] Call Trace:
[  793.704397][T19984]  <TASK>
[  793.704404][T19984]  dump_stack_lvl+0x16c/0x1f0
[  793.704433][T19984]  should_fail_ex+0x50a/0x650
[  793.704454][T19984]  _copy_from_iter+0x2a1/0x1560
[  793.704474][T19984]  ? trace_lock_acquire+0x14e/0x1f0
[  793.704497][T19984]  ? __pfx__copy_from_iter+0x10/0x10
[  793.704514][T19984]  ? __virt_addr_valid+0x1a4/0x590
[  793.704535][T19984]  ? __virt_addr_valid+0x5e/0x590
[  793.704552][T19984]  ? __phys_addr_symbol+0x30/0x80
[  793.704568][T19984]  ? __check_object_size+0x488/0x710
[  793.704590][T19984]  hci_sock_sendmsg+0x46d/0x25e0
[  793.704612][T19984]  ? __pfx_aa_sk_perm+0x10/0x10
[  793.704632][T19984]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  793.704657][T19984]  sock_write_iter+0x4fe/0x5b0
[  793.704680][T19984]  ? __pfx_sock_write_iter+0x10/0x10
[  793.704709][T19984]  ? bpf_lsm_file_permission+0x9/0x10
[  793.704734][T19984]  ? security_file_permission+0x71/0x210
[  793.704758][T19984]  ? rw_verify_area+0xcf/0x680
[  793.704781][T19984]  vfs_write+0x5ae/0x1150
[  793.704805][T19984]  ? __pfx_sock_write_iter+0x10/0x10
[  793.704835][T19984]  ? __pfx_vfs_write+0x10/0x10
[  793.704859][T19984]  ? __fget_files+0x40/0x3a0
[  793.704894][T19984]  ksys_write+0x207/0x250
[  793.704917][T19984]  ? __pfx_ksys_write+0x10/0x10
[  793.704946][T19984]  __do_fast_syscall_32+0x73/0x120
[  793.704973][T19984]  do_fast_syscall_32+0x32/0x80
[  793.704998][T19984]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  793.705025][T19984] RIP: 0023:0xf7f84579
[  793.705039][T19984] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  793.705055][T19984] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  793.705071][T19984] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  793.705082][T19984] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000
[  793.705091][T19984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  793.705101][T19984] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  793.705111][T19984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  793.705132][T19984]  </TASK>
[  793.788904][T19987] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3998'.
[  793.792944][T19987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3998'.
[  795.983525][T14180] Bluetooth: hci3: sending frame failed (-49)
[  795.986104][ T5961] Bluetooth: hci3: Opcode 0x1003 failed: -49
[  796.013552][T20038] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4014'.
[  797.626909][T20068] FAULT_INJECTION: forcing a failure.
[  797.626909][T20068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  797.628186][T12271] Bluetooth: hci3: Frame reassembly failed (-90)
[  797.630832][T20068] CPU: 2 UID: 0 PID: 20068 Comm: syz.4.4022 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  797.630848][T20068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  797.630854][T20068] Call Trace:
[  797.630859][T20068]  <TASK>
[  797.630863][T20068]  dump_stack_lvl+0x16c/0x1f0
[  797.630881][T20068]  should_fail_ex+0x50a/0x650
[  797.630894][T20068]  _copy_to_user+0x32/0xd0
[  797.630907][T20068]  simple_read_from_buffer+0xd0/0x160
[  797.630922][T20068]  proc_fail_nth_read+0x198/0x270
[  797.630935][T20068]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  797.630948][T20068]  ? rw_verify_area+0xcf/0x680
[  797.630960][T20068]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  797.630976][T20068]  vfs_read+0x1df/0xbf0
[  797.630990][T20068]  ? __fget_files+0x1fc/0x3a0
[  797.631005][T20068]  ? __pfx___mutex_lock+0x10/0x10
[  797.631019][T20068]  ? __pfx_vfs_read+0x10/0x10
[  797.631036][T20068]  ? __fget_files+0x206/0x3a0
[  797.631053][T20068]  ksys_read+0x12b/0x250
[  797.631066][T20068]  ? __pfx_ksys_read+0x10/0x10
[  797.631083][T20068]  __do_fast_syscall_32+0x73/0x120
[  797.631098][T20068]  do_fast_syscall_32+0x32/0x80
[  797.631113][T20068]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  797.631130][T20068] RIP: 0023:0xf7fa8579
[  797.631138][T20068] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  797.631148][T20068] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  797.631158][T20068] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50c6620
[  797.631165][T20068] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  797.631170][T20068] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  797.631176][T20068] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  797.631182][T20068] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  797.631193][T20068]  </TASK>
[  797.696949][T16177] usb 8-1: new high-speed USB device number 71 using dummy_hcd
[  797.737909][T20071] virt_wifi0 speed is unknown, defaulting to 1000
[  797.745876][T20071] lo speed is unknown, defaulting to 1000
[  797.856823][T16177] usb 8-1: Using ep0 maxpacket: 8
[  797.859590][T16177] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  797.861855][T16177] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  797.864156][T16177] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  797.866629][T16177] usb 8-1: config 250 has no interface number 0
[  797.873718][T16177] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  797.876911][T16177] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  797.891168][T16177] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  797.894624][T16177] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  797.898341][T16177] usb 8-1: config 250 interface 228 has no altsetting 0
[  797.901828][T16177] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  797.904327][T16177] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  797.906702][T16177] usb 8-1: Product: syz
[  797.907876][T16177] usb 8-1: SerialNumber: syz
[  797.911818][T16177] hub 8-1:250.228: bad descriptor, ignoring hub
[  797.913578][T16177] hub 8-1:250.228: probe with driver hub failed with error -5
[  798.136476][ T5326] usb 8-1: USB disconnect, device number 71
[  798.186126][T20080] FAULT_INJECTION: forcing a failure.
[  798.186126][T20080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  798.190323][T20080] CPU: 2 UID: 0 PID: 20080 Comm: syz.0.4025 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  798.190337][T20080] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  798.190343][T20080] Call Trace:
[  798.190346][T20080]  <TASK>
[  798.190350][T20080]  dump_stack_lvl+0x16c/0x1f0
[  798.190368][T20080]  should_fail_ex+0x50a/0x650
[  798.190381][T20080]  _copy_from_user+0x2e/0xd0
[  798.190393][T20080]  kvm_arch_vcpu_ioctl+0x3cd/0x5050
[  798.190404][T20080]  ? is_bpf_text_address+0x94/0x1a0
[  798.190420][T20080]  ? hlock_class+0x4e/0x130
[  798.190431][T20080]  ? __lock_acquire+0x15a9/0x3c40
[  798.190445][T20080]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  798.190459][T20080]  ? __pfx___lock_acquire+0x10/0x10
[  798.190472][T20080]  ? stack_trace_save+0x95/0xd0
[  798.190484][T20080]  ? __pfx_stack_trace_save+0x10/0x10
[  798.190494][T20080]  ? __pfx_mark_lock+0x10/0x10
[  798.190507][T20080]  ? stack_depot_save_flags+0x28/0x9c0
[  798.190519][T20080]  ? lock_acquire.part.0+0x11b/0x380
[  798.190536][T20080]  ? __mutex_trylock_common+0xea/0x250
[  798.190553][T20080]  ? rcu_is_watching+0x12/0xc0
[  798.190564][T20080]  ? trace_contention_end+0xee/0x140
[  798.190579][T20080]  ? __mutex_lock+0x1cc/0xb10
[  798.190596][T20080]  ? kvm_vcpu_ioctl+0x27f/0x16b0
[  798.190609][T20080]  ? __pfx___mutex_lock+0x10/0x10
[  798.190626][T20080]  ? find_held_lock+0x2d/0x110
[  798.190640][T20080]  ? kvm_vcpu_ioctl+0x1258/0x16b0
[  798.190652][T20080]  kvm_vcpu_ioctl+0x1258/0x16b0
[  798.190665][T20080]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  798.190677][T20080]  ? tomoyo_path_number_perm+0x190/0x590
[  798.190691][T20080]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  798.190703][T20080]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  798.190720][T20080]  ? do_vfs_ioctl+0x513/0x1990
[  798.190733][T20080]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  798.190757][T20080]  ? __pfx_lock_release+0x10/0x10
[  798.190771][T20080]  ? trace_lock_acquire+0x14e/0x1f0
[  798.190783][T20080]  kvm_vcpu_compat_ioctl+0x210/0x3d0
[  798.190796][T20080]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  798.190809][T20080]  ? __fget_files+0x206/0x3a0
[  798.190825][T20080]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  798.190838][T20080]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  798.190851][T20080]  __do_fast_syscall_32+0x73/0x120
[  798.190867][T20080]  do_fast_syscall_32+0x32/0x80
[  798.190881][T20080]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  798.190898][T20080] RIP: 0023:0xf743e579
[  798.190906][T20080] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  798.190916][T20080] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  798.190926][T20080] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000004048aecb
[  798.190932][T20080] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  798.190938][T20080] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  798.190943][T20080] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  798.190949][T20080] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  798.190961][T20080]  </TASK>
[  798.712067][ T5326] usb 8-1: new high-speed USB device number 72 using dummy_hcd
[  798.883111][ T5326] usb 8-1: Using ep0 maxpacket: 8
[  798.885887][ T5326] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  798.889020][ T5326] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  798.892193][ T5326] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  798.895711][ T5326] usb 8-1: config 250 has no interface number 0
[  798.898151][ T5326] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  798.902454][ T5326] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  798.906176][ T5326] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  798.910051][ T5326] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  798.913947][ T5326] usb 8-1: config 250 interface 228 has no altsetting 0
[  798.917323][ T5326] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  798.919847][ T5326] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  798.922175][ T5326] usb 8-1: Product: syz
[  798.923338][ T5326] usb 8-1: SerialNumber: syz
[  798.927346][ T5326] hub 8-1:250.228: bad descriptor, ignoring hub
[  798.929469][ T5326] hub 8-1:250.228: probe with driver hub failed with error -5
[  799.142385][T20060] netlink: 'syz.3.4020': attribute type 7 has an invalid length.
[  799.144641][T20060] netlink: 212424 bytes leftover after parsing attributes in process `syz.3.4020'.
[  799.150669][ T5326] usb 8-1: USB disconnect, device number 72
[  799.802581][T14180] Bluetooth: hci3: command 0x1003 tx timeout
[  799.802701][ T5961] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  800.694302][T20116] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4037'.
[  800.697098][T20116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4037'.
[  800.699551][T20116] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4037'.
[  800.702224][T20116] netlink: 'syz.3.4037': attribute type 20 has an invalid length.
[  800.917424][T20122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4039'.
[  801.428929][T20135] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  801.879071][T20147] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4046'.
[  801.882441][T20147] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  802.380421][T20157] netlink: 'syz.4.4049': attribute type 1 has an invalid length.
[  802.383494][T20157] netlink: 134744 bytes leftover after parsing attributes in process `syz.4.4049'.
[  802.605450][T20166] virt_wifi0 speed is unknown, defaulting to 1000
[  802.607682][T20166] lo speed is unknown, defaulting to 1000
[  803.241574][T20178] FAULT_INJECTION: forcing a failure.
[  803.241574][T20178] name failslab, interval 1, probability 0, space 0, times 0
[  803.245448][T20178] CPU: 1 UID: 0 PID: 20178 Comm: syz.3.4055 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  803.245470][T20178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  803.245480][T20178] Call Trace:
[  803.245485][T20178]  <TASK>
[  803.245492][T20178]  dump_stack_lvl+0x16c/0x1f0
[  803.245521][T20178]  should_fail_ex+0x50a/0x650
[  803.245542][T20178]  ? sctp_add_bind_addr+0x9a/0x3d0
[  803.245562][T20178]  should_failslab+0xc2/0x120
[  803.245578][T20178]  __kmalloc_cache_noprof+0x68/0x410
[  803.245597][T20178]  ? __pfx_sctp_get_port_local+0x10/0x10
[  803.245617][T20178]  ? lock_acquire+0x2f/0xb0
[  803.245637][T20178]  ? sctp_bind_addr_match+0x43/0x300
[  803.245658][T20178]  sctp_add_bind_addr+0x9a/0x3d0
[  803.245678][T20178]  sctp_do_bind+0x2d6/0x700
[  803.245706][T20178]  sctp_connect_new_asoc+0x5ff/0x790
[  803.245723][T20178]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  803.245742][T20178]  ? mark_held_locks+0x9f/0xe0
[  803.245766][T20178]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  803.245795][T20178]  sctp_sendmsg+0x1610/0x1eb0
[  803.245810][T20178]  ? __pfx___lock_acquire+0x10/0x10
[  803.245839][T20178]  ? __pfx_sctp_sendmsg+0x10/0x10
[  803.245871][T20178]  ? __pfx_aa_sk_perm+0x10/0x10
[  803.245894][T20178]  ? __pfx_sctp_sendmsg+0x10/0x10
[  803.245912][T20178]  inet_sendmsg+0x119/0x140
[  803.245952][T20178]  __sys_sendto+0x42a/0x4f0
[  803.245978][T20178]  ? __pfx___sys_sendto+0x10/0x10
[  803.246023][T20178]  ? ksys_write+0x1ba/0x250
[  803.246050][T20178]  ? __pfx_ksys_write+0x10/0x10
[  803.246072][T20178]  __ia32_sys_sendto+0xdd/0x1b0
[  803.246095][T20178]  ? lockdep_hardirqs_on+0x7c/0x110
[  803.246116][T20178]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  803.246138][T20178]  __do_fast_syscall_32+0x73/0x120
[  803.246165][T20178]  do_fast_syscall_32+0x32/0x80
[  803.246186][T20178]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  803.246210][T20178] RIP: 0023:0xf7f21579
[  803.246222][T20178] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  803.246238][T20178] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  803.246252][T20178] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000500
[  803.246261][T20178] RDX: 0000000000034000 RSI: 0000000000000040 RDI: 0000000080000000
[  803.246270][T20178] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  803.246279][T20178] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  803.246288][T20178] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  803.246308][T20178]  </TASK>
[  803.336972][    C1] vkms_vblank_simulate: vblank timer overrun
[  804.359266][T20194] FAULT_INJECTION: forcing a failure.
[  804.359266][T20194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  804.363652][T20194] CPU: 3 UID: 0 PID: 20194 Comm: syz.0.4060 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  804.363668][T20194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  804.363675][T20194] Call Trace:
[  804.363678][T20194]  <TASK>
[  804.363682][T20194]  dump_stack_lvl+0x16c/0x1f0
[  804.363703][T20194]  should_fail_ex+0x50a/0x650
[  804.363715][T20194]  _copy_from_user+0x2e/0xd0
[  804.363727][T20194]  memdup_user+0x71/0xd0
[  804.363740][T20194]  strndup_user+0x78/0xe0
[  804.363753][T20194]  __do_sys_add_key+0x157/0x460
[  804.363770][T20194]  ? __pfx___do_sys_add_key+0x10/0x10
[  804.363785][T20194]  ? ksys_write+0x1ba/0x250
[  804.363803][T20194]  __do_fast_syscall_32+0x73/0x120
[  804.363819][T20194]  do_fast_syscall_32+0x32/0x80
[  804.363834][T20194]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  804.363850][T20194] RIP: 0023:0xf743e579
[  804.363858][T20194] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  804.363869][T20194] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[  804.363879][T20194] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000080000180
[  804.363885][T20194] RDX: 0000000080000100 RSI: 00000000000000ca RDI: 00000000fffffffe
[  804.363891][T20194] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  804.363897][T20194] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  804.363903][T20194] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  804.363914][T20194]  </TASK>
[  804.822865][T20201] virt_wifi0 speed is unknown, defaulting to 1000
[  804.825089][T20201] lo speed is unknown, defaulting to 1000
[  805.130327][T20219] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  805.132706][T20219] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  805.136329][T20219] vhci_hcd vhci_hcd.0: Device attached
[  805.425917][ T1020] usb 38-1: SetAddress Request (2) to port 0
[  805.441760][ T1020] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  805.500546][ T8059] usb 9-1: new high-speed USB device number 43 using dummy_hcd
[  805.571814][T20220] vhci_hcd: connection reset by peer
[  805.587276][T12277] vhci_hcd: stop threads
[  805.588499][T12277] vhci_hcd: release socket
[  805.591440][T12277] vhci_hcd: disconnect device
[  805.671572][ T8059] usb 9-1: Using ep0 maxpacket: 8
[  805.674325][ T8059] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  805.676950][ T8059] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  805.719574][ T8059] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  805.723199][ T8059] usb 9-1: config 250 has no interface number 0
[  805.726454][ T8059] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  805.731687][ T8059] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  805.736114][ T8059] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  805.740044][ T8059] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  805.744541][ T8059] usb 9-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  805.749935][ T8059] usb 9-1: config 250 interface 228 has no altsetting 0
[  805.785913][ T8059] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  805.789231][ T8059] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  805.792861][ T8059] usb 9-1: Product: syz
[  805.795349][ T8059] usb 9-1: SerialNumber: syz
[  805.840331][ T8059] hub 9-1:250.228: bad descriptor, ignoring hub
[  805.846118][ T8059] hub 9-1:250.228: probe with driver hub failed with error -5
[  805.944055][   T44] ==================================================================
[  805.946350][   T44] BUG: KASAN: slab-use-after-free in move_to_new_folio+0x12e/0x700
[  805.948539][   T44] Read of size 8 at addr ffff8880235bf3d0 by task kcompactd0/44
[  805.951256][   T44] 
[  805.952429][   T44] CPU: 2 UID: 0 PID: 44 Comm: kcompactd0 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  805.952443][   T44] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  805.952450][   T44] Call Trace:
[  805.952454][   T44]  <TASK>
[  805.952458][   T44]  dump_stack_lvl+0x116/0x1f0
[  805.952476][   T44]  print_report+0xc3/0x670
[  805.952486][   T44]  ? __virt_addr_valid+0x5e/0x590
[  805.952497][   T44]  ? __phys_addr+0xc6/0x150
[  805.952507][   T44]  kasan_report+0xd9/0x110
[  805.952516][   T44]  ? move_to_new_folio+0x12e/0x700
[  805.952527][   T44]  ? move_to_new_folio+0x12e/0x700
[  805.952539][   T44]  kasan_check_range+0xef/0x1a0
[  805.952554][   T44]  move_to_new_folio+0x12e/0x700
[  805.952570][   T44]  migrate_pages_batch+0x2009/0x3150
[  805.952587][   T44]  ? __pfx_compaction_free+0x10/0x10
[  805.952603][   T44]  ? __pfx_migrate_pages_batch+0x10/0x10
[  805.952616][   T44]  migrate_pages_sync+0x131/0x910
[  805.952627][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  805.952641][   T44]  ? __pfx_compaction_free+0x10/0x10
[  805.952655][   T44]  ? find_held_lock+0x2d/0x110
[  805.952666][   T44]  ? __pfx_migrate_pages_sync+0x10/0x10
[  805.952678][   T44]  ? __pfx_lock_release+0x10/0x10
[  805.952693][   T44]  migrate_pages+0x1acf/0x2290
[  805.952708][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  805.952722][   T44]  ? __pfx_compaction_free+0x10/0x10
[  805.952736][   T44]  ? __pfx_migrate_pages+0x10/0x10
[  805.952748][   T44]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  805.952765][   T44]  compact_zone+0x1f66/0x4220
[  805.952780][   T44]  ? hlock_class+0x4e/0x130
[  805.952792][   T44]  ? __pfx___lock_acquire+0x10/0x10
[  805.952806][   T44]  ? __pfx_compact_zone+0x10/0x10
[  805.952820][   T44]  ? lock_acquire.part.0+0x11b/0x380
[  805.952835][   T44]  compact_node+0x1a2/0x2d0
[  805.952850][   T44]  ? __pfx_compact_node+0x10/0x10
[  805.952868][   T44]  ? __pfx_extfrag_for_order+0x10/0x10
[  805.952881][   T44]  kcompactd+0x744/0xdd0
[  805.952896][   T44]  ? __pfx_kcompactd+0x10/0x10
[  805.952911][   T44]  ? __pfx_autoremove_wake_function+0x10/0x10
[  805.952924][   T44]  ? lockdep_hardirqs_on+0x7c/0x110
[  805.952938][   T44]  ? __kthread_parkme+0x148/0x220
[  805.952949][   T44]  ? __pfx_kcompactd+0x10/0x10
[  805.952964][   T44]  kthread+0x3af/0x750
[  805.952975][   T44]  ? __pfx_kthread+0x10/0x10
[  805.952988][   T44]  ? __pfx_kthread+0x10/0x10
[  805.952999][   T44]  ret_from_fork+0x45/0x80
[  805.953012][   T44]  ? __pfx_kthread+0x10/0x10
[  805.953024][   T44]  ret_from_fork_asm+0x1a/0x30
[  805.953038][   T44]  </TASK>
[  805.953041][   T44] 
[  806.024387][   T44] Allocated by task 20182:
[  806.025657][   T44]  kasan_save_stack+0x33/0x60
[  806.027032][   T44]  kasan_save_track+0x14/0x30
[  806.028395][   T44]  __kasan_slab_alloc+0x89/0x90
[  806.029795][   T44]  kmem_cache_alloc_lru_noprof+0x226/0x3d0
[  806.031485][   T44]  shmem_alloc_inode+0x25/0x50
[  806.032859][   T44]  alloc_inode+0x5d/0x230
[  806.034139][   T44]  new_inode+0x22/0x210
[  806.035467][   T44]  shmem_get_inode+0x194/0xf00
[  806.036939][   T44]  shmem_symlink+0xfe/0x890
[  806.038254][   T44]  vfs_symlink+0x3e8/0x660
[  806.039537][   T44]  do_symlinkat+0x263/0x310
[  806.040839][   T44]  __ia32_sys_symlinkat+0x93/0xc0
[  806.042293][   T44]  __do_fast_syscall_32+0x73/0x120
[  806.043795][   T44]  do_fast_syscall_32+0x32/0x80
[  806.045193][   T44]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  806.046994][   T44] 
[  806.047691][   T44] Freed by task 13507:
[  806.048909][   T44]  kasan_save_stack+0x33/0x60
[  806.050393][   T44]  kasan_save_track+0x14/0x30
[  806.051756][   T44]  kasan_save_free_info+0x3b/0x60
[  806.053175][   T44]  __kasan_slab_free+0x51/0x70
[  806.054602][   T44]  kmem_cache_free+0x2e2/0x4d0
[  806.055971][   T44]  i_callback+0x43/0x70
[  806.057163][   T44]  rcu_core+0x79d/0x14d0
[  806.058388][   T44]  handle_softirqs+0x213/0x8f0
[  806.059771][   T44]  __irq_exit_rcu+0x109/0x170
[  806.061112][   T44]  irq_exit_rcu+0x9/0x30
[  806.062339][   T44]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  806.063965][   T44]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  806.065639][   T44] 
[  806.066356][   T44] Last potentially related work creation:
[  806.067980][   T44]  kasan_save_stack+0x33/0x60
[  806.069321][   T44]  kasan_record_aux_stack+0xb8/0xd0
[  806.070804][   T44]  __call_rcu_common.constprop.0+0x9a/0x870
[  806.072489][   T44]  destroy_inode+0x12c/0x1b0
[  806.073830][   T44]  evict+0x5ed/0x960
[  806.074995][   T44]  iput+0x52a/0x890
[  806.076093][   T44]  do_unlinkat+0x5c3/0x760
[  806.077358][   T44]  __ia32_sys_unlink+0xc4/0x110
[  806.078767][   T44]  __do_fast_syscall_32+0x73/0x120
[  806.080221][   T44]  do_fast_syscall_32+0x32/0x80
[  806.081585][   T44]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  806.083395][   T44] 
[  806.084126][   T44] The buggy address belongs to the object at ffff8880235bef08
[  806.084126][   T44]  which belongs to the cache shmem_inode_cache of size 1544
[  806.088160][   T44] The buggy address is located 1224 bytes inside of
[  806.088160][   T44]  freed 1544-byte region [ffff8880235bef08, ffff8880235bf510)
[  806.092010][   T44] 
[  806.092707][   T44] The buggy address belongs to the physical page:
[  806.094574][   T44] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x235b8
[  806.096912][   T44] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  806.099287][   T44] memcg:ffff888022db8101
[  806.100506][   T44] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  806.102767][   T44] page_type: f5(slab)
[  806.103942][   T44] raw: 00fff00000000040 ffff88801c2b1cc0 0000000000000000 dead000000000001
[  806.106320][   T44] raw: 0000000000000000 0000000000130013 00000000f5000000 ffff888022db8101
[  806.108727][   T44] head: 00fff00000000040 ffff88801c2b1cc0 0000000000000000 dead000000000001
[  806.111151][   T44] head: 0000000000000000 0000000000130013 00000000f5000000 ffff888022db8101
[  806.113634][   T44] head: 00fff00000000003 ffffea00008d6e01 ffffffffffffffff 0000000000000000
[  806.116085][   T44] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  806.118370][   T44] page dumped because: kasan: bad access detected
[  806.120176][   T44] page_owner tracks the page as allocated
[  806.121765][   T44] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 38, tgid 38 (kdevtmpfs), ts 6384048246, free_ts 0
[  806.127197][   T44]  post_alloc_hook+0x181/0x1b0
[  806.128567][   T44]  get_page_from_freelist+0xfce/0x2f80
[  806.130263][   T44]  __alloc_frozen_pages_noprof+0x221/0x2470
[  806.132030][   T44]  alloc_pages_mpol+0x1fc/0x540
[  806.133425][   T44]  new_slab+0x23d/0x330
[  806.134326][ T8059] usblp 9-1:250.228: usblp0: USB Bidirectional printer dev 43 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  806.137800][   T44]  ___slab_alloc+0xc5d/0x1720
[  806.137819][   T44]  __slab_alloc.constprop.0+0x56/0xb0
[  806.137832][   T44]  kmem_cache_alloc_lru_noprof+0xff/0x3d0
[  806.137846][   T44]  shmem_alloc_inode+0x25/0x50
[  806.137859][   T44]  alloc_inode+0x5d/0x230
[  806.145052][   T44]  new_inode+0x22/0x210
[  806.146232][   T44]  shmem_get_inode+0x194/0xf00
[  806.147564][   T44]  shmem_mknod+0x1a8/0x450
[  806.148830][   T44]  vfs_mknod+0x5d7/0x8e0
[  806.150038][   T44]  devtmpfs_work_loop+0x1a8/0x7d0
[  806.151437][   T44]  devtmpfsd+0x4c/0x50
[  806.152572][   T44] page_owner free stack trace missing
[  806.154113][   T44] 
[  806.154806][   T44] Memory state around the buggy address:
[  806.156426][   T44]  ffff8880235bf280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  806.158674][   T44]  ffff8880235bf300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  806.160920][   T44] >ffff8880235bf380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  806.163175][   T44]                                                  ^
[  806.165047][   T44]  ffff8880235bf400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  806.166845][ T8059] usb 9-1: USB disconnect, device number 43
[  806.167239][   T44]  ffff8880235bf480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  806.167247][   T44] ==================================================================
[  806.174181][   T44] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  806.176197][   T44] CPU: 2 UID: 0 PID: 44 Comm: kcompactd0 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  806.179087][   T44] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  806.182076][   T44] Call Trace:
[  806.183024][   T44]  <TASK>
[  806.183889][   T44]  dump_stack_lvl+0x3d/0x1f0
[  806.185236][   T44]  panic+0x71d/0x800
[  806.186357][   T44]  ? __pfx_panic+0x10/0x10
[  806.187610][   T44]  ? preempt_schedule_thunk+0x1a/0x30
[  806.189233][   T44]  ? preempt_schedule_common+0x44/0xc0
[  806.190762][   T44]  ? check_panic_on_warn+0x1f/0xb0
[  806.192191][   T44]  check_panic_on_warn+0xab/0xb0
[  806.193612][   T44]  end_report+0x117/0x180
[  806.194858][   T44]  kasan_report+0xe9/0x110
[  806.196108][   T44]  ? move_to_new_folio+0x12e/0x700
[  806.197542][   T44]  ? move_to_new_folio+0x12e/0x700
[  806.199000][   T44]  kasan_check_range+0xef/0x1a0
[  806.200360][   T44]  move_to_new_folio+0x12e/0x700
[  806.201753][   T44]  migrate_pages_batch+0x2009/0x3150
[  806.203235][   T44]  ? __pfx_compaction_free+0x10/0x10
[  806.204754][   T44]  ? __pfx_migrate_pages_batch+0x10/0x10
[  806.206372][   T44]  migrate_pages_sync+0x131/0x910
[  806.207824][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  806.209329][   T44]  ? __pfx_compaction_free+0x10/0x10
[  806.210836][   T44]  ? find_held_lock+0x2d/0x110
[  806.212181][   T44]  ? __pfx_migrate_pages_sync+0x10/0x10
[  806.213735][   T44]  ? __pfx_lock_release+0x10/0x10
[  806.215177][   T44]  migrate_pages+0x1acf/0x2290
[  806.216517][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  806.218022][   T44]  ? __pfx_compaction_free+0x10/0x10
[  806.219506][   T44]  ? __pfx_migrate_pages+0x10/0x10
[  806.220948][   T44]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  806.222737][   T44]  compact_zone+0x1f66/0x4220
[  806.224104][   T44]  ? hlock_class+0x4e/0x130
[  806.225381][   T44]  ? __pfx___lock_acquire+0x10/0x10
[  806.226847][   T44]  ? __pfx_compact_zone+0x10/0x10
[  806.228271][   T44]  ? lock_acquire.part.0+0x11b/0x380
[  806.229728][   T44]  compact_node+0x1a2/0x2d0
[  806.231045][   T44]  ? __pfx_compact_node+0x10/0x10
[  806.232461][   T44]  ? __pfx_extfrag_for_order+0x10/0x10
[  806.234000][   T44]  kcompactd+0x744/0xdd0
[  806.235224][   T44]  ? __pfx_kcompactd+0x10/0x10
[  806.236569][   T44]  ? __pfx_autoremove_wake_function+0x10/0x10
[  806.238281][   T44]  ? lockdep_hardirqs_on+0x7c/0x110
[  806.239737][   T44]  ? __kthread_parkme+0x148/0x220
[  806.241142][   T44]  ? __pfx_kcompactd+0x10/0x10
[  806.242511][   T44]  kthread+0x3af/0x750
[  806.243653][   T44]  ? __pfx_kthread+0x10/0x10
[  806.244952][   T44]  ? __pfx_kthread+0x10/0x10
[  806.246268][   T44]  ret_from_fork+0x45/0x80
[  806.247528][   T44]  ? __pfx_kthread+0x10/0x10
[  806.248835][   T44]  ret_from_fork_asm+0x1a/0x30
[  806.250195][   T44]  </TASK>
[  806.251673][   T44] Kernel Offset: disabled
[  806.252893][   T44] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:41:38  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fd RBX=ffff888023cc2440 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fd RDI=0000000000000002 RBP=0000000000000008 RSP=ffffc90000007b80
R8 =0000000000000000 R9 =fffffbfff20c51c2 R10=ffffffff90628e17 R11=0000000000000004
R12=0000000000000003 R13=1ffff92000000f71 R14=0000000000000001 R15=ffffc90000007ba8
RIP=ffffffff8167f058 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000003271eff8 CR3=000000006f44a000 CR4=00352ef0
DR0=0000000000000007 DR1=000000000000000b DR2=0000000000000002 DR3=0000000000000009 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=0000000000000053 RCX=0000000000020000 RDX=1ffff110055fca7c
RSI=0000000000000008 RDI=ffffffff96ec2cc8 RBP=0000000000000000 RSP=ffffc900039bf330
R8 =0000000000000001 R9 =0000000000000001 R10=000000000000000a R11=0000000000000001
R12=0000000000000000 R13=ffff88802afe4880 R14=0000000000000053 R15=ffff88802afe53c0
RIP=ffffffff821c3500 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080024000 CR3=00000000582ce000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853ea9b5 RDI=ffffffff9ab72ea0 RBP=ffffffff9ab72e60 RSP=ffffc900006b6ec8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=000000000000005d R14=ffffffff9ab72e60 R15=0000000000000000
RIP=ffffffff853ea9df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000303f3ffc CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000bdfbab RBX=0000000000000003 RCX=ffffffff8b557469 RDX=0000000000000000
RSI=ffffffff8b6cfc80 RDI=ffffffff8bd359e0 RBP=ffffed1003770910 RSP=ffffc900004afe08
R8 =0000000000000001 R9 =ffffed10056e6f85 R10=ffff88802b737c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801bb84880 R14=ffffffff90628e10 R15=0000000000000000
RIP=ffffffff8b55884f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5025b04 CR3=0000000063734000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff00
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000