last executing test programs:

3m11.703880944s ago: executing program 2 (id=2104):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000400)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000040)=0x4, 0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000003c0)={'syz0\x00', {0x0, 0x0, 0x0, 0x400}, 0xfffffffe, [0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x8, 0x3, 0x0, 0xfffffffa, 0x711, 0x0, 0x80000001, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x1, 0xffffffff, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x6e3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1ff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0xee, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffe1b, 0x0, 0x0, 0x0, 0xfffffffd, 0x8000]}, 0x45c)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x15, 0x5, 0x0)
getsockopt(r5, 0x200000000114, 0x2710, &(0x7f0000005ec0)=""/102394, &(0x7f0000000040)=0x18ffa)
syz_open_dev$video(&(0x7f0000000000), 0x75, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0xe, 0x6, 0x58565559, 0x7, 0x5f7, 0xfffffffe, 0x6, 0x0, 0x0, 0x6, 0x2, 0x2}})
connect$inet6(r1, 0x0, 0x0)
r7 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r7, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
recvmmsg(r7, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
syz_usb_connect(0x0, 0x3d7, &(0x7f00000007c0)=ANY=[@ANYBLOB="120100004cefc008e10593085bfd010203010902c50301000000000904"], 0x0)

3m8.558002291s ago: executing program 2 (id=2119):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x155e, &(0x7f0000000740)={0x0, 0x1c29, 0x10100, 0xfffffffe, 0x345, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10) (fail_nth: 5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)

3m8.121849733s ago: executing program 2 (id=2120):
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0) (async)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r3=>0x0})
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (async)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') (async)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB="7ba96f2d7b8d5ec8855cd03240b5498432a9c46c66153bea2de73362c8b3f95e8a8e4652400990468fc072d1b2c6d22b0e921c86bfe166eb9cbe80da081f50da7f9ad3514ed555e05742f7eed1525c131c4c01dc726aa629a7215ba2ad875c0f5bbd00745c63d6d63657a21808baa6a6dfc59eae2e7df2670d86683ce65324e9200eae984b744ba987575ca826c8e59f32ef63be4ec1b9ded861945d7519f6f9101bee978e2700bb05ce"])
r6 = syz_io_uring_setup(0x497, &(0x7f0000000140)={0x0, 0x7079, 0x8, 0x4, 0x288}, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f00000000c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x7, 0x0, 0x0}) (async)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x7, 0x0, 0x0})
io_uring_enter(r6, 0x3516, 0xffe0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001280)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xb}]}, 0x24}, 0x1, 0x0, 0x0, 0x4750a8f0a42ba726}, 0x488c0) (async)
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001280)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xb}]}, 0x24}, 0x1, 0x0, 0x0, 0x4750a8f0a42ba726}, 0x488c0)
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/125, 0x7d}], 0x1, 0x0, 0x10001)
r9 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r9, 0x0, 0x0)
syz_usb_control_io$hid(r9, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @local=@item_4={0x3, 0x2, 0x0, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce079"}]}}, 0x0}, 0x0)
r10 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCSUSAGE(r10, 0x4018480c, &(0x7f0000000040)={0x2, 0xffffffff, 0x2e, 0xe408fd7e, 0x7, 0xbd})
socket$qrtr(0x2a, 0x2, 0x0) (async)
r11 = socket$qrtr(0x2a, 0x2, 0x0)
r12 = socket$packet(0x11, 0x3, 0x300)
syz_usb_connect$hid(0x6, 0x0, 0x0, 0x0) (async)
syz_usb_connect$hid(0x6, 0x0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(r12, 0x1, 0x28, &(0x7f0000000000)=0x1, 0x4)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_generic(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000019480)={0x1c, 0x10, 0x701, 0x0, 0x1, {0xa}, [@typed={0x8, 0x2, 0x0, 0x0, @uid}]}, 0x1c}}, 0x0) (async)
sendmsg$nl_generic(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000019480)={0x1c, 0x10, 0x701, 0x0, 0x1, {0xa}, [@typed={0x8, 0x2, 0x0, 0x0, @uid}]}, 0x1c}}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=@setneightbl={0x68, 0x43, 0x100, 0x70bd2d, 0x25dfdbfe, {0x7}, [@NDTA_PARMS={0x54, 0x6, 0x0, 0x1, [@NDTPA_ANYCAST_DELAY={0xc, 0xc, 0x80}, @NDTPA_APP_PROBES={0x8, 0x9, 0x3c}, @NDTPA_MCAST_REPROBES={0x8, 0x11, 0x7fffffff}, @NDTPA_PROXY_QLEN={0x8, 0xe, 0x1}, @NDTPA_APP_PROBES={0x8, 0x9, 0x81}, @NDTPA_MCAST_REPROBES={0x8, 0x11, 0x2}, @NDTPA_APP_PROBES={0x8, 0x9, 0x4}, @NDTPA_LOCKTIME={0xc, 0xf, 0x8}, @NDTPA_PROXY_QLEN={0x8, 0xe, 0xe}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
connect$qrtr(r11, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc) (async)
connect$qrtr(r11, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r11, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

3m5.792241422s ago: executing program 2 (id=2129):
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x803341)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x1ffff6, 0x10100, 0xfffffffd, 0x359}, &(0x7f0000000180), &(0x7f00000002c0))
socket$packet(0x11, 0x3, 0x300)
r2 = socket(0x1, 0x5, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x20004044}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000400000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r5], 0x44}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000640)={0x0, 0x7, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="2000000011005704000000000000000010000000", @ANYRES32=r7], 0x20}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
fsopen(&(0x7f0000000040)='gfs2\x00', 0x0)
bind$alg(r8, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
r9 = accept4(r8, 0x0, 0x0, 0x0)
sendmmsg$inet6(r9, &(0x7f0000007bc0)=[{{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000001900)="a9cff3", 0x3}, {&(0x7f0000001980)="5fb3450effde69bf04e3e44a973930e0b6f397ee7a964d6dbf627acb2d9426f6a9b00bee1bf4eb68838680", 0x2b}, {&(0x7f00000019c0)="48c2c8557113f61ff1aafba9c7e66173164c8ca0c15cbff5683fb4ddb6394595afbcbaaa377a4a5f830744e047edf851d62a66716dd1b4267d5ed18eb9f5c4f88793e82590b71922e22ef06265309b871cba49e7299e2c090c02bd10630588bdc3466f4f5bb8578a26c37021bbb564f50e373543dbd71abbcbe8e6e7bb3b26a9dd2f5ed56323a0055e2e30ed595dea33087b6392a8cabc9e5a07b064e79c7528a81ab8d7ee7aa5ff27ab7c51", 0xac}, {&(0x7f0000001a80)='Tq', 0x2}, {&(0x7f0000001b00)="696c6a7b5ea3afd7819ee415dbdde5557921387803db572c10968b2e1fcb5d68baa44bba", 0x24}, {&(0x7f0000001c00)="5ca5b1dabcc26ad25d615b05179a9fd11e6653791ad22b90c11d51d82c5339db07573325f2a50b1f39be84a4ded40063e6538f23fbbb6e35546898cd11f3aed21d065dae1ca8fe6f98feeab1efe708ae36e99ef9540324c582f7f497944e4d88c571328536fa3082092fe0866359247a8cc4fa868e328224411de12869db981383d403e97e958db40152d168b100a3220ec4a243377a0dc1be323e588ac346ed86498d1878e5c8dcc063812c", 0x7fffef00}, {&(0x7f0000001d00)="40a39684f731a649fe952deb2eff7fae7af9f2e92ddb69833700fafb1c2de6f1b92ec4a5299ce1da382c", 0x2a}], 0x7}}], 0x7fffffffffffe62, 0x0)

3m5.312520829s ago: executing program 2 (id=2136):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x2008000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0xc0049364, &(0x7f0000000180))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
capset(&(0x7f0000000100)={0x19980330, 0xffffffffffffffff}, &(0x7f0000000240)={0x80000, 0x10000, 0x0, 0x0, 0x1ffffc, 0x4})
ioctl$VT_RELDISP(r1, 0x5605)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000280)={0x2, {0x2, 0x7, 0x8, 0xf13, 0x7f}})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000001c0)={'vxcan1\x00', <r3=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xfc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r8, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
sendmsg$L2TP_CMD_SESSION_DELETE(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x34, r6, 0x1, 0x270bd2c, 0x5, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x17}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x8088)
connect$can_bcm(r2, &(0x7f0000000140)={0x1d, r3}, 0x10)
openat$ptmx(0xffffff9c, &(0x7f0000000000), 0x2000, 0x0)

3m5.161407968s ago: executing program 2 (id=2137):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r1, 0x0, 0xe, 0x0, &(0x7f0000005700)="e0b9547ef387dbe9abc89b6f5bec", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$cgroup_int(r0, &(0x7f0000000040)=0x36d, 0xffffffffffffff71)

2m49.998195528s ago: executing program 32 (id=2137):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe000000008500000009000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ab99dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d00000020000000ef19349ee7f31abc11c800000000000000000000000928ee53595a779d243a48cea769470424d28804c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2cf7908b6d7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c41ab004321610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42cea68bef67422ecc13968a27ef6a1296dfff4a979369b0e8ebc62887aa46e824d86869ec4ab392b0a74f91381dcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a412a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac090000000000000084d8223edbccbf9258b7374e79a1f8bf3fb73c8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e3a49dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f381ba6e0363d0a4a8a813edaa626f0000000000000000004f9e02a3b51a97c4b1c1b411cc6bee2a56f29c55a6aac46a0cfc318fae02922a403431d4e5a4396cad2c8dd34037bc041a2ba1505ba2c4889122ca04e85881aad5f8bfc12e6741872aad21bf5301cd4c60"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r1, 0x0, 0xe, 0x0, &(0x7f0000005700)="e0b9547ef387dbe9abc89b6f5bec", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$cgroup_int(r0, &(0x7f0000000040)=0x36d, 0xffffffffffffff71)

1m3.120123748s ago: executing program 4 (id=2895):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e0502460c", @ANYRESHEX=0x0, @ANYRES32=<r0=>0x0], 0x8)
timer_create(0xb, 0x0, &(0x7f0000000400))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x7ac9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='block_plug\x00', r1}, 0x18)
writev(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x0)
close(0xffffffffffffffff)
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x65, 0x2, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e23, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x10, 0x1, 0x1, [r5]}}], 0x10}, 0x0)
recvmmsg$unix(r5, &(0x7f0000000f40)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000180)=""/146, 0x92}], 0x1, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0xc}}], 0xb0}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/111, 0x6f}], 0x1, &(0x7f00000017c0)=[@rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}], 0x114}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/18, 0x12}], 0x2, &(0x7f0000000700)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x78}}, {{&(0x7f0000000780), 0x6e, &(0x7f0000000e00)=[{&(0x7f00000008c0)=""/64, 0x40}, {&(0x7f0000000900)=""/99, 0x63}, {&(0x7f0000000980)=""/222, 0xde}, {&(0x7f0000000a80)=""/224, 0xe0}, {0x0}, {&(0x7f0000000bc0)=""/237, 0xed}, {&(0x7f0000000cc0)=""/60, 0x3c}, {0x0}], 0x8, &(0x7f0000000e80)=[@cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0xa0}}], 0x4, 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x4030582a, &(0x7f0000000200))
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
setpgid(0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
clock_adjtime(0x0, &(0x7f00000001c0)={0x8b8d})

1m2.456546741s ago: executing program 4 (id=2896):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x3a)
recvfrom$inet6(r1, 0x0, 0x0, 0x10000, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0xfffffffffffffffd, 0x0, 0x0, 0x0, {0x40, 0x4, 0x4, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x2, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r2, {0x7, 0x29, 0x8}}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x64100, 0xa1)
ioctl$TIOCGPTPEER(r3, 0x40480923, 0x8000000a)

1m1.550862157s ago: executing program 4 (id=2904):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000), 0x22301, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_RENAME(r3, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000002f40)={0x40, 0x5, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x200008a4}, 0x4810)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5885, 0x8000, 0x0, 0x26e}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_subtree(r7, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000040)=ANY=[@ANYBLOB="e5927fd91fdc61"], 0x5)
write$cgroup_subtree(r8, &(0x7f0000000a00)=ANY=[@ANYBLOB='-cpu'], 0x5)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x12, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r2, 0x5001, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="e6093a54", @ANYRES16=r1, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r9, @ANYBLOB="0a0034000202020202020000080026006c090000"], 0x30}}, 0x0)

1m1.520409033s ago: executing program 4 (id=2905):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafb", 0x240}], 0x1)

58.949870739s ago: executing program 4 (id=2921):
openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000814}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r3, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r4, 0x0, 0x485, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x101)
fdatasync(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000100)='./file0\x00', 0x8100, 0x0)
getdents(r6, &(0x7f0000001280)=""/4075, 0xffb)
socket$inet_smc(0x2b, 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000090000000400000000000000000a000000334b49243f5721df00267efc31bd19e8a00b46af1750b61aa0f1ec039eb2b799eb77a2f2ae2e96bff9766df0eed6d1b98be6621deac602f2fccf2bbd561d85c6eac00e8c4dacd586b2132aef4183cf0da7c443cc5ffe80fc3f86aed466a30b16967ff5fc494a8bbe0bd7190caeba"], 0x14}}, 0x0)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$getregset(0x4205, r8, 0x202, &(0x7f0000000480)={0x0})
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04040a00", @ANYRES8=0x0], 0xd)

58.052717447s ago: executing program 4 (id=2937):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/fib_triestat\x00')
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r3, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="0100000000000000024d564b"])
read$FUSE(r0, &(0x7f0000004800)={0x2020}, 0x2020)

43.045132094s ago: executing program 33 (id=2937):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/fib_triestat\x00')
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r3, 0x4068aea3, &(0x7f0000000080)={0xbe, 0x0, 0x1})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="0100000000000000024d564b"])
read$FUSE(r0, &(0x7f0000004800)={0x2020}, 0x2020)

13.210448008s ago: executing program 5 (id=3267):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000fbdbdf250a00a100", @ANYRES32, @ANYBLOB="14000100ff05000000000000dfce00000000000108000800026e"], 0x34}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x41c1}, 0x4040800)

13.21016494s ago: executing program 5 (id=3268):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (fail_nth: 6)

13.040177447s ago: executing program 5 (id=3269):
r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
r1 = accept4(r0, &(0x7f0000000600)=@isdn, &(0x7f00000005c0)=0x80, 0x80000)
getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f00000003c0)={'mangle\x00', 0x0, [0x0, 0x4, 0x2, 0x9]}, &(0x7f0000000440)=0x54)
r2 = accept4$x25(0xffffffffffffffff, &(0x7f0000000080)={0x9, @remote}, &(0x7f0000000180)=0x12, 0x0)
r3 = accept4$x25(r2, &(0x7f00000001c0)={0x9, @remote}, &(0x7f0000000200)=0x12, 0x80800)
clock_gettime(0x8, &(0x7f0000000280))
syz_init_net_socket$x25(0xb, 0x5, 0x27)
socket$pppl2tp(0x18, 0x1, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x100000, 0x0, 0x3, 0x0, 0xfffffffffffffffe, 0xfa11}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x5c}}, 0x0)
set_mempolicy(0x3, &(0x7f00000000c0)=0x3, 0x5)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0xffffffffffffff39, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYRES32=r1, @ANYRESDEC=r3, @ANYBLOB="0000000000000000480012800b000100697036677265000038000280060010004e24000005000800d800000008000d040c00efbc00000800145523a84b51f7d4cfb54c0004000000050008003d00e93d29b6cadca92c", @ANYRES64=<r6=>r4], 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_emit_ethernet(0x52, &(0x7f0000000240)=ANY=[@ANYRESDEC=r6, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYRES8=r0], 0x0)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = dup(r7)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000700)=ANY=[@ANYBLOB="b601000000000000bd110000000000008510000002000000850000007600000095000000000000009500a5050000000077d8f3b4000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d75357f21699cdc6751dfb265a0e3ccae669e173a649c1cfd6587d472d64e7cc955d77578f4c35235138d5421f9453559c35da860e8ef14142b2a3e314422b854421eed734ceb1efeecb9c66854c3b3ffe1b4ce25d7c983c005c03bf3a48dfe3e26e7a23129d6606fd28a697a9d552af6d9a9df2c3af333e2008e11bbec0727cb3f647535deb6277f5696833a71011a7d06602e2fd5234712596b696418f163d1a13ed38a682f87925bfa753f631cd027edd68149ee99eebc6f7d6dd4ae59af7588c8e1f4efab57644ccb1973d7879b70a70001040000000000000000d7900a820b63278f4e9a217b98ef7042ad2a923132f208fd8289eaf8cd00000000000009d27d753a300800000000000000a5686f2fccc33e3e34c3969c5ad781302d40e97a8ad10ce0cbe17366d5ac6af2fca2360a15b80400d52040ef7b28d300747877e176fe4c4b8e40dbf260f5a9f7eee30293c1b163b795d0aef4deb851a30000f569dc8f39943f889008e1ec914faa9e6cd0b3b4b3b5db666ebeb49d6a62019d76459e70b459543c4ac42e53b4ad4c77cff373ebd95848f01864e456969cd28000170996016aceb583df5ee4dd722e8c350af489f9a900000000a0dcc36b3d7c734a9cce0439f832a20d7cbdcda5dff3ba92dd66afb9d74aa222038994dcd3e7784dbea1e51a15b0f1a040cc63177f8fafa3192fc8e5552da1a982ab8dfe31ad1a0968faa47c2069d6bf09c3aa4f0fc128cb578d99b08a150b4cc4b22f6a464c6398c952519818a44a1b223ff502df87865c276588ea478e328e8277e811b99ce1acfecaf8e2c55ccc4b8eae0a61635514e99ffd438784060f23ba74c0b30b1180d935832deb686d789ba1d436d116394534e88492a42b8bf050c719661a2dc50b3a1dcfbc871e5c27e3d7260f6fa589e40000b89db451ff994845f6b49c12e89291398bcb3c06ef1289f74e0b0e2cab592d35f82a69e7284223a171c616b1f0fee6c4711d7aecb69746064d2c096554975d605ebe646302bf3d5cf32a9a09915ae3f3d4eb96615d7b237da56cd5e9904a19e145f25b6d98eb2c019967f553b61d0e80d6913cee9f8d18469a654a239a84a85debbc02846ac5791278f18c6759e3b513a68284d2efc30587e433431b2896a3bd48020af67e9ac071b2dd6dc3b9efae4ff03558fa619aea909c7f2416e7e7da1c51ccc7e6ac27412f728dc6d80da8adf317ca863ed683897321f8c8bb5a5d953d6783b7a06353ee496bbdff418de3e53234df87756eb99e330253cf5da4aa1a9648a38f07e2d302b4165983db4f7b8972923fffa8c03c288512a3a38fbd7c816a44634f7a03fab30811b7b93257bea4369ba46024dee5e9b0b2c3d3324e9b7c1f99ab9bb3f498b1485373b79ec84a67dad4e37575dab87ce55a9a69ed856a4c4410d1242ac1bd1539094a641cc086c2c53e363beafc74ab4e9ff320373705cbf5644586ffe60d293944fa2d9dc18b55f1af5c42f27747bef1ffd0c1766f062d47d61bf9f64e6ee288fa7fc12d48da526527b9f5c318c93ec447cb8b5eee7aa8a1e85696af3dfef96657c0545c8ebd96528d9c28828e5befd80d684b03b6d153da3e3cbd3bfbf4a9375b8ad04a1d241bcb5d5505cb6cc7a44e2e24bd0b1ca4879caaff59d0ce39dc7f3fea447f4e46967855208e63ec988bd2692afefbed2b001205e4b30ee8fe417defa566a73ace8f01f7181de0ef25f1744896a3c38859e6148c42454949cd64b1a888e7fe9c2d86bb01023b6ddeb67f5eb038af3e460c771518a4126c338b0390d459361e03adf6e6b558b3651a0e33d101b5febfff82794203da18db6fcf89715c2d338f78d8b9220171b41f528f857a7cb79ca990de1208777e13faaa9b9cb9e67797b07d9eb9e909410b50c5d981d9a72aa36498b630519d1530ef0000000000000000000037fcffffffffffffff8db8379bd2044c652dff399a9f8bfa4e9c507f049d18837464276830461ee203ba51f6102d262fc9a26bc3638ecce24e65c55da6efaa462f03d0e119c963a8c7a522b59f5a7b44d018cb2648383073d9e032492cae44350bc0a85697f431392eb22cae093e85954af97d6d7b2e6e8f43353062275ad1578a431594243452a2bfb89f91d8eaac038e9e17136e7c698f73faaabb3d00000000000080014573789425c4c32da528d89356aa6d2ae6da082e756c80cf39053431080ea6cbf9997a5a0ddad0b9d12bc3f880476ab32f0feaac5f16e61f7b72b8c9082eec423c6b3eaecfdcc9ec72795e7696421c83b76c2d6bac19bc875d009679778d8ef97d7e05329649d97b0dc54bea9b650873de2d3d702690176e0b23ee5cb5e469a8d1612d611722e6200e3a297d92f8e1de98326c5ef2b89d4e2d47767cd755783e5d865e373338e96ceb8399f296c59b2d70ca27735ecaff62982616d3ac1ab041733bce119d8002a6c8a2b08b32551b2313b1a2ff41b3f04af61c69c85cb2da48215727271bac2ffdeb62d9f5dc4845f1c3f63dc806e615ee8d28d6d7f181e30807afa27f41d0364c746a65a47464db68f3c433d88dd625db35fded2c86d75af88efaf20c8b37c644b6c4e773a9589200faa553bc92f916b75ddbfa18ab73979f46947b35914286d2499a0b8c970000000000000000f4fe74e0c26ab52329bd600627b256ca44dd121ffc8dbb6e5f70cbe03efccac70375b30cc927574d254d1b46c607e8b1ca7d1511568c3ef4b6b885f4582bdcef74e5e010627fc8e4fe00000000000000000000869d9640f06b11df2971909b90133983308ea4f033de613763f32d913bcbe9dd082a6fff197a20730269e6cfd31275395833f1c2b8a50a94c30cceae2a11fe9b9b835d0da73891c0b3ce22dea6bf31e7f51808cf72f44b4455b77a778440795e152dc1b7bb0a5636aa4742ce4d331a47de5836539cdf289176527277b70c8162aaf6f9475418b478329f3565450acfaf07000000eab8cabfa97e35081967bb92a264b07e8003d2f15537e72a1e4ca5ec1e2aaaf8236ecdefbaf512c75e636b6b6f518ad20521f909b12e9bc97e408e0dc82f950d12705f35708bc862196abb27e8d7991b5273987f38c4706289ff4f6130cee76465d487a07a74452f87da2029bd3debd9870335d58d3fe1ac80574fa3ea312997ab81bc6f569ffdb10ba3f20a86d95128d13e0c778998d3b3114bfb07bd61e4bff8a5e2ce4aa572c63e09b44ca4a181bcfe4eec3ce843c65c4948169fe639a186acc2b4a96c6b8d4d2e6d53ab97bea01eab953e6e89e3af34d4ada217bc6fda0fb2095c49195d0d6f365ca80a955b9ec81240a84ef672afa369fc8e3d444ba35d0f51a0065a3b982d09dfc6874fc0d8079b185447cb8a695e132d4d613a529d9c77e2a8f7320ecf698e8a2b170fd601dc1a9767a38b10788e92d1356f6a6c1bcfb2d31b46e735db13f1be80bac1b6be04fd98610000000000000000000000000000139af5493f74751c5e2501a4936bc4a0fa516117f4ccadc692003adee0a080eba2f1059660c0ee0e9aec72d4d0fe095632e4f641b0e34c611c5b3e0ba05fa36542d40837dda323910672a9097d68398fd3539686e4288db0d6bf7cb8a1835f46dfe11865a66ef47e736dada06677a5bca133d6cbc8fe5c4557e51b006bdccd7c5f32ff1d9e8b130f77df09236870fb3de5b87b4f8acc13df534eba329b86670000000000000000b27a2616c03cdf6c009447a652bca9b325e73c0737d5b717945e4fe7a169c5e2c54fc71a4104aa7cf0f5d30e2fcd9503650edbd8a5971a9a1fde5e5df37469ae204a6e899eacc1e63034cbabc5604739881cb82604bed3e53696a0606b26b879ef232a1a038291389593d1575cb79aa8284cf01a7e1a456acab9d8d608ad69d4c4b56492af7004e7ed9d47c5db3d76a00bea7c804f3a3638408bc1636f1009b7f185f51606918eaa0ab6bef11ae3d300"], &(0x7f0000000080)='GPL\x00', 0x9, 0x34, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
listen(r3, 0x5)
accept4(r0, 0x0, 0x0, 0x80800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d0000001801000020"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, @void, @value}, 0x94)

12.180343886s ago: executing program 5 (id=3272):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8000000, 0x3, 0x2f8, 0x110, 0xffffffff, 0xffffffff, 0x110, 0xffffffff, 0x228, 0xffffffff, 0xffffffff, 0x228, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @private1, [0xff000000, 0xffffff00, 0x6dc8f3d6512d1aed, 0xffffffff], [0xff, 0xff000000, 0xff000000], 'bond_slave_0\x00', 'batadv0\x00', {}, {}, 0x2f, 0x2, 0x3, 0xe}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz1\x00'}}}, {{@ipv6={@dev={0xfe, 0x80, '\x00', 0x17}, @mcast1, [], [], 'veth1\x00', 'wlan1\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x7fffffff, 0x9, 0xb3, 0x1, 0x0, "86d6b549c4bf723e1f33da7c11e5cee0b1adedc05fbfc6af15c3f8b75adf8819ec9d8cd0614114f5f1d3b7ba1d33f3750c2e3b8acf37107767e107dac4688212"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x358)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000080)="a99c383d33c9c607b1b9d49688a8834a88a8", 0x1000e, 0x300, &(0x7f0000000000)={0x11, 0x8100, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)

12.180098486s ago: executing program 5 (id=3273):
openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000814}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r3, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r4, 0x0, 0x485, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x101)
fdatasync(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r6 = open(&(0x7f0000000100)='./file0\x00', 0x8100, 0x0)
getdents(r6, &(0x7f0000001280)=""/4075, 0xffb)
socket$inet_smc(0x2b, 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000090000000400000000000000000a000000334b49243f5721df00267efc31bd19e8a00b46af1750b61aa0f1ec039eb2b799eb77a2f2ae2e96bff9766df0eed6d1b98be6621deac602f2fccf2bbd561d85c6eac00e8c4dacd586b2132aef4183cf0da7c443cc5ffe80fc3f86aed466a30b16967ff5fc494a8bbe0bd7190caeba"], 0x14}}, 0x0)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$getregset(0x4205, r8, 0x202, &(0x7f0000000480)={0x0})
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04040a00", @ANYRES8=0x0], 0xd)

11.162299048s ago: executing program 5 (id=3286):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x9, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='O', 0x1, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

4.21990368s ago: executing program 3 (id=3329):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setuid(0xee01)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000380)="9c9aff526982ff92f86ee17909a871ce23482d090f292c1706ab1afd78b3f8f0c0a1defa09f42a96ebc3edddaddb9c8f38295cb728c094a6c7201422a7b0e414f613a43d95c3e273ed8efa6260337589196098ee4e7545a8d8edfbd107933ac0ae", 0x61}, {&(0x7f0000000680)="36c4cf4e1d84cb5e00ed507dff95cc2441cc39f30ed590b459d8547dd0d295d07c29b07e5f30ee96deedce2ba85597df8a223dc87ba57dafd2536a2eb9474ba70f9ed42cfe9841457ea763875c52c494070430ff2d49c7de4c5549a248775a99881353acdcbc1f2f738f20fe6bb995f951eb9fbf1c616af2b67f8e4e7aa2b0cf96529e3f5f2315e48448a04821b47828e16f427c21e9a8e6088e8f7be5c16621e467e6e96d39d8b6f653adc5ab9def8c1c44de47d893232f3b49ae338dcefc", 0xbf}, {&(0x7f0000000740)="7758f8d9993fa6b36763ec0633fdb07ff56420c5f50b9f1203c0d50ebd38613442a29bc05723d94b9b10ada1c078f887b990c75bbee1a01c7e07717286965b82fc08c9a90b854cc76c2bd87d81ad058edf6e258a407dd596092912c2a25df9bbc4b999a841946c66173311df803e4a7bb611185d3559e3d6ac4387d518fa1844de4cd34f5dd4e88a6cd5d14fc8ee354815df716940497fcaf74b83144f5ffd2e05f1c1e8d79520edfaae22ebfbc07ff4d2ff80431321a0c097e808495bcdafa266d6924b41a85bbdc62b0cc7a653078d910716129dbdfa397bb14b8a51e9717e499d232b34819d9127", 0xe9}], 0x3}, 0x44000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r4 = socket(0x10, 0x400000000080803, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r5=>0x0})
sendto$packet(r2, &(0x7f0000000180)="0b0312002e0064000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x8100, r5}, 0x14)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x40, 0x6, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0c00000004000000040000000900000000000000", @ANYRES32=r7], 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0xe, 0x5, &(0x7f00000000c0)=@framed={{0x3e, 0xa, 0xa, 0x0, 0x100, 0x79, 0x10, 0xa8, 0x3}, [@map_fd={0x18, 0x9, 0x1, 0x0, r8}]}, &(0x7f0000000000)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x5f, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r10 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETBLKSIZE(r10, 0xc0045004, &(0x7f0000000140))
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x0, &(0x7f00000004c0)=0xfd)
unlinkat(0xffffffffffffffff, 0x0, 0x59f0b0b11e7bcc24)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x7, 0x0, &(0x7f0000000080)="e44c7c725bf6bd", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4999}, 0x4c)
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0x8000000000, 0x1, 0x1, 0x8, 0x4002004c5, 0x5, 0x1, 0x0, 0xae, 0xfffffffffffffffb, 0x0, 0x6, 0x0, 0x49], 0xdddd1000, 0x1c6256})
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x880, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
ioctl$KVM_RUN(r13, 0x8090ae81, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
shmget$private(0x0, 0x4000, 0x4, &(0x7f0000000000/0x4000)=nil)

4.100544252s ago: executing program 3 (id=3330):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000002280)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x1000, 0x14}, @ipv4=@generic={{0x6, 0x4, 0x2, 0x2, 0xfc0, 0x66, 0x0, 0x8b, 0x29, 0x0, @rand_addr=0x64010120, @broadcast, {[@timestamp_addr={0x44, 0x4, 0xf, 0x1, 0x1}]}}, "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"}}, 0xfce) (fail_nth: 6)

3.920706718s ago: executing program 3 (id=3332):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x9, &(0x7f0000000040)=0x440, 0x4)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x9, &(0x7f0000000100)=0x4010, 0x4)

3.050526574s ago: executing program 3 (id=3334):
r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x5, 0x8545)
ioctl$RTC_PIE_OFF(r0, 0x7006)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
ftruncate(0xffffffffffffffff, 0x8200)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
r6 = fsopen(&(0x7f0000000080)='pstore\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000140)='si\x98d\x96\a\xf7\xceF\xda\x8c\x02\xfd\x8e#3Z:lent\x00', &(0x7f00000000c0)='\x00\x13\xf5\fa\x00\x00\x9c)\xe75\x978\x96\xb9;\x7f_.\xa5S\xeaC\xeb\xe9On\x03\x01\xefIy\x95\xc9W\xc5\xf6\xad\x84\xf4\xf5\x8fHe\xac\'x\xd4', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r6, 0x0, &(0x7f0000000040)='silent\x00', 0x0, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x0, 0x0)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x121a02, 0x0)
sendfile(r8, r7, &(0x7f0000002700)=0x1, 0x8)

3.036304556s ago: executing program 3 (id=3335):
socket$inet6_udp(0xa, 0x2, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x4fc1, 0x7c)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000100)=@mgmt_frame=@beacon={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="180000005200010200000000000000001c"], 0x18}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=ANY=[@ANYBLOB="48000000100039042abd700000000000000003e4", @ANYRES32=0x0, @ANYBLOB="03000000c310fc00d200128008000100736974001c0002800808000c00ee00"/45], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
socket$unix(0x1, 0x1, 0x0)

2.179471456s ago: executing program 0 (id=3341):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e0502460c", @ANYRESHEX=0x0, @ANYRES32=<r0=>0x0], 0x8)
timer_create(0xb, 0x0, &(0x7f0000000400))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x7ac9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='block_plug\x00', r1}, 0x18)
writev(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x0)
close(0xffffffffffffffff)
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x65, 0x2, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e23, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x10, 0x1, 0x1, [r5]}}], 0x10}, 0x0)
recvmmsg$unix(r5, &(0x7f0000000f40)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000180)=""/146, 0x92}], 0x1, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0xc}}], 0xb0}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/111, 0x6f}], 0x1, &(0x7f00000017c0)=[@rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}], 0x114}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/18, 0x12}], 0x2, &(0x7f0000000700)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x78}}, {{&(0x7f0000000780), 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000800)=""/190, 0xbe}, {&(0x7f00000008c0)=""/64, 0x40}, {&(0x7f0000000900)=""/99, 0x63}, {&(0x7f0000000980)=""/222, 0xde}, {&(0x7f0000000a80)=""/224, 0xe0}, {0x0}, {&(0x7f0000000bc0)=""/237, 0xed}, {&(0x7f0000000cc0)=""/60, 0x3c}, {0x0}], 0x9, &(0x7f0000000e80)=[@cred={{0x18}}, @rights={{0xc}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x78}}], 0x4, 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x4030582a, &(0x7f0000000200))
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
setpgid(0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
clock_adjtime(0x0, &(0x7f00000001c0)={0x8b8d})

1.580656727s ago: executing program 0 (id=3343):
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x40045b0a, &(0x7f0000000040))

1.050361159s ago: executing program 0 (id=3344):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000000200)={0x2020, 0x0, <r2=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r1, &(0x7f0000002300)={0x50, 0x0, r2, {0x7, 0x9, 0x0, 0x1030002}}, 0x50)
read$FUSE(r1, &(0x7f0000004580)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r1, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r3}, 0x10)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r4, r1, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x6, 0x11, r5, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r6, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
write$uinput_user_dev(r6, &(0x7f0000000800)={'syz1\x00', {0x0, 0x10, 0x2}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x296, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xeae2, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xffff], [0x4, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfff, 0x71f, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x74e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xcaa, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_SET_EVBIT(r6, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r6, 0x5501)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_int(r7, 0x11a, 0x3, &(0x7f0000000140)=0xba2e, 0x4)

840.01838ms ago: executing program 3 (id=3345):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r1, 0x0, 0x0)
syz_usb_ep_write(r0, 0x81, 0x4, &(0x7f0000000080)="00012c61")
syz_usb_control_io(r0, 0x0, &(0x7f0000000840)={0x84, &(0x7f0000000340)={0x20, 0xf, 0x1, 'P'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

741.538991ms ago: executing program 0 (id=3346):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = getpid()
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
lstat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
fstat(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000580)=<r5=>0x0)
r6 = getgid()
r7 = inotify_init()
r8 = epoll_create(0x200008)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000000))
lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000740)={0x2, 0x7c, {<r11=>0x0}, {0xee01}, 0x8, 0x1c})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000780)={{{@in=@multicast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in=@private}, 0x0, @in=@empty}}, &(0x7f0000000880)=0xe4)
r13 = getgid()
sendmmsg$unix(r0, &(0x7f0000000940)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000400)=[{&(0x7f00000000c0)="4ec5db3d4cd36903c81445f22f40b86fd4b833fec9c0d0079eda0e5d4d9f4da0f467beec62c0590e53ff278d2ee0830a8520005fe8c95030533bf1967f72ea4a70ae4ac7731c9a967b4088b67727b0d6b992748396d627cfaa36346d9bbb7f462429693e47539da0f5db8f5e6f77f608e572afb77f6cb6fe66aad2c44868b76cf956b92e5c0250d79afc1bba811cf9a774fed0a77e38e9588c1bb4f97317691e45d6141594da2ddc74d65ca528bc988b3dba", 0xb2}, {&(0x7f0000000180)="81432e7c39ac8b7c2bed10e65082851e1f97cc68746b224e4b058cadb8a055f0b61a40d4df27850a591fcd2949db4c2347959c124ce6b628f6648016b2e192bfe1b0329bbf721506a0f1065d992e92de51417b40f60f25ef24e463e9a736fe9c8bcbe5346c97a082c50ca08ddec36114f0ad7b3cce685cd72ef0", 0x7a}, {&(0x7f0000000200)="5b77690beca5f39a3a0fb346be2f97c5718b14f0d793300da88ceb54b93480be2b4246a9f3", 0x25}, {&(0x7f0000000240)="2c19fd30ac35567de874d5376a861e0f97855f8482c0e56da25dea330039b407ee066e35b4833ef45a5689d18dc6c7d38f905d081f36206fcd7c6b5eb6b5db8a682a196c723be8f6e09bf423839fac4616454f7414cd952f0a47784e56894f0892ff43a336ff3421a0450b234884f2c5f5c795b5e1d7895f362768f0f2a788203809e760fcd8bda716f4aa08c30b52292e008e79dfc8217600cfcbbb3b814d8b0f0638f822c623316f799b65f40cdfa24fcf85c7e8d9d42cc43a0d7d26287ecb6589f52aad0239", 0xc7}, {&(0x7f0000000380)="2735604c89ce4bc042c354e30b2da4ae23cf58ff999f015e4450cf0ec852cf032fdf86b22e8087ebd953907261b788c639601c4d5e2e2f7b994e0608fa5cfb7816afacbb5c48b95b59b6a081ed8a7cb134a53e08612d6ce525ad257628a35a05", 0x60}], 0x5, &(0x7f00000008c0)=[@cred={{0x18, 0x1, 0x2, {r1, r2, r4}}}, @cred={{0x18, 0x1, 0x2, {0x0, r5, r6}}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [r8]}}, @cred={{0x18, 0x1, 0x2, {0xffffffffffffffff, r9, r10}}}, @cred={{0x18, 0x1, 0x2, {r11, r12, r13}}}], 0x80, 0x40c0}}], 0x1, 0x8000)
r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r14, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r14, &(0x7f0000000340)="07000000010000", 0x7)

529.573016ms ago: executing program 0 (id=3347):
r0 = socket$inet6(0xa, 0x2, 0x3a)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e23, 0xfffffffc, @initdev={0xfe, 0x88, '\x00', 0x4, 0x0}, 0x3}, 0x1c)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f000000c000/0x2000)=nil, 0x2000, 0x0, 0x11, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x3, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x61, 0x10, 0x65}}, &(0x7f0000003ff6)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@dellink={0x20, 0x11, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, r4}}, 0x20}}, 0x0)

260.248453ms ago: executing program 1 (id=3351):
openat$audio(0xffffff9c, &(0x7f0000000140), 0x200, 0x0)
io_setup(0x11, &(0x7f0000001380)=<r0=>0x0)
syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
io_submit(r0, 0x0, &(0x7f0000000100))
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4)
setsockopt$sock_attach_bpf(r4, 0x1, 0x34, &(0x7f00000000c0)=r3, 0x4)
listen(r4, 0x0)
close(r4)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r5=>0x0})
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000001040)={0xe, {"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", 0xfffffffffffffd6f}}, 0x1006)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_open_dev$mouse(&(0x7f0000000100), 0x1000, 0x228043)
ioctl$EVIOCSFF(r10, 0x402c4580, &(0x7f00000002c0)={0x51, 0x2, 0x0, {0x7, 0x40}, {0x0, 0xa180}, @ramp={0x5b0, 0x4, {0x7, 0x40, 0x1, 0x4}}})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x20, r8, 0x603, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRESHEX=r2, @ANYRES32=r5, @ANYBLOB="0a00f5005050505050500000"], 0x28}}, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='hpfs\x00', 0x40000, &(0x7f00000001c0)='\xac-\'#@\x00')

259.73612ms ago: executing program 0 (id=3352):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e0502460c", @ANYRESHEX=0x0, @ANYRES32=<r0=>0x0], 0x8)
timer_create(0xb, 0x0, &(0x7f0000000400))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x7ac9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='block_plug\x00', r1}, 0x18)
writev(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x0)
close(0xffffffffffffffff)
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x65, 0x2, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e23, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x10, 0x1, 0x1, [r5]}}], 0x10}, 0x0)
recvmmsg$unix(r5, &(0x7f0000000f40)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000180)=""/146, 0x92}], 0x1, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0xc}}], 0xb0}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/111, 0x6f}], 0x1, &(0x7f00000017c0)=[@rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}], 0x114}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/18, 0x12}], 0x2, &(0x7f0000000700)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x78}}, {{&(0x7f0000000780), 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000800)=""/190, 0xbe}, {&(0x7f00000008c0)=""/64, 0x40}, {&(0x7f0000000900)=""/99, 0x63}, {&(0x7f0000000980)=""/222, 0xde}, {&(0x7f0000000a80)=""/224, 0xe0}, {0x0}, {&(0x7f0000000bc0)=""/237, 0xed}, {&(0x7f0000000cc0)=""/60, 0x3c}, {0x0}], 0x9, &(0x7f0000000e80)=[@rights={{0xc}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x60}}], 0x4, 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x4030582a, &(0x7f0000000200))
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
setpgid(0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
clock_adjtime(0x0, &(0x7f00000001c0)={0x8b8d})

123.235107ms ago: executing program 1 (id=3353):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x34}, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e1f, 0x80010003, @empty, 0x2}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7102d000000ffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

60.453113ms ago: executing program 1 (id=3354):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[], 0x34}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000015"], 0x34}, 0x1, 0x0, 0x0, 0x41c1}, 0x4040800)

60.263408ms ago: executing program 1 (id=3355):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180002920000000000000000000000009500000200000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180002920000000000000000000000009500000200000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)

279.905µs ago: executing program 1 (id=3356):
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000540)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x9, &(0x7f0000000040)=0x440, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x9, &(0x7f0000000100)=0x4010, 0x4)

0s ago: executing program 1 (id=3357):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = syz_open_procfs(0x0, &(0x7f0000019140)='net/ip6_mr_vif\x00')
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0x3)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r4)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000005100000000000000000a200000000900010073797a300000000014000000100001"], 0x48}}, 0x20050800)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r6, @ANYBLOB="01000000000000000000010000000c000597ff000000000000000c0002000000000000000000040007800c000800000000000000000008002000000000004400078008000100", @ANYRES32, @ANYBLOB="32000100", @ANYRES32=r7, @ANYBLOB="64800400", @ANYRES32, @ANYBLOB='\b'], 0x90}}, 0x0)

kernel console output (not intermixed with test programs):

aving as an active interface with an up link
[  428.573379][T15301] netlink: 'syz.3.2967': attribute type 27 has an invalid length.
[  429.176549][T15311] trusted_key: encrypted_key: insufficient parameters specified
[  429.537315][T15326] FAULT_INJECTION: forcing a failure.
[  429.537315][T15326] name failslab, interval 1, probability 0, space 0, times 0
[  429.541102][T15326] CPU: 0 UID: 0 PID: 15326 Comm: syz.3.2975 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  429.541121][T15326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  429.541130][T15326] Call Trace:
[  429.541133][T15326]  <TASK>
[  429.541138][T15326]  dump_stack_lvl+0x16c/0x1f0
[  429.541157][T15326]  should_fail_ex+0x50a/0x650
[  429.541168][T15326]  ? fs_reclaim_acquire+0xae/0x150
[  429.541182][T15326]  should_failslab+0xc2/0x120
[  429.541196][T15326]  __kmalloc_node_noprof+0xd1/0x510
[  429.541212][T15326]  ? bpf_lsm_capable+0x9/0x10
[  429.541223][T15326]  ? security_capable+0x7e/0x260
[  429.541232][T15326]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  429.541248][T15326]  __kvmalloc_node_noprof+0xad/0x1a0
[  429.541262][T15326]  bpf_check+0x190d/0xb330
[  429.541280][T15326]  ? bpf_offload_find_netdev+0xf0/0x2d0
[  429.541293][T15326]  ? __pfx_bpf_check+0x10/0x10
[  429.541305][T15326]  ? find_held_lock+0x2d/0x110
[  429.541317][T15326]  ? bpf_prog_load+0xd42/0x2480
[  429.541332][T15326]  ? __pfx_lock_release+0x10/0x10
[  429.541347][T15326]  ? trace_lock_acquire+0x14e/0x1f0
[  429.541358][T15326]  ? bpf_prog_load+0xd42/0x2480
[  429.541374][T15326]  ? ktime_get_with_offset+0x26f/0x3b0
[  429.541388][T15326]  ? __asan_memset+0x23/0x50
[  429.541401][T15326]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  429.541417][T15326]  bpf_prog_load+0xe3c/0x2480
[  429.541434][T15326]  ? __pfx_bpf_prog_load+0x10/0x10
[  429.541449][T15326]  ? find_held_lock+0x2d/0x110
[  429.541461][T15326]  ? __might_fault+0x13b/0x190
[  429.541476][T15326]  ? __might_fault+0xe3/0x190
[  429.541489][T15326]  __sys_bpf+0x4043/0x49c0
[  429.541503][T15326]  ? __pfx_lock_release+0x10/0x10
[  429.541518][T15326]  ? __pfx___sys_bpf+0x10/0x10
[  429.541532][T15326]  ? vfs_write+0x306/0x1150
[  429.541549][T15326]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  429.541571][T15326]  ? fput+0x67/0x440
[  429.541581][T15326]  ? ksys_write+0x1ba/0x250
[  429.541594][T15326]  ? __pfx_ksys_write+0x10/0x10
[  429.541609][T15326]  __ia32_sys_bpf+0x76/0xe0
[  429.541620][T15326]  __do_fast_syscall_32+0x73/0x120
[  429.541635][T15326]  do_fast_syscall_32+0x32/0x80
[  429.541651][T15326]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  429.541667][T15326] RIP: 0023:0xf739e579
[  429.541675][T15326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  429.541685][T15326] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  429.541695][T15326] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000640
[  429.541701][T15326] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  429.541707][T15326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  429.541712][T15326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  429.541718][T15326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  429.541729][T15326]  </TASK>
[  429.665531][T15328] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551615)
[  430.803679][T15345] fuse: Bad value for 'group_id'
[  430.805170][T15345] fuse: Bad value for 'group_id'
[  431.022231][T15349] md: array md2 already initialised!
[  431.795001][T15352] block nbd1: shutting down sockets
[  431.866794][T15359] __nla_validate_parse: 46 callbacks suppressed
[  431.866811][T15359] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2984'.
[  431.920766][T15361] netlink: 'syz.3.2984': attribute type 10 has an invalid length.
[  432.024161][T15355] mac80211_hwsim hwsim25 wlan1: entered allmulticast mode
[  432.032648][T15361] mac80211_hwsim hwsim25 wlan1: left allmulticast mode
[  432.499181][T15375] mac80211_hwsim hwsim25 wlan1: entered allmulticast mode
[  432.520483][T15375] bridge_slave_0: left allmulticast mode
[  432.523050][T15375] bridge_slave_0: left promiscuous mode
[  432.524943][T15375] bridge0: port 1(bridge_slave_0) entered disabled state
[  432.531441][T15375] bridge_slave_1: left allmulticast mode
[  432.533820][T15375] bridge_slave_1: left promiscuous mode
[  432.535796][T15375] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.545447][T15375] bond0: (slave bond_slave_0): Releasing backup interface
[  432.556195][T15375] bond0: (slave bond_slave_1): Releasing backup interface
[  432.570535][T15377] netlink: 'syz.3.2989': attribute type 10 has an invalid length.
[  432.594665][T15375] team0: Port device team_slave_0 removed
[  432.606800][T15375] team0: Port device team_slave_1 removed
[  432.609454][T15375] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  432.611805][T15375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  432.616262][T15375] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  432.618617][T15375] batman_adv: batadv0: Removing interface: batadv_slave_1
[  432.652932][T15377] mac80211_hwsim hwsim25 wlan1: left allmulticast mode
[  432.667366][T15377] 8021q: adding VLAN 0 to HW filter on device bond0
[  432.670481][T15377] bond0: (slave wlan1): Opening slave failed
[  432.902168][T15387] md: array md2 already initialised!
[  433.639075][T15397] netlink: 'syz.1.2994': attribute type 8 has an invalid length.
[  433.889822][T15408] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.892739][T15408] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.895219][T15408] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.897747][T15408] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.512966][T15427] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3003'.
[  434.772175][ T5321] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  434.923363][ T5321] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  434.925714][ T5321] usb 6-1: config 1 has an invalid descriptor of length 52, skipping remainder of the config
[  434.928479][ T5321] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  434.936810][ T5321] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  434.939958][ T5321] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 52, changing to 7
[  434.944610][ T5321] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 9272, setting to 1024
[  434.949099][ T5321] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  434.951488][ T5321] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  434.955793][ T5321] usb 6-1: Product: syz
[  434.956954][ T5321] usb 6-1: Manufacturer: syz
[  434.961369][ T5321] cdc_wdm 6-1:1.0: skipping garbage
[  434.963940][ T5321] cdc_wdm 6-1:1.0: skipping garbage
[  434.965416][ T5321] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  435.302273][T15437] md: array md2 already initialised!
[  435.372913][T15443] bridge_slave_0: left allmulticast mode
[  435.375646][T15443] bridge_slave_0: left promiscuous mode
[  435.377293][T15443] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.380571][T15443] bridge_slave_1: left allmulticast mode
[  435.382300][T15443] bridge_slave_1: left promiscuous mode
[  435.383854][T15443] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.389065][T15443] bond0: (slave bond_slave_0): Releasing backup interface
[  435.392791][T15443] bond0: (slave bond_slave_1): Releasing backup interface
[  435.411018][T15443] team0: Port device team_slave_0 removed
[  435.416725][T15443] team0: Port device team_slave_1 removed
[  435.418668][T15443] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  435.419088][T15444] netlink: 'syz.0.3008': attribute type 10 has an invalid length.
[  435.420651][T15443] batman_adv: batadv0: Removing interface: batadv_slave_0
[  435.425489][T15443] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  435.427421][T15443] batman_adv: batadv0: Removing interface: batadv_slave_1
[  435.445630][T15444] 8021q: adding VLAN 0 to HW filter on device bond0
[  435.448032][T15444] bond0: (slave wlan1): Opening slave failed
[  435.846666][T15452] FAULT_INJECTION: forcing a failure.
[  435.846666][T15452] name failslab, interval 1, probability 0, space 0, times 0
[  435.850337][T15452] CPU: 1 UID: 0 PID: 15452 Comm: syz.0.3010 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  435.850362][T15452] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.850369][T15452] Call Trace:
[  435.850373][T15452]  <TASK>
[  435.850377][T15452]  dump_stack_lvl+0x16c/0x1f0
[  435.850396][T15452]  should_fail_ex+0x50a/0x650
[  435.850406][T15452]  ? fs_reclaim_acquire+0xae/0x150
[  435.850421][T15452]  should_failslab+0xc2/0x120
[  435.850431][T15452]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  435.850447][T15452]  ? security_inode_alloc+0x3b/0x2b0
[  435.850462][T15452]  security_inode_alloc+0x3b/0x2b0
[  435.850474][T15452]  inode_init_always_gfp+0xce4/0x1030
[  435.850491][T15452]  alloc_inode+0x82/0x230
[  435.850501][T15452]  alloc_anon_inode+0x28/0x3e0
[  435.850516][T15452]  ioctx_alloc+0x49f/0x2010
[  435.850532][T15452]  ? __might_fault+0x13b/0x190
[  435.850542][T15452]  ? __pfx_lock_release+0x10/0x10
[  435.850556][T15452]  ? trace_lock_acquire+0x14e/0x1f0
[  435.850569][T15452]  ? __pfx_ioctx_alloc+0x10/0x10
[  435.850581][T15452]  ? lock_acquire+0x2f/0xb0
[  435.850595][T15452]  ? __might_fault+0xe3/0x190
[  435.850606][T15452]  __ia32_compat_sys_io_setup+0xc8/0x210
[  435.850621][T15452]  __do_fast_syscall_32+0x73/0x120
[  435.850638][T15452]  do_fast_syscall_32+0x32/0x80
[  435.850652][T15452]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  435.850669][T15452] RIP: 0023:0xf7f91579
[  435.850677][T15452] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  435.850687][T15452] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 00000000000000f5
[  435.850697][T15452] RAX: ffffffffffffffda RBX: 0000000000004082 RCX: 0000000080000380
[  435.850703][T15452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  435.850709][T15452] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  435.850714][T15452] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  435.850720][T15452] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  435.850732][T15452]  </TASK>
[  436.013198][T15454] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3011'.
[  436.853020][ T5986] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  437.002320][ T5986] usb 5-1: Using ep0 maxpacket: 16
[  437.008913][ T5986] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 57966, setting to 1024
[  437.012215][ T5986] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  437.014801][ T5986] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  437.018830][ T5986] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  437.021323][ T5986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  437.025261][ T5986] usb 5-1: Product: Ж
[  437.027596][ T5986] usb 5-1: Manufacturer: 鯳裾瘪㛼痈��髟㣴悞撣ﲲ�箖讵辰⃊ㅘ㗗䎭侼麾꿧ⶀ왯윮晴餄Ｄ솛⢮⋑���ꨬ縰�㵣嗿鶻�臯ߘ殞ᖰ
[  437.032309][ T5986] usb 5-1: SerialNumber: syz
[  437.245362][ T5986] cdc_ncm 5-1:1.0: bind() failure
[  437.250290][ T5986] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  437.255355][ T5986] cdc_ncm 5-1:1.1: bind() failure
[  437.259871][ T5986] usb 5-1: USB disconnect, device number 49
[  437.551038][ T5986] usb 6-1: USB disconnect, device number 35
[  437.580164][T15482] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 15482 comm: syz.1.3020)
[  437.583929][   T40] kauditd_printk_skb: 53 callbacks suppressed
[  437.583938][   T40] audit: type=1800 audit(2000000187.579:247): pid=15482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3020" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=54131 res=0 errno=0
[  437.631456][T15478] ax25_connect(): syz.3.3019 uses autobind, please contact jreuter@yaina.de
[  437.636046][T15478] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  437.752487][T15484] md: array md2 already initialised!
[  438.004491][T15173] bond0: (slave syz_tun): Releasing backup interface
[  438.026838][ T5960] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  438.033107][ T5960] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  438.036053][ T5960] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  438.039401][ T5960] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  438.042931][ T5960] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  438.046580][ T5960] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  438.052957][   T67] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  438.055824][   T67] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  438.058040][   T67] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  438.060673][   T67] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  438.064055][   T67] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  438.066225][   T67] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  438.158315][T10800] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.168032][T15500] ip6tnl0 speed is unknown, defaulting to 1000
[  438.236437][T10800] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.280253][T15508] FAULT_INJECTION: forcing a failure.
[  438.280253][T15508] name failslab, interval 1, probability 0, space 0, times 0
[  438.284752][T15508] CPU: 3 UID: 0 PID: 15508 Comm: syz.3.3028 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  438.284771][T15508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  438.284781][T15508] Call Trace:
[  438.284786][T15508]  <TASK>
[  438.284792][T15508]  dump_stack_lvl+0x16c/0x1f0
[  438.284817][T15508]  should_fail_ex+0x50a/0x650
[  438.284832][T15508]  ? fs_reclaim_acquire+0xae/0x150
[  438.284854][T15508]  should_failslab+0xc2/0x120
[  438.284868][T15508]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  438.284890][T15508]  ? __alloc_skb+0x2b1/0x380
[  438.284913][T15508]  __alloc_skb+0x2b1/0x380
[  438.284934][T15508]  ? __pfx___alloc_skb+0x10/0x10
[  438.284957][T15508]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  438.284982][T15508]  netlink_alloc_large_skb+0x69/0x130
[  438.285004][T15508]  netlink_sendmsg+0x689/0xd70
[  438.285028][T15508]  ? __pfx_netlink_sendmsg+0x10/0x10
[  438.285056][T15508]  ____sys_sendmsg+0xaaf/0xc90
[  438.285075][T15508]  ? __pfx_____sys_sendmsg+0x10/0x10
[  438.285092][T15508]  ? get_compat_msghdr+0x11b/0x170
[  438.285120][T15508]  ___sys_sendmsg+0x135/0x1e0
[  438.285142][T15508]  ? __pfx____sys_sendmsg+0x10/0x10
[  438.285177][T15508]  ? __pfx_lock_release+0x10/0x10
[  438.285196][T15508]  ? trace_lock_acquire+0x14e/0x1f0
[  438.285220][T15508]  ? __fget_files+0x206/0x3a0
[  438.285245][T15508]  __sys_sendmsg+0x16e/0x220
[  438.285259][T15508]  ? __pfx___sys_sendmsg+0x10/0x10
[  438.285286][T15508]  __do_fast_syscall_32+0x73/0x120
[  438.285309][T15508]  do_fast_syscall_32+0x32/0x80
[  438.285329][T15508]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  438.285352][T15508] RIP: 0023:0xf739e579
[  438.285363][T15508] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  438.285377][T15508] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  438.285391][T15508] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  438.285400][T15508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  438.285409][T15508] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  438.285417][T15508] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  438.285425][T15508] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  438.285444][T15508]  </TASK>
[  438.382609][T10800] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.390189][T15500] chnl_net:caif_netlink_parms(): no params data found
[  438.443974][T15515] random: crng reseeded on system resumption
[  438.473122][T15500] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.475103][T15500] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.477043][T15500] bridge_slave_0: entered allmulticast mode
[  438.479150][T15500] bridge_slave_0: entered promiscuous mode
[  438.511730][T10800] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.520354][T15523] ubi31: detaching mtd0
[  438.523093][T15500] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.525146][T15500] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.527227][T15500] bridge_slave_1: entered allmulticast mode
[  438.530279][T15500] bridge_slave_1: entered promiscuous mode
[  438.533208][T15523] ubi31: mtd0 is detached
[  438.567431][T15500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  438.577799][T15500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  438.630509][T15500] team0: Port device team_slave_0 added
[  438.633933][T15500] team0: Port device team_slave_1 added
[  438.705058][T15500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  438.706970][T15500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.724340][T15500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  438.728411][T15500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  438.730337][T15500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.750901][T15500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  439.018508][T15543] 9pnet_fd: Insufficient options for proto=fd
[  439.185894][T10800] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  439.189404][T10800] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  439.192748][T10800] bond0 (unregistering): Released all slaves
[  439.286013][T15500] hsr_slave_0: entered promiscuous mode
[  439.288370][T15500] hsr_slave_1: entered promiscuous mode
[  439.290338][T15500] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  439.292765][T15500] Cannot create hsr debugfs directory
[  439.415703][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  439.500292][T15500] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  439.506825][T15500] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  439.510430][T15500] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  439.516775][T15500] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  439.558521][T15500] 8021q: adding VLAN 0 to HW filter on device bond0
[  439.573658][T15500] 8021q: adding VLAN 0 to HW filter on device team0
[  439.599478][T10818] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.601501][T10818] bridge0: port 1(bridge_slave_0) entered forwarding state
[  439.612763][T10837] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.614740][T10837] bridge0: port 2(bridge_slave_1) entered forwarding state
[  439.629475][T15500] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  439.633118][T15562] md: array md2 already initialised!
[  439.634203][T15500] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  439.668902][T10800] hsr_slave_0: left promiscuous mode
[  439.679322][T10800] hsr_slave_1: left promiscuous mode
[  439.681920][T10800] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  439.685135][T10800] batman_adv: batadv0: Removing interface: batadv_slave_0
[  439.688786][T10800] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  439.691586][T10800] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.736519][T10800] veth1_macvtap: left promiscuous mode
[  439.738074][T10800] veth0_macvtap: left promiscuous mode
[  439.739596][T10800] veth1_vlan: left promiscuous mode
[  439.741101][T10800] veth0_vlan: left promiscuous mode
[  439.824845][T10800] pimreg3 (unregistering): left allmulticast mode
[  440.132478][ T5960] Bluetooth: hci2: command tx timeout
[  440.162914][ T5321] usb 8-1: new high-speed USB device number 42 using dummy_hcd
[  440.322431][ T5321] usb 8-1: Using ep0 maxpacket: 16
[  440.333092][ T5321] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  440.337569][ T5321] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  440.341832][ T5321] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.349453][ T5321] usb 8-1: config 0 descriptor??
[  440.355599][ T5321] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input39
[  440.370739][T15586] FAULT_INJECTION: forcing a failure.
[  440.370739][T15586] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  440.374881][T15586] CPU: 3 UID: 0 PID: 15586 Comm: syz.0.3044 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  440.374895][T15586] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  440.374902][T15586] Call Trace:
[  440.374905][T15586]  <TASK>
[  440.374910][T15586]  dump_stack_lvl+0x16c/0x1f0
[  440.374928][T15586]  should_fail_ex+0x50a/0x650
[  440.374941][T15586]  _copy_from_user+0x2e/0xd0
[  440.374953][T15586]  generic_map_update_batch+0x391/0x5f0
[  440.374972][T15586]  ? __pfx_generic_map_update_batch+0x10/0x10
[  440.374993][T15586]  ? __fget_files+0x206/0x3a0
[  440.375012][T15586]  ? __pfx_generic_map_update_batch+0x10/0x10
[  440.375028][T15586]  bpf_map_do_batch+0x5a8/0x670
[  440.375042][T15586]  __sys_bpf+0x1ce4/0x49c0
[  440.375057][T15586]  ? __pfx_lock_release+0x10/0x10
[  440.375073][T15586]  ? __pfx___sys_bpf+0x10/0x10
[  440.375088][T15586]  ? vfs_write+0x306/0x1150
[  440.375104][T15586]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  440.375125][T15586]  ? fput+0x67/0x440
[  440.375135][T15586]  ? ksys_write+0x1ba/0x250
[  440.375149][T15586]  ? __pfx_ksys_write+0x10/0x10
[  440.375164][T15586]  __ia32_sys_bpf+0x76/0xe0
[  440.375174][T15586]  __do_fast_syscall_32+0x73/0x120
[  440.375190][T15586]  do_fast_syscall_32+0x32/0x80
[  440.375204][T15586]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  440.375221][T15586] RIP: 0023:0xf7f91579
[  440.375230][T15586] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  440.375239][T15586] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  440.375249][T15586] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 00000000800001c0
[  440.375255][T15586] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  440.375261][T15586] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  440.375266][T15586] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  440.375271][T15586] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  440.375283][T15586]  </TASK>
[  440.554093][T15590] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3046'.
[  440.581748][ T5345] bcm5974 8-1:0.0: could not read from device
[  440.600286][ T5321] bcm5974 8-1:0.0: could not read from device
[  440.634055][ T5345] bcm5974 8-1:0.0: could not read from device
[  440.646588][ T5321] input: failed to attach handler mousedev to device input39, error: -5
[  440.659909][ T5321] usb 8-1: USB disconnect, device number 42
[  440.661815][ T5345] bcm5974 8-1:0.0: could not read from device
[  440.842247][   T64] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  440.920804][T10800] team0 (unregistering): Port device team_slave_1 removed
[  441.002331][   T64] usb 5-1: Using ep0 maxpacket: 16
[  441.007027][   T64] usb 5-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  441.010941][   T64] usb 5-1: config 1 interface 0 has no altsetting 0
[  441.015945][   T64] usb 5-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.40
[  441.018597][   T64] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.020998][   T64] usb 5-1: Product: ã°Š
[  441.022567][   T64] usb 5-1: Manufacturer: �
[  441.023968][   T64] usb 5-1: SerialNumber: �
[  441.046596][T10800] team0 (unregistering): Port device team_slave_0 removed
[  441.841664][   T64] usbhid 5-1:1.0: can't add hid device: -71
[  441.845567][   T64] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  441.850100][   T64] usb 5-1: USB disconnect, device number 50
[  441.927643][T15500] 8021q: adding VLAN 0 to HW filter on device batadv0
[  442.043144][T15500] veth0_vlan: entered promiscuous mode
[  442.048742][T15500] veth1_vlan: entered promiscuous mode
[  442.061209][T15500] veth0_macvtap: entered promiscuous mode
[  442.064914][T15500] veth1_macvtap: entered promiscuous mode
[  442.071142][T15500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.074804][T15626] md: array md2 already initialised!
[  442.076826][T15500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.079582][T15500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.083527][T15500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.086734][T15500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.090168][T15500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.094196][T15500] batman_adv: batadv0: Interface activated: batadv_slave_0
[  442.112876][T15500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  442.116415][T15500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.119803][T15500] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  442.124123][T15500] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.128395][T15500] batman_adv: batadv0: Interface activated: batadv_slave_1
[  442.136641][T15500] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  442.138934][T15500] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  442.141597][T15500] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  442.145040][T15500] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  442.160624][T10800] IPVS: stop unused estimator thread 0...
[  442.185407][T10837] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  442.188419][T10837] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  442.200797][T10819] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  442.202475][ T5960] Bluetooth: hci2: command 0x041b tx timeout
[  442.203232][T10819] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  442.881544][T15655] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  443.122197][ T5986] usb 8-1: new high-speed USB device number 43 using dummy_hcd
[  443.272247][ T5986] usb 8-1: Using ep0 maxpacket: 8
[  443.277024][ T5986] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.281031][ T5986] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  443.285073][ T5986] usb 8-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  443.288470][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.294036][ T5986] usb 8-1: config 0 descriptor??
[  444.103758][ T5986] usbhid 8-1:0.0: can't add hid device: -71
[  444.105890][T15665] FAULT_INJECTION: forcing a failure.
[  444.105890][T15665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.106162][ T5986] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  444.109777][T15665] CPU: 2 UID: 0 PID: 15665 Comm: syz.0.3057 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  444.109794][T15665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  444.109801][T15665] Call Trace:
[  444.109804][T15665]  <TASK>
[  444.109809][T15665]  dump_stack_lvl+0x16c/0x1f0
[  444.109828][T15665]  should_fail_ex+0x50a/0x650
[  444.109841][T15665]  _copy_to_user+0x32/0xd0
[  444.109858][T15665]  simple_read_from_buffer+0xd0/0x160
[  444.109873][T15665]  proc_fail_nth_read+0x198/0x270
[  444.109886][T15665]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.109899][T15665]  ? rw_verify_area+0xcf/0x680
[  444.109912][T15665]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.109924][T15665]  vfs_read+0x1df/0xbf0
[  444.109938][T15665]  ? __fget_files+0x1fc/0x3a0
[  444.109953][T15665]  ? __pfx___mutex_lock+0x10/0x10
[  444.109968][T15665]  ? __pfx_vfs_read+0x10/0x10
[  444.109985][T15665]  ? __fget_files+0x206/0x3a0
[  444.110003][T15665]  ksys_read+0x12b/0x250
[  444.110016][T15665]  ? __pfx_ksys_read+0x10/0x10
[  444.110033][T15665]  __do_fast_syscall_32+0x73/0x120
[  444.110050][T15665]  do_fast_syscall_32+0x32/0x80
[  444.110065][T15665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  444.110082][T15665] RIP: 0023:0xf7f91579
[  444.110090][T15665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  444.110100][T15665] RSP: 002b:00000000f50b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  444.110111][T15665] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f50b6620
[  444.110117][T15665] RDX: 000000000000000f RSI: 00000000f741cff4 RDI: 0000000000000000
[  444.110123][T15665] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  444.110129][T15665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  444.110134][T15665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  444.110146][T15665]  </TASK>
[  444.188689][ T5986] usb 8-1: USB disconnect, device number 43
[  444.282373][   T67] Bluetooth: hci2: command 0x041b tx timeout
[  444.350046][T15679] ip6tnl0 speed is unknown, defaulting to 1000
[  444.677190][T15691] FAULT_INJECTION: forcing a failure.
[  444.677190][T15691] name failslab, interval 1, probability 0, space 0, times 0
[  444.680771][T15691] CPU: 2 UID: 0 PID: 15691 Comm: syz.1.3064 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  444.680785][T15691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  444.680791][T15691] Call Trace:
[  444.680795][T15691]  <TASK>
[  444.680799][T15691]  dump_stack_lvl+0x16c/0x1f0
[  444.680817][T15691]  should_fail_ex+0x50a/0x650
[  444.680830][T15691]  should_failslab+0xc2/0x120
[  444.680841][T15691]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  444.680857][T15691]  ? __alloc_skb+0x2b1/0x380
[  444.680874][T15691]  __alloc_skb+0x2b1/0x380
[  444.680889][T15691]  ? __pfx___alloc_skb+0x10/0x10
[  444.680903][T15691]  ? stack_depot_save_flags+0x38f/0x9c0
[  444.680918][T15691]  skb_copy+0x1c9/0x3a0
[  444.680934][T15691]  tcp_send_synack+0x68e/0x14a0
[  444.680949][T15691]  ? __pfx_tcp_set_state+0x10/0x10
[  444.680960][T15691]  ? __pfx_tcp_send_synack+0x10/0x10
[  444.680972][T15691]  ? tcp_parse_fastopen_option+0x90/0x110
[  444.680985][T15691]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  444.681002][T15691]  ? tcp_parse_options+0x1f5/0x11b0
[  444.681017][T15691]  ? tcp_sync_mss+0x2f9/0x620
[  444.681030][T15691]  tcp_rcv_state_process+0x2e7c/0x4c40
[  444.681044][T15691]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  444.681057][T15691]  ? __asan_memcpy+0x3c/0x60
[  444.681072][T15691]  ? __skb_clone+0x570/0x760
[  444.681094][T15691]  ? tcp_v6_do_rcv+0x492/0x1740
[  444.681107][T15691]  tcp_v6_do_rcv+0x492/0x1740
[  444.681122][T15691]  ? __pfx_tcp_v6_do_rcv+0x10/0x10
[  444.681135][T15691]  __release_sock+0x14c/0x400
[  444.681145][T15691]  ? release_sock+0x21/0x220
[  444.681156][T15691]  release_sock+0x5a/0x220
[  444.681166][T15691]  tcp_sendmsg+0x38/0x50
[  444.681175][T15691]  ? __pfx_tcp_sendmsg+0x10/0x10
[  444.681186][T15691]  inet6_sendmsg+0xb9/0x140
[  444.681199][T15691]  __sys_sendto+0x374/0x4f0
[  444.681213][T15691]  ? __pfx___sys_sendto+0x10/0x10
[  444.681239][T15691]  ? ksys_write+0x1ba/0x250
[  444.681253][T15691]  ? __pfx_ksys_write+0x10/0x10
[  444.681268][T15691]  __ia32_sys_sendto+0xdd/0x1b0
[  444.681282][T15691]  ? lockdep_hardirqs_on+0x7c/0x110
[  444.681296][T15691]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  444.681312][T15691]  __do_fast_syscall_32+0x73/0x120
[  444.681328][T15691]  do_fast_syscall_32+0x32/0x80
[  444.681343][T15691]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  444.681360][T15691] RIP: 0023:0xf73fe579
[  444.681368][T15691] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  444.681378][T15691] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  444.681388][T15691] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  444.681394][T15691] RDX: 0000000000000000 RSI: 0000000020008045 RDI: 00000000800001c0
[  444.681400][T15691] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  444.681406][T15691] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  444.681411][T15691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  444.681423][T15691]  </TASK>
[  445.120041][T15713] FAULT_INJECTION: forcing a failure.
[  445.120041][T15713] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  445.126755][T15713] CPU: 3 UID: 0 PID: 15713 Comm: syz.5.3072 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  445.126777][T15713] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  445.126787][T15713] Call Trace:
[  445.126791][T15713]  <TASK>
[  445.126798][T15713]  dump_stack_lvl+0x16c/0x1f0
[  445.126825][T15713]  should_fail_ex+0x50a/0x650
[  445.126839][T15713]  _copy_from_user+0x2e/0xd0
[  445.126857][T15713]  __sys_bpf+0x21c/0x49c0
[  445.126880][T15713]  ? __pfx_lock_release+0x10/0x10
[  445.126902][T15713]  ? __pfx___sys_bpf+0x10/0x10
[  445.126923][T15713]  ? vfs_write+0x306/0x1150
[  445.126947][T15713]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  445.126979][T15713]  ? fput+0x67/0x440
[  445.126994][T15713]  ? ksys_write+0x1ba/0x250
[  445.127018][T15713]  ? __pfx_ksys_write+0x10/0x10
[  445.127042][T15713]  __ia32_sys_bpf+0x76/0xe0
[  445.127056][T15713]  __do_fast_syscall_32+0x73/0x120
[  445.127075][T15713]  do_fast_syscall_32+0x32/0x80
[  445.127098][T15713]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  445.127120][T15713] RIP: 0023:0xf741e579
[  445.127133][T15713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  445.127147][T15713] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  445.127162][T15713] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  445.127172][T15713] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  445.127181][T15713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  445.127187][T15713] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  445.127194][T15713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  445.127214][T15713]  </TASK>
[  445.281213][   T40] audit: type=1326 audit(2000000195.269:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.289100][   T40] audit: type=1326 audit(2000000195.269:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.304823][   T40] audit: type=1326 audit(2000000195.269:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.310757][   T40] audit: type=1326 audit(2000000195.269:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.317081][   T40] audit: type=1326 audit(2000000195.269:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.329662][   T40] audit: type=1326 audit(2000000195.269:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.336229][   T40] audit: type=1326 audit(2000000195.269:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.341857][   T40] audit: type=1326 audit(2000000195.269:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.349965][   T40] audit: type=1326 audit(2000000195.269:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.356500][   T40] audit: type=1326 audit(2000000195.269:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15719 comm="syz.5.3075" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf741e579 code=0x7ffc0000
[  445.462230][ T5975] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  445.613456][ T5975] usb 5-1: config 0 has too many interfaces: 129, using maximum allowed: 32
[  445.616047][ T5975] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 129
[  445.620042][ T5975] usb 5-1: New USB device found, idVendor=0856, idProduct=ac31, bcdDevice=93.1e
[  445.623203][ T5975] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.626296][ T5975] usb 5-1: Product: syz
[  445.627621][ T5975] usb 5-1: Manufacturer: syz
[  445.628982][ T5975] usb 5-1: SerialNumber: syz
[  445.635568][ T5975] usb 5-1: config 0 descriptor??
[  445.913412][ T5975] mos7840 5-1:0.0: required endpoints missing
[  445.916943][ T5975] usb 5-1: USB disconnect, device number 51
[  446.363041][   T67] Bluetooth: hci2: command 0x041b tx timeout
[  446.462757][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c46
[  446.974244][T15765] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3091'.
[  447.005914][T15769] FAULT_INJECTION: forcing a failure.
[  447.005914][T15769] name failslab, interval 1, probability 0, space 0, times 0
[  447.009331][T15769] CPU: 0 UID: 0 PID: 15769 Comm: syz.5.3093 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  447.009344][T15769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.009351][T15769] Call Trace:
[  447.009355][T15769]  <TASK>
[  447.009360][T15769]  dump_stack_lvl+0x16c/0x1f0
[  447.009378][T15769]  should_fail_ex+0x50a/0x650
[  447.009391][T15769]  should_failslab+0xc2/0x120
[  447.009402][T15769]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  447.009418][T15769]  ? __skb_ext_alloc+0x1a/0x80
[  447.009434][T15769]  __skb_ext_alloc+0x1a/0x80
[  447.009446][T15769]  skb_ext_add+0x239/0x770
[  447.009459][T15769]  ? __pfx___lock_acquire+0x10/0x10
[  447.009475][T15769]  secpath_set+0xfb/0x1f0
[  447.009487][T15769]  xfrm_input+0x693/0x71a0
[  447.009497][T15769]  ? lock_acquire.part.0+0x11b/0x380
[  447.009511][T15769]  ? find_held_lock+0x2d/0x110
[  447.009525][T15769]  ? __pfx_xfrm_input+0x10/0x10
[  447.009536][T15769]  ? ip_tunnel_key_match+0x11d/0x160
[  447.009552][T15769]  ? ip_tunnel_lookup+0x7eb/0xb40
[  447.009567][T15769]  vti_input+0x2bf/0x3d0
[  447.009583][T15769]  ? __pfx_vti_input+0x10/0x10
[  447.009602][T15769]  xfrm4_rcv_encap+0x2b4/0x720
[  447.009617][T15769]  ? __pfx_xfrm4_udp_encap_rcv+0x10/0x10
[  447.009631][T15769]  xfrm4_udp_encap_rcv+0x99/0xe0
[  447.009647][T15769]  udp_queue_rcv_one_skb+0xad5/0x18b0
[  447.009673][T15769]  udp_queue_rcv_skb+0x198/0xd10
[  447.009700][T15769]  __udp4_lib_rcv+0x25c4/0x34e0
[  447.009731][T15769]  ? __pfx___udp4_lib_rcv+0x10/0x10
[  447.009756][T15769]  ? rcu_is_watching+0x12/0xc0
[  447.009773][T15769]  ? __pfx_udp_rcv+0x10/0x10
[  447.009802][T15769]  ip_protocol_deliver_rcu+0x2ff/0x4c0
[  447.009823][T15769]  ip_local_deliver_finish+0x316/0x570
[  447.009846][T15769]  ip_local_deliver+0x18e/0x1f0
[  447.009863][T15769]  ? __pfx_ip_local_deliver+0x10/0x10
[  447.009883][T15769]  ip_rcv+0x2c3/0x5d0
[  447.009902][T15769]  ? __pfx_ip_rcv+0x10/0x10
[  447.009919][T15769]  __netif_receive_skb_one_core+0x199/0x1e0
[  447.009941][T15769]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  447.009963][T15769]  ? rcu_is_watching+0x12/0xc0
[  447.009980][T15769]  ? netif_receive_skb+0x109/0x7b0
[  447.010005][T15769]  __netif_receive_skb+0x1d/0x160
[  447.010026][T15769]  netif_receive_skb+0x13f/0x7b0
[  447.010046][T15769]  ? __pfx_netif_receive_skb+0x10/0x10
[  447.010068][T15769]  ? __pfx___lock_acquire+0x10/0x10
[  447.010090][T15769]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  447.010110][T15769]  tun_rx_batched.isra.0+0x3eb/0x730
[  447.010136][T15769]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  447.010165][T15769]  ? tun_get_user+0x13e6/0x3e50
[  447.010181][T15769]  ? lock_acquire+0x2f/0xb0
[  447.010199][T15769]  ? tun_get_user+0x13e6/0x3e50
[  447.010217][T15769]  tun_get_user+0x2a22/0x3e50
[  447.010240][T15769]  ? find_held_lock+0x2d/0x110
[  447.010257][T15769]  ? __pfx_tun_get_user+0x10/0x10
[  447.010272][T15769]  ? find_held_lock+0x2d/0x110
[  447.010292][T15769]  ? __pfx_lock_release+0x10/0x10
[  447.010325][T15769]  tun_chr_write_iter+0xdc/0x210
[  447.010343][T15769]  vfs_write+0x5ae/0x1150
[  447.010364][T15769]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  447.010383][T15769]  ? __pfx_vfs_write+0x10/0x10
[  447.010404][T15769]  ? __fget_files+0x40/0x3a0
[  447.010438][T15769]  ksys_write+0x12b/0x250
[  447.010457][T15769]  ? __pfx_ksys_write+0x10/0x10
[  447.010484][T15769]  __do_fast_syscall_32+0x73/0x120
[  447.010522][T15769]  do_fast_syscall_32+0x32/0x80
[  447.010545][T15769]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  447.010569][T15769] RIP: 0023:0xf741e579
[  447.010581][T15769] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  447.010595][T15769] RSP: 002b:00000000f50a6520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  447.010609][T15769] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000300
[  447.010619][T15769] RDX: 00000000000000be RSI: 00000000f740cff4 RDI: 0000000000000000
[  447.010628][T15769] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  447.010636][T15769] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  447.010645][T15769] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  447.010666][T15769]  </TASK>
[  447.363162][T15785] FAULT_INJECTION: forcing a failure.
[  447.363162][T15785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  447.367180][T15785] CPU: 3 UID: 0 PID: 15785 Comm: syz.0.3099 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  447.367194][T15785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.367200][T15785] Call Trace:
[  447.367204][T15785]  <TASK>
[  447.367208][T15785]  dump_stack_lvl+0x16c/0x1f0
[  447.367227][T15785]  should_fail_ex+0x50a/0x650
[  447.367240][T15785]  _copy_from_iter+0x2a1/0x1560
[  447.367252][T15785]  ? trace_lock_acquire+0x14e/0x1f0
[  447.367265][T15785]  ? __alloc_skb+0x1fe/0x380
[  447.367280][T15785]  ? __pfx__copy_from_iter+0x10/0x10
[  447.367290][T15785]  ? __virt_addr_valid+0x1a4/0x590
[  447.367303][T15785]  ? __virt_addr_valid+0x5e/0x590
[  447.367314][T15785]  ? __phys_addr_symbol+0x30/0x80
[  447.367324][T15785]  ? __check_object_size+0x488/0x710
[  447.367337][T15785]  netlink_sendmsg+0x813/0xd70
[  447.367355][T15785]  ? __pfx_netlink_sendmsg+0x10/0x10
[  447.367374][T15785]  ____sys_sendmsg+0xaaf/0xc90
[  447.367387][T15785]  ? __pfx_____sys_sendmsg+0x10/0x10
[  447.367399][T15785]  ? get_compat_msghdr+0x11b/0x170
[  447.367417][T15785]  ___sys_sendmsg+0x135/0x1e0
[  447.367434][T15785]  ? __pfx____sys_sendmsg+0x10/0x10
[  447.367454][T15785]  ? __pfx_lock_release+0x10/0x10
[  447.367468][T15785]  ? trace_lock_acquire+0x14e/0x1f0
[  447.367483][T15785]  ? __fget_files+0x206/0x3a0
[  447.367501][T15785]  __sys_sendmsg+0x16e/0x220
[  447.367510][T15785]  ? __pfx___sys_sendmsg+0x10/0x10
[  447.367527][T15785]  __do_fast_syscall_32+0x73/0x120
[  447.367544][T15785]  do_fast_syscall_32+0x32/0x80
[  447.367559][T15785]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  447.367576][T15785] RIP: 0023:0xf7f91579
[  447.367584][T15785] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  447.367594][T15785] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  447.367603][T15785] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  447.367610][T15785] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  447.367615][T15785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  447.367621][T15785] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  447.367626][T15785] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  447.367638][T15785]  </TASK>
[  447.474611][T15791] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  447.972652][T10808] Bluetooth: hci3: Frame reassembly failed (-84)
[  448.182254][ T5986] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  448.342917][ T5986] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  448.346222][ T5986] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[  448.349438][ T5986] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  448.352797][ T5986] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  448.355822][ T5986] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.372396][T15802] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  448.389695][ T5986] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  448.577037][T15802] FAULT_INJECTION: forcing a failure.
[  448.577037][T15802] name failslab, interval 1, probability 0, space 0, times 0
[  448.581052][T15802] CPU: 0 UID: 0 PID: 15802 Comm: syz.1.3106 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  448.581067][T15802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.581074][T15802] Call Trace:
[  448.581077][T15802]  <TASK>
[  448.581081][T15802]  dump_stack_lvl+0x16c/0x1f0
[  448.581101][T15802]  should_fail_ex+0x50a/0x650
[  448.581111][T15802]  ? fs_reclaim_acquire+0xae/0x150
[  448.581126][T15802]  ? snd_seq_timer_new+0x42/0x190
[  448.581141][T15802]  should_failslab+0xc2/0x120
[  448.581151][T15802]  __kmalloc_cache_noprof+0x68/0x410
[  448.581164][T15802]  ? lockdep_init_map_type+0x16d/0x7d0
[  448.581182][T15802]  snd_seq_timer_new+0x42/0x190
[  448.581197][T15802]  snd_seq_queue_alloc+0x177/0x550
[  448.581213][T15802]  snd_seq_ioctl_create_queue+0xa9/0x380
[  448.581230][T15802]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  448.581243][T15802]  alloc_seq_queue+0xda/0x180
[  448.581254][T15802]  ? __pfx_alloc_seq_queue+0x10/0x10
[  448.581272][T15802]  ? mark_held_locks+0x9f/0xe0
[  448.581286][T15802]  ? _raw_spin_unlock_irq+0x23/0x50
[  448.581301][T15802]  snd_seq_oss_open+0x38c/0xa20
[  448.581315][T15802]  odev_open+0x6f/0x90
[  448.581324][T15802]  ? __pfx_odev_open+0x10/0x10
[  448.581334][T15802]  soundcore_open+0x409/0x580
[  448.581346][T15802]  ? __pfx_soundcore_open+0x10/0x10
[  448.581356][T15802]  chrdev_open+0x237/0x6a0
[  448.581371][T15802]  ? __pfx_apparmor_file_open+0x10/0x10
[  448.581385][T15802]  ? __pfx_chrdev_open+0x10/0x10
[  448.581400][T15802]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  448.581416][T15802]  do_dentry_open+0x735/0x1c40
[  448.581430][T15802]  ? __pfx_chrdev_open+0x10/0x10
[  448.581448][T15802]  vfs_open+0x82/0x3f0
[  448.581457][T15802]  ? may_open+0x1f2/0x400
[  448.581470][T15802]  path_openat+0x1e88/0x2d80
[  448.581490][T15802]  ? __pfx_path_openat+0x10/0x10
[  448.581504][T15802]  ? __pfx___lock_acquire+0x10/0x10
[  448.581517][T15802]  ? lock_acquire.part.0+0x11b/0x380
[  448.581530][T15802]  ? find_held_lock+0x2d/0x110
[  448.581542][T15802]  do_filp_open+0x20c/0x470
[  448.581557][T15802]  ? __pfx_do_filp_open+0x10/0x10
[  448.581570][T15802]  ? find_held_lock+0x2d/0x110
[  448.581589][T15802]  ? alloc_fd+0x41f/0x760
[  448.581607][T15802]  do_sys_openat2+0x17a/0x1e0
[  448.581618][T15802]  ? __pfx_do_sys_openat2+0x10/0x10
[  448.581630][T15802]  ? __fget_files+0x206/0x3a0
[  448.581647][T15802]  __ia32_compat_sys_openat+0x16e/0x210
[  448.581659][T15802]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  448.581670][T15802]  ? ksys_write+0x1ba/0x250
[  448.581688][T15802]  __do_fast_syscall_32+0x73/0x120
[  448.581704][T15802]  do_fast_syscall_32+0x32/0x80
[  448.581718][T15802]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  448.581735][T15802] RIP: 0023:0xf73fe579
[  448.581743][T15802] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  448.581753][T15802] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  448.581763][T15802] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  448.581770][T15802] RDX: 00000000001e4011 RSI: 0000000000000000 RDI: 0000000000000000
[  448.581776][T15802] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  448.581781][T15802] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  448.581786][T15802] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  448.581798][T15802]  </TASK>
[  448.678416][T12661] usb 6-1: USB disconnect, device number 36
[  448.772428][T15810] md: array md2 already initialised!
[  448.889549][T15815] FAULT_INJECTION: forcing a failure.
[  448.889549][T15815] name failslab, interval 1, probability 0, space 0, times 0
[  448.896360][T15815] CPU: 2 UID: 0 PID: 15815 Comm: syz.5.3110 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  448.896377][T15815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.896385][T15815] Call Trace:
[  448.896388][T15815]  <TASK>
[  448.896394][T15815]  dump_stack_lvl+0x16c/0x1f0
[  448.896414][T15815]  should_fail_ex+0x50a/0x650
[  448.896425][T15815]  ? fs_reclaim_acquire+0xae/0x150
[  448.896441][T15815]  ? ip_set_create+0x33f/0x14d0
[  448.896454][T15815]  should_failslab+0xc2/0x120
[  448.896465][T15815]  __kmalloc_cache_noprof+0x68/0x410
[  448.896483][T15815]  ip_set_create+0x33f/0x14d0
[  448.896498][T15815]  ? __pfx_ip_set_create+0x10/0x10
[  448.896524][T15815]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  448.896541][T15815]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  448.896553][T15815]  ? find_held_lock+0x2d/0x110
[  448.896582][T15815]  netlink_rcv_skb+0x16b/0x440
[  448.896598][T15815]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  448.896610][T15815]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  448.896626][T15815]  ? __pfx_aa_get_newest_label+0x10/0x10
[  448.896644][T15815]  ? bpf_lsm_capable+0x9/0x10
[  448.896655][T15815]  ? security_capable+0x7e/0x260
[  448.896667][T15815]  ? ns_capable+0xd7/0x110
[  448.896683][T15815]  nfnetlink_rcv+0x1b4/0x430
[  448.896694][T15815]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  448.896704][T15815]  ? netlink_deliver_tap+0x1ae/0xd30
[  448.896721][T15815]  netlink_unicast+0x53c/0x7f0
[  448.896739][T15815]  ? __pfx_netlink_unicast+0x10/0x10
[  448.896755][T15815]  ? __phys_addr_symbol+0x30/0x80
[  448.896766][T15815]  ? __check_object_size+0x488/0x710
[  448.896789][T15815]  netlink_sendmsg+0x8b8/0xd70
[  448.896810][T15815]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.896830][T15815]  ____sys_sendmsg+0xaaf/0xc90
[  448.896846][T15815]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.896859][T15815]  ? get_compat_msghdr+0x11b/0x170
[  448.896879][T15815]  ___sys_sendmsg+0x135/0x1e0
[  448.896897][T15815]  ? __pfx____sys_sendmsg+0x10/0x10
[  448.896919][T15815]  ? __pfx_lock_release+0x10/0x10
[  448.896933][T15815]  ? trace_lock_acquire+0x14e/0x1f0
[  448.896950][T15815]  ? __fget_files+0x206/0x3a0
[  448.896969][T15815]  __sys_sendmsg+0x16e/0x220
[  448.896979][T15815]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.896998][T15815]  __do_fast_syscall_32+0x73/0x120
[  448.897016][T15815]  do_fast_syscall_32+0x32/0x80
[  448.897031][T15815]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  448.897049][T15815] RIP: 0023:0xf741e579
[  448.897058][T15815] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  448.897073][T15815] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  448.897083][T15815] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  448.897090][T15815] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  448.897096][T15815] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  448.897102][T15815] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  448.897108][T15815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  448.897121][T15815]  </TASK>
[  449.542231][ T5986] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  449.682220][ T5321] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  449.702217][ T5986] usb 6-1: Using ep0 maxpacket: 8
[  449.705490][ T5986] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  449.708983][ T5986] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  449.712534][ T5986] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  449.715631][ T5986] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  449.720139][ T5986] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  449.723561][ T5986] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.843452][ T5321] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  449.847196][ T5321] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[  449.851446][ T5321] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  449.855395][ T5321] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  449.858939][ T5321] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.864338][T15829] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  449.867976][ T5321] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  449.937512][ T5986] usb 6-1: usb_control_msg returned -71
[  449.939534][ T5986] usbtmc 6-1:16.0: can't read capabilities
[  449.945417][ T5986] usb 6-1: USB disconnect, device number 37
[  450.042255][ T5960] Bluetooth: hci3: command 0x1003 tx timeout
[  450.042351][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  450.088724][   T64] usb 10-1: USB disconnect, device number 2
[  450.290153][T10808] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  450.293896][T10808] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  450.299920][T15836] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  450.305511][T15836] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3119'.
[  450.492252][ T5986] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  450.506934][T15841] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  450.643630][ T5986] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  450.647809][ T5986] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[  450.653108][ T5986] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  450.656984][ T5986] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  450.660421][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  450.667086][T15834] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  450.672435][ T5986] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  450.897128][ T5986] usb 8-1: USB disconnect, device number 44
[  450.973517][   T31] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  451.136471][   T31] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  451.138879][   T31] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  451.141732][   T31] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  451.144329][   T31] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  451.147334][   T31] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  451.151575][   T31] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  451.154259][   T31] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  451.156517][   T31] usb 10-1: Product: syz
[  451.157695][   T31] usb 10-1: Manufacturer: syz
[  451.160982][   T31] cdc_wdm 10-1:1.0: skipping garbage
[  451.162688][   T31] cdc_wdm 10-1:1.0: skipping garbage
[  451.167733][   T31] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  451.169469][   T31] cdc_wdm 10-1:1.0: Unknown control protocol
[  451.549020][T15853] fuse: Unknown parameter 'ó'
[  451.822602][ T5986] usb 10-1: USB disconnect, device number 3
[  452.362427][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  453.045445][T15902] syzkaller1: entered promiscuous mode
[  453.046954][T15902] syzkaller1: entered allmulticast mode
[  453.049338][T15902] FAULT_INJECTION: forcing a failure.
[  453.049338][T15902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  453.052859][T15902] CPU: 2 UID: 0 PID: 15902 Comm: syz.0.3139 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  453.052872][T15902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  453.052878][T15902] Call Trace:
[  453.052882][T15902]  <TASK>
[  453.052886][T15902]  dump_stack_lvl+0x16c/0x1f0
[  453.052905][T15902]  should_fail_ex+0x50a/0x650
[  453.052918][T15902]  _copy_from_iter+0x2a1/0x1560
[  453.052930][T15902]  ? trace_lock_acquire+0x14e/0x1f0
[  453.052943][T15902]  ? __pfx__copy_from_iter+0x10/0x10
[  453.052953][T15902]  ? __virt_addr_valid+0x1a4/0x590
[  453.052971][T15902]  ? __virt_addr_valid+0x5e/0x590
[  453.052981][T15902]  ? __phys_addr_symbol+0x30/0x80
[  453.052991][T15902]  ? __check_object_size+0x488/0x710
[  453.053003][T15902]  skb_copy_datagram_from_iter+0x124/0x710
[  453.053017][T15902]  ? hlock_class+0x4e/0x130
[  453.053027][T15902]  ? __lock_acquire+0xcc5/0x3c40
[  453.053041][T15902]  ? iov_iter_advance+0x7d/0x6c0
[  453.053054][T15902]  tun_get_user+0x199c/0x3e50
[  453.053071][T15902]  ? __pfx_tun_get_user+0x10/0x10
[  453.053081][T15902]  ? find_held_lock+0x2d/0x110
[  453.053093][T15902]  ? __pfx_lock_release+0x10/0x10
[  453.053113][T15902]  tun_chr_write_iter+0xdc/0x210
[  453.053124][T15902]  vfs_write+0x5ae/0x1150
[  453.053139][T15902]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  453.053151][T15902]  ? __pfx_vfs_write+0x10/0x10
[  453.053165][T15902]  ? __fget_files+0x40/0x3a0
[  453.053185][T15902]  ksys_write+0x12b/0x250
[  453.053198][T15902]  ? __pfx_ksys_write+0x10/0x10
[  453.053215][T15902]  __do_fast_syscall_32+0x73/0x120
[  453.053232][T15902]  do_fast_syscall_32+0x32/0x80
[  453.053246][T15902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  453.053263][T15902] RIP: 0023:0xf7f91579
[  453.053272][T15902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  453.053281][T15902] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  453.053291][T15902] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000840
[  453.053297][T15902] RDX: 0000000000000fce RSI: 0000000000000000 RDI: 0000000000000000
[  453.053303][T15902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  453.053309][T15902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  453.053315][T15902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  453.053326][T15902]  </TASK>
[  453.211459][T15904] tipc: Started in network mode
[  453.213505][T15904] tipc: Node identity 080211000001, cluster identity 4711
[  453.215654][T15904] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  453.315337][T15912] ieee802154 phy1 wpan1: encryption failed: -90
[  453.502180][T15921] md: array md2 already initialised!
[  453.678995][T15927] fuse: Bad value for 'user_id'
[  453.680469][T15927] fuse: Bad value for 'user_id'
[  454.222397][    T9] tipc: Node number set to 134418688
[  454.330364][T15938] FAULT_INJECTION: forcing a failure.
[  454.330364][T15938] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  454.336381][T15938] CPU: 2 UID: 0 PID: 15938 Comm: syz.0.3152 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  454.336396][T15938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  454.336402][T15938] Call Trace:
[  454.336406][T15938]  <TASK>
[  454.336410][T15938]  dump_stack_lvl+0x16c/0x1f0
[  454.336429][T15938]  should_fail_ex+0x50a/0x650
[  454.336441][T15938]  _copy_to_user+0x32/0xd0
[  454.336454][T15938]  simple_read_from_buffer+0xd0/0x160
[  454.336468][T15938]  proc_fail_nth_read+0x198/0x270
[  454.336481][T15938]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  454.336494][T15938]  ? rw_verify_area+0xcf/0x680
[  454.336507][T15938]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  454.336519][T15938]  vfs_read+0x1df/0xbf0
[  454.336532][T15938]  ? __fget_files+0x1fc/0x3a0
[  454.336547][T15938]  ? __pfx___mutex_lock+0x10/0x10
[  454.336563][T15938]  ? __pfx_vfs_read+0x10/0x10
[  454.336579][T15938]  ? __fget_files+0x206/0x3a0
[  454.336597][T15938]  ksys_read+0x12b/0x250
[  454.336611][T15938]  ? __pfx_ksys_read+0x10/0x10
[  454.336631][T15938]  __do_fast_syscall_32+0x73/0x120
[  454.336648][T15938]  do_fast_syscall_32+0x32/0x80
[  454.336663][T15938]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  454.336680][T15938] RIP: 0023:0xf7f91579
[  454.336689][T15938] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  454.336699][T15938] RSP: 002b:00000000f50b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  454.336709][T15938] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50b6620
[  454.336715][T15938] RDX: 000000000000000f RSI: 00000000f741cff4 RDI: 0000000000000000
[  454.336724][T15938] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  454.336730][T15938] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  454.336735][T15938] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  454.336747][T15938]  </TASK>
[  454.349569][T15936] tipc: Started in network mode
[  454.422319][T15936] tipc: Node identity c25c55f43887, cluster identity 4711
[  454.424439][T15936] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  454.429076][T15934] tipc: Resetting bearer <eth:syzkaller0>
[  454.685501][T15944] FAULT_INJECTION: forcing a failure.
[  454.685501][T15944] name failslab, interval 1, probability 0, space 0, times 0
[  454.688996][T15944] CPU: 2 UID: 0 PID: 15944 Comm: syz.3.3154 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  454.689010][T15944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  454.689017][T15944] Call Trace:
[  454.689020][T15944]  <TASK>
[  454.689024][T15944]  dump_stack_lvl+0x16c/0x1f0
[  454.689043][T15944]  should_fail_ex+0x50a/0x650
[  454.689053][T15944]  ? fs_reclaim_acquire+0xae/0x150
[  454.689068][T15944]  should_failslab+0xc2/0x120
[  454.689078][T15944]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  454.689094][T15944]  ? __alloc_skb+0x2b1/0x380
[  454.689112][T15944]  __alloc_skb+0x2b1/0x380
[  454.689127][T15944]  ? __pfx___alloc_skb+0x10/0x10
[  454.689140][T15944]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  454.689157][T15944]  ? __nla_validate_parse+0x601/0x2880
[  454.689173][T15944]  netlbl_cipsov4_list+0x136/0x1480
[  454.689187][T15944]  ? __pfx___nla_validate_parse+0x10/0x10
[  454.689204][T15944]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  454.689219][T15944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  454.689231][T15944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  454.689245][T15944]  genl_family_rcv_msg_doit+0x202/0x2f0
[  454.689257][T15944]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  454.689268][T15944]  ? genl_get_cmd+0x195/0x580
[  454.689281][T15944]  ? __radix_tree_lookup+0x21f/0x2c0
[  454.689297][T15944]  genl_rcv_msg+0x565/0x800
[  454.689309][T15944]  ? __pfx_genl_rcv_msg+0x10/0x10
[  454.689320][T15944]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  454.689335][T15944]  ? __pfx___lock_acquire+0x10/0x10
[  454.689352][T15944]  netlink_rcv_skb+0x16b/0x440
[  454.689367][T15944]  ? __pfx_genl_rcv_msg+0x10/0x10
[  454.689377][T15944]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  454.689398][T15944]  ? down_read+0xc9/0x330
[  454.689413][T15944]  ? __pfx_down_read+0x10/0x10
[  454.689429][T15944]  ? netlink_deliver_tap+0x1ae/0xd30
[  454.689446][T15944]  genl_rcv+0x28/0x40
[  454.689454][T15944]  netlink_unicast+0x53c/0x7f0
[  454.689471][T15944]  ? __pfx_netlink_unicast+0x10/0x10
[  454.689486][T15944]  ? __phys_addr_symbol+0x30/0x80
[  454.689498][T15944]  ? __check_object_size+0x488/0x710
[  454.689510][T15944]  netlink_sendmsg+0x8b8/0xd70
[  454.689527][T15944]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.689547][T15944]  ____sys_sendmsg+0xaaf/0xc90
[  454.689561][T15944]  ? __pfx_____sys_sendmsg+0x10/0x10
[  454.689573][T15944]  ? get_compat_msghdr+0x11b/0x170
[  454.689592][T15944]  ___sys_sendmsg+0x135/0x1e0
[  454.689609][T15944]  ? __pfx____sys_sendmsg+0x10/0x10
[  454.689631][T15944]  ? __pfx_lock_release+0x10/0x10
[  454.689644][T15944]  ? trace_lock_acquire+0x14e/0x1f0
[  454.689660][T15944]  ? __fget_files+0x206/0x3a0
[  454.689678][T15944]  __sys_sendmsg+0x16e/0x220
[  454.689687][T15944]  ? __pfx___sys_sendmsg+0x10/0x10
[  454.689710][T15944]  __do_fast_syscall_32+0x73/0x120
[  454.689726][T15944]  do_fast_syscall_32+0x32/0x80
[  454.689741][T15944]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  454.689758][T15944] RIP: 0023:0xf739e579
[  454.689766][T15944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  454.689775][T15944] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  454.689785][T15944] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800012c0
[  454.689791][T15944] RDX: 0000000004040840 RSI: 0000000000000000 RDI: 0000000000000000
[  454.689797][T15944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  454.689803][T15944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  454.689809][T15944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  454.689821][T15944]  </TASK>
[  454.874381][T15947] netlink: 100 bytes leftover after parsing attributes in process `syz.3.3155'.
[  454.877240][T15947] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3155'.
[  455.452441][    T9] tipc: Node number set to 4208678388
[  456.164458][T15934] tipc: Disabling bearer <eth:syzkaller0>
[  456.179654][T15959] fuse: Unknown parameter 'grou00000000000000000000'
[  456.238570][T15961] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  456.241147][T15961] IPv6: NLM_F_CREATE should be set when creating new route
[  456.269379][T15964] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3161'.
[  456.271932][T15964] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3161'.
[  456.355809][T15970] ip6tnl0 speed is unknown, defaulting to 1000
[  456.428553][T15970] FAULT_INJECTION: forcing a failure.
[  456.428553][T15970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  456.432093][T15970] CPU: 2 UID: 0 PID: 15970 Comm: syz.3.3163 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  456.432109][T15970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  456.432116][T15970] Call Trace:
[  456.432120][T15970]  <TASK>
[  456.432124][T15970]  dump_stack_lvl+0x16c/0x1f0
[  456.432142][T15970]  should_fail_ex+0x50a/0x650
[  456.432155][T15970]  _copy_from_iter+0x2a1/0x1560
[  456.432167][T15970]  ? trace_lock_acquire+0x14e/0x1f0
[  456.432180][T15970]  ? __pfx__copy_from_iter+0x10/0x10
[  456.432191][T15970]  ? __virt_addr_valid+0x1a4/0x590
[  456.432203][T15970]  ? __virt_addr_valid+0x5e/0x590
[  456.432213][T15970]  ? __phys_addr_symbol+0x30/0x80
[  456.432223][T15970]  ? __check_object_size+0x488/0x710
[  456.432236][T15970]  skb_copy_datagram_from_iter+0x124/0x710
[  456.432252][T15970]  ? hlock_class+0x4e/0x130
[  456.432262][T15970]  ? __lock_acquire+0xcc5/0x3c40
[  456.432275][T15970]  ? iov_iter_advance+0x7d/0x6c0
[  456.432288][T15970]  tun_get_user+0x199c/0x3e50
[  456.432302][T15970]  ? find_held_lock+0x2d/0x110
[  456.432314][T15970]  ? __pfx_tun_get_user+0x10/0x10
[  456.432324][T15970]  ? find_held_lock+0x2d/0x110
[  456.432336][T15970]  ? __pfx_lock_release+0x10/0x10
[  456.432356][T15970]  tun_chr_write_iter+0xdc/0x210
[  456.432367][T15970]  vfs_write+0x5ae/0x1150
[  456.432382][T15970]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  456.432394][T15970]  ? __pfx_vfs_write+0x10/0x10
[  456.432408][T15970]  ? __fget_files+0x40/0x3a0
[  456.432428][T15970]  ksys_write+0x12b/0x250
[  456.432441][T15970]  ? __pfx_ksys_write+0x10/0x10
[  456.432458][T15970]  __do_fast_syscall_32+0x73/0x120
[  456.432474][T15970]  do_fast_syscall_32+0x32/0x80
[  456.432489][T15970]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  456.432506][T15970] RIP: 0023:0xf739e579
[  456.432514][T15970] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  456.432524][T15970] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  456.432534][T15970] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  456.432540][T15970] RDX: 0000000000000ffe RSI: 0000000000000000 RDI: 0000000000000000
[  456.432546][T15970] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  456.432551][T15970] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  456.432557][T15970] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  456.432569][T15970]  </TASK>
[  456.464227][T10819] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  456.504088][T10819] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  456.517250][T15981] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  456.523256][T15981] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3165'.
[  456.535776][T10843] Bluetooth: hci3: Frame reassembly failed (-84)
[  456.621029][T15984] netlink: 'syz.3.3167': attribute type 10 has an invalid length.
[  456.623883][T15984] FAULT_INJECTION: forcing a failure.
[  456.623883][T15984] name failslab, interval 1, probability 0, space 0, times 0
[  456.628248][T15984] CPU: 3 UID: 0 PID: 15984 Comm: syz.3.3167 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  456.628266][T15984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  456.628275][T15984] Call Trace:
[  456.628279][T15984]  <TASK>
[  456.628283][T15984]  dump_stack_lvl+0x16c/0x1f0
[  456.628301][T15984]  should_fail_ex+0x50a/0x650
[  456.628314][T15984]  should_failslab+0xc2/0x120
[  456.628324][T15984]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  456.628340][T15984]  ? __alloc_skb+0x2b1/0x380
[  456.628358][T15984]  __alloc_skb+0x2b1/0x380
[  456.628373][T15984]  ? __pfx___alloc_skb+0x10/0x10
[  456.628390][T15984]  ? if_nlmsg_size+0x45d/0xa80
[  456.628407][T15984]  rtmsg_ifinfo_build_skb+0x81/0x280
[  456.628420][T15984]  rtmsg_ifinfo+0x9f/0x1a0
[  456.628432][T15984]  __dev_notify_flags+0x24e/0x2e0
[  456.628448][T15984]  ? __pfx___dev_notify_flags+0x10/0x10
[  456.628464][T15984]  ? __pfx___dev_change_flags+0x10/0x10
[  456.628479][T15984]  ? validate_linkmsg+0x57d/0xb60
[  456.628494][T15984]  ? __lock_acquire+0x15a9/0x3c40
[  456.628509][T15984]  ? __pfx_validate_linkmsg+0x10/0x10
[  456.628525][T15984]  dev_change_flags+0x10c/0x160
[  456.628542][T15984]  do_setlink.constprop.0+0x699/0x3f80
[  456.628558][T15984]  ? vprintk_emit+0x39e/0x6f0
[  456.628569][T15984]  ? __pfx_vprintk_emit+0x10/0x10
[  456.628581][T15984]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  456.628596][T15984]  ? lock_acquire.part.0+0x11b/0x380
[  456.628613][T15984]  ? __mutex_trylock_common+0xea/0x250
[  456.628628][T15984]  ? __pfx___mutex_trylock_common+0x10/0x10
[  456.628643][T15984]  ? rtnl_newlink+0x5d9/0x1d60
[  456.628659][T15984]  ? rcu_is_watching+0x12/0xc0
[  456.628669][T15984]  ? trace_contention_end+0xee/0x140
[  456.628684][T15984]  ? __mutex_lock+0x1cc/0xb10
[  456.628704][T15984]  ? __pfx_aa_get_newest_label+0x10/0x10
[  456.628715][T15984]  ? rcu_is_watching+0x12/0xc0
[  456.628725][T15984]  ? rtnl_newlink+0x5d9/0x1d60
[  456.628739][T15984]  ? trace_cap_capable+0x1a2/0x210
[  456.628751][T15984]  ? __pfx___mutex_lock+0x10/0x10
[  456.628774][T15984]  rtnl_newlink+0x1306/0x1d60
[  456.628792][T15984]  ? __pfx_rtnl_newlink+0x10/0x10
[  456.628810][T15984]  ? __pfx___lock_acquire+0x10/0x10
[  456.628825][T15984]  ? aa_get_newest_label+0x376/0x680
[  456.628838][T15984]  ? find_held_lock+0x2d/0x110
[  456.628850][T15984]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  456.628865][T15984]  ? __pfx_lock_release+0x10/0x10
[  456.628878][T15984]  ? trace_lock_acquire+0x14e/0x1f0
[  456.628893][T15984]  ? __pfx_rtnl_newlink+0x10/0x10
[  456.628908][T15984]  rtnetlink_rcv_msg+0x95b/0xea0
[  456.628925][T15984]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  456.628942][T15984]  ? __pfx___lock_acquire+0x10/0x10
[  456.628957][T15984]  ? __pfx___lock_acquire+0x10/0x10
[  456.628970][T15984]  ? hlock_class+0x4e/0x130
[  456.628980][T15984]  ? __lock_acquire+0xcc5/0x3c40
[  456.628996][T15984]  netlink_rcv_skb+0x16b/0x440
[  456.629010][T15984]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  456.629027][T15984]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  456.629049][T15984]  ? netlink_deliver_tap+0x1ae/0xd30
[  456.629066][T15984]  netlink_unicast+0x53c/0x7f0
[  456.629082][T15984]  ? __pfx_netlink_unicast+0x10/0x10
[  456.629098][T15984]  ? __phys_addr_symbol+0x30/0x80
[  456.629108][T15984]  ? __check_object_size+0x488/0x710
[  456.629120][T15984]  netlink_sendmsg+0x8b8/0xd70
[  456.629137][T15984]  ? __pfx_netlink_sendmsg+0x10/0x10
[  456.629157][T15984]  ____sys_sendmsg+0xaaf/0xc90
[  456.629170][T15984]  ? __pfx_____sys_sendmsg+0x10/0x10
[  456.629182][T15984]  ? get_compat_msghdr+0x11b/0x170
[  456.629201][T15984]  ___sys_sendmsg+0x135/0x1e0
[  456.629217][T15984]  ? __pfx____sys_sendmsg+0x10/0x10
[  456.629238][T15984]  ? __pfx_lock_release+0x10/0x10
[  456.629251][T15984]  ? trace_lock_acquire+0x14e/0x1f0
[  456.629267][T15984]  ? __fget_files+0x206/0x3a0
[  456.629285][T15984]  __sys_sendmsg+0x16e/0x220
[  456.629294][T15984]  ? __pfx___sys_sendmsg+0x10/0x10
[  456.629312][T15984]  __do_fast_syscall_32+0x73/0x120
[  456.629328][T15984]  do_fast_syscall_32+0x32/0x80
[  456.629343][T15984]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  456.629359][T15984] RIP: 0023:0xf739e579
[  456.629367][T15984] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  456.629377][T15984] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  456.629386][T15984] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000600
[  456.629393][T15984] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  456.629398][T15984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  456.629404][T15984] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  456.629410][T15984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  456.629422][T15984]  </TASK>
[  456.630259][T15984] 8021q: adding VLAN 0 to HW filter on device team0
[  456.762216][T15984] bond0: (slave team0): Enslaving as an active interface with an up link
[  456.798636][T15986] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  457.349287][T16005] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3177'.
[  457.351865][T16005] FAULT_INJECTION: forcing a failure.
[  457.351865][T16005] name failslab, interval 1, probability 0, space 0, times 0
[  457.357513][T16005] CPU: 0 UID: 0 PID: 16005 Comm: syz.0.3177 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  457.357526][T16005] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  457.357533][T16005] Call Trace:
[  457.357536][T16005]  <TASK>
[  457.357540][T16005]  dump_stack_lvl+0x16c/0x1f0
[  457.357559][T16005]  should_fail_ex+0x50a/0x650
[  457.357570][T16005]  ? fs_reclaim_acquire+0xae/0x150
[  457.357584][T16005]  ? nbd_alloc_and_init_config+0x97/0x2a0
[  457.357597][T16005]  should_failslab+0xc2/0x120
[  457.357607][T16005]  __kmalloc_cache_noprof+0x68/0x410
[  457.357620][T16005]  ? idr_get_next+0xed/0x150
[  457.357636][T16005]  nbd_alloc_and_init_config+0x97/0x2a0
[  457.357649][T16005]  nbd_genl_connect+0x491/0x1c00
[  457.357664][T16005]  ? __pfx_nbd_genl_connect+0x10/0x10
[  457.357679][T16005]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  457.357692][T16005]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  457.357706][T16005]  genl_family_rcv_msg_doit+0x202/0x2f0
[  457.357717][T16005]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  457.357734][T16005]  ? genl_get_cmd+0x195/0x580
[  457.357748][T16005]  ? __radix_tree_lookup+0x21f/0x2c0
[  457.357778][T16005]  genl_rcv_msg+0x565/0x800
[  457.357791][T16005]  ? __pfx_genl_rcv_msg+0x10/0x10
[  457.357802][T16005]  ? __pfx_nbd_genl_connect+0x10/0x10
[  457.357816][T16005]  ? __pfx___lock_acquire+0x10/0x10
[  457.357834][T16005]  netlink_rcv_skb+0x16b/0x440
[  457.357849][T16005]  ? __pfx_genl_rcv_msg+0x10/0x10
[  457.357860][T16005]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  457.357881][T16005]  ? down_read+0xc9/0x330
[  457.357897][T16005]  ? __pfx_down_read+0x10/0x10
[  457.357912][T16005]  ? netlink_deliver_tap+0x1ae/0xd30
[  457.357929][T16005]  genl_rcv+0x28/0x40
[  457.357937][T16005]  netlink_unicast+0x53c/0x7f0
[  457.357954][T16005]  ? __pfx_netlink_unicast+0x10/0x10
[  457.357969][T16005]  ? __phys_addr_symbol+0x30/0x80
[  457.357980][T16005]  ? __check_object_size+0x488/0x710
[  457.357992][T16005]  netlink_sendmsg+0x8b8/0xd70
[  457.358009][T16005]  ? __pfx_netlink_sendmsg+0x10/0x10
[  457.358029][T16005]  ____sys_sendmsg+0xaaf/0xc90
[  457.358043][T16005]  ? __pfx_____sys_sendmsg+0x10/0x10
[  457.358055][T16005]  ? get_compat_msghdr+0x11b/0x170
[  457.358075][T16005]  ___sys_sendmsg+0x135/0x1e0
[  457.358092][T16005]  ? __pfx____sys_sendmsg+0x10/0x10
[  457.358113][T16005]  ? __pfx_lock_release+0x10/0x10
[  457.358126][T16005]  ? trace_lock_acquire+0x14e/0x1f0
[  457.358143][T16005]  ? __fget_files+0x206/0x3a0
[  457.358161][T16005]  __sys_sendmsg+0x16e/0x220
[  457.358170][T16005]  ? __pfx___sys_sendmsg+0x10/0x10
[  457.358189][T16005]  __do_fast_syscall_32+0x73/0x120
[  457.358204][T16005]  do_fast_syscall_32+0x32/0x80
[  457.358219][T16005]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  457.358236][T16005] RIP: 0023:0xf7f91579
[  457.358244][T16005] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  457.358254][T16005] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  457.358264][T16005] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  457.358270][T16005] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  457.358276][T16005] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  457.358282][T16005] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  457.358288][T16005] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  457.358300][T16005]  </TASK>
[  457.358315][T16005] nbd: couldn't allocate config
[  457.460247][T16010] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  457.464715][T16008] tipc: Resetting bearer <eth:syzkaller0>
[  457.742194][T14240] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  457.902210][T14240] usb 5-1: Using ep0 maxpacket: 8
[  457.913012][T14240] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  457.915604][T14240] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  457.918168][T14240] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  457.920795][T14240] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  457.924883][T14240] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  457.927487][T14240] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  458.137748][T14240] usb 5-1: GET_CAPABILITIES returned 0
[  458.139348][T14240] usbtmc 5-1:16.0: can't read capabilities
[  458.344715][T14240] usb 5-1: USB disconnect, device number 52
[  458.607609][ T5960] Bluetooth: hci3: command 0x1003 tx timeout
[  458.607644][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  459.008008][T16040] sg_write: data in/out 11010100/1 bytes for SCSI command 0x26-- guessing data in;
[  459.008008][T16040]    program syz.3.3189 not setting count and/or reply_len properly
[  459.067320][T16040] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3189'.
[  459.145196][T16008] tipc: Disabling bearer <eth:syzkaller0>
[  459.291050][T16055] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3194'.
[  459.372750][T16053] md: array md2 already initialised!
[  460.169600][T16074] ip6tnl0 speed is unknown, defaulting to 1000
[  460.227706][T16079] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  460.242516][T16078] tipc: Resetting bearer <eth:syzkaller0>
[  461.819685][T16078] tipc: Disabling bearer <eth:syzkaller0>
[  462.228361][T16142] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3223'.
[  462.230905][T16142] FAULT_INJECTION: forcing a failure.
[  462.230905][T16142] name failslab, interval 1, probability 0, space 0, times 0
[  462.234751][T16142] CPU: 0 UID: 0 PID: 16142 Comm: syz.1.3223 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  462.234765][T16142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  462.234771][T16142] Call Trace:
[  462.234775][T16142]  <TASK>
[  462.234779][T16142]  dump_stack_lvl+0x16c/0x1f0
[  462.234799][T16142]  should_fail_ex+0x50a/0x650
[  462.234809][T16142]  ? fs_reclaim_acquire+0xae/0x150
[  462.234824][T16142]  should_failslab+0xc2/0x120
[  462.234834][T16142]  __kmalloc_node_noprof+0xd1/0x510
[  462.234851][T16142]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  462.234867][T16142]  __kvmalloc_node_noprof+0xad/0x1a0
[  462.234883][T16142]  xfrm_user_rcv_msg_compat+0x37d/0x13b0
[  462.234897][T16142]  ? __pfx_xfrm_user_rcv_msg_compat+0x10/0x10
[  462.234925][T16142]  ? __pfx_xfrm_user_rcv_msg_compat+0x10/0x10
[  462.234937][T16142]  xfrm_user_rcv_msg+0x30f/0xc00
[  462.234953][T16142]  ? kmem_cache_free+0x2e2/0x4d0
[  462.234968][T16142]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  462.234982][T16142]  ? find_held_lock+0x2d/0x110
[  462.234994][T16142]  ? hlock_class+0x4e/0x130
[  462.235004][T16142]  ? __lock_acquire+0x15a9/0x3c40
[  462.235031][T16142]  ? __mutex_trylock_common+0xea/0x250
[  462.235046][T16142]  ? __pfx___mutex_trylock_common+0x10/0x10
[  462.235061][T16142]  ? xfrm_netlink_rcv+0x62/0x90
[  462.235076][T16142]  netlink_rcv_skb+0x16b/0x440
[  462.235093][T16142]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  462.235108][T16142]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  462.235123][T16142]  ? xfrm_netlink_rcv+0x62/0x90
[  462.235146][T16142]  xfrm_netlink_rcv+0x71/0x90
[  462.235160][T16142]  netlink_unicast+0x53c/0x7f0
[  462.235177][T16142]  ? __pfx_netlink_unicast+0x10/0x10
[  462.235192][T16142]  ? __phys_addr_symbol+0x30/0x80
[  462.235203][T16142]  ? __check_object_size+0x488/0x710
[  462.235215][T16142]  netlink_sendmsg+0x8b8/0xd70
[  462.235232][T16142]  ? __pfx_netlink_sendmsg+0x10/0x10
[  462.235252][T16142]  ____sys_sendmsg+0xaaf/0xc90
[  462.235265][T16142]  ? __pfx_____sys_sendmsg+0x10/0x10
[  462.235277][T16142]  ? get_compat_msghdr+0x11b/0x170
[  462.235296][T16142]  ___sys_sendmsg+0x135/0x1e0
[  462.235313][T16142]  ? __pfx____sys_sendmsg+0x10/0x10
[  462.235333][T16142]  ? __pfx_lock_release+0x10/0x10
[  462.235347][T16142]  ? trace_lock_acquire+0x14e/0x1f0
[  462.235362][T16142]  ? __fget_files+0x206/0x3a0
[  462.235380][T16142]  __sys_sendmsg+0x16e/0x220
[  462.235390][T16142]  ? __pfx___sys_sendmsg+0x10/0x10
[  462.235408][T16142]  __do_fast_syscall_32+0x73/0x120
[  462.235427][T16142]  do_fast_syscall_32+0x32/0x80
[  462.235447][T16142]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  462.235470][T16142] RIP: 0023:0xf73fe579
[  462.235483][T16142] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  462.235497][T16142] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  462.235512][T16142] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000480
[  462.235522][T16142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  462.235531][T16142] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  462.235541][T16142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  462.235550][T16142] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  462.235575][T16142]  </TASK>
[  462.336709][    C0] vkms_vblank_simulate: vblank timer overrun
[  462.454407][T16149] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  462.457090][T16148] tipc: Resetting bearer <eth:syzkaller0>
[  462.515514][T16147] md: array md2 already initialised!
[  464.242366][T16148] tipc: Disabling bearer <eth:syzkaller0>
[  464.400243][T16174] fuse: Unknown parameter 'group_i00000000000000000000'
[  464.572194][T14240] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  464.641763][T16178] ufs: Invalid option: "grpquotahe_free" or missing value
[  464.644021][T16178] ufs: wrong mount options
[  464.722166][T14240] usb 6-1: Using ep0 maxpacket: 8
[  464.725684][T14240] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  464.729745][T14240] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  464.735571][T14240] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  464.738277][T14240] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  464.742002][T14240] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  464.745661][T14240] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.768421][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c46
[  464.955678][T14240] usb 6-1: GET_CAPABILITIES returned 0
[  464.957318][T14240] usbtmc 6-1:16.0: can't read capabilities
[  465.158035][T14240] usb 6-1: USB disconnect, device number 38
[  465.287229][T16191] sctp: [Deprecated]: syz.3.3238 (pid 16191) Use of struct sctp_assoc_value in delayed_ack socket option.
[  465.287229][T16191] Use struct sctp_sack_info instead
[  465.292503][T16192] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3238'.
[  465.300285][T16191] 9p: Unknown Cache mode or invalid value fscach
[  465.300285][T16191] 
[  465.470874][T16198] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  465.962251][T14240] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  465.984766][T16216] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  465.989802][T16216] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  466.067432][   T67] Bluetooth: hci2: unexpected event for opcode 0x0000
[  466.070958][T16226] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  466.076965][T16227] netlink: 'syz.5.3250': attribute type 1 has an invalid length.
[  466.122321][T14240] usb 5-1: Using ep0 maxpacket: 8
[  466.128118][T14240] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  466.132858][T14240] usb 5-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  466.142146][T14240] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.144451][T14240] usb 5-1: Product: syz
[  466.145712][T14240] usb 5-1: Manufacturer: syz
[  466.147077][T14240] usb 5-1: SerialNumber: syz
[  466.149763][T14240] usb 5-1: config 0 descriptor??
[  466.152840][T14240] gspca_main: stk014-2.14.0 probing 05e1:0893
[  466.154563][T14240] usb 5-1: selecting invalid altsetting 1
[  466.597171][T16244] ip6tnl0 speed is unknown, defaulting to 1000
[  466.672504][T14240] gspca_stk014: reg_r err -110
[  466.673939][T14240] stk014 5-1:0.0: probe with driver stk014 failed with error -110
[  466.749592][    C0] blk_print_req_error: 35 callbacks suppressed
[  466.749603][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.750300][T16250] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  466.751430][    C0] buffer_io_error: 33 callbacks suppressed
[  466.751440][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.758683][T16250] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3261'.
[  466.760988][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.770081][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.774078][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.777199][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.782145][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.784437][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.787197][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.789798][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.792573][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.794854][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.799286][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.802837][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.806040][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.809479][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.812960][ T5360] ldm_validate_partition_table(): Disk read failed.
[  466.816382][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.819413][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.822020][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  466.825048][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  466.828652][ T5360] Dev loop6: unable to read RDB block 0
[  466.831440][ T5360]  loop6: unable to read partition table
[  467.063999][ T5960] Bluetooth: hci2: unexpected event for opcode 0x0c46
[  467.690078][T16268] FAULT_INJECTION: forcing a failure.
[  467.690078][T16268] name failslab, interval 1, probability 0, space 0, times 0
[  467.695118][T16268] CPU: 2 UID: 0 PID: 16268 Comm: syz.5.3268 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  467.695139][T16268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.695149][T16268] Call Trace:
[  467.695155][T16268]  <TASK>
[  467.695162][T16268]  dump_stack_lvl+0x16c/0x1f0
[  467.695190][T16268]  should_fail_ex+0x50a/0x650
[  467.695208][T16268]  ? fs_reclaim_acquire+0xae/0x150
[  467.695231][T16268]  should_failslab+0xc2/0x120
[  467.695248][T16268]  __kmalloc_cache_node_noprof+0x6e/0x420
[  467.695273][T16268]  ? trace_kmalloc+0x2d/0xd0
[  467.695290][T16268]  ? page_pool_create_percpu+0x7a/0xb20
[  467.695312][T16268]  page_pool_create_percpu+0x7a/0xb20
[  467.695332][T16268]  bpf_test_run_xdp_live+0x193/0x500
[  467.695357][T16268]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  467.695383][T16268]  ? __pfx___lock_acquire+0x10/0x10
[  467.695410][T16268]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  467.695449][T16268]  ? __might_fault+0xe3/0x190
[  467.695470][T16268]  ? _copy_from_user+0x59/0xd0
[  467.695490][T16268]  ? bpf_test_init.isra.0+0x6b/0x130
[  467.695513][T16268]  bpf_prog_test_run_xdp+0x81f/0x1560
[  467.695541][T16268]  ? lock_acquire+0x2f/0xb0
[  467.695561][T16268]  ? __fget_files+0x40/0x3a0
[  467.695586][T16268]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  467.695619][T16268]  ? __fget_files+0x206/0x3a0
[  467.695646][T16268]  ? fput+0x67/0x440
[  467.695663][T16268]  ? __bpf_prog_get+0xa0/0x290
[  467.695684][T16268]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  467.695708][T16268]  __sys_bpf+0xfc6/0x49c0
[  467.695732][T16268]  ? __pfx_lock_release+0x10/0x10
[  467.695755][T16268]  ? __pfx___sys_bpf+0x10/0x10
[  467.695779][T16268]  ? vfs_write+0x306/0x1150
[  467.695831][T16268]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  467.695870][T16268]  ? fput+0x67/0x440
[  467.695887][T16268]  ? ksys_write+0x1ba/0x250
[  467.695909][T16268]  ? __pfx_ksys_write+0x10/0x10
[  467.695935][T16268]  __ia32_sys_bpf+0x76/0xe0
[  467.695951][T16268]  __do_fast_syscall_32+0x73/0x120
[  467.695977][T16268]  do_fast_syscall_32+0x32/0x80
[  467.696002][T16268]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  467.696042][T16268] RIP: 0023:0xf741e579
[  467.696055][T16268] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  467.696071][T16268] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  467.696087][T16268] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000340
[  467.696097][T16268] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  467.696107][T16268] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  467.696116][T16268] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  467.696126][T16268] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  467.696148][T16268]  </TASK>
[  468.497807][   T31] usb 5-1: USB disconnect, device number 53
[  468.792655][T16276] md: array md2 already initialised!
[  468.842262][ T5960] Bluetooth: hci3: command 0x1003 tx timeout
[  468.846891][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  468.910429][T16284] IPVS: Scheduler module ip_vs_sip not found
[  469.251518][T16305] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[  469.475961][T16311] sp0: Synchronizing with TNC
[  469.532334][ T5321] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  469.682192][ T5321] usb 8-1: Using ep0 maxpacket: 8
[  469.692195][ T5321] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  469.696585][ T5321] usb 8-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  469.702270][ T5321] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.704884][ T5321] usb 8-1: Product: syz
[  469.706289][ T5321] usb 8-1: Manufacturer: syz
[  469.707603][ T5321] usb 8-1: SerialNumber: syz
[  469.712766][ T5321] usb 8-1: config 0 descriptor??
[  469.723519][ T5321] gspca_main: stk014-2.14.0 probing 05e1:0893
[  469.725272][ T5321] usb 8-1: selecting invalid altsetting 1
[  469.963281][T16327] tipc: Enabled bearer <eth:team0>, priority 0
[  470.234132][T16335] FAULT_INJECTION: forcing a failure.
[  470.234132][T16335] name failslab, interval 1, probability 0, space 0, times 0
[  470.238527][T16335] CPU: 0 UID: 0 PID: 16335 Comm: syz.1.3293 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  470.238542][T16335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.238549][T16335] Call Trace:
[  470.238553][T16335]  <TASK>
[  470.238558][T16335]  dump_stack_lvl+0x16c/0x1f0
[  470.238576][T16335]  should_fail_ex+0x50a/0x650
[  470.238588][T16335]  ? fs_reclaim_acquire+0xae/0x150
[  470.238602][T16335]  ? tcf_chain_create+0x98/0x370
[  470.238615][T16335]  should_failslab+0xc2/0x120
[  470.238625][T16335]  __kmalloc_cache_noprof+0x68/0x410
[  470.238643][T16335]  tcf_chain_create+0x98/0x370
[  470.238657][T16335]  __tcf_chain_get+0x155/0x1b0
[  470.238672][T16335]  tc_new_tfilter+0x6f1/0x2360
[  470.238691][T16335]  ? __lock_acquire+0xcc5/0x3c40
[  470.238708][T16335]  ? __pfx_tc_new_tfilter+0x10/0x10
[  470.238731][T16335]  ? __pfx___lock_acquire+0x10/0x10
[  470.238744][T16335]  ? kfree_skbmem+0x1a4/0x1f0
[  470.238758][T16335]  ? aa_get_newest_label+0x376/0x680
[  470.238774][T16335]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  470.238790][T16335]  ? __pfx_lock_release+0x10/0x10
[  470.238803][T16335]  ? trace_lock_acquire+0x14e/0x1f0
[  470.238822][T16335]  ? __pfx_tc_new_tfilter+0x10/0x10
[  470.238838][T16335]  rtnetlink_rcv_msg+0x95b/0xea0
[  470.238855][T16335]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  470.238881][T16335]  netlink_rcv_skb+0x16b/0x440
[  470.238898][T16335]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  470.238914][T16335]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  470.238936][T16335]  ? netlink_deliver_tap+0x1ae/0xd30
[  470.238953][T16335]  netlink_unicast+0x53c/0x7f0
[  470.238970][T16335]  ? __pfx_netlink_unicast+0x10/0x10
[  470.238985][T16335]  ? __phys_addr_symbol+0x30/0x80
[  470.238996][T16335]  ? __check_object_size+0x488/0x710
[  470.239008][T16335]  netlink_sendmsg+0x8b8/0xd70
[  470.239025][T16335]  ? __pfx_netlink_sendmsg+0x10/0x10
[  470.239045][T16335]  ____sys_sendmsg+0xaaf/0xc90
[  470.239058][T16335]  ? __pfx_____sys_sendmsg+0x10/0x10
[  470.239070][T16335]  ? get_compat_msghdr+0x11b/0x170
[  470.239090][T16335]  ___sys_sendmsg+0x135/0x1e0
[  470.239107][T16335]  ? __pfx____sys_sendmsg+0x10/0x10
[  470.239128][T16335]  ? __pfx_lock_release+0x10/0x10
[  470.239141][T16335]  ? trace_lock_acquire+0x14e/0x1f0
[  470.239157][T16335]  ? __fget_files+0x206/0x3a0
[  470.239175][T16335]  __sys_sendmsg+0x16e/0x220
[  470.239185][T16335]  ? __pfx___sys_sendmsg+0x10/0x10
[  470.239203][T16335]  __do_fast_syscall_32+0x73/0x120
[  470.239220][T16335]  do_fast_syscall_32+0x32/0x80
[  470.239235][T16335]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.239251][T16335] RIP: 0023:0xf73fe579
[  470.239260][T16335] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.239270][T16335] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  470.239280][T16335] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000580
[  470.239286][T16335] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  470.239292][T16335] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.239297][T16335] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  470.239303][T16335] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.239315][T16335]  </TASK>
[  470.242627][ T5321] gspca_stk014: reg_r err -110
[  470.335434][ T5321] stk014 8-1:0.0: probe with driver stk014 failed with error -110
[  470.514456][T16343] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3296'.
[  470.867329][T16356] FAULT_INJECTION: forcing a failure.
[  470.867329][T16356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  470.871028][T16356] CPU: 1 UID: 0 PID: 16356 Comm: syz.0.3302 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  470.871042][T16356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.871049][T16356] Call Trace:
[  470.871052][T16356]  <TASK>
[  470.871057][T16356]  dump_stack_lvl+0x16c/0x1f0
[  470.871074][T16356]  should_fail_ex+0x50a/0x650
[  470.871087][T16356]  _copy_from_user+0x2e/0xd0
[  470.871099][T16356]  __sys_bpf+0x21c/0x49c0
[  470.871114][T16356]  ? __pfx_lock_release+0x10/0x10
[  470.871129][T16356]  ? __pfx___sys_bpf+0x10/0x10
[  470.871143][T16356]  ? vfs_write+0x306/0x1150
[  470.871160][T16356]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  470.871182][T16356]  ? fput+0x67/0x440
[  470.871191][T16356]  ? ksys_write+0x1ba/0x250
[  470.871205][T16356]  ? __pfx_ksys_write+0x10/0x10
[  470.871220][T16356]  __ia32_sys_bpf+0x76/0xe0
[  470.871230][T16356]  __do_fast_syscall_32+0x73/0x120
[  470.871247][T16356]  do_fast_syscall_32+0x32/0x80
[  470.871261][T16356]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.871277][T16356] RIP: 0023:0xf7f91579
[  470.871286][T16356] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.871296][T16356] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  470.871305][T16356] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000080000200
[  470.871312][T16356] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  470.871317][T16356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.871323][T16356] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  470.871329][T16356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.871340][T16356]  </TASK>
[  471.092220][   T67] Bluetooth: hci2: command 0x041b tx timeout
[  471.202848][T14240] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  471.363338][T14240] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  471.365843][T14240] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  471.368790][T14240] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  471.371353][T14240] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  471.375035][T14240] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  471.380127][T14240] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  471.383152][T14240] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  471.385574][T14240] usb 5-1: Product: syz
[  471.386911][T14240] usb 5-1: Manufacturer: syz
[  471.390751][T14240] cdc_wdm 5-1:1.0: skipping garbage
[  471.392660][T14240] cdc_wdm 5-1:1.0: skipping garbage
[  471.394823][T14240] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  471.396592][T14240] cdc_wdm 5-1:1.0: Unknown control protocol
[  471.645248][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  471.930428][T16368] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3306'.
[  471.934674][T16368] Bluetooth: MGMT ver 1.23
[  471.970858][T16371] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  471.974879][T16371] batman_adv: batadv0: Adding interface: ip6gretap1
[  471.976737][T16371] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  471.988365][T16371] batman_adv: batadv0: Interface activated: ip6gretap1
[  472.073236][    T9] usb 8-1: USB disconnect, device number 45
[  472.120147][T16373] FAULT_INJECTION: forcing a failure.
[  472.120147][T16373] name failslab, interval 1, probability 0, space 0, times 0
[  472.123574][T16373] CPU: 2 UID: 0 PID: 16373 Comm: syz.3.3308 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  472.123588][T16373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  472.123597][T16373] Call Trace:
[  472.123601][T16373]  <TASK>
[  472.123604][T16373]  dump_stack_lvl+0x16c/0x1f0
[  472.123624][T16373]  should_fail_ex+0x50a/0x650
[  472.123634][T16373]  ? fs_reclaim_acquire+0xae/0x150
[  472.123649][T16373]  should_failslab+0xc2/0x120
[  472.123658][T16373]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  472.123674][T16373]  ? alloc_empty_file+0x73/0x1e0
[  472.123687][T16373]  alloc_empty_file+0x73/0x1e0
[  472.123697][T16373]  alloc_file_pseudo+0x13b/0x230
[  472.123709][T16373]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  472.123721][T16373]  ? alloc_fd+0x41f/0x760
[  472.123737][T16373]  sock_alloc_file+0x50/0x210
[  472.123749][T16373]  __sys_socket+0x1c2/0x260
[  472.123785][T16373]  ? __pfx___sys_socket+0x10/0x10
[  472.123802][T16373]  __ia32_sys_socket+0x72/0xb0
[  472.123815][T16373]  __do_fast_syscall_32+0x73/0x120
[  472.123831][T16373]  do_fast_syscall_32+0x32/0x80
[  472.123847][T16373]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  472.123864][T16373] RIP: 0023:0xf739e579
[  472.123872][T16373] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  472.123881][T16373] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  472.123891][T16373] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000000002
[  472.123898][T16373] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  472.123903][T16373] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  472.123909][T16373] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  472.123914][T16373] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  472.123926][T16373]  </TASK>
[  472.429081][T16380] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3311'.
[  472.722247][T16385] md: array md2 already initialised!
[  473.865750][T16400] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  473.871699][T16400] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3317'.
[  473.983850][T14240] usb 5-1: USB disconnect, device number 54
[  474.002218][ T5318] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  474.010513][T16403] fuse: Bad value for 'fd'
[  474.152164][ T5318] usb 8-1: Using ep0 maxpacket: 8
[  474.154982][ T5318] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  474.159576][ T5318] usb 8-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  474.162353][ T5318] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.164927][ T5318] usb 8-1: Product: syz
[  474.166508][ T5318] usb 8-1: Manufacturer: syz
[  474.168436][ T5318] usb 8-1: SerialNumber: syz
[  474.170678][ T5318] usb 8-1: config 0 descriptor??
[  474.174353][ T5318] gspca_main: stk014-2.14.0 probing 05e1:0893
[  474.176129][ T5318] usb 8-1: selecting invalid altsetting 1
[  474.239252][T16407] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3319'.
[  474.250813][T16407] FAULT_INJECTION: forcing a failure.
[  474.250813][T16407] name failslab, interval 1, probability 0, space 0, times 0
[  474.254397][T16407] CPU: 1 UID: 0 PID: 16407 Comm: syz.0.3319 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  474.254425][T16407] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  474.254435][T16407] Call Trace:
[  474.254441][T16407]  <TASK>
[  474.254448][T16407]  dump_stack_lvl+0x16c/0x1f0
[  474.254473][T16407]  should_fail_ex+0x50a/0x650
[  474.254488][T16407]  ? fs_reclaim_acquire+0xae/0x150
[  474.254508][T16407]  ? fuse_dev_do_write+0xa75/0x3510
[  474.254525][T16407]  should_failslab+0xc2/0x120
[  474.254541][T16407]  __kmalloc_cache_noprof+0x68/0x410
[  474.254562][T16407]  ? fuse_copy_do+0x2d4/0x3b0
[  474.254587][T16407]  fuse_dev_do_write+0xa75/0x3510
[  474.254605][T16407]  ? find_held_lock+0x2d/0x110
[  474.254626][T16407]  ? __pfx_fuse_dev_do_write+0x10/0x10
[  474.254641][T16407]  ? trace_lock_acquire+0x14e/0x1f0
[  474.254655][T16407]  ? lock_acquire+0x2f/0xb0
[  474.254684][T16407]  ? __pfx_aa_file_perm+0x10/0x10
[  474.254704][T16407]  ? hlock_class+0x4e/0x130
[  474.254718][T16407]  ? __asan_memset+0x23/0x50
[  474.254738][T16407]  fuse_dev_write+0x14f/0x1e0
[  474.254753][T16407]  ? __pfx_fuse_dev_write+0x10/0x10
[  474.254769][T16407]  ? finish_task_switch.isra.0+0x212/0xcc0
[  474.254800][T16407]  ? bpf_lsm_file_permission+0x9/0x10
[  474.254821][T16407]  ? security_file_permission+0x71/0x210
[  474.254841][T16407]  ? rw_verify_area+0xcf/0x680
[  474.254861][T16407]  vfs_write+0x5ae/0x1150
[  474.254880][T16407]  ? __pfx_fuse_dev_write+0x10/0x10
[  474.254898][T16407]  ? __pfx_vfs_write+0x10/0x10
[  474.254918][T16407]  ? __fget_files+0x40/0x3a0
[  474.254948][T16407]  ksys_write+0x12b/0x250
[  474.254968][T16407]  ? __pfx_ksys_write+0x10/0x10
[  474.254994][T16407]  __do_fast_syscall_32+0x73/0x120
[  474.255018][T16407]  do_fast_syscall_32+0x32/0x80
[  474.255039][T16407]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  474.255063][T16407] RIP: 0023:0xf7f91579
[  474.255076][T16407] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  474.255090][T16407] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  474.255105][T16407] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000200
[  474.255115][T16407] RDX: 0000000000000025 RSI: 0000000000000000 RDI: 0000000000000000
[  474.255124][T16407] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  474.255134][T16407] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  474.255143][T16407] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  474.255162][T16407]  </TASK>
[  474.682293][ T5318] gspca_stk014: reg_r err -110
[  474.683786][ T5318] stk014 8-1:0.0: probe with driver stk014 failed with error -110
[  475.014234][T16415] FAULT_INJECTION: forcing a failure.
[  475.014234][T16415] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  475.018308][T16415] CPU: 0 UID: 0 PID: 16415 Comm: syz.0.3323 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  475.018321][T16415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  475.018328][T16415] Call Trace:
[  475.018332][T16415]  <TASK>
[  475.018337][T16415]  dump_stack_lvl+0x16c/0x1f0
[  475.018356][T16415]  should_fail_ex+0x50a/0x650
[  475.018366][T16415]  ? __pfx___might_resched+0x10/0x10
[  475.018384][T16415]  should_fail_alloc_page+0xe7/0x130
[  475.018395][T16415]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  475.018412][T16415]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  475.018429][T16415]  ? find_held_lock+0x2d/0x110
[  475.018440][T16415]  ? __pfx_mark_lock+0x10/0x10
[  475.018456][T16415]  ? find_held_lock+0x2d/0x110
[  475.018467][T16415]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  475.018484][T16415]  ? hlock_class+0x4e/0x130
[  475.018500][T16415]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  475.018517][T16415]  ? policy_nodemask+0xea/0x4e0
[  475.018528][T16415]  alloc_pages_mpol+0x1fc/0x540
[  475.018539][T16415]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  475.018549][T16415]  ? find_held_lock+0x2d/0x110
[  475.018567][T16415]  alloc_pages_noprof+0x131/0x390
[  475.018577][T16415]  __pmd_alloc+0x3f/0x870
[  475.018592][T16415]  __handle_mm_fault+0x94a/0x2a40
[  475.018610][T16415]  ? __pfx___handle_mm_fault+0x10/0x10
[  475.018624][T16415]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  475.018645][T16415]  ? find_vma+0xc0/0x140
[  475.018657][T16415]  ? __pfx_find_vma+0x10/0x10
[  475.018670][T16415]  handle_mm_fault+0x3fa/0xaa0
[  475.018687][T16415]  do_user_addr_fault+0x7a3/0x13f0
[  475.018706][T16415]  exc_page_fault+0x5c/0xc0
[  475.018720][T16415]  asm_exc_page_fault+0x26/0x30
[  475.018734][T16415] RIP: 0010:__put_user_4+0x11/0x20
[  475.018748][T16415] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  475.018758][T16415] RSP: 0018:ffffc900258b7cf0 EFLAGS: 00050206
[  475.018766][T16415] RAX: 0000000000000401 RBX: 0000000000000000 RCX: 0000000080000000
[  475.018773][T16415] RDX: ffff8880262f2440 RSI: ffffffff85342891 RDI: ffffffff8bd359e0
[  475.018779][T16415] RBP: ffff8880137b8000 R08: 0000000000000000 R09: fffffbfff20c51c2
[  475.018784][T16415] R10: ffffffff90628e17 R11: 0000000000000000 R12: ffff888012b3f180
[  475.018790][T16415] R13: 1ffff92004b16fa2 R14: 0000000080045432 R15: ffff8880137b8000
[  475.018801][T16415]  ? tty_ioctl+0x1191/0x15d0
[  475.018816][T16415]  tty_ioctl+0x119c/0x15d0
[  475.018830][T16415]  ? __pfx_tty_ioctl+0x10/0x10
[  475.018847][T16415]  ? __pfx_lock_release+0x10/0x10
[  475.018860][T16415]  ? trace_lock_acquire+0x14e/0x1f0
[  475.018876][T16415]  ? __fget_files+0x206/0x3a0
[  475.018892][T16415]  tty_compat_ioctl+0x24a/0x4d0
[  475.018905][T16415]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  475.018919][T16415]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  475.018933][T16415]  __do_fast_syscall_32+0x73/0x120
[  475.018948][T16415]  do_fast_syscall_32+0x32/0x80
[  475.018963][T16415]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  475.018979][T16415] RIP: 0023:0xf7f91579
[  475.018987][T16415] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  475.018996][T16415] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  475.019004][T16415] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045432
[  475.019010][T16415] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  475.019016][T16415] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  475.019021][T16415] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  475.019027][T16415] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  475.019039][T16415]  </TASK>
[  475.542297][ T5986] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  475.703614][ T5986] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  475.706932][ T5986] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  475.710800][ T5986] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  475.714652][ T5986] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  475.718774][ T5986] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  475.728427][ T5986] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  475.731943][ T5986] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  475.735290][ T5986] usb 5-1: Product: syz
[  475.736964][ T5986] usb 5-1: Manufacturer: syz
[  475.742372][ T5986] cdc_wdm 5-1:1.0: skipping garbage
[  475.744458][ T5986] cdc_wdm 5-1:1.0: skipping garbage
[  475.747391][ T5986] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  475.749734][ T5986] cdc_wdm 5-1:1.0: Unknown control protocol
[  475.882455][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  475.938074][T16424] fuse: Bad value for 'fd'
[  475.977369][   T40] kauditd_printk_skb: 1072 callbacks suppressed
[  475.977416][   T40] audit: type=1326 audit(2000000225.972:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16425 comm="syz.1.3328" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73fe579 code=0x0
[  475.997293][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - 4 bytes
[  476.579251][ T5318] usb 8-1: USB disconnect, device number 46
[  476.750759][T16432] syzkaller1: entered promiscuous mode
[  476.752469][T16432] syzkaller1: entered allmulticast mode
[  476.755263][T16432] FAULT_INJECTION: forcing a failure.
[  476.755263][T16432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.759023][T16432] CPU: 2 UID: 0 PID: 16432 Comm: syz.3.3330 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  476.759039][T16432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  476.759046][T16432] Call Trace:
[  476.759049][T16432]  <TASK>
[  476.759054][T16432]  dump_stack_lvl+0x16c/0x1f0
[  476.759073][T16432]  should_fail_ex+0x50a/0x650
[  476.759086][T16432]  _copy_from_iter+0x2a1/0x1560
[  476.759098][T16432]  ? trace_lock_acquire+0x14e/0x1f0
[  476.759112][T16432]  ? __pfx__copy_from_iter+0x10/0x10
[  476.759122][T16432]  ? __virt_addr_valid+0x1a4/0x590
[  476.759134][T16432]  ? __virt_addr_valid+0x5e/0x590
[  476.759144][T16432]  ? __phys_addr_symbol+0x30/0x80
[  476.759154][T16432]  ? __check_object_size+0x488/0x710
[  476.759166][T16432]  skb_copy_datagram_from_iter+0x124/0x710
[  476.759182][T16432]  ? hlock_class+0x4e/0x130
[  476.759192][T16432]  ? __lock_acquire+0xcc5/0x3c40
[  476.759206][T16432]  ? iov_iter_advance+0x7d/0x6c0
[  476.759218][T16432]  tun_get_user+0x199c/0x3e50
[  476.759234][T16432]  ? __pfx_tun_get_user+0x10/0x10
[  476.759244][T16432]  ? find_held_lock+0x2d/0x110
[  476.759256][T16432]  ? __pfx_lock_release+0x10/0x10
[  476.759276][T16432]  tun_chr_write_iter+0xdc/0x210
[  476.759287][T16432]  vfs_write+0x5ae/0x1150
[  476.759302][T16432]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  476.759314][T16432]  ? __pfx_vfs_write+0x10/0x10
[  476.759328][T16432]  ? __fget_files+0x40/0x3a0
[  476.759348][T16432]  ksys_write+0x12b/0x250
[  476.759362][T16432]  ? __pfx_ksys_write+0x10/0x10
[  476.759379][T16432]  __do_fast_syscall_32+0x73/0x120
[  476.759396][T16432]  do_fast_syscall_32+0x32/0x80
[  476.759411][T16432]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  476.759427][T16432] RIP: 0023:0xf739e579
[  476.759435][T16432] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  476.759445][T16432] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  476.759455][T16432] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002280
[  476.759461][T16432] RDX: 0000000000000fce RSI: 0000000000000000 RDI: 0000000000000000
[  476.759467][T16432] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  476.759472][T16432] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  476.759478][T16432] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.759489][T16432]  </TASK>
[  477.860938][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  477.863749][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.871899][T16445] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  477.880285][T16445] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3335'.
[  478.321781][ T5321] usb 5-1: USB disconnect, device number 55
[  478.513988][T16455] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode
[  478.521638][T16455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3339'.
[  478.525129][T16455] netlink: 'syz.1.3339': attribute type 10 has an invalid length.
[  478.527852][T16455] mac80211_hwsim hwsim20 wlan1: left allmulticast mode
[  478.536262][T16455] team0: Port device wlan1 removed
[  478.645178][T16460] bridge_slave_0: left allmulticast mode
[  478.647495][T16460] bridge_slave_0: left promiscuous mode
[  478.649848][T16460] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.654166][T16460] bridge_slave_1: left allmulticast mode
[  478.655822][T16460] bridge_slave_1: left promiscuous mode
[  478.657466][T16460] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.675855][T16460] bond0: (slave bond_slave_0): Releasing backup interface
[  478.681131][T16460] bond0: (slave bond_slave_1): Releasing backup interface
[  478.696152][T16465] netlink: 'syz.1.3340': attribute type 10 has an invalid length.
[  478.699570][T16460] team0: Port device team_slave_0 removed
[  478.706386][T16460] team0: Port device team_slave_1 removed
[  478.708397][T16460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  478.710785][T16460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  478.714572][T16460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  478.716634][T16460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  478.722044][T16460] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  478.724662][T16460] batman_adv: batadv0: Removing interface: ip6gretap1
[  478.740204][T16465] 8021q: adding VLAN 0 to HW filter on device bond0
[  478.744455][T16465] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  479.021468][T16471] fuse: Bad value for 'user_id'
[  479.023618][T16471] fuse: Bad value for 'user_id'
[  479.879139][   T40] audit: type=1804 audit(2000000229.869:1331): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3344" name="/newroot/207/file1" dev="fuse" ino=1 res=1 errno=0
[  479.892186][   T40] audit: type=1800 audit(2000000229.879:1332): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3344" name="/" dev="fuse" ino=1 res=0 errno=0
[  479.897747][   T40] audit: type=1804 audit(2000000229.879:1333): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3344" name="/newroot/207/file1" dev="fuse" ino=1 res=1 errno=0
[  479.906356][   T40] audit: type=1804 audit(2000000229.879:1334): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3344" name="/newroot/207/file1" dev="fuse" ino=1 res=1 errno=0
[  479.911995][   T40] audit: type=1800 audit(2000000229.879:1335): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3344" name="/" dev="fuse" ino=1 res=0 errno=0
[  479.948766][T16476] input: syz1 as /devices/virtual/input/input40
[  479.965643][   T67] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  480.242252][ T1464] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  480.413314][ T1464] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  480.415838][ T1464] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  480.418633][ T1464] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  480.421103][ T1464] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  480.432294][ T1464] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  480.437462][ T1464] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  480.440753][ T1464] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  480.445536][ T1464] usb 8-1: Product: syz
[  480.447196][ T1464] usb 8-1: Manufacturer: syz
[  480.457772][ T1464] cdc_wdm 8-1:1.0: skipping garbage
[  480.459308][ T1464] cdc_wdm 8-1:1.0: skipping garbage
[  480.464903][ T1464] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  480.466524][ T1464] cdc_wdm 8-1:1.0: Unknown control protocol
[  480.542903][T16482] bond0 (unregistering): Released all slaves
[  480.713996][    C2] cdc_wdm 8-1:1.0: wdm_int_callback - 4 bytes
[  480.890891][T16503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3357'.
[  480.896591][T16503] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3357'.
[  480.899042][T16503] netlink: 'syz.1.3357': attribute type 1 has an invalid length.
[  480.901253][T16503] netlink: 10 bytes leftover after parsing attributes in process `syz.1.3357'.
[  480.946822][   T67] block nbd1: Receive control failed (result -107)
[  480.954042][   T67] 
[  480.954763][   T67] ======================================================
[  480.956704][   T67] WARNING: possible circular locking dependency detected
[  480.958621][   T67] 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0 Not tainted
[  480.960826][   T67] ------------------------------------------------------
[  480.963925][   T67] kworker/u33:0/67 is trying to acquire lock:
[  480.965604][   T67] ffff888068d5bbd8 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_shutdown+0x65/0x7f0
[  480.968006][   T67] 
[  480.968006][   T67] but task is already holding lock:
[  480.970029][   T67] ffff88805c81fc70 (&nsock->tx_lock){+.+.}-{4:4}, at: recv_work+0x67d/0xaa0
[  480.972448][   T67] 
[  480.972448][   T67] which lock already depends on the new lock.
[  480.972448][   T67] 
[  480.975247][   T67] 
[  480.975247][   T67] the existing dependency chain (in reverse order) is:
[  480.977702][   T67] 
[  480.977702][   T67] -> #6 (&nsock->tx_lock){+.+.}-{4:4}:
[  480.979813][   T67]        __mutex_lock+0x19b/0xb10
[  480.981229][   T67]        sock_shutdown+0x16f/0x280
[  480.982658][   T67]        nbd_ioctl+0x49b/0xd60
[  480.984003][   T67]        compat_blkdev_ioctl+0x2eb/0x7a0
[  480.985573][   T67]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  480.987186][   T67]        __do_fast_syscall_32+0x73/0x120
[  480.988755][   T67]        do_fast_syscall_32+0x32/0x80
[  480.990250][   T67]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  480.992144][   T67] 
[  480.992144][   T67] -> #5 (&nbd->config_lock){+.+.}-{4:4}:
[  480.994287][   T67]        __mutex_lock+0x19b/0xb10
[  480.995653][   T67]        refcount_dec_and_mutex_lock+0x51/0xc0
[  480.997392][   T67]        nbd_config_put+0x31/0x750
[  480.998809][   T67]        nbd_release+0xb7/0x190
[  481.000168][   T67]        blkdev_put_whole+0xad/0xf0
[  481.001618][   T67]        bdev_release+0x47e/0x6d0
[  481.003033][   T67]        blkdev_release+0x15/0x20
[  481.004485][   T67]        __fput+0x3ff/0xb70
[  481.005833][   T67]        __fput_sync+0xa1/0xc0
[  481.007159][   T67]        __x64_sys_close+0x86/0x100
[  481.008620][   T67]        do_syscall_64+0xcd/0x250
[  481.010048][   T67]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.011848][   T67] 
[  481.011848][   T67] -> #4 (&disk->open_mutex){+.+.}-{4:4}:
[  481.013943][   T67]        __mutex_lock+0x19b/0xb10
[  481.015343][   T67]        bdev_open+0x41a/0xe20
[  481.016690][   T67]        bdev_file_open_by_dev+0x17d/0x210
[  481.018309][   T67]        disk_scan_partitions+0x1ed/0x320
[  481.019887][   T67]        add_disk_fwnode+0x1006/0x1320
[  481.021414][   T67]        pmem_attach_disk+0x9a1/0x13e0
[  481.022935][   T67]        nd_pmem_probe+0x1a9/0x1f0
[  481.024375][   T67]        nvdimm_bus_probe+0x169/0x5d0
[  481.025866][   T67]        really_probe+0x23e/0xa90
[  481.027260][   T67]        __driver_probe_device+0x1de/0x440
[  481.028881][   T67]        driver_probe_device+0x4c/0x1b0
[  481.030416][   T67]        __driver_attach+0x283/0x580
[  481.031877][   T67]        bus_for_each_dev+0x13c/0x1d0
[  481.033364][   T67]        bus_add_driver+0x2e9/0x690
[  481.034810][   T67]        driver_register+0x15c/0x4b0
[  481.036290][   T67]        __nd_driver_register+0x103/0x1a0
[  481.037883][   T67]        do_one_initcall+0x128/0x700
[  481.039340][   T67]        kernel_init_freeable+0x5c7/0x900
[  481.040940][   T67]        kernel_init+0x1c/0x2b0
[  481.042251][   T67]        ret_from_fork+0x45/0x80
[  481.043630][   T67]        ret_from_fork_asm+0x1a/0x30
[  481.045185][   T67] 
[  481.045185][   T67] -> #3 (&nvdimm_namespace_key){+.+.}-{4:4}:
[  481.047412][   T67]        __mutex_lock+0x19b/0xb10
[  481.049125][   T67]        uevent_show+0x188/0x3b0
[  481.050527][   T67]        dev_attr_show+0x53/0xe0
[  481.051923][   T67]        sysfs_kf_seq_show+0x23e/0x410
[  481.053460][   T67]        seq_read_iter+0x4f4/0x12b0
[  481.054919][   T67]        kernfs_fop_read_iter+0x414/0x580
[  481.056511][   T67]        vfs_read+0x886/0xbf0
[  481.057843][   T67]        ksys_read+0x12b/0x250
[  481.059205][   T67]        do_syscall_64+0xcd/0x250
[  481.060628][   T67]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.062399][   T67] 
[  481.062399][   T67] -> #2 (kn->active#5){++++}-{0:0}:
[  481.064466][   T67]        kernfs_drain+0x48f/0x590
[  481.065876][   T67]        __kernfs_remove+0x281/0x670
[  481.067341][   T67]        kernfs_remove_by_name_ns+0xb2/0x130
[  481.069004][   T67]        device_del+0x381/0x9f0
[  481.070337][   T67]        unregister_netdevice_many_notify+0x13aa/0x1f30
[  481.072206][   T67]        unregister_netdevice_queue+0x307/0x3f0
[  481.073853][   T67]        unregister_netdev+0x1f/0x60
[  481.075313][   T67]        sixpack_close+0x1e7/0x2f0
[  481.076747][   T67]        tty_ldisc_close+0x111/0x1a0
[  481.078156][   T67]        tty_ldisc_kill+0x8e/0x150
[  481.079564][   T67]        tty_ldisc_release+0x17b/0x2a0
[  481.081126][   T67]        tty_release_struct+0x23/0xe0
[  481.082642][   T67]        tty_release+0xe25/0x1410
[  481.084061][   T67]        __fput+0x3ff/0xb70
[  481.085340][   T67]        task_work_run+0x14e/0x250
[  481.086770][   T67]        syscall_exit_to_user_mode+0x27b/0x2a0
[  481.088474][   T67]        __do_fast_syscall_32+0x80/0x120
[  481.090036][   T67]        do_fast_syscall_32+0x32/0x80
[  481.091558][   T67]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  481.093467][   T67] 
[  481.093467][   T67] -> #1 (rtnl_mutex){+.+.}-{4:4}:
[  481.095454][   T67]        __mutex_lock+0x19b/0xb10
[  481.096870][   T67]        smc_vlan_by_tcpsk+0x251/0x620
[  481.098381][   T67]        __smc_connect+0x44d/0x4890
[  481.099829][   T67]        smc_connect+0x2fc/0x760
[  481.101131][   T67]        __sys_connect_file+0x13e/0x1a0
[  481.102684][   T67]        __sys_connect+0x14f/0x170
[  481.104137][   T67]        __ia32_sys_connect+0x71/0xb0
[  481.105644][   T67]        __do_fast_syscall_32+0x73/0x120
[  481.107199][   T67]        do_fast_syscall_32+0x32/0x80
[  481.108696][   T67]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  481.110625][   T67] 
[  481.110625][   T67] -> #0 (sk_lock-AF_SMC){+.+.}-{0:0}:
[  481.112761][   T67]        __lock_acquire+0x249e/0x3c40
[  481.114303][   T67]        lock_acquire.part.0+0x11b/0x380
[  481.115850][   T67]        lock_sock_nested+0x3a/0xf0
[  481.117265][   T67]        smc_shutdown+0x65/0x7f0
[  481.118643][   T67]        nbd_mark_nsock_dead+0xae/0x5d0
[  481.120238][   T67]        recv_work+0x691/0xaa0
[  481.121584][   T67]        process_one_work+0x9c5/0x1ba0
[  481.123115][   T67]        worker_thread+0x6c8/0xf00
[  481.124572][   T67]        kthread+0x3af/0x750
[  481.125864][   T67]        ret_from_fork+0x45/0x80
[  481.127246][   T67]        ret_from_fork_asm+0x1a/0x30
[  481.128720][   T67] 
[  481.128720][   T67] other info that might help us debug this:
[  481.128720][   T67] 
[  481.131515][   T67] Chain exists of:
[  481.131515][   T67]   sk_lock-AF_SMC --> &nbd->config_lock --> &nsock->tx_lock
[  481.131515][   T67] 
[  481.135092][   T67]  Possible unsafe locking scenario:
[  481.135092][   T67] 
[  481.137147][   T67]        CPU0                    CPU1
[  481.138623][   T67]        ----                    ----
[  481.140104][   T67]   lock(&nsock->tx_lock);
[  481.141373][   T67]                                lock(&nbd->config_lock);
[  481.143326][   T67]                                lock(&nsock->tx_lock);
[  481.145210][   T67]   lock(sk_lock-AF_SMC);
[  481.146421][   T67] 
[  481.146421][   T67]  *** DEADLOCK ***
[  481.146421][   T67] 
[  481.148636][   T67] 3 locks held by kworker/u33:0/67:
[  481.150073][   T67]  #0: ffff888024ad6148 ((wq_completion)nbd1-recv){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  481.153037][   T67]  #1: ffffc90000a37d18 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  481.156110][   T67]  #2: ffff88805c81fc70 (&nsock->tx_lock){+.+.}-{4:4}, at: recv_work+0x67d/0xaa0
[  481.158603][   T67] 
[  481.158603][   T67] stack backtrace:
[  481.160271][   T67] CPU: 2 UID: 0 PID: 67 Comm: kworker/u33:0 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[  481.160283][   T67] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  481.160291][   T67] Workqueue: nbd1-recv recv_work
[  481.160303][   T67] Call Trace:
[  481.160307][   T67]  <TASK>
[  481.160311][   T67]  dump_stack_lvl+0x116/0x1f0
[  481.160327][   T67]  print_circular_bug+0x490/0x760
[  481.160342][   T67]  check_noncircular+0x31a/0x400
[  481.160354][   T67]  ? __pfx_check_noncircular+0x10/0x10
[  481.160368][   T67]  ? __pfx_lock_release+0x10/0x10
[  481.160382][   T67]  ? lockdep_lock+0xc6/0x200
[  481.160393][   T67]  ? __pfx_lockdep_lock+0x10/0x10
[  481.160404][   T67]  __lock_acquire+0x249e/0x3c40
[  481.160420][   T67]  ? __pfx___lock_acquire+0x10/0x10
[  481.160433][   T67]  ? __pfx___schedule+0x10/0x10
[  481.160446][   T67]  ? lockdep_hardirqs_on+0x7c/0x110
[  481.160460][   T67]  lock_acquire.part.0+0x11b/0x380
[  481.160474][   T67]  ? smc_shutdown+0x65/0x7f0
[  481.160485][   T67]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  481.160499][   T67]  ? rcu_is_watching+0x12/0xc0
[  481.160509][   T67]  ? trace_lock_acquire+0x14e/0x1f0
[  481.160520][   T67]  ? smc_shutdown+0x65/0x7f0
[  481.160529][   T67]  ? lock_acquire+0x2f/0xb0
[  481.160542][   T67]  ? smc_shutdown+0x65/0x7f0
[  481.160551][   T67]  lock_sock_nested+0x3a/0xf0
[  481.160567][   T67]  ? smc_shutdown+0x65/0x7f0
[  481.160576][   T67]  smc_shutdown+0x65/0x7f0
[  481.160586][   T67]  nbd_mark_nsock_dead+0xae/0x5d0
[  481.160596][   T67]  recv_work+0x691/0xaa0
[  481.160608][   T67]  ? __pfx_recv_work+0x10/0x10
[  481.160620][   T67]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  481.160634][   T67]  ? trace_lock_acquire+0x14e/0x1f0
[  481.160645][   T67]  ? lock_acquire+0x2f/0xb0
[  481.160658][   T67]  ? process_one_work+0x921/0x1ba0
[  481.160671][   T67]  process_one_work+0x9c5/0x1ba0
[  481.160685][   T67]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  481.160703][   T67]  ? __pfx_process_one_work+0x10/0x10
[  481.160717][   T67]  ? assign_work+0x1a0/0x250
[  481.160729][   T67]  worker_thread+0x6c8/0xf00
[  481.160744][   T67]  ? __pfx_worker_thread+0x10/0x10
[  481.160757][   T67]  kthread+0x3af/0x750
[  481.160769][   T67]  ? __pfx_kthread+0x10/0x10
[  481.160780][   T67]  ? lock_acquire+0x2f/0xb0
[  481.160794][   T67]  ? __pfx_kthread+0x10/0x10
[  481.160805][   T67]  ret_from_fork+0x45/0x80
[  481.160819][   T67]  ? __pfx_kthread+0x10/0x10
[  481.160830][   T67]  ret_from_fork_asm+0x1a/0x30
[  481.160844][   T67]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  481.590265][T15568] usb 8-1: USB disconnect, device number 47
[  482.155282][T10800] bond0 (unregistering): (slave team0): Releasing backup interface
[  482.159289][T10800] bond0 (unregistering): Released all slaves
[  482.244418][T10800] tipc: Disabling bearer <udp:syz2>
[  482.246549][T10800] tipc: Disabling bearer <eth:syzkaller0>
[  482.248969][T10800] tipc: Left network mode
[  482.517496][T10800] hsr_slave_0: left promiscuous mode
[  482.520124][T10800] hsr_slave_1: left promiscuous mode
[  484.556453][T10800] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.595348][T10800] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.685851][T10800] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.735161][T10800] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.787776][T10800] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.835179][T10800] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.875073][T10800] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.955798][T10800] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.019559][T10800] bridge_slave_1: left allmulticast mode
[  485.021803][T10800] bridge_slave_1: left promiscuous mode
[  485.024238][T10800] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.027996][T10800] bridge_slave_0: left allmulticast mode
[  485.030154][T10800] bridge_slave_0: left promiscuous mode
[  485.032520][T10800] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.216000][T10800] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  485.220075][T10800] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  485.223344][T10800] bond0 (unregistering): Released all slaves
[  485.295495][T10800] tipc: Left network mode
[  485.304407][T10800] tipc: Disabling bearer <eth:syzkaller0>
[  485.315011][T10800] tipc: Disabling bearer <eth:team0>
[  485.316913][T10800] tipc: Left network mode
[  485.332837][T10800] IPVS: stopping master sync thread 15022 ...
[  485.738279][T10800] hsr_slave_0: left promiscuous mode
[  485.740231][T10800] hsr_slave_1: left promiscuous mode
[  485.741897][T10800] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  485.744099][T10800] batman_adv: batadv0: Removing interface: batadv_slave_0
[  485.746533][T10800] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  485.748612][T10800] batman_adv: batadv0: Removing interface: batadv_slave_1
[  485.752959][T10800] hsr_slave_0: left promiscuous mode
[  485.754844][T10800] hsr_slave_1: left promiscuous mode
[  485.758260][T10800] veth1_macvtap: left promiscuous mode
[  485.759794][T10800] veth0_macvtap: left promiscuous mode
[  485.761265][T10800] veth1_vlan: left promiscuous mode
[  485.762857][T10800] veth0_vlan: left promiscuous mode
[  485.764782][T10800] veth1_macvtap: left promiscuous mode
[  485.766280][T10800] veth0_macvtap: left promiscuous mode
[  485.767828][T10800] veth1_vlan: left promiscuous mode
[  485.769305][T10800] veth0_vlan: left promiscuous mode
[  486.046794][T10800] team0 (unregistering): Port device team_slave_1 removed
[  486.104392][T10800] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
11:02:07  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffffffff822caece RCX=0000000000000000 RDX=1ffff920005aeed4
RSI=ffffc90002d77e30 RDI=ffffffff822caece RBP=ffffc90002d776a0 RSP=ffffc90002d77630
R8 =ffffc90002d7768c R9 =ffffffff91055356 R10=ffffc90002d77658 R11=0000000000012c95
R12=ffffffff81a5ab40 R13=ffffc90002d77718 R14=0000000000000000 R15=ffff888022b02440
RIP=ffffffff818452cd RFL=00000292 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71937f0 CR3=0000000073c5a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=1ffff920047a5ec2 RCX=ffffffff8196b149 RDX=0000000000000000
RSI=ffffffff8bd35960 RDI=ffffffff8dab0ce8 RBP=0000000000000001 RSP=ffffc90023d2f5f0
R8 =0000000000000000 R9 =fffffbfff20c51c2 R10=ffffffff90628e17 R11=00000000000101ab
R12=ffffffff8e1bd140 R13=ffffc90023d2f9d8 R14=00000000000000ab R15=dffffc0000000000
RIP=ffffffff819f95a3 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008000d000 CR3=000000006d9ba000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853eaad5 RDI=ffffffff9ab72ea0 RBP=ffffffff9ab72e60 RSP=ffffc90000a371c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff9ab72e60 R15=0000000000000000
RIP=ffffffff853eaaff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f744d640 CR3=000000006576e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffc9000eed7a50 RCX=ffffffff8b54affb RDX=1ffff92001ddaf54
RSI=000000000000000a RDI=0000000000000005 RBP=00000000ffffffff RSP=ffffc9000eed7830
R8 =ffffc9000eed7aa3 R9 =000000000000000a R10=00000000ffffffff R11=0000000000000000
R12=ffffffff8189bf76 R13=0000000000000000 R14=00000000000000e9 R15=dffffc0000000000
RIP=ffffffff8b54b009 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7456188 CR3=000000006d9ba000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000