last executing test programs:

6.731785083s ago: executing program 3 (id=1061):
r0 = socket(0x2, 0x3, 0xff)
sendmmsg$inet(r0, &(0x7f0000000ec0)=[{{&(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000040)="281effe935fdca249bd7", 0xa}], 0x1}}], 0x1, 0x10)

6.671317017s ago: executing program 3 (id=1062):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x86, 0x6, 0x0, 0x7fff0006}]})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair(0x1e, 0x1, 0x200, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setrlimit(0x4, &(0x7f0000000180)={0x80, 0xc7})
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsmount(0xffffffffffffffff, 0x1, 0x70)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
socket$kcm(0x29, 0x5, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r4, 0x400442c9, &(0x7f00000001c0)={0xfffffff9, @remote})
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000140)=0x11)
ioctl$CEC_S_MODE(r3, 0x40046109, &(0x7f0000000180)=0xd0)
socket$kcm(0x29, 0x2, 0x0)
pwritev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000480)}, {&(0x7f0000000280)="111ec20239e272abb2cedf053d666ab41bdf031bdcaca63b9856f15d16d909ca3d83d93e22b370e9df36dc459b", 0x2d}], 0x2, 0x4000001, 0x0)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x8240, 0x0)
read$alg(r5, &(0x7f0000000240)=""/4096, 0xfffffdef)
ioctl$BINDER_SET_CONTEXT_MGR(r5, 0x40046207, 0x0)

5.669366735s ago: executing program 3 (id=1063):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x1, 0xfffffffe, 0x2000001, {0x0, 0x0, 0x0, r2, {0x7, 0xa}, {0xd, 0xc}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_cmd={0x8, 0x2, 0x0, 0x8, 0x3b, 0x1, 0x0, 0x3, 0xf6, 0x6, 0x1ff, 0x3, 0x4b, 0x7, 0x7a, 0x7, [0x2, 0x4]}})
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

5.471549451s ago: executing program 3 (id=1066):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000280)=0xfefffff9, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x9, 0x7f}, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x8)
r4 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864d1, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="04040aaaaa1c0a705bc058f81c3301"], 0xd)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r3, &(0x7f0000000480)="e123f23ebaa8d1b07f495f67e56efd524cbe01a7b79e291af9fc190819fc86db385de39d2a66063108650e7caf5360ea2927e6ad40d2e20cb0fcaa97d71060eb68920ed401421bbe734f77c793e66f115a5281bc0d28ee61", 0x58, 0x4000000, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$inet_sctp(r2, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8008010}, 0xc851)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
keyctl$read(0x2, 0x0, &(0x7f0000001940)=""/4086, 0xff6)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
preadv2(r1, 0x0, 0x0, 0x101, 0x9, 0x3)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
setrlimit(0x7, &(0x7f0000000000)={0x4, 0x6})
memfd_create(&(0x7f0000000540)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x14t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\an0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81Ks\xba\xbbC6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xec\xcf\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x15\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x8d\xf2:\a\xad\xf5\xfa\x91\xed\xa57\x85\xd1\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xbf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe2\x0fT\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\xdf]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x0f\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\x9a{C|S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d', 0x4)
ioctl$SNDCTL_TMR_METRONOME(r1, 0x40045407)
socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000380)={0x2c, &(0x7f00000002c0)={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

4.171593309s ago: executing program 3 (id=1074):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000840)={'batadv_slave_0\x00', <r2=>0x0})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r2}, 0x90)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x1, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r2, 0x4100}, [@IFLA_CARRIER_CHANGES={0x8, 0x23, 0xc4d}, @IFLA_EVENT={0x8, 0x2c, 0x3}]}, 0x30}}, 0x4008000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000001000007"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x9, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000002200850000001b000000b700000000000000850000002300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x18)
r5 = socket$inet6(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'team_slave_0\x00', 0x4000})
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000040))
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$UFFDIO_COPY(r6, 0xc028aa03, &(0x7f0000000000)={&(0x7f000000c000/0x3000)=nil, &(0x7f000000d000/0x1000)=nil, 0x3000, 0x3})
sendto$inet6(r5, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

4.031600426s ago: executing program 3 (id=1075):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r1 = epoll_create1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00'}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000400), 0x73, 0x1002)
ioctl$USBDEVFS_CLEAR_HALT(r3, 0x80045515, &(0x7f0000000040)={0x1, 0x1})
ioctl$TCSETAF(r2, 0x5408, &(0x7f00000002c0)={0x7f, 0x0, 0x0, 0xb9ff, 0xa})
write$binfmt_aout(r2, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0))
r4 = syz_open_pts(r2, 0x101000)
r5 = dup3(r4, r2, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x17)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x1})
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x4be, @none, 0x672, 0xe403d03b02dc11b2}, 0xe)
clock_gettime(0x0, &(0x7f0000000040)={<r6=>0x0, <r7=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000240)={{r6, r7+10000000}, {0x0, 0x9}}, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) (async)
epoll_create1(0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00'}, 0x10) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000400), 0x73, 0x1002) (async)
ioctl$USBDEVFS_CLEAR_HALT(r3, 0x80045515, &(0x7f0000000040)={0x1, 0x1}) (async)
ioctl$TCSETAF(r2, 0x5408, &(0x7f00000002c0)={0x7f, 0x0, 0x0, 0xb9ff, 0xa}) (async)
write$binfmt_aout(r2, &(0x7f0000000180)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)) (async)
syz_open_pts(r2, 0x101000) (async)
dup3(r4, r2, 0x0) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x17) (async)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x1}) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc) (async)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) (async)
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x4be, @none, 0x672, 0xe403d03b02dc11b2}, 0xe) (async)
clock_gettime(0x0, &(0x7f0000000040)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{r6, r7+10000000}, {0x0, 0x9}}, 0x0) (async)

3.869249328s ago: executing program 2 (id=1077):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=@newtfilter={0x78, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0xfff3, 0xffe0}, {}, {0x8, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x48, 0x2, [@TCA_CGROUP_EMATCHES={0x44, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x34, 0x1, 0x0, 0x0, {{0x7, 0x9, 0x4}, [@TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x7}]}}]}]}]}}]}, 0x78}, 0x1, 0x0, 0x0, 0x80}, 0x40010)

3.721558354s ago: executing program 2 (id=1078):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x20, &(0x7f0000000200)="df33c9f7b9a60000000000002000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.721209279s ago: executing program 2 (id=1079):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x5, 0xa, 0x14)
openat$ptp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0], 0x1, 0x800, 0x0, <r0=>0xffffffffffffffff})
r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x26e1, 0x0)
close(r1)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="680000000714010025bd7000ffdbdf25080001000100000008000100000000000900020073797a32000000000900020073797a300000000005004200010000000800010001000000090002"], 0x68}}, 0x0)
getsockname$unix(r0, &(0x7f0000000240), &(0x7f0000000140)=0x6e)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d0800090002", 0x17}], 0x1}, 0x24044880)
ioctl$SIOCSIFHWADDR(r1, 0x8b32, &(0x7f0000000000)={'virt_wifi0\x00', @local})
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
socket$unix(0x1, 0x1, 0x0)

3.667767001s ago: executing program 2 (id=1081):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtfilter={0x34, 0x2c, 0x300, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0x10}, {0xe, 0x1}}, [@TCA_CHAIN={0x8, 0xb, 0x8bd}, @TCA_CHAIN={0x8, 0xb, 0xffffffff}]}, 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000001a00)=[{{&(0x7f0000000300)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000380)="4878b3e883406dd4a77e51363a16d857d00e405f5b0582ad53d57dabef4b438b3a7b003a50e301544ec41eb5d2147ccf6d400dfbea58628e200653555d633fd18d04e51f7dbebc4c815376f59588960c13995215361cb5bb577856eb20240657efe85970e77312946a44", 0x6a}, {&(0x7f0000000400)="378bcc188fcc22908f43d969774d29b380782434ba8830b9c24407c81c23a495b933feaf8b1f4a809f983e03c41a72f779c558055c8d5399494518591b2ce43f82527197aedbe2d3decc628fcdea164656e486ee30bd444d190d2cbfb1ce579544f29fef2d61df3c33067795df7266237561d429b5f3eac8addeab577b93fe947f7106d5567e0ab7ede7fa0475e162a0e720fb5d2d02f605fd4094259b272cf0b392d6fd9474f0d0371d0ba557c7f87d8e808184c60fd9", 0xb7}, {&(0x7f00000004c0)="f8185edd09190b3b75dd41ca98059611f6369cf4e60109f75062a0ceab513406e9123e545d4ac26fc8a50095ec60b5ac8c183856a5ae729ffdd35b91d31fb3f943a6f8152ef8cd1d596688e9ce3f0bbbe13a6096a93d51d9a2d37e84b971e2053a7541d525c27911a69f57f99e16e5c3e7ff552d4eb5d59e346f3564e4fb82b375b7ddce", 0x84}, {&(0x7f0000000580)="efaaa10e5059d8a10d2e1d633db180be90f8d8c1eb9c980890aa0c864305e348bebcdc788391de794310ce5e05cb412969530a67920a7e08b7e008eb397666c55df7feaf25d0ba4e37a134e38881ed9696c28455fb0256138c73d66ed7cfea9e08f5a97c830665b13168769d69bd2941cb1f20951a9e66db33075fd5ffd4b42b3b4c07f9c1d10fab51773a895d3d75d504d8fcc55ced03d948f0ca28abcb315f957c9a1537016308d109ad3297ce43a52cb74058e8182dcd89540a6a6f90bb87ca700b13baedd9a1614d1924", 0xcc}, {&(0x7f0000000680)}, {&(0x7f0000000700)="aff6865b6cf37764a83c5322800c2cf2029b85742819de2ab112a91646bba4225d31ef2c1e63538c02be1a006691bd61c7c70340072e715f37cfe123761b41c0851d26ce24f62566c0d12072def11a45f5ff021ce0bb4d817557", 0x5a}, {&(0x7f0000000780)="c9e7d23b224a16006402fbe38a7eee56a8f3ce87f2bde7dcd92e7bd014daead44d66ab8b4bb3515bf2aa9c0c3cfea49cf6a5d55e8882d67b294cb548b8504bd92facd262ec1f3b084e361aed6afe5d9a79ab", 0x52}, {&(0x7f0000000800)="0fb5b136999fffc8d1c33796a69a3f1672b50983e7b18dcba318bd83649526e1f4f8caef9f4071d72d0a5f4b7e901bf9357748b50d5f956a4efbf4e503033bc0bcde798d667dc9be4288cb70d9097c4746c3ae5e270c5f555d3016573cf67f726f97020b4a7103be2217097f625941b87024a9974e420ead955c8cfe9873be7600ded6c071a3e5db60282e84f5fa1348859338e0ef5cfbd0d772cd82a184c66865e58b016ea8f79f4a6482ad50201036286c6feb22df8bf35f894c5ab420", 0xbe}, {&(0x7f00000008c0)="a70dfe1327cc9ed8b58f8b8b7c4f758853a9612f297d2727675eaabc3d7b75eabb47046e2ea371ee300c12940e9388c94df59bbf6653af9483523804aba617185b881048f8ebfd154fd5d5030934a393138daefcf58c03a119b302be516671760832a4981eb2f1d374226bb5fc636a8620b00a4887589fa5b75f6ab5ed21d781ffe753c9c74d6e0cb0480e09a807b5fc15354ef429b77afea29272caee733a01660a913fa17b7029ce575720d3280974ba36ac90c2e86091545d44f6ad1c180352d6775999dd105ed3677a0b61617f9627bc6abbf0dbb3c596a0a157ffeffd540f3cc086d4d827ac", 0xe8}, {&(0x7f00000009c0)="dd517b4cc4d2d8026516e54bc2ca70af9f53bb96ab51854d15d3f2350aa645f17d125237ce060a608a16e6e69e3f474ded534353b58f811bc067f85f4a9e839f6a415ba2430fb26c6a2fffc3e3cc222658890d95a4aa09431d34bd251be74d390a40cdf02d18bf8a0c2c826aeb6cf7c8a38bfbf18b70edbb29cd0967ed756619ae499d19c2d1fadd41a55bb195706bc7411484e640014afcc09140a9ea7ee70b3c18d94113894e1d6eb7314bcca62af3043666176aad4cceedf3f1883d3638380c0905e6f00beaf242cc6c1e89e752bbec46b41d023eaad5ec0299166af0a0dbd512a7518f4b07e3d7ee042c0b53", 0xee}], 0xa, 0x0, 0x0, 0x804}}, {{&(0x7f0000000b40)=@abs={0x1, 0x0, 0x4e24}, 0x6e, 0x0, 0x0, &(0x7f0000001280)=[@rights={{0x14, 0x1, 0x1, [r1, 0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x14, 0x1, 0x1, [r2, r1]}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @cred={{0x18, 0x1, 0x2, {r0}}}], 0xc8, 0x20004800}}, {{&(0x7f0000001380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f0000001400)="3ba178ce1363d82b8c1834e8baf8b52dd0c35d1dce6131e402d9a9d2dc853049d6e4c50f8ceecd6c14e6d80965d6272e9dac94c2d0b6c630b2cf8570e2a37ad498f83a0a7eb5324795565ea80cc85c97d1304bed7086a07a4374cf48890df1b37d4aa3dd133946c62fe898d882c0d54caf91c859d92cb1e9b7974c0985a09617ed98f0cfc6736e01fae7e2d84e15f8f92f9a07dffda9f579b23a494eaec50557552ddd6b4bc4194ea544ccab4cf5b92626f14eb88921fd7bb6297a026fed7a1e8a5159f1fe8fa3e3543da1c3007e740843ce1de117", 0xd5}, {&(0x7f0000001500)="847e06989339b038958c98e8d1285640240349910c1a736a8a0140b31e11ef22eba87fad19b4ea5c0462cb81f901ffb61f3d974e4f858368f4d4624136c5b49bb4f05ca4985b549a57984bf87d33dc30575a6f6e5e8f590306e4b9d1658173b2522d235c6af55cc617a4bf3909122bf58f22ba6ce7b3578a19a10ad8ffcc38de6fe5c53bf38abab0697a42cec9b0153fcb", 0x91}, {&(0x7f00000015c0)="8a83736dddfd83b8bbfa0ce5e13d9c0b2887e821f3262356b2c55101cbcf14dc34e57a9ca66117abb79caff56ba0a4f2052a5f8e7aec8f038c6c0c5c96698a26bac476c836ec34572d066c514db4077e53b39f07c8cdb7042b64b0510ec188dbd29e68c9c07ac97bd26db39e6364af635b1ec21eaffb528d023a04cc4345a0ba3e8d9478c6bd02034673f59236a03f8a9e593e156d2c1f67c6a49999b961d76369e165b97e6685e2ac72a742c94c6d408062df036f8b2afe891174b16d0b4310bad18f7d1452e255b6419ae45ca4a78c4fe69011e0bd0a72ad7e2c6d1dfbcf5f164f9d1be719f3f26289932c926f1e3bd7", 0xf1}], 0x3, &(0x7f0000001700)=[@cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x34, 0x800}}, {{&(0x7f0000001740)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001880)=[{&(0x7f00000017c0)="5b61fa8b74aacfc286de1eee5c301b547d4ad45c7a8eaa808e8bb26c26fbaf2cc87c3aeedb213696e9bbf7721e9404d761debe6ef0ab8161dd4b72b75a774f61aff1eeb173a0ccac51ce2f5bffffffff57ec7a00462352fc1aa4ecb5c232c32d61682cbb40f8d30daf", 0x69}, {&(0x7f0000001840)="10df7bbeb5dd1b36d4f5607da1efc215f2f40c084afb5d8c0b95", 0x1a}], 0x2, &(0x7f0000001980)=[@cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x54, 0x4044}}], 0x4, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
unlink(0x0)
sendto$inet6(r3, &(0x7f0000000280)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000000000)={0x0, 0x0, 0x3, &(0x7f00000000c0)={0x19, "90f50180e64f61909103f1fbbc2b81c9f144d76e44c700100000e52829e7cb8393"}})
socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007911a800000000003f74fdc346f357989500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x3, 0x183a00)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f0000007580)={0x0, 0x0, &(0x7f0000007540)={&(0x7f0000000000)={0x44, r5, 0x1, 0x70bd25, 0x25dfdc00, {}, [@IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge_slave_0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1661}]}]}, 0x44}}, 0x48040)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='system.posix_acl_access\x00', &(0x7f0000002500)=ANY=[@ANYBLOB="020000"], 0x8a, 0x1)

2.080855651s ago: executing program 1 (id=1090):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
socket$netlink(0x10, 0x3, 0x15)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', r3, 0x0, 0x1}, 0x18)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x8, 0xc, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000b40)={{r6}, &(0x7f0000000ac0), &(0x7f0000000b00)='%+9llu \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r7}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', r5, 0x0, 0x1}, 0x18)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)

1.661498891s ago: executing program 0 (id=1091):
r0 = syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x20400)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_usb_connect$cdc_ecm(0x5, 0x77, &(0x7f00000001c0)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x65, 0x1, 0x1, 0x2, 0xe0, 0xc, [{{0x9, 0x4, 0x0, 0xff, 0x3, 0x2, 0x6, 0x0, 0x5, {{0xb, 0x24, 0x6, 0x0, 0x0, "86757f6d2038"}, {0x5, 0x24, 0x0, 0x7f}, {0xd, 0x24, 0xf, 0x1, 0x41b, 0x20, 0x9, 0xb}, [@country_functional={0xc, 0x24, 0x7, 0x3, 0x1, [0xa, 0x0, 0x1]}, @mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x2, 0x59f6}, @dmm={0x7, 0x24, 0x14, 0x40, 0xd74}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x400, 0x9, 0x8, 0x7d}}], {{0x9, 0x5, 0x82, 0x2, 0x10, 0x1, 0xff, 0xf7}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0xa, 0x7, 0xff}}}}}]}}]}}, &(0x7f0000000480)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x250, 0x4, 0x10, 0xe1, 0x20, 0x3}, 0xc0, &(0x7f00000002c0)={0x5, 0xf, 0xc0, 0x5, [@wireless={0xb, 0x10, 0x1, 0xe, 0x42, 0xff, 0x2, 0xf, 0xff}, @wireless={0xb, 0x10, 0x1, 0xc, 0x14, 0x8, 0x3, 0x40, 0x9}, @wireless={0xb, 0x10, 0x1, 0xc, 0x40, 0x5, 0x7, 0x8, 0xff}, @ptm_cap={0x3}, @generic={0x97, 0x10, 0x2, "5ab6e12df4854c572eab9491dd69c5ca1e28f412d31fd7e05de5f466093c8553ade4580bfa111079c15107d1f722a66ef1ae6fcca319fd55c0dc369f453b637663f52f9b20add3bbc770c15a0c1de9a21b74434075b9b05a7596d9481a0c6311b12c12f811241d70aa303b6dc9919e75a9722e39062b414e499919e63142aded4c2df5fa83c66ef5567f021666f4d12c7fc09351"}]}, 0x2, [{0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0xf4ff}}, {0xb7, &(0x7f00000003c0)=@string={0xb7, 0x3, "9f44084f3ee25230fad4795f0ef95b7e983fa13c850de680a9bad0d6587ee9d4309eee46436ad6fed6eb68864bdb6d30cf9ce7c6c68d6c2b8d938944e6a2c141e283d341724a07e348eef02d0c1ed685a604835093a762320b8fbbda54843bfe470ceb8aae103dfd4df7194c929a5946d2d0d466b2ca379393457923767cee4b001455b87093d2f7ce315d4cbc4c49de559aa4a5a708c5b6c2f6fc5a1e204de84b158eebcb83d47f8a1abd44013fdfc8bb07ed7e84"}}]})
syz_usb_ep_write(r0, 0x40, 0xfd, &(0x7f00000004c0)="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")
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='bridge0\x00', 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0)
ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000040)=""/185)

541.675929ms ago: executing program 1 (id=1092):
r0 = socket(0x2, 0x3, 0xff)
sendmmsg$inet(r0, &(0x7f0000000ec0)=[{{&(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000040)="281effe935fdca249bd774480a584b", 0xf}], 0x1}}], 0x1, 0x10)

540.968504ms ago: executing program 2 (id=1093):
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$vicodec1(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000200)={0x0, @sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, @ax25={0x3, @null, 0x8}, @llc={0x1a, 0x104, 0x6, 0x1, 0x3, 0x43, @random="b1383a08745d"}, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)='bond0\x00', 0x4, 0x65, 0x1})
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6_vti0\x00'})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48882, 0x0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000000)=0x200000000)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r3, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r4 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r4, 0x81044804, &(0x7f0000000400)={0x1, 0x2})

540.598012ms ago: executing program 1 (id=1094):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x6, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="180200007fffffff0000000000000000850000002c000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000001000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5c298795369ca04f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r2 = syz_open_procfs(0x0, &(0x7f0000000440)='projid_map\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
socket$inet6(0xa, 0x2, 0x0) (async)
socket$inet6(0xa, 0x2, 0x0)
read$FUSE(r2, &(0x7f0000000600)={0x2020}, 0x2020)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff, 0x2c, 0x0, @val=@kprobe_multi=@syms={0x0, 0x0, 0x0}}, 0x40)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000240)="d800000019008111e0020f060d8107040a60000007000000000455a12a00090008000699e3ffffff14000500fe80817806000567b8b7b94002000009080016060000000000000000d67f6f9400f7d1d9bbe94fa27100a007a2f7457f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237ee4b11602b2a10000000014d6d930dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b694138c9f1ac76efb42a9ecbee5de6ccd44242f4d643f6fd0f26187b51980dd6", 0xd8}], 0x1}, 0x40004000)

411.560137ms ago: executing program 1 (id=1095):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b80)={{0x14}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWFLOWTABLE={0xd0, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xa4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wlan0\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'veth1\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'wlan1\x00'}, {0x14, 0x1, 'veth1_virt_wifi\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6}]}]}, @NFT_MSG_DELFLOWTABLE={0x60, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x24, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x335}, @NFTA_FLOWTABLE_HOOK_NUM={0x8, 0x1, 0x1, 0x0, 0x20}]}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x16c}}, 0x0)

410.827703ms ago: executing program 1 (id=1096):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=@newtfilter={0x78, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0xfff3, 0xffe0}, {}, {0x8, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x48, 0x2, [@TCA_CGROUP_EMATCHES={0x44, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x34, 0x1, 0x0, 0x0, {{0x7, 0x9, 0x4}, [@TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x7}]}}]}]}]}}]}, 0x78}, 0x1, 0x0, 0x0, 0x80}, 0x40010)

321.689173ms ago: executing program 0 (id=1097):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x20, &(0x7f0000000200)="df33c9f7b9a60000000000002000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

321.267149ms ago: executing program 0 (id=1098):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0xc002, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000004140)="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", 0x2000, &(0x7f0000000440)={&(0x7f0000000340)={0x50, 0x0, 0x4, {0x7, 0x28, 0x0, 0x8010, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
faccessat2(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xf4000000, 0x300)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x4a301, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r3=>0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x1)
syz_clone3(&(0x7f0000000300)={0x22800000, &(0x7f0000000040)=<r4=>0xffffffffffffffff, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r3, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r4, 0x0}])
setns(r2, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)
syz_fuse_handle_req(r0, &(0x7f0000006140)="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", 0x2000, &(0x7f0000000700)={&(0x7f00000002c0)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x2b, 0x800, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

271.166831ms ago: executing program 1 (id=1099):
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$vicodec1(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000200)={0x0, @sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, @ax25={0x3, @null, 0x8}, @llc={0x1a, 0x104, 0x6, 0x1, 0x3, 0x43, @random="b1383a08745d"}, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)='bond0\x00', 0x4, 0x65, 0x1})
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6_vti0\x00'})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000950000000000000085000000920000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48882, 0x0)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000000)=0x200000000)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r6 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r6, 0x81044804, &(0x7f0000000400)={0x1, 0x2})
syz_usb_control_io$hid(r5, &(0x7f00000001c0)={0x24, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="000304004000040309108ef7bae4676cad307a560ab1683d6b18f1a479c995511646a27bd9e172838d4bcbf9adc80f3fbe7b50217283ae0ddb7c62cde6a0ca1d4024a174ef6c5f72fb52c640dda33083a8762344b34fa159e78f067162571103b390e99a6ec0feb4037a5fea17b64cdb92b686e941e0bc0d8b2431607f3790a1d3a2a3a0817d077782056dd4a296794d36"], 0x0, 0x0}, 0x0)
write$vhost_msg_v2(r4, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000001900)=""/4096, 0x1000, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r4, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)
dup(r2)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r8, 0x0, 0xd}, 0x18)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x1, 0x12)
close_range(r7, 0xffffffffffffffff, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r9, 0x0, 0x486, &(0x7f0000000400), &(0x7f0000000480)=0xc)

111.146669ms ago: executing program 0 (id=1100):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1, 0x4, 0x4, 0x9}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYRESHEX=r1, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r2}, 0xc)
r3 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x2710}, 0x10, 0x800)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r3, 0x28, 0x2, &(0x7f0000000040)=0xfffffffffffffffb, 0x8)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000140)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r4, 0x8b)
ioctl$sock_TIOCOUTQ(r4, 0x5411, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000640)={&(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0], 0x5, 0x3, 0x4, 0x1})
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0xd0, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xa4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_batadv\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'veth1\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'wlan1\x00'}, {0x14, 0x1, 'veth1_virt_wifi\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6}]}]}, @NFT_MSG_DELFLOWTABLE={0xc8, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x9c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip6erspan0\x00'}, {0x14, 0x1, 'veth0_macvtap\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'bond_slave_0\x00'}, {0x14, 0x1, 'caif0\x00'}, {0x14, 0x1, 'macsec0\x00'}, {0x14, 0x1, 'team_slave_0\x00'}]}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}], {0x14, 0x10}}, 0x1e0}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000100000000000000000000000018110000", @ANYRES32=r5, @ANYRES64=r6], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000380)='mm_khugepaged_scan_pmd\x00', r7, 0x0, 0xa17}, 0x18)
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NFC_CMD_GET_SE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x14, r9, 0x10, 0x70bd25, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x20000000)
sendmsg$inet(r8, &(0x7f0000001380)={0x0, 0x0, 0x0}, 0x24000101)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5800000010000d042abd70000100000000000000", @ANYBLOB="c4926ad7102ae9b14d641ce1975696ec4b5351b28a18cf9fde68d6ae7776d1e37c1c2aa51767b93a491a2e5200fa67bf26077edd7cee54016a50b8886ee8ef5363d66e09670e21bb7e33055f0b1c7e832c2a2db6adc3fc1d2f369da60d112d9a5f7fe45561543eda71cc865c590a6ed0faf531b5", @ANYRES64=r7], 0x58}, 0x1, 0x0, 0x0, 0x24060080}, 0x8000)

878.87µs ago: executing program 0 (id=1101):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, 0x0}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa33"], 0xfdef)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x5, 0x47, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r2 = syz_open_dev$cec(&(0x7f0000003480), 0xffffffffffffffff, 0x80085)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000040)={'\x00\f\x00', 0x0, 0x5, 0x2, 0x0, 0x9, "00000000020000000000002100", "00004702", "0300", "97ad3700", ["fdffffff84a438dfc5d5c010", "d78cb8b0211a83be12ff0bff", "0000efffffffffffbfff00"]})
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000140)={"4497acf4", 0xe66, 0x5, 0x0, 0x3, 0x1000006, 'U\x00', "1010f359", "0725eade", '\'s6O', ["01040000000000005793e8a7", "7f9ce2d2c4f439ff80e1d1c8", "fa0700f22b42a3023be516d1"]})
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300), 0x4)
r4 = dup3(r1, r1, 0x0)
r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000003c0)={0xffffffffffffffff, 0x100, 0xf65cd2b3fada388a}, 0xc)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x10001, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x5}, 0x50)
r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000580)=@o_path={&(0x7f0000000540)='./file0\x00', 0x0, 0x4000, r0}, 0x14)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r8=>r2, {0x1}}, './file0\x00'})
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0x0, 0x6, 0x8}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000100)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @exit, @generic={0x1, 0xa, 0x6, 0x0, 0xffffffff}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0xab, &(0x7f0000000200)=""/171, 0x40f00, 0x22, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000340)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0xc, 0x14000, 0x8}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000640)=[0x1, r4, r5, r6, r7, r8, r9, r0], &(0x7f00000006c0)=[{0x5, 0x4, 0x2, 0x4}, {0x5, 0x5, 0xd, 0x1}, {0x5, 0x3, 0xc, 0x7}], 0x10, 0x1}, 0x94)

336.344µs ago: executing program 2 (id=1102):
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioperm(0xa, 0xb6a, 0xffff8000)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x200000000000000)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x24040084)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r5, &(0x7f0000000080)=[{&(0x7f0000000640)="1e35616b0e3c332845a81268ca6996efc87069828e43b9d2d57d5d79da3457b5c008b19ece88f8c0be2d62179a01ffffff7b2dc5f5", 0x35}], 0x1)
r6 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmsg(r6, &(0x7f0000000280)={0x0, 0xffffffffffffff6b, &(0x7f0000000000)=[{&(0x7f0000000480)=""/52, 0x34}], 0x1, 0x0, 0xfffffffffffffc54}, 0x4c2103a0)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000200)='cubic', 0x5)

0s ago: executing program 0 (id=1103):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0xfdef, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x90)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000300)={0x9, 0xfffffffc, 0x0, 'queue1\x00', 0xfffffffc})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r3, 0xc08c5334, &(0x7f0000000400))
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
r4 = dup(0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e21, 0x6, @empty, 0x7}], 0x1c)
r5 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QUERYBUF(r5, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000280)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)}, 0x4048043)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
unshare(0x2c020400)
r7 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mq_notify(r7, 0x0)

0s ago: executing program 2 (id=1104):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000001380)='ns/cgroup\x00')
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="20000000f1000000030000000000000000000040"], 0x0)

kernel console output (not intermixed with test programs):

T5958] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  165.918041][ T5958] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  165.921230][ T5958] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.925154][ T5958] usb 6-1: config 0 descriptor??
[  165.936329][ T5958] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  165.941551][ T5958] dvb-usb: bulk message failed: -22 (3/0)
[  165.951546][ T5958] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  165.956751][ T5958] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  165.959216][ T5958] usb 6-1: media controller created
[  165.962219][ T5958] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  165.972683][ T5958] dvb-usb: bulk message failed: -22 (6/0)
[  165.974825][ T5958] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  165.981647][ T5958] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input12
[  165.994490][ T5958] dvb-usb: schedule remote query interval to 150 msecs.
[  165.998218][ T5958] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  166.087834][  T839] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  166.098187][  T839] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.102969][  T839] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.106582][  T839] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  166.118672][  T839] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  166.122578][  T839] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  166.125362][  T839] usb 8-1: Manufacturer: syz
[  166.134493][  T839] usb 8-1: config 0 descriptor??
[  166.144636][ T8465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.150568][ T8465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.159391][ T5958] dvb-usb: bulk message failed: -22 (1/0)
[  166.161876][ T5958] dvb-usb: error while querying for an remote control event.
[  166.167025][   T60] usb 42-1: SetAddress Request (18) to port 0
[  166.169412][   T60] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[  166.316986][ T5958] dvb-usb: bulk message failed: -22 (1/0)
[  166.321864][ T8473] vhci_hcd: connection reset by peer
[  166.324347][ T5958] dvb-usb: error while querying for an remote control event.
[  166.331090][   T61] vhci_hcd: stop threads
[  166.332669][   T61] vhci_hcd: release socket
[  166.334400][   T61] vhci_hcd: disconnect device
[  166.477005][ T5958] dvb-usb: bulk message failed: -22 (1/0)
[  166.478873][ T5958] dvb-usb: error while querying for an remote control event.
[  166.484613][ T6024] usb 6-1: USB disconnect, device number 16
[  166.496293][ T6024] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  166.541036][  T839] appleir 0003:05AC:8243.0008: unknown main item tag 0x0
[  166.549126][  T839] appleir 0003:05AC:8243.0008: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  167.557858][  T947] usb 5-1: USB disconnect, device number 12
[  167.622104][ T8493] netlink: 4 bytes leftover after parsing attributes in process `syz.1.716'.
[  167.708211][ T8496] random: crng reseeded on system resumption
[  168.424673][ T8501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.718'.
[  168.467284][ T6047] usb 40-1: device descriptor read/8, error -110
[  168.480908][ T8502] CUSE: unknown device info "ÿ
"
[  168.481367][ T8501] macvtap1: entered promiscuous mode
[  168.483239][ T8502] CUSE: zero length info key specified
[  168.486581][ T8501] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  168.493994][ T8501] mac80211_hwsim hwsim3 wlan1: left promiscuous mode
[  168.512845][ T8502] netlink: 28 bytes leftover after parsing attributes in process `syz.3.718'.
[  168.659384][ T5958] usb 8-1: USB disconnect, device number 8
[  168.841787][ T8519] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  168.844638][ T8519] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  168.856474][ T8519] vhci_hcd vhci_hcd.0: Device attached
[  168.877648][ T6047] usb usb40-port1: attempt power cycle
[  169.097064][ T5958] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  169.147032][ T6041] usb 38-1: SetAddress Request (26) to port 0
[  169.149895][ T6041] usb 38-1: new SuperSpeed USB device number 26 using vhci_hcd
[  169.248816][ T5958] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  169.257085][ T5958] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  169.260408][ T5958] usb 8-1: config 0 interface 0 has no altsetting 0
[  169.266474][ T5958] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  169.271948][ T5958] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  169.274573][ T5958] usb 8-1: Product: syz
[  169.277233][ T5958] usb 8-1: Manufacturer: syz
[  169.280725][ T5958] usb 8-1: SerialNumber: syz
[  169.288754][ T5958] usb 8-1: config 0 descriptor??
[  169.298050][ T5958] hub 8-1:0.0: bad descriptor, ignoring hub
[  169.301037][ T5958] hub 8-1:0.0: probe with driver hub failed with error -5
[  169.315507][ T5958] usb 8-1: selecting invalid altsetting 0
[  169.394039][ T8520] vhci_hcd: connection reset by peer
[  169.397316][   T12] vhci_hcd: stop threads
[  169.398826][   T12] vhci_hcd: release socket
[  169.400530][   T12] vhci_hcd: disconnect device
[  169.467031][ T6047] usb usb40-port1: unable to enumerate USB device
[  169.488128][ T8530] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  169.490268][ T8530] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  169.493108][ T8530] vhci_hcd vhci_hcd.0: Device attached
[  169.562379][ T8531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.728'.
[  169.562376][ T8532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.728'.
[  169.776940][ T6068] usb 40-1: SetAddress Request (30) to port 0
[  169.778953][ T6068] usb 40-1: new SuperSpeed USB device number 30 using vhci_hcd
[  169.789428][ T8533] vhci_hcd: connection closed
[  169.789857][   T12] vhci_hcd: stop threads
[  169.794760][   T12] vhci_hcd: release socket
[  169.796635][   T12] vhci_hcd: disconnect device
[  169.857267][ T8539] IPVS: Error connecting to the multicast addr
[  170.413590][ T8561] netlink: 161716 bytes leftover after parsing attributes in process `syz.2.736'.
[  170.418684][ T8561] netlink: zone id is out of range
[  170.420706][ T8561] netlink: zone id is out of range
[  170.422665][ T8561] netlink: zone id is out of range
[  170.424712][ T8561] netlink: zone id is out of range
[  170.426579][ T8561] netlink: zone id is out of range
[  170.428831][ T8561] netlink: zone id is out of range
[  170.430991][ T8561] netlink: zone id is out of range
[  170.433214][ T8561] netlink: zone id is out of range
[  170.435109][ T8561] netlink: zone id is out of range
[  170.437781][ T8561] netlink: zone id is out of range
[  170.717321][ T8568] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.720218][ T8568] syzkaller0: entered promiscuous mode
[  170.722221][ T8568] syzkaller0: entered allmulticast mode
[  170.809629][ T8570] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  170.812367][ T8570] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  170.822381][ T8570] vhci_hcd vhci_hcd.0: Device attached
[  171.138307][ T8574] tipc: Resetting bearer <eth:syzkaller0>
[  171.146798][ T8567] tipc: Resetting bearer <eth:syzkaller0>
[  171.159606][ T8567] tipc: Disabling bearer <eth:syzkaller0>
[  171.251378][ T8571] vhci_hcd: connection reset by peer
[  171.257311][   T97] vhci_hcd: stop threads
[  171.261274][   T97] vhci_hcd: release socket
[  171.265060][   T97] vhci_hcd: disconnect device
[  171.277003][   T60] usb 42-1: device descriptor read/8, error -110
[  171.667915][   T60] usb usb42-port1: attempt power cycle
[  171.847301][  T947] usb 8-1: USB disconnect, device number 9
[  172.721135][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.745'.
[  172.857115][ T8605] FAULT_INJECTION: forcing a failure.
[  172.857115][ T8605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.862121][ T8605] CPU: 3 UID: 0 PID: 8605 Comm: syz.2.751 Not tainted syzkaller #0 PREEMPT(full) 
[  172.862138][ T8605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.862145][ T8605] Call Trace:
[  172.862150][ T8605]  <TASK>
[  172.862154][ T8605]  dump_stack_lvl+0x16c/0x1f0
[  172.862170][ T8605]  should_fail_ex+0x512/0x640
[  172.862193][ T8605]  _copy_to_user+0x32/0xd0
[  172.862208][ T8605]  simple_read_from_buffer+0xcb/0x170
[  172.862225][ T8605]  proc_fail_nth_read+0x197/0x240
[  172.862244][ T8605]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.862263][ T8605]  ? rw_verify_area+0xcf/0x6c0
[  172.862279][ T8605]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.862296][ T8605]  vfs_read+0x1e4/0xcf0
[  172.862309][ T8605]  ? __pfx_vfs_read+0x10/0x10
[  172.862318][ T8605]  ? find_held_lock+0x2b/0x80
[  172.862334][ T8605]  ? __fget_files+0x20e/0x3c0
[  172.862361][ T8605]  ksys_read+0x12a/0x250
[  172.862371][ T8605]  ? __pfx_ksys_read+0x10/0x10
[  172.862382][ T8605]  ? rcu_is_watching+0x12/0xc0
[  172.862397][ T8605]  __do_fast_syscall_32+0x7c/0x300
[  172.862410][ T8605]  do_fast_syscall_32+0x32/0x80
[  172.862422][ T8605]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.862436][ T8605] RIP: 0023:0xf7f73579
[  172.862445][ T8605] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.862457][ T8605] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  172.862467][ T8605] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5466620
[  172.862474][ T8605] RDX: 000000000000000f RSI: 00000000f7405ff4 RDI: 0000000000000000
[  172.862481][ T8605] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  172.862487][ T8605] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  172.862493][ T8605] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.862506][ T8605]  </TASK>
[  172.937475][    C3] vkms_vblank_simulate: vblank timer overrun
[  172.967793][   T60] usb usb42-port1: unable to enumerate USB device
[  172.988293][ T8611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.992762][ T8611] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.080708][   T40] audit: type=1326 audit(1759432323.152:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.086977][   T40] audit: type=1326 audit(1759432323.152:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=432 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.095101][   T40] audit: type=1326 audit(1759432323.152:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.104337][   T40] audit: type=1326 audit(1759432323.152:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=304 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.112498][   T40] audit: type=1326 audit(1759432323.152:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.120796][   T40] audit: type=1326 audit(1759432323.152:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=305 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.127925][   T40] audit: type=1326 audit(1759432323.152:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.135488][   T40] audit: type=1326 audit(1759432323.152:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.144127][   T40] audit: type=1326 audit(1759432323.152:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  173.153057][   T40] audit: type=1326 audit(1759432323.152:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.0.756" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf704e579 code=0x7ffc0000
[  174.347935][ T6041] usb 38-1: device descriptor read/8, error -110
[  174.777644][ T6041] usb usb38-port1: attempt power cycle
[  174.867101][ T6068] usb 40-1: device descriptor read/8, error -110
[  174.873993][ T8649] FAULT_INJECTION: forcing a failure.
[  174.873993][ T8649] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  174.878198][ T8649] CPU: 3 UID: 0 PID: 8649 Comm: syz.1.765 Not tainted syzkaller #0 PREEMPT(full) 
[  174.878215][ T8649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.878222][ T8649] Call Trace:
[  174.878226][ T8649]  <TASK>
[  174.878231][ T8649]  dump_stack_lvl+0x16c/0x1f0
[  174.878247][ T8649]  should_fail_ex+0x512/0x640
[  174.878268][ T8649]  should_fail_alloc_page+0xe7/0x130
[  174.878282][ T8649]  prepare_alloc_pages+0x3c2/0x610
[  174.878299][ T8649]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  174.878312][ T8649]  ? stack_trace_save+0x8e/0xc0
[  174.878326][ T8649]  ? __pfx_stack_trace_save+0x10/0x10
[  174.878340][ T8649]  ? stack_depot_save_flags+0x29/0x9c0
[  174.878357][ T8649]  ? find_held_lock+0x2b/0x80
[  174.878372][ T8649]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  174.878382][ T8649]  ? __kasan_slab_alloc+0x89/0x90
[  174.878393][ T8649]  ? alloc_vmap_area+0xdcf/0x29c0
[  174.878406][ T8649]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  174.878421][ T8649]  ? __vmalloc_node_noprof+0xad/0xf0
[  174.878435][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  174.878450][ T8649]  ? bpf_prog_alloc+0x3b/0x230
[  174.878463][ T8649]  ? bpf_prog_load+0x1c23/0x2850
[  174.878473][ T8649]  ? __sys_bpf+0x3e6d/0x4980
[  174.878483][ T8649]  ? __ia32_sys_bpf+0x76/0xe0
[  174.878508][ T8649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  174.878523][ T8649]  ? policy_nodemask+0xea/0x4e0
[  174.878536][ T8649]  alloc_pages_mpol+0x1fb/0x550
[  174.878549][ T8649]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  174.878565][ T8649]  alloc_pages_noprof+0x131/0x390
[  174.878577][ T8649]  get_free_pages_noprof+0x10/0xb0
[  174.878590][ T8649]  kasan_populate_vmalloc+0x9f/0x2d0
[  174.878607][ T8649]  ? alloc_vmap_area+0x8b5/0x29c0
[  174.878622][ T8649]  alloc_vmap_area+0x960/0x29c0
[  174.878641][ T8649]  ? __pfx_alloc_vmap_area+0x10/0x10
[  174.878658][ T8649]  __get_vm_area_node+0x1ca/0x330
[  174.878675][ T8649]  __vmalloc_node_range_noprof+0x271/0x14b0
[  174.878691][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  174.878709][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  174.878725][ T8649]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  174.878743][ T8649]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  174.878759][ T8649]  ? find_held_lock+0x2b/0x80
[  174.878774][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  174.878789][ T8649]  __vmalloc_node_noprof+0xad/0xf0
[  174.878804][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  174.878820][ T8649]  bpf_prog_alloc_no_stats+0x58/0x600
[  174.878835][ T8649]  ? security_capable+0x7e/0x260
[  174.878853][ T8649]  bpf_prog_alloc+0x3b/0x230
[  174.878866][ T8649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  174.878878][ T8649]  bpf_prog_load+0x1c23/0x2850
[  174.878891][ T8649]  ? __pfx_bpf_prog_load+0x10/0x10
[  174.878901][ T8649]  ? lockdep_hardirqs_on+0x7c/0x110
[  174.878925][ T8649]  __sys_bpf+0x3e6d/0x4980
[  174.878939][ T8649]  ? __pfx___sys_bpf+0x10/0x10
[  174.878950][ T8649]  ? find_held_lock+0x2b/0x80
[  174.878964][ T8649]  ? find_held_lock+0x2b/0x80
[  174.878979][ T8649]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  174.879001][ T8649]  ? fput+0x9b/0xd0
[  174.879014][ T8649]  ? ksys_write+0x1ac/0x250
[  174.879024][ T8649]  ? __pfx_ksys_write+0x10/0x10
[  174.879036][ T8649]  __ia32_sys_bpf+0x76/0xe0
[  174.879048][ T8649]  __do_fast_syscall_32+0x7c/0x300
[  174.879061][ T8649]  do_fast_syscall_32+0x32/0x80
[  174.879072][ T8649]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.879086][ T8649] RIP: 0023:0xf7ff2579
[  174.879096][ T8649] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.879106][ T8649] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  174.879118][ T8649] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  174.879125][ T8649] RDX: 00000000000000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  174.879131][ T8649] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  174.879137][ T8649] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  174.879143][ T8649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.879156][ T8649]  </TASK>
[  174.879182][ T8649] syz.1.765: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  175.039628][ T8649] CPU: 2 UID: 0 PID: 8649 Comm: syz.1.765 Not tainted syzkaller #0 PREEMPT(full) 
[  175.039657][ T8649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.039667][ T8649] Call Trace:
[  175.039671][ T8649]  <TASK>
[  175.039677][ T8649]  dump_stack_lvl+0x16c/0x1f0
[  175.039694][ T8649]  warn_alloc+0x248/0x3a0
[  175.039707][ T8649]  ? __pfx_warn_alloc+0x10/0x10
[  175.039720][ T8649]  ? kfree+0x2b4/0x4d0
[  175.039742][ T8649]  ? __get_vm_area_node+0x208/0x330
[  175.039762][ T8649]  __vmalloc_node_range_noprof+0xb2c/0x14b0
[  175.039784][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  175.039804][ T8649]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  175.039819][ T8649]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  175.039836][ T8649]  ? find_held_lock+0x2b/0x80
[  175.039855][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  175.039871][ T8649]  __vmalloc_node_noprof+0xad/0xf0
[  175.039888][ T8649]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  175.039906][ T8649]  bpf_prog_alloc_no_stats+0x58/0x600
[  175.039922][ T8649]  ? security_capable+0x7e/0x260
[  175.039942][ T8649]  bpf_prog_alloc+0x3b/0x230
[  175.039958][ T8649]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.039978][ T8649]  bpf_prog_load+0x1c23/0x2850
[  175.040001][ T8649]  ? __pfx_bpf_prog_load+0x10/0x10
[  175.040018][ T8649]  ? lockdep_hardirqs_on+0x7c/0x110
[  175.040071][ T8649]  __sys_bpf+0x3e6d/0x4980
[  175.040095][ T8649]  ? __pfx___sys_bpf+0x10/0x10
[  175.040114][ T8649]  ? find_held_lock+0x2b/0x80
[  175.040140][ T8649]  ? find_held_lock+0x2b/0x80
[  175.040168][ T8649]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  175.040200][ T8649]  ? fput+0x9b/0xd0
[  175.040224][ T8649]  ? ksys_write+0x1ac/0x250
[  175.040241][ T8649]  ? __pfx_ksys_write+0x10/0x10
[  175.040262][ T8649]  __ia32_sys_bpf+0x76/0xe0
[  175.040278][ T8649]  __do_fast_syscall_32+0x7c/0x300
[  175.040291][ T8649]  do_fast_syscall_32+0x32/0x80
[  175.040302][ T8649]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.040317][ T8649] RIP: 0023:0xf7ff2579
[  175.040327][ T8649] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.040338][ T8649] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  175.040350][ T8649] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  175.040357][ T8649] RDX: 00000000000000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  175.040363][ T8649] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.040369][ T8649] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.040375][ T8649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.040389][ T8649]  </TASK>
[  175.040407][ T8649] Mem-Info:
[  175.131692][ T8649] active_anon:8735 inactive_anon:23 isolated_anon:0
[  175.131692][ T8649]  active_file:16030 inactive_file:35173 isolated_file:0
[  175.131692][ T8649]  unevictable:1768 dirty:18 writeback:21
[  175.131692][ T8649]  slab_reclaimable:7598 slab_unreclaimable:52813
[  175.131692][ T8649]  mapped:27277 shmem:5202 pagetables:1357
[  175.131692][ T8649]  sec_pagetables:315 bounce:0
[  175.131692][ T8649]  kernel_misc_reclaimable:0
[  175.131692][ T8649]  free:35233 free_pcp:17980 free_cma:0
[  175.145585][ T8649] Node 0 active_anon:788kB inactive_anon:24kB active_file:20kB inactive_file:16kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:464kB dirty:0kB writeback:0kB shmem:3988kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8876kB pagetables:2480kB sec_pagetables:1180kB all_unreclaimable? no Balloon:0kB
[  175.156320][ T8649] Node 1 active_anon:34152kB inactive_anon:68kB active_file:63900kB inactive_file:138876kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:108644kB dirty:72kB writeback:84kB shmem:16820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4576kB pagetables:2948kB sec_pagetables:80kB all_unreclaimable? no Balloon:0kB
[  175.167306][ T8649] Node 0 DMA free:2268kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:544kB local_pcp:108kB free_cma:0kB
[  175.176373][ T8649] lowmem_reserve[]: 0 295 295 295 295
[  175.178442][ T8649] Node 0 DMA32 free:18872kB boost:0kB min:13564kB low:16952kB high:20340kB reserved_highatomic:2048KB free_highatomic:156KB active_anon:792kB inactive_anon:24kB active_file:20kB inactive_file:16kB unevictable:3536kB writepending:0kB present:1032196kB managed:302248kB mlocked:0kB bounce:0kB free_pcp:13076kB local_pcp:3836kB free_cma:0kB
[  175.188713][ T8649] lowmem_reserve[]: 0 0 0 0 0
[  175.190400][ T8649] Node 1 DMA32 free:119792kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:2048KB free_highatomic:776KB active_anon:34152kB inactive_anon:68kB active_file:56000kB inactive_file:138176kB unevictable:3536kB writepending:56kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:68908kB local_pcp:19868kB free_cma:0kB
[  175.201856][ T8649] lowmem_reserve[]: 0 0 0 0 0
[  175.203340][ T8649] Node 0 DMA: 26*4kB (UM) 34*8kB (UM) 11*16kB (UM) 8*32kB (UM) 5*64kB (UM) 1*128kB (M) 0*256kB 2*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2280kB
[  175.208295][ T8649] Node 0 DMA32: 513*4kB (UMEH) 75*8kB (UMEH) 41*16kB (UMEH) 89*32kB (UME) 44*64kB (ME) 21*128kB (UME) 6*256kB (UME) 7*512kB (UME) 0*1024kB 1*2048kB (M) 0*4096kB = 18828kB
[  175.213881][ T8649] Node 1 DMA32: 434*4kB (UMEH) 533*8kB (UMEH) 254*16kB (UMEH) 295*32kB (UMEH) 202*64kB (UMEH) 117*128kB (UME) 43*256kB (UME) 15*512kB (UME) 12*1024kB (UM) 8*2048kB (UME) 8*4096kB (M) = 127536kB
[  175.222300][ T8649] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  175.225269][ T8649] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  175.228186][ T8649] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  175.231197][ T8649] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  175.234067][ T8649] 49953 total pagecache pages
[  175.235501][ T8649] 402 pages in swap cache
[  175.237810][ T8649] Free swap  = 118120kB
[  175.239278][ T8649] Total swap = 124996kB
[  175.240808][ T8649] 524155 pages RAM
[  175.242211][ T8649] 0 pages HighMem/MovableOnly
[  175.243719][ T8649] 207698 pages reserved
[  175.245039][ T8649] 0 pages cma reserved
[  175.259596][ T6068] usb usb40-port1: attempt power cycle
[  175.338368][ T6041] usb usb38-port1: unable to enumerate USB device
[  175.599400][ T8652] syz.3.766 (8652): drop_caches: 1
[  175.600247][ T8651] syz.3.766 (8651): drop_caches: 1
[  175.752428][ T8651] syz.3.766 (8651): drop_caches: 1
[  175.840693][ T8665] input: syz0 as /devices/virtual/input/input13
[  175.889228][ T6068] usb usb40-port1: unable to enumerate USB device
[  176.113215][ T8683] raw_sendmsg: syz.2.775 forgot to set AF_INET. Fix it!
[  176.116184][ T8683] FAULT_INJECTION: forcing a failure.
[  176.116184][ T8683] name failslab, interval 1, probability 0, space 0, times 0
[  176.122061][ T8683] CPU: 0 UID: 0 PID: 8683 Comm: syz.2.775 Not tainted syzkaller #0 PREEMPT(full) 
[  176.122093][ T8683] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.122108][ T8683] Call Trace:
[  176.122117][ T8683]  <TASK>
[  176.122127][ T8683]  dump_stack_lvl+0x16c/0x1f0
[  176.122159][ T8683]  should_fail_ex+0x512/0x640
[  176.122195][ T8683]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  176.122225][ T8683]  should_failslab+0xc2/0x120
[  176.122252][ T8683]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  176.122277][ T8683]  ? __alloc_skb+0x2b2/0x380
[  176.122319][ T8683]  __alloc_skb+0x2b2/0x380
[  176.122355][ T8683]  ? __pfx___alloc_skb+0x10/0x10
[  176.122395][ T8683]  ? __lock_acquire+0x62e/0x1ce0
[  176.122436][ T8683]  __ip_append_data+0x30c5/0x41c0
[  176.122470][ T8683]  ? __pfx_raw_getfrag+0x10/0x10
[  176.122500][ T8683]  ? find_held_lock+0x2b/0x80
[  176.122527][ T8683]  ? ip_dst_mtu_maybe_forward.constprop.0+0x30a/0x6e0
[  176.122565][ T8683]  ? ip_dst_mtu_maybe_forward.constprop.0+0x314/0x6e0
[  176.122598][ T8683]  ? __pfx___ip_append_data+0x10/0x10
[  176.122634][ T8683]  ip_append_data+0x10f/0x1a0
[  176.122663][ T8683]  ? __pfx_raw_getfrag+0x10/0x10
[  176.122691][ T8683]  raw_sendmsg+0xeee/0x37e0
[  176.122719][ T8683]  ? __pfx_raw_sendmsg+0x10/0x10
[  176.122739][ T8683]  ? find_held_lock+0x2b/0x80
[  176.122764][ T8683]  ? tomoyo_check_inet_address+0xe0/0x6c0
[  176.122786][ T8683]  ? __pfx___up_read+0x10/0x10
[  176.122805][ T8683]  ? do_user_addr_fault+0x843/0x1370
[  176.122838][ T8683]  ? __pfx_raw_sendmsg+0x10/0x10
[  176.122859][ T8683]  inet_sendmsg+0x119/0x140
[  176.122880][ T8683]  __sys_sendto+0x43c/0x520
[  176.122904][ T8683]  ? __pfx___sys_sendto+0x10/0x10
[  176.122952][ T8683]  ? ksys_write+0x1ac/0x250
[  176.122974][ T8683]  ? __pfx_ksys_write+0x10/0x10
[  176.123012][ T8683]  __ia32_sys_sendto+0xdd/0x1b0
[  176.123035][ T8683]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.123049][ T8683]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  176.123065][ T8683]  __do_fast_syscall_32+0x7c/0x300
[  176.123083][ T8683]  do_fast_syscall_32+0x32/0x80
[  176.123105][ T8683]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.123133][ T8683] RIP: 0023:0xf7f73579
[  176.123153][ T8683] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.123175][ T8683] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  176.123190][ T8683] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  176.123199][ T8683] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000080000100
[  176.123208][ T8683] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  176.123216][ T8683] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.123225][ T8683] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.123248][ T8683]  </TASK>
[  176.236392][ T8685] netlink: 16 bytes leftover after parsing attributes in process `syz.0.776'.
[  176.301437][ T8685] binder: BINDER_SET_CONTEXT_MGR already set
[  176.303455][ T8685] binder: 8684:8685 ioctl 4018620d 80004a80 returned -16
[  176.523133][ T8705] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.526305][ T8705] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.687109][ T6024] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  176.808176][ T8709] netlink: 4 bytes leftover after parsing attributes in process `syz.3.784'.
[  176.819039][ T8709] macvtap1: entered promiscuous mode
[  176.820997][ T8709] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  176.826408][ T8709] mac80211_hwsim hwsim3 wlan1: left promiscuous mode
[  176.841871][ T6024] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  176.845352][ T6024] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  176.850110][ T6024] usb 6-1: config 0 interface 0 has no altsetting 0
[  176.854761][ T6024] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  176.859526][ T6024] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  176.863508][ T6024] usb 6-1: Product: syz
[  176.863956][ T8710] CUSE: unknown device info "ÿ
"
[  176.865320][ T6024] usb 6-1: Manufacturer: syz
[  176.865336][ T6024] usb 6-1: SerialNumber: syz
[  176.867494][ T6024] usb 6-1: config 0 descriptor??
[  176.872446][ T6024] hub 6-1:0.0: bad descriptor, ignoring hub
[  176.872996][ T8710] CUSE: zero length info key specified
[  176.876041][ T6024] hub 6-1:0.0: probe with driver hub failed with error -5
[  176.883482][ T6024] usb 6-1: selecting invalid altsetting 0
[  176.884672][ T8710] netlink: 28 bytes leftover after parsing attributes in process `syz.3.784'.
[  178.214078][   T63] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  178.467153][ T8737] IPVS: Error connecting to the multicast addr
[  178.557941][ T6021] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  178.709932][ T6021] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.713587][ T6021] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  178.716908][ T6021] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  178.719946][ T6021] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.723793][ T6021] usb 5-1: config 0 descriptor??
[  178.727517][ T6021] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  178.731731][ T6021] dvb-usb: bulk message failed: -22 (3/0)
[  178.737738][ T6021] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  178.741422][ T6021] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  178.743645][ T6021] usb 5-1: media controller created
[  178.746287][ T6021] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  178.755373][ T6021] dvb-usb: bulk message failed: -22 (6/0)
[  178.758031][ T6021] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  178.762550][ T6021] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input14
[  178.768363][ T6021] dvb-usb: schedule remote query interval to 150 msecs.
[  178.770535][ T6021] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  178.927082][ T6021] dvb-usb: bulk message failed: -22 (1/0)
[  178.928942][ T6021] dvb-usb: error while querying for an remote control event.
[  178.935205][ T8735] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.939224][ T8735] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.086988][ T6021] dvb-usb: bulk message failed: -22 (1/0)
[  179.089332][ T6021] dvb-usb: error while querying for an remote control event.
[  179.171573][ T6024] usb 5-1: USB disconnect, device number 13
[  179.193891][ T6024] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  179.482330][ T8748] syz.2.796 (8748): drop_caches: 1
[  179.527853][ T8748] syz.2.796 (8748): drop_caches: 1
[  179.540789][ T8751] syz.2.796 (8751): drop_caches: 1
[  179.577207][ T6047] usb 6-1: USB disconnect, device number 17
[  180.251231][ T8772] lo: entered allmulticast mode
[  180.507075][ T6021] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  180.575505][ T8777] netlink: 8 bytes leftover after parsing attributes in process `syz.2.805'.
[  180.580303][ T8776] netlink: 8 bytes leftover after parsing attributes in process `syz.2.805'.
[  180.581317][ T8777] netlink: 4 bytes leftover after parsing attributes in process `syz.2.805'.
[  180.584495][ T8776] netlink: 4 bytes leftover after parsing attributes in process `syz.2.805'.
[  180.593635][ T8776] netlink: 52 bytes leftover after parsing attributes in process `syz.2.805'.
[  180.658638][ T6021] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  180.663693][ T6021] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  180.668817][ T6021] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  180.673847][ T6021] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  180.679584][ T6021] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  180.682364][ T6021] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  180.684869][ T6021] usb 8-1: Manufacturer: syz
[  180.688366][ T6021] usb 8-1: config 0 descriptor??
[  180.847027][ T6047] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  181.018816][ T6047] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  181.022121][ T6047] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  181.026270][ T6047] usb 6-1: config 0 interface 0 has no altsetting 0
[  181.043430][ T6047] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  181.052790][ T6047] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  181.056044][ T6047] usb 6-1: Product: syz
[  181.062972][ T6047] usb 6-1: Manufacturer: syz
[  181.064809][ T6047] usb 6-1: SerialNumber: syz
[  181.088778][ T6047] usb 6-1: config 0 descriptor??
[  181.092958][ T6047] hub 6-1:0.0: bad descriptor, ignoring hub
[  181.096475][ T6047] hub 6-1:0.0: probe with driver hub failed with error -5
[  181.112710][ T6047] usb 6-1: selecting invalid altsetting 0
[  181.134914][ T8771] lo: left allmulticast mode
[  181.157625][ T6021] rc_core: IR keymap rc-hauppauge not found
[  181.160093][ T6021] Registered IR keymap rc-empty
[  181.161817][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.187127][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.207609][ T6021] rc rc1: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc1
[  181.215143][ T6021] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc1/input15
[  181.223053][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.237067][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.257107][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.277095][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.297057][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.318430][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.337204][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.357097][  T947] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  181.357856][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.377113][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.397061][ T6021] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  181.417852][ T6021] mceusb 8-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  181.421684][ T6021] mceusb 8-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  181.428564][ T6021] usb 8-1: USB disconnect, device number 10
[  181.711751][ T8798] lo: entered allmulticast mode
[  181.716174][ T8797] lo: left allmulticast mode
[  181.751552][ T8801] FAULT_INJECTION: forcing a failure.
[  181.751552][ T8801] name failslab, interval 1, probability 0, space 0, times 0
[  181.753212][  T947] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  181.756552][ T8801] CPU: 3 UID: 0 PID: 8801 Comm: syz.3.813 Not tainted syzkaller #0 PREEMPT(full) 
[  181.756574][ T8801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.756585][ T8801] Call Trace:
[  181.756591][ T8801]  <TASK>
[  181.756598][ T8801]  dump_stack_lvl+0x16c/0x1f0
[  181.756621][ T8801]  should_fail_ex+0x512/0x640
[  181.756643][ T8801]  ? fs_reclaim_acquire+0xae/0x150
[  181.756665][ T8801]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  181.756685][ T8801]  should_failslab+0xc2/0x120
[  181.756708][ T8801]  __kmalloc_noprof+0xd2/0x510
[  181.756730][ T8801]  tomoyo_realpath_from_path+0xc2/0x6e0
[  181.756749][ T8801]  ? tomoyo_profile+0x47/0x60
[  181.756775][ T8801]  tomoyo_path_perm+0x274/0x460
[  181.756789][ T8801]  ? tomoyo_path_perm+0x260/0x460
[  181.756807][ T8801]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  181.756842][ T8801]  ? find_held_lock+0x2b/0x80
[  181.756874][ T8801]  ? __might_fault+0xe3/0x190
[  181.756890][ T8801]  ? __might_fault+0xe3/0x190
[  181.756903][ T8801]  ? __might_fault+0x13b/0x190
[  181.756922][ T8801]  security_inode_getattr+0x116/0x290
[  181.756941][ T8801]  vfs_statx+0x121/0x3f0
[  181.756960][ T8801]  ? __pfx_vfs_statx+0x10/0x10
[  181.756980][ T8801]  ? getname_flags.part.0+0x1c5/0x550
[  181.757005][ T8801]  __do_compat_sys_newstat+0xa8/0x130
[  181.757025][ T8801]  ? __pfx___do_compat_sys_newstat+0x10/0x10
[  181.757052][ T8801]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  181.757077][ T8801]  ? rcu_read_unlock_trace_special+0x2aa/0x3f0
[  181.757102][ T8801]  ? rcu_is_watching+0x12/0xc0
[  181.757123][ T8801]  __do_fast_syscall_32+0x7c/0x300
[  181.757138][ T8801]  do_fast_syscall_32+0x32/0x80
[  181.757155][ T8801]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.757175][ T8801] RIP: 0023:0xf70be579
[  181.757187][ T8801] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.757203][ T8801] RSP: 002b:00000000f54ae55c EFLAGS: 00000296 ORIG_RAX: 000000000000006a
[  181.757218][ T8801] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000040
[  181.757226][ T8801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  181.757236][ T8801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.757245][ T8801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  181.757254][ T8801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.757276][ T8801]  </TASK>
[  181.757414][ T8801] ERROR: Out of memory at tomoyo_realpath_from_path.
[  181.764279][  T947] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  182.013279][  T947] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  182.025450][  T947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.090758][ T8808] IPVS: Error connecting to the multicast addr
[  182.095763][  T947] usb 5-1: config 0 descriptor??
[  182.102021][  T947] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  182.104568][  T947] dvb-usb: bulk message failed: -22 (3/0)
[  182.112382][  T947] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  182.117086][  T947] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  182.119537][  T947] usb 5-1: media controller created
[  182.122748][  T947] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  182.133466][  T947] dvb-usb: bulk message failed: -22 (6/0)
[  182.136154][  T947] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  182.145437][  T947] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input16
[  182.153598][  T947] dvb-usb: schedule remote query interval to 150 msecs.
[  182.156113][  T947] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  182.305036][ T8790] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  182.308465][  T947] dvb-usb: bulk message failed: -22 (1/0)
[  182.309385][ T8790] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.313471][  T947] dvb-usb: error while querying for an remote control event.
[  182.502846][  T947] dvb-usb: bulk message failed: -22 (1/0)
[  182.505284][  T947] dvb-usb: error while querying for an remote control event.
[  182.515107][  T839] usb 5-1: USB disconnect, device number 14
[  182.530658][  T839] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  182.548239][ T8813] netlink: 20 bytes leftover after parsing attributes in process `syz.2.816'.
[  182.556755][ T8813] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  182.560524][ T8813] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  183.172529][ T8831] netlink: 'syz.0.821': attribute type 39 has an invalid length.
[  183.457018][  T839] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  183.608711][  T839] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  183.613873][  T839] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  183.618638][  T839] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.622776][  T839] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  183.629635][  T839] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  183.633363][  T839] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  183.636063][  T839] usb 5-1: Manufacturer: syz
[  183.647400][   T60] usb 6-1: USB disconnect, device number 18
[  183.648132][  T839] usb 5-1: config 0 descriptor??
[  183.812273][ T8842] netlink: 4 bytes leftover after parsing attributes in process `syz.1.825'.
[  183.831585][ T8842] macvtap1: entered promiscuous mode
[  183.833882][ T8842] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode
[  183.849916][ T8842] mac80211_hwsim hwsim5 wlan1: left promiscuous mode
[  183.902074][ T8843] CUSE: unknown device info "ÿ
"
[  183.903849][ T8843] CUSE: zero length info key specified
[  183.930610][ T8843] netlink: 28 bytes leftover after parsing attributes in process `syz.1.825'.
[  184.062749][  T839] appleir 0003:05AC:8243.0009: unknown main item tag 0x0
[  184.119844][ T8851] netlink: 19 bytes leftover after parsing attributes in process `syz.2.827'.
[  184.169638][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  184.169652][   T40] audit: type=1326 audit(1759432334.262:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8847 comm="syz.2.827" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7fc00000
[  184.885908][   T40] audit: type=1326 audit(1759432334.972:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8847 comm="syz.2.827" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7fc00000
[  184.992552][ T8856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.996138][ T8856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.002829][ T8856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.006572][ T8856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.372652][  T839] appleir 0003:05AC:8243.0009: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  185.760586][ T8872] GUP no longer grows the stack in syz.2.834 (8872): 80004000-8000a000 (80002000)
[  185.764329][ T8872] CPU: 0 UID: 0 PID: 8872 Comm: syz.2.834 Not tainted syzkaller #0 PREEMPT(full) 
[  185.764345][ T8872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.764352][ T8872] Call Trace:
[  185.764357][ T8872]  <TASK>
[  185.764363][ T8872]  dump_stack_lvl+0x16c/0x1f0
[  185.764380][ T8872]  gup_vma_lookup+0x1d2/0x220
[  185.764396][ T8872]  __get_user_pages+0x243/0x34a0
[  185.764416][ T8872]  ? find_held_lock+0x2b/0x80
[  185.764431][ T8872]  ? __pfx___get_user_pages+0x10/0x10
[  185.764449][ T8872]  get_user_pages_remote+0x243/0xab0
[  185.764477][ T8872]  ? mas_parent_gap+0x740/0x7b0
[  185.764490][ T8872]  ? __pfx_get_user_pages_remote+0x10/0x10
[  185.764507][ T8872]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.764522][ T8872]  __access_remote_vm+0x24d/0x850
[  185.764537][ T8872]  ? do_raw_spin_lock+0x12c/0x2b0
[  185.764548][ T8872]  ? __pfx___access_remote_vm+0x10/0x10
[  185.764565][ T8872]  proc_pid_cmdline_read+0x4de/0x8e0
[  185.764587][ T8872]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  185.764607][ T8872]  ? rw_verify_area+0xcf/0x6c0
[  185.764624][ T8872]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  185.764642][ T8872]  vfs_readv+0x5be/0x8b0
[  185.764662][ T8872]  ? __pfx_vfs_readv+0x10/0x10
[  185.764680][ T8872]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  185.764706][ T8872]  ? __fget_files+0x20e/0x3c0
[  185.764727][ T8872]  ? do_preadv+0x1a6/0x270
[  185.764742][ T8872]  do_preadv+0x1a6/0x270
[  185.764759][ T8872]  ? __pfx_do_preadv+0x10/0x10
[  185.764777][ T8872]  ? rcu_is_watching+0x12/0xc0
[  185.764793][ T8872]  __do_fast_syscall_32+0x7c/0x300
[  185.764807][ T8872]  do_fast_syscall_32+0x32/0x80
[  185.764819][ T8872]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.764833][ T8872] RIP: 0023:0xf7f73579
[  185.764842][ T8872] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.764854][ T8872] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 000000000000014d
[  185.764865][ T8872] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  185.764872][ T8872] RDX: 0000000000000001 RSI: 0000000000000300 RDI: 0000000000000000
[  185.764878][ T8872] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.764884][ T8872] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  185.764891][ T8872] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.764905][ T8872]  </TASK>
[  185.827234][ T6021] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  185.872363][ T8876] netlink: 4 bytes leftover after parsing attributes in process `syz.2.836'.
[  185.879594][ T8876] macvtap1: entered promiscuous mode
[  185.881321][ T8876] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  185.884760][ T8876] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  185.928099][ T8877] CUSE: unknown device info "ÿ
"
[  185.929690][ T8877] CUSE: zero length info key specified
[  185.938457][ T8877] netlink: 28 bytes leftover after parsing attributes in process `syz.2.836'.
[  186.019102][ T6021] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  186.022519][ T6021] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  186.026552][ T6021] usb 8-1: config 0 interface 0 has no altsetting 0
[  186.032782][ T6021] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  186.036785][ T6021] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  186.041057][ T6021] usb 8-1: Product: syz
[  186.043052][ T6021] usb 8-1: Manufacturer: syz
[  186.045193][ T6021] usb 8-1: SerialNumber: syz
[  186.050039][ T6021] usb 8-1: config 0 descriptor??
[  186.056523][ T6021] hub 8-1:0.0: bad descriptor, ignoring hub
[  186.059819][ T6021] hub 8-1:0.0: probe with driver hub failed with error -5
[  186.069419][ T6021] usb 8-1: selecting invalid altsetting 0
[  186.187648][  T839] usb 5-1: USB disconnect, device number 15
[  186.319660][ T8888] netlink: 24 bytes leftover after parsing attributes in process `syz.0.839'.
[  186.345492][ T8890] netlink: 'syz.2.840': attribute type 39 has an invalid length.
[  186.420445][ T8891] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  186.425235][ T8891] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.432684][ T8893] netlink: 4 bytes leftover after parsing attributes in process `syz.0.841'.
[  186.441266][ T8893] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  186.443574][ T8893] macvtap1: entered promiscuous mode
[  186.448033][ T8893] mac80211_hwsim hwsim8 wlan1: left promiscuous mode
[  186.495528][ T8894] CUSE: unknown device info "ÿ
"
[  186.497867][ T8894] CUSE: zero length info key specified
[  186.504580][ T8894] netlink: 28 bytes leftover after parsing attributes in process `syz.0.841'.
[  186.812415][ T8908] IPVS: Error connecting to the multicast addr
[  186.878917][  T839] usb 5-1: new full-speed USB device number 16 using dummy_hcd
[  187.028711][  T839] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  187.032232][  T839] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  187.035415][  T839] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  187.038395][  T839] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.042464][  T839] usb 5-1: config 0 descriptor??
[  187.047625][  T839] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  187.050336][  T839] dvb-usb: bulk message failed: -22 (3/0)
[  187.055436][  T839] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  187.059140][  T839] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  187.061961][  T839] usb 5-1: media controller created
[  187.064760][  T839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  187.071361][  T839] dvb-usb: bulk message failed: -22 (6/0)
[  187.073366][  T839] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  187.080049][  T839] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input17
[  187.085380][  T839] dvb-usb: schedule remote query interval to 150 msecs.
[  187.089176][  T839] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  187.246979][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  187.248949][ T8902] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.249483][  T839] dvb-usb: error while querying for an remote control event.
[  187.252363][ T8902] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  187.407013][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  187.411489][  T839] dvb-usb: error while querying for an remote control event.
[  187.472133][  T839] usb 5-1: USB disconnect, device number 16
[  187.498206][  T839] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  188.107343][ T8924] netlink: 24 bytes leftover after parsing attributes in process `syz.1.850'.
[  188.132041][ T8926] netlink: 'syz.2.851': attribute type 8 has an invalid length.
[  188.134765][ T8926] netlink: 8 bytes leftover after parsing attributes in process `syz.2.851'.
[  188.207774][ T8928] team0: Mode changed to "loadbalance"
[  188.210217][ T8930] FAULT_INJECTION: forcing a failure.
[  188.210217][ T8930] name failslab, interval 1, probability 0, space 0, times 0
[  188.211614][ T8928] netlink: 'syz.2.851': attribute type 10 has an invalid length.
[  188.214782][ T8930] CPU: 1 UID: 0 PID: 8930 Comm: syz.1.852 Not tainted syzkaller #0 PREEMPT(full) 
[  188.214799][ T8930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.214807][ T8930] Call Trace:
[  188.214824][ T8930]  <TASK>
[  188.214831][ T8930]  dump_stack_lvl+0x16c/0x1f0
[  188.214849][ T8930]  should_fail_ex+0x512/0x640
[  188.214867][ T8930]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  188.214885][ T8930]  should_failslab+0xc2/0x120
[  188.214898][ T8930]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  188.214910][ T8930]  ? alloc_inode+0x64/0x240
[  188.214927][ T8930]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  188.214940][ T8930]  alloc_inode+0x64/0x240
[  188.214954][ T8930]  new_inode+0x22/0x1c0
[  188.214969][ T8930]  __debugfs_create_file+0x11c/0x6b0
[  188.214985][ T8930]  debugfs_create_file_full+0x41/0x60
[  188.214999][ T8930]  ? __pfx_geneve_setup+0x10/0x10
[  188.215012][ T8930]  ref_tracker_dir_debugfs+0x19d/0x290
[  188.215024][ T8930]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  188.215047][ T8930]  ? __kvmalloc_node_noprof+0x298/0x620
[  188.215067][ T8930]  ? lockdep_init_map_type+0x5c/0x280
[  188.215088][ T8930]  alloc_netdev_mqs+0x30f/0x1530
[  188.215105][ T8930]  rtnl_create_link+0xc08/0xf90
[  188.215119][ T8930]  rtnl_newlink+0xb69/0x2000
[  188.215137][ T8930]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.215149][ T8930]  ? __kernel_text_address+0xd/0x40
[  188.215161][ T8930]  ? unwind_get_return_address+0x59/0xa0
[  188.215187][ T8930]  ? rcu_is_watching+0x12/0xc0
[  188.215207][ T8930]  ? find_held_lock+0x2b/0x80
[  188.215219][ T8930]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.215231][ T8930]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.215261][ T8930]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  188.215275][ T8930]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.215287][ T8930]  rtnetlink_rcv_msg+0x95e/0xe90
[  188.215301][ T8930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  188.215316][ T8930]  ? __lock_acquire+0x62e/0x1ce0
[  188.215336][ T8930]  netlink_rcv_skb+0x158/0x420
[  188.215349][ T8930]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  188.215363][ T8930]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  188.215380][ T8930]  ? netlink_deliver_tap+0x1ae/0xd30
[  188.215391][ T8930]  ? is_vmalloc_addr+0x86/0xa0
[  188.215405][ T8930]  netlink_unicast+0x5a7/0x870
[  188.215419][ T8930]  ? __pfx_netlink_unicast+0x10/0x10
[  188.215432][ T8930]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  188.215448][ T8930]  netlink_sendmsg+0x8d1/0xdd0
[  188.215463][ T8930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.215477][ T8930]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  188.215499][ T8930]  ____sys_sendmsg+0xa95/0xc70
[  188.215517][ T8930]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.215531][ T8930]  ? get_compat_msghdr+0x11a/0x170
[  188.215556][ T8930]  ___sys_sendmsg+0x134/0x1d0
[  188.215570][ T8930]  ? __pfx____sys_sendmsg+0x10/0x10
[  188.215589][ T8930]  ? find_held_lock+0x2b/0x80
[  188.215617][ T8930]  __sys_sendmsg+0x16d/0x220
[  188.215629][ T8930]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.215647][ T8930]  ? rcu_is_watching+0x12/0xc0
[  188.215662][ T8930]  __do_fast_syscall_32+0x7c/0x300
[  188.215677][ T8930]  do_fast_syscall_32+0x32/0x80
[  188.215689][ T8930]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.215704][ T8930] RIP: 0023:0xf7ff2579
[  188.215713][ T8930] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.215725][ T8930] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  188.215736][ T8930] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  188.215743][ T8930] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  188.215750][ T8930] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.215756][ T8930] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.215763][ T8930] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.215778][ T8930]  </TASK>
[  188.215864][ T8930] debugfs: out of free dentries, can not create file 'netdev@ffff888012a38610'
[  188.264438][ T8931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.851'.
[  188.274541][ T8930] geneve2: entered promiscuous mode
[  188.359516][ T8930] geneve2: entered allmulticast mode
[  188.364268][ T8928] 8021q: adding VLAN 0 to HW filter on device bond0
[  188.377541][ T8928] team0: Port device bond0 added
[  188.380980][   T46] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.389306][   T46] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.392689][   T46] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.466227][ T8931] team0 (unregistering): Port device bond0 removed
[  188.487218][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.627899][  T947] usb 8-1: USB disconnect, device number 11
[  190.057005][ T6041] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  190.060868][   T40] audit: type=1326 audit(1759432340.152:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.069396][   T40] audit: type=1326 audit(1759432340.152:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.076749][   T40] audit: type=1326 audit(1759432340.152:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.086462][   T40] audit: type=1326 audit(1759432340.152:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.097447][   T40] audit: type=1326 audit(1759432340.152:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.109192][   T40] audit: type=1326 audit(1759432340.152:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.117742][   T40] audit: type=1326 audit(1759432340.152:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.126198][   T40] audit: type=1326 audit(1759432340.152:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.132908][   T40] audit: type=1326 audit(1759432340.152:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.139907][   T40] audit: type=1326 audit(1759432340.152:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8959 comm="syz.1.859" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  190.250397][ T6041] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  190.254784][ T6041] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  190.267080][ T6041] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  190.270822][ T6041] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.291275][ T6041] usb 8-1: config 0 descriptor??
[  190.309424][ T6041] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  190.312215][ T6041] dvb-usb: bulk message failed: -22 (3/0)
[  190.317703][ T6041] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  190.327209][ T6041] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  190.330345][ T6041] usb 8-1: media controller created
[  190.336393][ T6041] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  190.373096][ T6041] dvb-usb: bulk message failed: -22 (6/0)
[  190.375360][ T6041] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  190.380035][ T6041] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb8/8-1/input/input18
[  190.391262][ T6041] dvb-usb: schedule remote query interval to 150 msecs.
[  190.393584][ T6041] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  190.498130][ T8958] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.501220][ T8958] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.557171][ T6041] dvb-usb: bulk message failed: -22 (1/0)
[  190.577464][ T6041] dvb-usb: error while querying for an remote control event.
[  190.710749][ T6041] usb 8-1: USB disconnect, device number 12
[  190.749319][ T6041] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  190.800697][ T8973] binder: 8972:8973 ioctl c0306201 80000600 returned -22
[  190.803485][ T8973] CUSE: unknown device info "¤2Lh¸änLþ1Õ`†CcÝòn§õ†îì8­¨×0º©®(À3Õ¶ië®â>f¡Çè_Ù®,�°
ð<Ö_e¤FÀÆ"
[  190.806806][ T8973] CUSE: unknown device info "3�ÜŸ•,²¥Ì˜õ"
[  190.809484][ T8973] CUSE: unknown device info "Jô©Ð2SZûü !e/ëÅúãõž‘­J½+-n´¸a4¼ßØÁDÿ|G$öó­5O~©q	´ƒ
[  190.809484][ T8973] f𳦧ìýzóÚXÁSAäx¡Ù"
[  190.815184][ T8973] CUSE: unknown device info "ª½T¾Ç”¨åw—üæšxR�É�Q÷®(hÒ�j	pøVdY0¨Æ|M?2JÿúIšvö^
RÎ@´å"
[  190.818737][ T8973] CUSE: unknown device info "!ToÛ}Ý�&|L+U²®oæõϲ±„Ð"–¨FstVµ:׌E•gJºî‹ÂÁ<@cÁ”²ûŽ4ÊTáM˜M|©·š‚ô"
[  190.823740][ T8973] CUSE: DEVNAME unspecified
[  190.893217][ T8975] netlink: 188 bytes leftover after parsing attributes in process `syz.2.864'.
[  191.007977][ T6047] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  191.178610][ T6047] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[  191.181728][ T6047] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  191.185116][ T6047] usb 6-1: config 0 interface 0 has no altsetting 0
[  191.189167][ T6047] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  191.192291][ T6047] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  191.195133][ T6047] usb 6-1: Product: syz
[  191.196784][ T6047] usb 6-1: Manufacturer: syz
[  191.198407][ T6047] usb 6-1: SerialNumber: syz
[  191.200983][ T6047] usb 6-1: config 0 descriptor??
[  191.203857][ T6047] hub 6-1:0.0: bad descriptor, ignoring hub
[  191.205693][ T6047] hub 6-1:0.0: probe with driver hub failed with error -5
[  191.209597][ T6047] usb 6-1: selecting invalid altsetting 0
[  191.758832][ T8989] IPVS: Error connecting to the multicast addr
[  192.737027][ T6047] usb 5-1: new full-speed USB device number 17 using dummy_hcd
[  192.909980][ T6047] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  192.913539][ T6047] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  192.916612][ T6047] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  193.569630][ T9027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.880'.
[  193.577846][ T9027] macvtap1: entered promiscuous mode
[  193.579780][ T9027] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  193.587345][ T9027] mac80211_hwsim hwsim3 wlan1: left promiscuous mode
[  193.624837][ T9028] CUSE: unknown device info "ÿ
"
[  193.627966][ T9028] CUSE: zero length info key specified
[  193.641443][ T9028] netlink: 28 bytes leftover after parsing attributes in process `syz.3.880'.
[  193.839722][   T60] usb 6-1: USB disconnect, device number 19
[  194.937057][ T6047] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.944818][ T6047] usb 5-1: config 0 descriptor??
[  194.952869][ T6047] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  194.955082][ T6047] dvb-usb: bulk message failed: -22 (3/0)
[  194.962541][ T6047] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  194.967002][ T6047] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  194.975239][ T6047] usb 5-1: media controller created
[  194.978390][ T6047] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  194.989232][ T6047] dvb-usb: bulk message failed: -22 (6/0)
[  194.992976][ T6047] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  195.001993][ T6047] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input19
[  195.008715][ T6047] dvb-usb: schedule remote query interval to 150 msecs.
[  195.026444][ T6047] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  195.158220][ T9013] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.161347][ T9013] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.177005][ T6047] dvb-usb: bulk message failed: -22 (1/0)
[  195.179076][ T6047] dvb-usb: error while querying for an remote control event.
[  195.331332][  T839] usb 5-1: USB disconnect, device number 17
[  195.350585][  T839] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  195.577101][ T6047] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  195.739593][ T6047] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  195.743128][ T6047] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  195.747071][ T6047] usb 8-1: config 0 interface 0 has no altsetting 0
[  195.751997][ T6047] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  195.755809][ T6047] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  195.766988][ T6047] usb 8-1: Product: syz
[  195.768765][ T6047] usb 8-1: Manufacturer: syz
[  195.770434][ T6047] usb 8-1: SerialNumber: syz
[  195.787623][ T6047] usb 8-1: config 0 descriptor??
[  195.792773][ T6047] hub 8-1:0.0: bad descriptor, ignoring hub
[  195.794828][ T6047] hub 8-1:0.0: probe with driver hub failed with error -5
[  195.805473][ T6047] usb 8-1: selecting invalid altsetting 0
[  196.108824][ T9069] MPI: mpi too large (130952 bits)
[  196.140786][ T9071] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.898' resets device
[  196.147155][ T9071] FAULT_INJECTION: forcing a failure.
[  196.147155][ T9071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  196.159547][ T9069] netlink: 8 bytes leftover after parsing attributes in process `syz.0.896'.
[  196.165719][ T9071] CPU: 0 UID: 0 PID: 9071 Comm: syz.2.898 Not tainted syzkaller #0 PREEMPT(full) 
[  196.165736][ T9071] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  196.165743][ T9071] Call Trace:
[  196.165747][ T9071]  <TASK>
[  196.165752][ T9071]  dump_stack_lvl+0x16c/0x1f0
[  196.165768][ T9071]  should_fail_ex+0x512/0x640
[  196.165789][ T9071]  _copy_to_user+0x32/0xd0
[  196.165801][ T9071]  simple_read_from_buffer+0xcb/0x170
[  196.165821][ T9071]  proc_fail_nth_read+0x197/0x240
[  196.165842][ T9071]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  196.165862][ T9071]  ? rw_verify_area+0xcf/0x6c0
[  196.165885][ T9071]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  196.165904][ T9071]  vfs_read+0x1e4/0xcf0
[  196.165918][ T9071]  ? __pfx_vfs_read+0x10/0x10
[  196.165927][ T9071]  ? find_held_lock+0x2b/0x80
[  196.165945][ T9071]  ? __fget_files+0x20e/0x3c0
[  196.165967][ T9071]  ksys_read+0x12a/0x250
[  196.165981][ T9071]  ? __pfx_ksys_read+0x10/0x10
[  196.165993][ T9071]  ? rcu_is_watching+0x12/0xc0
[  196.166009][ T9071]  __do_fast_syscall_32+0x7c/0x300
[  196.166024][ T9071]  do_fast_syscall_32+0x32/0x80
[  196.166036][ T9071]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  196.166051][ T9071] RIP: 0023:0xf7f73579
[  196.166061][ T9071] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  196.166072][ T9071] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  196.166083][ T9071] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5466620
[  196.166091][ T9071] RDX: 000000000000000f RSI: 00000000f7405ff4 RDI: 0000000000000000
[  196.166098][ T9071] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  196.166104][ T9071] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  196.166111][ T9071] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  196.166125][ T9071]  </TASK>
[  196.273342][ T9078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.280744][ T9078] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.292285][ T9078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.295989][ T9078] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.405947][ T9084] IPVS: Error connecting to the multicast addr
[  196.467752][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.474760][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.477848][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.480540][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.483816][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.486499][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.490009][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.493078][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.496410][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.499804][ T6047] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  196.528880][ T6047] hid-generic 0000:0000:0000.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  196.563701][ T9089] fido_id[9089]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  197.110724][ T9102] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.906' resets device
[  197.153481][ T9106] FAULT_INJECTION: forcing a failure.
[  197.153481][ T9106] name failslab, interval 1, probability 0, space 0, times 0
[  197.158415][ T9106] CPU: 2 UID: 0 PID: 9106 Comm: syz.1.908 Not tainted syzkaller #0 PREEMPT(full) 
[  197.158431][ T9106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.158438][ T9106] Call Trace:
[  197.158442][ T9106]  <TASK>
[  197.158447][ T9106]  dump_stack_lvl+0x16c/0x1f0
[  197.158464][ T9106]  should_fail_ex+0x512/0x640
[  197.158482][ T9106]  ? __kvmalloc_node_noprof+0x124/0x620
[  197.158502][ T9106]  should_failslab+0xc2/0x120
[  197.158515][ T9106]  __kvmalloc_node_noprof+0x137/0x620
[  197.158533][ T9106]  ? simple_xattr_alloc+0x41/0xa0
[  197.158557][ T9106]  ? simple_xattr_alloc+0x41/0xa0
[  197.158568][ T9106]  simple_xattr_alloc+0x41/0xa0
[  197.158580][ T9106]  simple_xattr_set+0x3d/0x3e0
[  197.158594][ T9106]  shmem_xattr_handler_set+0x31b/0x3b0
[  197.158610][ T9106]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[  197.158623][ T9106]  __vfs_setxattr+0x172/0x1e0
[  197.158641][ T9106]  ? __pfx___vfs_setxattr+0x10/0x10
[  197.158658][ T9106]  ? apparmor_capable+0x114/0x1d0
[  197.158673][ T9106]  __vfs_setxattr_noperm+0x127/0x660
[  197.158693][ T9106]  __vfs_setxattr_locked+0x182/0x260
[  197.158710][ T9106]  ? up_write+0x1b2/0x520
[  197.158722][ T9106]  vfs_setxattr+0x145/0x360
[  197.158741][ T9106]  ? __pfx_vfs_setxattr+0x10/0x10
[  197.158758][ T9106]  ? lock_acquire+0x179/0x350
[  197.158774][ T9106]  ? find_held_lock+0x2b/0x80
[  197.158788][ T9106]  ovl_check_setxattr+0x181/0x320
[  197.158824][ T9106]  ovl_set_impure+0x13e/0x1e0
[  197.158844][ T9106]  ovl_lookup+0x1ec6/0x21a0
[  197.158861][ T9106]  ? __pfx_ovl_lookup+0x10/0x10
[  197.158880][ T9106]  ? do_raw_spin_lock+0x12c/0x2b0
[  197.158895][ T9106]  ? do_raw_spin_unlock+0x172/0x230
[  197.158906][ T9106]  ? _raw_spin_unlock+0x28/0x50
[  197.158924][ T9106]  lookup_one_qstr_excl+0x1d1/0x250
[  197.158939][ T9106]  ? mnt_want_write+0x161/0x450
[  197.158955][ T9106]  do_rmdir+0x245/0x3c0
[  197.158967][ T9106]  ? __pfx_do_rmdir+0x10/0x10
[  197.158977][ T9106]  ? strncpy_from_user+0x203/0x2e0
[  197.158994][ T9106]  ? getname_flags.part.0+0x1c5/0x550
[  197.159008][ T9106]  ? __pfx_ksys_write+0x10/0x10
[  197.159021][ T9106]  __ia32_sys_unlinkat+0xef/0x130
[  197.159033][ T9106]  __do_fast_syscall_32+0x7c/0x300
[  197.159046][ T9106]  do_fast_syscall_32+0x32/0x80
[  197.159058][ T9106]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.159073][ T9106] RIP: 0023:0xf7ff2579
[  197.159082][ T9106] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.159093][ T9106] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 000000000000012d
[  197.159104][ T9106] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000000
[  197.159111][ T9106] RDX: 0000000000000200 RSI: 0000000000000000 RDI: 0000000000000000
[  197.159117][ T9106] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.159123][ T9106] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  197.159129][ T9106] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.159143][ T9106]  </TASK>
[  197.163445][ T9107] netlink: 44 bytes leftover after parsing attributes in process `syz.2.907'.
[  197.792551][ T9118] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.910' resets device
[  197.833433][ T9120] loop2: detected capacity change from 0 to 7
[  197.840856][ T9120] Dev loop2: unable to read RDB block 7
[  197.843013][ T9120]  loop2: unable to read partition table
[  197.844897][ T9120] loop2: partition table beyond EOD, truncated
[  197.847488][ T9120] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  198.081719][ T5361] Dev loop2: unable to read RDB block 7
[  198.083652][ T5361]  loop2: unable to read partition table
[  198.086122][ T5361] loop2: partition table beyond EOD, truncated
[  198.227097][ T6021] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  198.308939][ T5361] Dev loop2: unable to read RDB block 7
[  198.311123][ T5361]  loop2: unable to read partition table
[  198.315023][ T5361] loop2: partition table beyond EOD, truncated
[  198.320792][ T9134] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.324587][ T9134] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.380194][ T6021] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  198.383410][ T6021] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  198.386169][ T6021] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  198.389187][ T6021] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.392874][ T6021] usb 5-1: config 0 descriptor??
[  198.396406][ T6021] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  198.398669][ T6021] dvb-usb: bulk message failed: -22 (3/0)
[  198.398756][   T60] usb 8-1: USB disconnect, device number 13
[  198.402978][ T6021] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  198.406684][ T6021] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  198.409243][ T6021] usb 5-1: media controller created
[  198.411921][ T6021] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  198.417660][ T6021] dvb-usb: bulk message failed: -22 (6/0)
[  198.420112][ T6021] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  198.430922][ T6021] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input20
[  198.439187][ T6021] dvb-usb: schedule remote query interval to 150 msecs.
[  198.441407][ T6021] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  198.597013][ T6021] dvb-usb: bulk message failed: -22 (1/0)
[  198.598951][ T6021] dvb-usb: error while querying for an remote control event.
[  198.600284][ T9128] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.605456][ T9128] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.704019][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  198.704030][   T40] audit: type=1326 audit(1759432348.792:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.719275][   T40] audit: type=1326 audit(1759432348.802:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.729452][   T40] audit: type=1326 audit(1759432348.802:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.757032][ T6021] dvb-usb: bulk message failed: -22 (1/0)
[  198.759514][ T6021] dvb-usb: error while querying for an remote control event.
[  198.774422][ T9152] =======================================================
[  198.774422][ T9152] WARNING: The mand mount option has been deprecated and
[  198.774422][ T9152]          and is ignored by this kernel. Remove the mand
[  198.774422][ T9152]          option from the mount to silence this warning.
[  198.774422][ T9152] =======================================================
[  198.779391][   T40] audit: type=1326 audit(1759432348.872:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.786726][ T9152] new mount options do not match the existing superblock, will be ignored
[  198.794268][   T40] audit: type=1326 audit(1759432348.872:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.806667][   T34] usb 5-1: USB disconnect, device number 18
[  198.811065][   T40] audit: type=1326 audit(1759432348.892:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.814109][ T9142] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  198.828750][   T40] audit: type=1326 audit(1759432348.922:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.835886][   T40] audit: type=1326 audit(1759432348.922:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.843244][   T40] audit: type=1326 audit(1759432348.942:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.850874][   T40] audit: type=1326 audit(1759432348.942:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9140 comm="syz.3.919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  198.851658][   T34] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  198.929289][ T9156] FAULT_INJECTION: forcing a failure.
[  198.929289][ T9156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.933645][ T9156] CPU: 3 UID: 0 PID: 9156 Comm: syz.2.922 Not tainted syzkaller #0 PREEMPT(full) 
[  198.933668][ T9156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  198.933677][ T9156] Call Trace:
[  198.933685][ T9156]  <TASK>
[  198.933692][ T9156]  dump_stack_lvl+0x16c/0x1f0
[  198.933718][ T9156]  should_fail_ex+0x512/0x640
[  198.933746][ T9156]  _copy_from_user+0x2e/0xd0
[  198.933763][ T9156]  get_old_timex32+0x9e/0x520
[  198.933789][ T9156]  ? __pfx_get_old_timex32+0x10/0x10
[  198.933824][ T9156]  ? ksys_write+0x190/0x250
[  198.933846][ T9156]  __do_sys_clock_adjtime32+0x92/0x280
[  198.933873][ T9156]  ? __pfx___do_sys_clock_adjtime32+0x10/0x10
[  198.933917][ T9156]  ? __pfx_ksys_write+0x10/0x10
[  198.933932][ T9156]  ? __do_compat_sys_rt_sigreturn+0x14d/0x1f0
[  198.933953][ T9156]  ? rcu_is_watching+0x12/0xc0
[  198.933972][ T9156]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  198.933992][ T9156]  __do_fast_syscall_32+0x7c/0x300
[  198.934013][ T9156]  do_fast_syscall_32+0x32/0x80
[  198.934031][ T9156]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.934053][ T9156] RIP: 0023:0xf7f73579
[  198.934067][ T9156] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  198.934084][ T9156] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000157
[  198.934101][ T9156] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000000
[  198.934113][ T9156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  198.934123][ T9156] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  198.934132][ T9156] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  198.934143][ T9156] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.934166][ T9156]  </TASK>
[  199.030289][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  199.034057][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  199.049263][ T9159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  199.050188][ T9160] netlink: 'syz.1.923': attribute type 8 has an invalid length.
[  199.055111][ T9159] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  199.056261][ T9160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.923'.
[  199.172839][ T9162] team0: Mode changed to "loadbalance"
[  199.182854][ T9162] netlink: 'syz.1.923': attribute type 10 has an invalid length.
[  199.186744][ T9162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.923'.
[  199.285654][ T9165] netlink: 32 bytes leftover after parsing attributes in process `syz.2.924'.
[  199.627148][   T34] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  199.778464][   T34] usb 5-1: config index 0 descriptor too short (expected 39, got 27)
[  199.781191][   T34] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  199.784202][   T34] usb 5-1: config 0 interface 0 has no altsetting 0
[  199.788320][   T34] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  199.791536][   T34] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  199.794122][   T34] usb 5-1: Product: syz
[  199.795455][   T34] usb 5-1: Manufacturer: syz
[  199.798784][   T34] usb 5-1: SerialNumber: syz
[  199.801828][   T34] usb 5-1: config 0 descriptor??
[  199.806298][   T34] hub 5-1:0.0: bad descriptor, ignoring hub
[  199.808668][   T34] hub 5-1:0.0: probe with driver hub failed with error -5
[  199.813651][   T34] usb 5-1: selecting invalid altsetting 0
[  202.270516][ T9176] loop2: detected capacity change from 0 to 7
[  202.285376][ T6440] Dev loop2: unable to read RDB block 7
[  202.289543][ T6440]  loop2: unable to read partition table
[  202.292518][ T6440] loop2: partition table beyond EOD, truncated
[  202.535604][ T9176] Dev loop2: unable to read RDB block 7
[  202.538146][ T9176]  loop2: unable to read partition table
[  202.540521][ T9176] loop2: partition table beyond EOD, truncated
[  202.543783][ T9176] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  202.657390][ T5361] Dev loop2: unable to read RDB block 7
[  202.661262][ T5361]  loop2: unable to read partition table
[  202.664044][ T5361] loop2: partition table beyond EOD, truncated
[  203.397325][ T9213] FAULT_INJECTION: forcing a failure.
[  203.397325][ T9213] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.401832][ T9213] CPU: 2 UID: 0 PID: 9213 Comm: syz.1.939 Not tainted syzkaller #0 PREEMPT(full) 
[  203.401850][ T9213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.401857][ T9213] Call Trace:
[  203.401863][ T9213]  <TASK>
[  203.401869][ T9213]  dump_stack_lvl+0x16c/0x1f0
[  203.401887][ T9213]  should_fail_ex+0x512/0x640
[  203.401910][ T9213]  strncpy_from_user+0x3b/0x2e0
[  203.401929][ T9213]  getname_flags.part.0+0x8f/0x550
[  203.401945][ T9213]  ? _copy_from_user+0x93/0xd0
[  203.401957][ T9213]  getname_flags+0x93/0xf0
[  203.401976][ T9213]  user_path_at+0x24/0x60
[  203.401987][ T9213]  __ia32_sys_mount+0x1fb/0x310
[  203.402001][ T9213]  ? __pfx___ia32_sys_mount+0x10/0x10
[  203.402015][ T9213]  ? rcu_is_watching+0x12/0xc0
[  203.402032][ T9213]  __do_fast_syscall_32+0x7c/0x300
[  203.402047][ T9213]  do_fast_syscall_32+0x32/0x80
[  203.402059][ T9213]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  203.402075][ T9213] RIP: 0023:0xf7ff2579
[  203.402085][ T9213] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.402097][ T9213] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  203.402109][ T9213] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000080000280
[  203.402117][ T9213] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000080000300
[  203.402124][ T9213] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.402131][ T9213] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.402137][ T9213] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.402152][ T9213]  </TASK>
[  203.837346][  T947] usb 5-1: USB disconnect, device number 19
[  205.059753][ T9239] FAULT_INJECTION: forcing a failure.
[  205.059753][ T9239] name failslab, interval 1, probability 0, space 0, times 0
[  205.064341][ T9239] CPU: 0 UID: 0 PID: 9239 Comm: syz.0.946 Not tainted syzkaller #0 PREEMPT(full) 
[  205.064359][ T9239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.064368][ T9239] Call Trace:
[  205.064374][ T9239]  <TASK>
[  205.064380][ T9239]  dump_stack_lvl+0x16c/0x1f0
[  205.064399][ T9239]  should_fail_ex+0x512/0x640
[  205.064420][ T9239]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  205.064436][ T9239]  should_failslab+0xc2/0x120
[  205.064452][ T9239]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  205.064466][ T9239]  ? __d_alloc+0x32/0xae0
[  205.064482][ T9239]  __d_alloc+0x32/0xae0
[  205.064592][ T9239]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  205.064618][ T9239]  d_alloc_parallel+0x111/0x1480
[  205.064639][ T9239]  ? kasan_save_stack+0x42/0x60
[  205.064652][ T9239]  ? kasan_save_track+0x14/0x30
[  205.064663][ T9239]  ? kasan_save_free_info+0x3b/0x60
[  205.064681][ T9239]  ? __kasan_slab_free+0x60/0x70
[  205.064693][ T9239]  ? kfree+0x2b4/0x4d0
[  205.064713][ T9239]  ? map_id_range_up+0x2ce/0x3b0
[  205.064727][ T9239]  ? __pfx_d_alloc_parallel+0x10/0x10
[  205.064747][ T9239]  ? lockdep_init_map_type+0x5c/0x280
[  205.064770][ T9239]  ? lockdep_init_map_type+0x5c/0x280
[  205.064793][ T9239]  __lookup_slow+0x193/0x460
[  205.064812][ T9239]  ? __pfx___lookup_slow+0x10/0x10
[  205.064832][ T9239]  ? __is_kernel_percpu_address+0x110/0x2c0
[  205.064850][ T9239]  ? __is_kernel_percpu_address+0x110/0x2c0
[  205.064864][ T9239]  ? d_lookup+0xe7/0x190
[  205.064884][ T9239]  lookup_one_unlocked+0xd4/0x120
[  205.064904][ T9239]  lookup_one_positive_unlocked+0x24/0xc0
[  205.064923][ T9239]  ovl_lookup_index+0x20d/0x800
[  205.064940][ T9239]  ? __pfx_ovl_lookup_index+0x10/0x10
[  205.064953][ T9239]  ? trace_kmalloc+0x2b/0xd0
[  205.065010][ T9239]  ovl_lookup+0x98f/0x21a0
[  205.065033][ T9239]  ? __pfx_ovl_lookup+0x10/0x10
[  205.065056][ T9239]  ? do_raw_spin_lock+0x12c/0x2b0
[  205.065074][ T9239]  ? do_raw_spin_unlock+0x172/0x230
[  205.065090][ T9239]  ? _raw_spin_unlock+0x28/0x50
[  205.065112][ T9239]  lookup_one_qstr_excl+0x1d1/0x250
[  205.065129][ T9239]  ? mnt_want_write+0x161/0x450
[  205.065149][ T9239]  do_rmdir+0x245/0x3c0
[  205.065163][ T9239]  ? __pfx_do_rmdir+0x10/0x10
[  205.065175][ T9239]  ? strncpy_from_user+0x203/0x2e0
[  205.065197][ T9239]  ? getname_flags.part.0+0x1c5/0x550
[  205.065214][ T9239]  ? __pfx_ksys_write+0x10/0x10
[  205.065230][ T9239]  __ia32_sys_unlinkat+0xef/0x130
[  205.065245][ T9239]  __do_fast_syscall_32+0x7c/0x300
[  205.065263][ T9239]  do_fast_syscall_32+0x32/0x80
[  205.065277][ T9239]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.065294][ T9239] RIP: 0023:0xf704e579
[  205.065306][ T9239] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  205.065319][ T9239] RSP: 002b:00000000f543e55c EFLAGS: 00000296 ORIG_RAX: 000000000000012d
[  205.065333][ T9239] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000000
[  205.065342][ T9239] RDX: 0000000000000200 RSI: 0000000000000000 RDI: 0000000000000000
[  205.065350][ T9239] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.065357][ T9239] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.065365][ T9239] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.065382][ T9239]  </TASK>
[  205.065574][ T9239] overlayfs: failed inode index lookup (ino=1154, key=00fb2100016ade0d913de74323a2830b54cc2698464eebf4678204000000000000, err=-12);
[  205.065574][ T9239] overlayfs: mount with '-o index=off' to disable inodes index.
[  205.070748][ T9240] FAULT_INJECTION: forcing a failure.
[  205.070748][ T9240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.093144][ T9241] loop2: detected capacity change from 0 to 7
[  205.093828][ T9240] CPU: 2 UID: 0 PID: 9240 Comm: syz.1.945 Not tainted syzkaller #0 PREEMPT(full) 
[  205.093852][ T9240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.093865][ T9240] Call Trace:
[  205.093871][ T9240]  <TASK>
[  205.093879][ T9240]  dump_stack_lvl+0x16c/0x1f0
[  205.093904][ T9240]  should_fail_ex+0x512/0x640
[  205.093935][ T9240]  copy_fpstate_to_sigframe+0x854/0xaf0
[  205.093968][ T9240]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  205.093991][ T9240]  ? posixtimer_deliver_signal+0x105/0x6b0
[  205.094025][ T9240]  ? posixtimer_deliver_signal+0x1c7/0x6b0
[  205.094052][ T9240]  ? x86_task_fpu+0x5f/0x90
[  205.094078][ T9240]  get_sigframe+0x4a8/0x9c0
[  205.094106][ T9240]  ? __pfx_get_sigframe+0x10/0x10
[  205.094133][ T9240]  ? _raw_spin_unlock_irq+0x23/0x50
[  205.094160][ T9240]  ? siginfo_layout+0x177/0x290
[  205.094185][ T9240]  ia32_setup_rt_frame+0xe3/0xb30
[  205.094229][ T9240]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  205.094257][ T9240]  arch_do_signal_or_restart+0x471/0x790
[  205.094283][ T9240]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  205.094314][ T9240]  ? __pfx_ksys_write+0x10/0x10
[  205.094338][ T9240]  exit_to_user_mode_loop+0x7a/0x100
[  205.094357][ T9240]  __do_fast_syscall_32+0x240/0x300
[  205.094380][ T9240]  do_fast_syscall_32+0x32/0x80
[  205.094400][ T9240]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.094423][ T9240] RIP: 0023:0xf7ff2577
[  205.094438][ T9240] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  205.094481][ T9240] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  205.094500][ T9240] RAX: 000000000000016a RBX: 0000000000000008 RCX: 0000000080000180
[  205.094512][ T9240] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  205.094522][ T9240] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.094532][ T9240] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.094544][ T9240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.094569][ T9240]  </TASK>
[  205.265399][ T9241] Dev loop2: unable to read RDB block 7
[  205.268269][ T9241]  loop2: unable to read partition table
[  205.271489][ T9241] loop2: partition table beyond EOD, truncated
[  205.277800][ T9241] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  205.292367][ T9245] FAULT_INJECTION: forcing a failure.
[  205.292367][ T9245] name failslab, interval 1, probability 0, space 0, times 0
[  205.296738][ T9245] CPU: 2 UID: 0 PID: 9245 Comm: syz.0.947 Not tainted syzkaller #0 PREEMPT(full) 
[  205.296754][ T9245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.296761][ T9245] Call Trace:
[  205.296766][ T9245]  <TASK>
[  205.296771][ T9245]  dump_stack_lvl+0x16c/0x1f0
[  205.296788][ T9245]  should_fail_ex+0x512/0x640
[  205.296808][ T9245]  should_failslab+0xc2/0x120
[  205.296821][ T9245]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  205.296833][ T9245]  ? skb_clone+0x190/0x3f0
[  205.296858][ T9245]  skb_clone+0x190/0x3f0
[  205.296872][ T9245]  netlink_deliver_tap+0xabd/0xd30
[  205.296886][ T9245]  netlink_unicast+0x64c/0x870
[  205.296900][ T9245]  ? __pfx_netlink_unicast+0x10/0x10
[  205.296911][ T9245]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  205.296927][ T9245]  netlink_sendmsg+0x8d1/0xdd0
[  205.296941][ T9245]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.296954][ T9245]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  205.296974][ T9245]  ____sys_sendmsg+0xa95/0xc70
[  205.296991][ T9245]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.297004][ T9245]  ? get_compat_msghdr+0x11a/0x170
[  205.297028][ T9245]  ___sys_sendmsg+0x134/0x1d0
[  205.297040][ T9245]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.297057][ T9245]  ? find_held_lock+0x2b/0x80
[  205.297080][ T9245]  __sys_sendmsg+0x16d/0x220
[  205.297091][ T9245]  ? __pfx___sys_sendmsg+0x10/0x10
[  205.297108][ T9245]  ? rcu_is_watching+0x12/0xc0
[  205.297123][ T9245]  __do_fast_syscall_32+0x7c/0x300
[  205.297136][ T9245]  do_fast_syscall_32+0x32/0x80
[  205.297148][ T9245]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.297162][ T9245] RIP: 0023:0xf704e579
[  205.297171][ T9245] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  205.297182][ T9245] RSP: 002b:00000000f543e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  205.297193][ T9245] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000240
[  205.297199][ T9245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  205.297205][ T9245] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.297212][ T9245] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.297218][ T9245] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.297232][ T9245]  </TASK>
[  205.687153][ T6021] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  205.838935][ T6021] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  205.842154][ T6021] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  205.846126][ T6021] usb 8-1: config 0 interface 0 has no altsetting 0
[  205.852344][ T6021] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  205.858404][ T6021] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  205.861474][ T6021] usb 8-1: Product: syz
[  205.863158][ T6021] usb 8-1: Manufacturer: syz
[  205.864807][ T6021] usb 8-1: SerialNumber: syz
[  205.869065][ T6021] usb 8-1: config 0 descriptor??
[  205.872953][ T6021] hub 8-1:0.0: bad descriptor, ignoring hub
[  205.875813][ T6021] hub 8-1:0.0: probe with driver hub failed with error -5
[  205.885174][ T6021] usb 8-1: selecting invalid altsetting 0
[  206.955921][ T9275] IPVS: Error connecting to the multicast addr
[  206.968216][ T9274] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  206.970364][ T9274] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  206.973017][ T9276] 9pnet_fd: Insufficient options for proto=fd
[  206.973185][ T9274] vhci_hcd vhci_hcd.0: Device attached
[  207.283658][ T9297] netlink: 4 bytes leftover after parsing attributes in process `syz.2.962'.
[  207.317033][  T947] usb 38-1: SetAddress Request (30) to port 0
[  207.324101][  T947] usb 38-1: new SuperSpeed USB device number 30 using vhci_hcd
[  207.521927][ T9277] vhci_hcd: connection closed
[  207.537498][   T46] vhci_hcd: stop threads
[  207.540499][   T46] vhci_hcd: release socket
[  207.542453][   T46] vhci_hcd: disconnect device
[  207.547184][  T947] usb 38-1: enqueue for inactive port 0
[  208.507235][ T6068] usb 8-1: USB disconnect, device number 14
[  208.668247][  T947] usb usb38-port1: attempt power cycle
[  208.757648][ T9332] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.761024][ T9332] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.850166][ T9335] netlink: 'syz.1.976': attribute type 39 has an invalid length.
[  209.025710][ T9337] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  209.197037][ T6021] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  209.297915][  T947] usb usb38-port1: unable to enumerate USB device
[  209.348424][ T6021] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  209.353049][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.356468][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.359614][ T6021] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  209.364815][ T6021] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  209.368089][ T6021] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  209.371088][ T6021] usb 6-1: Manufacturer: syz
[  209.373695][ T6021] usb 6-1: config 0 descriptor??
[  209.719149][ T9346] IPVS: You probably need to specify IP address on multicast interface.
[  209.721703][ T9346] IPVS: Error connecting to the multicast addr
[  209.783447][ T6021] usbhid 6-1:0.0: can't add hid device: -71
[  209.787460][ T6021] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  209.792478][ T6021] usb 6-1: USB disconnect, device number 20
[  209.818963][ T9353] comedi comedi2: pcl711: I/O port conflict (0x4f27,16)
[  210.192539][ T9368] FAULT_INJECTION: forcing a failure.
[  210.192539][ T9368] name failslab, interval 1, probability 0, space 0, times 0
[  210.192592][ T9368] CPU: 3 UID: 0 PID: 9368 Comm: syz.3.985 Not tainted syzkaller #0 PREEMPT(full) 
[  210.192605][ T9368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.192611][ T9368] Call Trace:
[  210.192615][ T9368]  <TASK>
[  210.192619][ T9368]  dump_stack_lvl+0x16c/0x1f0
[  210.192635][ T9368]  should_fail_ex+0x512/0x640
[  210.192653][ T9368]  ? __kmalloc_noprof+0xbf/0x510
[  210.192665][ T9368]  ? drm_atomic_state_init+0xe4/0x320
[  210.192679][ T9368]  should_failslab+0xc2/0x120
[  210.192692][ T9368]  __kmalloc_noprof+0xd2/0x510
[  210.192705][ T9368]  drm_atomic_state_init+0xe4/0x320
[  210.192718][ T9368]  ? __kasan_kmalloc+0xaa/0xb0
[  210.192729][ T9368]  drm_atomic_state_alloc+0xd3/0x120
[  210.192743][ T9368]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  210.192758][ T9368]  ? __pfx___might_resched+0x10/0x10
[  210.192775][ T9368]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  210.192789][ T9368]  ? __mutex_lock+0x1c5/0x1060
[  210.192809][ T9368]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  210.192826][ T9368]  drm_client_modeset_commit_locked+0x14d/0x580
[  210.192842][ T9368]  drm_fb_helper_pan_display+0x32d/0xa40
[  210.192859][ T9368]  fb_pan_display+0x479/0x7d0
[  210.192874][ T9368]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  210.192887][ T9368]  bit_update_start+0x49/0x1f0
[  210.192905][ T9368]  fbcon_switch+0xbf8/0x14c0
[  210.192925][ T9368]  ? __pfx_fbcon_switch+0x10/0x10
[  210.192948][ T9368]  ? __pfx_bit_cursor+0x10/0x10
[  210.192963][ T9368]  ? fbcon_cursor+0x40c/0x5f0
[  210.192979][ T9368]  ? is_console_locked+0x9/0x20
[  210.192994][ T9368]  ? con_is_visible+0x65/0x150
[  210.193009][ T9368]  redraw_screen+0x2be/0x760
[  210.193026][ T9368]  ? __pfx_redraw_screen+0x10/0x10
[  210.193045][ T9368]  fbcon_do_set_font+0x60d/0x940
[  210.193065][ T9368]  fbcon_set_def_font+0x18b/0x2b0
[  210.193082][ T9368]  con_font_op+0xa55/0xf50
[  210.193094][ T9368]  ? __pfx_con_font_op+0x10/0x10
[  210.193104][ T9368]  ? __might_fault+0xe3/0x190
[  210.193114][ T9368]  ? __might_fault+0xe3/0x190
[  210.193123][ T9368]  ? __might_fault+0x13b/0x190
[  210.193139][ T9368]  vt_compat_ioctl+0x369/0x4e0
[  210.193153][ T9368]  ? __pfx_vt_compat_ioctl+0x10/0x10
[  210.193166][ T9368]  ? hook_file_ioctl_common+0x145/0x410
[  210.193183][ T9368]  ? __fget_files+0x20e/0x3c0
[  210.193200][ T9368]  ? __pfx_vt_compat_ioctl+0x10/0x10
[  210.193214][ T9368]  tty_compat_ioctl+0x2ee/0x4d0
[  210.193231][ T9368]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  210.193249][ T9368]  __ia32_compat_sys_ioctl+0x242/0x370
[  210.193266][ T9368]  __do_fast_syscall_32+0x7c/0x300
[  210.193280][ T9368]  do_fast_syscall_32+0x32/0x80
[  210.193292][ T9368]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.193306][ T9368] RIP: 0023:0xf70be579
[  210.193315][ T9368] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  210.193326][ T9368] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  210.193336][ T9368] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000004b72
[  210.193343][ T9368] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  210.193350][ T9368] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  210.193356][ T9368] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  210.193362][ T9368] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.193376][ T9368]  </TASK>
[  211.266816][ T9394] FAT-fs (loop1): unable to read boot sector
[  211.396502][ T9398] netlink: 'syz.0.995': attribute type 39 has an invalid length.
[  211.560948][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  211.560963][   T40] audit: type=1800 audit(1759432361.652:87): pid=9402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.996" name="/" dev="9p" ino=2 res=0 errno=0
[  211.691218][ T9405] netlink: 32 bytes leftover after parsing attributes in process `syz.1.997'.
[  211.706992][ T6047] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  211.841758][ T9411] netlink: 'syz.3.1000': attribute type 4 has an invalid length.
[  211.869839][ T6047] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  211.873276][ T6047] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  211.886218][ T9414] fuse: Bad value for 'user_id'
[  211.887766][ T6047] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  211.888691][ T9414] fuse: Bad value for 'user_id'
[  211.891592][ T6047] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  211.892486][ T6047] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  211.910707][ T6047] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  211.917067][ T6047] usb 5-1: Manufacturer: syz
[  211.919944][ T6047] usb 5-1: config 0 descriptor??
[  211.993584][ T9417] netlink: 21 bytes leftover after parsing attributes in process `syz.3.1001'.
[  211.997373][ T9417] macvtap0: entered allmulticast mode
[  211.999172][ T9417] veth0_macvtap: entered allmulticast mode
[  212.005471][ T9417] devtmpfs: Cannot change global quota limit on remount
[  212.333827][ T6047] usbhid 5-1:0.0: can't add hid device: -71
[  212.335944][ T6047] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  212.342936][ T6047] usb 5-1: USB disconnect, device number 20
[  212.676806][ T9430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.681648][ T9430] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.689664][ T9430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.694066][ T9430] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.957937][ T9438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1009'.
[  212.971095][ T9438] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  212.973804][ T9438] macvtap1: entered promiscuous mode
[  212.978140][ T9438] mac80211_hwsim hwsim8 wlan1: left promiscuous mode
[  213.015329][ T9440] CUSE: unknown device info "ÿ
"
[  213.017085][ T9440] CUSE: zero length info key specified
[  213.021904][ T9440] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1009'.
[  213.073139][ T9441] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  213.075036][ T9441] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  213.077627][ T9441] vhci_hcd vhci_hcd.0: Device attached
[  213.318552][ T6021] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  213.477106][  T947] usb 44-1: SetAddress Request (26) to port 0
[  213.479037][  T947] usb 44-1: new SuperSpeed USB device number 26 using vhci_hcd
[  213.624600][ T9464] netlink: 'syz.2.1019': attribute type 39 has an invalid length.
[  213.631174][ T9464] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.634192][ T9464] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.771853][ T9443] vhci_hcd: connection reset by peer
[  213.773992][  T223] vhci_hcd: stop threads
[  213.775422][  T223] vhci_hcd: release socket
[  213.777073][  T223] vhci_hcd: disconnect device
[  213.800654][ T6021] usb 5-1: config index 0 descriptor too short (expected 39, got 27)
[  213.803461][ T6021] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  213.806561][ T6021] usb 5-1: config 0 interface 0 has no altsetting 0
[  213.810953][ T6021] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  213.813771][ T6021] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  213.816455][ T6021] usb 5-1: Product: syz
[  213.818046][ T6021] usb 5-1: Manufacturer: syz
[  213.819775][ T6021] usb 5-1: SerialNumber: syz
[  213.823967][ T6021] usb 5-1: config 0 descriptor??
[  213.828268][ T6021] hub 5-1:0.0: bad descriptor, ignoring hub
[  213.830641][ T6021] hub 5-1:0.0: probe with driver hub failed with error -5
[  213.835902][ T6021] usb 5-1: selecting invalid altsetting 0
[  214.300848][ T9477] xt_l2tp: invalid flags combination: 0
[  214.307841][ T9477] netlink: 'syz.1.1022': attribute type 4 has an invalid length.
[  214.511342][ T9494] netlink: 'syz.2.1029': attribute type 39 has an invalid length.
[  214.522939][ T9494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.529120][ T9494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.637127][ T6047] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  214.789042][ T6047] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.792191][ T6047] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  214.795304][ T6047] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  214.798784][ T6047] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.806186][ T6047] usb 6-1: config 0 descriptor??
[  214.811034][ T6047] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  214.813200][ T6047] dvb-usb: bulk message failed: -22 (3/0)
[  214.817679][ T6047] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  214.822618][ T6047] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  214.824917][ T6047] usb 6-1: media controller created
[  214.827926][ T6047] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  214.833743][ T6047] dvb-usb: bulk message failed: -22 (6/0)
[  214.835637][ T6047] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  214.840767][ T6047] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input21
[  214.847165][ T6047] dvb-usb: schedule remote query interval to 150 msecs.
[  214.849887][ T6047] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  215.007041][ T6047] dvb-usb: bulk message failed: -22 (1/0)
[  215.009217][ T6047] dvb-usb: error while querying for an remote control event.
[  215.015236][ T9482] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.019233][ T9482] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.167237][ T6047] dvb-usb: bulk message failed: -22 (1/0)
[  215.169375][ T6047] dvb-usb: error while querying for an remote control event.
[  215.180159][ T6047] usb 6-1: USB disconnect, device number 21
[  215.199192][ T6047] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  215.709700][ T9522] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  215.712311][ T9522] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  215.715677][ T9522] vhci_hcd vhci_hcd.0: Device attached
[  215.910378][ T9530] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1040'.
[  215.961778][ T9532] netlink: 'syz.1.1041': attribute type 39 has an invalid length.
[  215.987131][   T34] usb 42-1: SetAddress Request (22) to port 0
[  215.989783][   T34] usb 42-1: new SuperSpeed USB device number 22 using vhci_hcd
[  216.022648][ T9523] vhci_hcd: connection reset by peer
[  216.025461][   T46] vhci_hcd: stop threads
[  216.027638][   T46] vhci_hcd: release socket
[  216.029776][   T46] vhci_hcd: disconnect device
[  216.117352][ T6068] usb 5-1: USB disconnect, device number 21
[  216.202659][ T9534] veth0: entered promiscuous mode
[  216.207047][ T6021] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  216.359724][ T6021] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  216.364448][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  216.369485][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  216.373426][ T6021] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  216.378497][ T6021] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  216.381680][ T6021] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  216.384314][ T6021] usb 6-1: Manufacturer: syz
[  216.387459][ T6021] usb 6-1: config 0 descriptor??
[  216.473042][ T9533] veth0: left promiscuous mode
[  216.771464][ T9552] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1049'.
[  216.794263][ T6021] usbhid 6-1:0.0: can't add hid device: -71
[  216.796540][ T6021] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  216.807625][ T6021] usb 6-1: USB disconnect, device number 22
[  216.826796][ T9554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  216.831421][ T9554] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  216.877910][ T6042] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[  217.029934][ T6042] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  217.033406][ T6042] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  217.037401][ T6042] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  217.041324][ T6042] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.045366][ T6042] usb 8-1: config 0 descriptor??
[  217.052708][ T6042] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  217.055512][ T6042] dvb-usb: bulk message failed: -22 (3/0)
[  217.061382][ T6042] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  217.066065][ T6042] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  217.070301][ T6042] usb 8-1: media controller created
[  217.073724][ T6042] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  217.084518][ T6042] dvb-usb: bulk message failed: -22 (6/0)
[  217.086382][ T6042] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  217.093376][ T6042] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb8/8-1/input/input22
[  217.106377][ T6042] dvb-usb: schedule remote query interval to 150 msecs.
[  217.110397][ T6042] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  217.255937][ T9546] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  217.259617][ T9546] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  217.267197][ T6042] dvb-usb: bulk message failed: -22 (1/0)
[  217.269609][ T6042] dvb-usb: error while querying for an remote control event.
[  217.369930][ T6042] usb 8-1: USB disconnect, device number 15
[  217.395644][ T6042] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  217.722628][ T9575] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1059'.
[  217.768493][ T9577] netlink: 'syz.0.1060': attribute type 39 has an invalid length.
[  217.903181][ T9582] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  217.905954][ T9582] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  217.908723][ T9582] vhci_hcd vhci_hcd.0: Device attached
[  218.078166][ T6068] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  218.187052][ T6047] usb 40-1: SetAddress Request (34) to port 0
[  218.190661][ T6047] usb 40-1: new SuperSpeed USB device number 34 using vhci_hcd
[  218.437840][ T9583] vhci_hcd: connection reset by peer
[  218.440608][   T46] vhci_hcd: stop threads
[  218.442800][   T46] vhci_hcd: release socket
[  218.444840][   T46] vhci_hcd: disconnect device
[  218.681956][  T947] usb 44-1: device descriptor read/8, error -110
[  218.687876][ T6068] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  218.691872][ T6068] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  218.696249][ T6068] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  218.700047][ T6068] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  218.705979][ T6068] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  218.709056][ T6068] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  218.711628][ T6068] usb 5-1: Manufacturer: syz
[  218.714867][ T6068] usb 5-1: config 0 descriptor??
[  219.052960][ T9594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1063'.
[  219.079204][  T947] usb usb44-port1: attempt power cycle
[  219.128301][ T6068] usbhid 5-1:0.0: can't add hid device: -71
[  219.130741][ T6068] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  219.150307][ T6068] usb 5-1: USB disconnect, device number 22
[  219.333920][ T9609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1069'.
[  219.487002][   T60] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[  219.607116][  T839] usb 6-1: new full-speed USB device number 23 using dummy_hcd
[  219.658165][  T947] usb usb44-port1: unable to enumerate USB device
[  219.660432][   T60] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  219.663811][   T60] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  219.668931][   T60] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  219.671881][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.759161][  T839] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  219.762328][  T839] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  219.765338][  T839] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  219.768853][  T839] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.773196][  T839] usb 6-1: config 0 descriptor??
[  219.777216][  T839] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  219.779468][  T839] dvb-usb: bulk message failed: -22 (3/0)
[  219.787488][  T839] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  219.790660][  T839] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  219.792928][  T839] usb 6-1: media controller created
[  219.795690][  T839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  219.800170][  T839] dvb-usb: bulk message failed: -22 (6/0)
[  219.802361][  T839] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  219.807005][  T839] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input23
[  219.814775][  T839] dvb-usb: schedule remote query interval to 150 msecs.
[  219.817489][  T839] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  219.887767][   T63] Bluetooth: unknown link type 28
[  219.889666][   T63] Bluetooth: hci3: connection err: -111
[  219.986983][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  219.989481][  T839] dvb-usb: error while querying for an remote control event.
[  219.995479][ T9611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  220.005151][ T9611] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  220.033275][ T9619] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  220.035861][ T9619] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  220.037008][   T60] usb 8-1: usb_control_msg returned -71
[  220.041421][   T60] usbtmc 8-1:16.0: can't read capabilities
[  220.044429][ T9619] vhci_hcd vhci_hcd.0: Device attached
[  220.147153][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  220.149105][  T839] dvb-usb: error while querying for an remote control event.
[  220.307096][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  220.309185][  T839] dvb-usb: error while querying for an remote control event.
[  220.327060][ T6041] usb 38-1: SetAddress Request (34) to port 0
[  220.329173][ T6041] usb 38-1: new SuperSpeed USB device number 34 using vhci_hcd
[  220.467137][  T839] dvb-usb: bulk message failed: -22 (1/0)
[  220.472291][  T839] dvb-usb: error while querying for an remote control event.
[  220.478741][ T6042] usb 6-1: USB disconnect, device number 23
[  220.525684][   T60] usb 8-1: USB disconnect, device number 16
[  220.537493][ T9620] vhci_hcd: connection reset by peer
[  220.542240][   T12] vhci_hcd: stop threads
[  220.544010][   T12] vhci_hcd: release socket
[  220.549544][   T12] vhci_hcd: disconnect device
[  220.557669][ T6042] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  220.659633][ T9628] batadv_slave_0: entered promiscuous mode
[  221.021124][ T9641] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1079'.
[  221.026993][   T34] usb 42-1: device descriptor read/8, error -110
[  221.051326][ T9645] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.054635][ T9644] netlink: 'syz.1.1080': attribute type 39 has an invalid length.
[  221.056676][ T9645] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.316960][   T60] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  221.417571][   T34] usb usb42-port1: attempt power cycle
[  221.478543][   T60] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  221.483325][   T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  221.488908][   T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  221.494072][   T60] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  221.503991][   T60] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  221.509172][   T60] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  221.512998][   T60] usb 6-1: Manufacturer: syz
[  221.521706][   T60] usb 6-1: config 0 descriptor??
[  221.932723][   T60] usbhid 6-1:0.0: can't add hid device: -71
[  221.934786][   T60] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  221.939076][   T60] usb 6-1: USB disconnect, device number 24
[  221.977969][   T34] usb usb42-port1: unable to enumerate USB device
[  222.635731][ T9669] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1089'.
[  222.914177][ T9673] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  222.918220][ T9673] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  222.922250][ T9673] vhci_hcd vhci_hcd.0: Device attached
[  223.307086][ T6540] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[  223.461485][ T6540] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  223.466026][ T6540] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  223.470832][ T6540] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  223.475261][ T6540] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.481743][ T6540] usb 5-1: config 0 descriptor??
[  223.487374][ T6540] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  223.489942][ T6540] dvb-usb: bulk message failed: -22 (3/0)
[  223.493398][ T6540] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  223.496562][ T6540] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  223.499089][ T6540] usb 5-1: media controller created
[  223.501822][ T6540] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  223.512971][ T6540] dvb-usb: bulk message failed: -22 (6/0)
[  223.514888][ T6540] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  223.515397][ T9674] vhci_hcd: connection reset by peer
[  223.519840][   T12] vhci_hcd: stop threads
[  223.520959][ T6540] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input24
[  223.521254][   T12] vhci_hcd: release socket
[  223.529850][   T12] vhci_hcd: disconnect device
[  223.530270][ T6047] usb 40-1: device descriptor read/8, error -110
[  223.533650][ T6540] dvb-usb: schedule remote query interval to 150 msecs.
[  223.538059][ T6540] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  223.689301][ T9677] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.692614][ T9677] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.697196][ T6540] dvb-usb: bulk message failed: -22 (1/0)
[  223.699592][ T6540] dvb-usb: error while querying for an remote control event.
[  223.829560][ T6021] usb 5-1: USB disconnect, device number 23
[  223.844103][ T6021] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  223.927634][ T6047] usb usb40-port1: attempt power cycle
[  224.183338][ T9684] netlink: 'syz.2.1093': attribute type 39 has an invalid length.
[  224.193477][ T9684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  224.197955][ T9684] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  224.203732][   T40] audit: type=1326 audit(1759432374.292:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.213919][   T40] audit: type=1326 audit(1759432374.292:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.223608][   T40] audit: type=1326 audit(1759432374.292:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.228674][ T9686] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1094'.
[  224.232291][   T40] audit: type=1326 audit(1759432374.292:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.243113][   T40] audit: type=1326 audit(1759432374.292:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.249671][   T40] audit: type=1326 audit(1759432374.322:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.256463][   T40] audit: type=1326 audit(1759432374.322:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.263403][   T40] audit: type=1326 audit(1759432374.322:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.269901][   T40] audit: type=1326 audit(1759432374.322:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.277666][   T40] audit: type=1326 audit(1759432374.322:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9685 comm="syz.1.1094" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  224.449832][ T9699] netlink: 'syz.1.1099': attribute type 39 has an invalid length.
[  224.487564][ T6047] usb usb40-port1: unable to enumerate USB device
[  224.688460][ T9702] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1100'.
[  224.708164][   T34] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  224.858519][   T34] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  224.862060][   T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.866014][   T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.870201][   T34] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  224.876324][   T34] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  224.880337][   T34] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  224.883455][   T34] usb 6-1: Manufacturer: syz
[  224.891023][   T34] usb 6-1: config 0 descriptor??
[  225.095779][ T9714] ------------[ cut here ]------------
[  225.097966][ T9714] WARNING: CPU: 0 PID: 9714 at fs/nsfs.c:493 nsfs_fh_to_dentry+0x9de/0xe10
[  225.100897][ T9714] Modules linked in:
[  225.103067][ T9714] CPU: 0 UID: 0 PID: 9714 Comm: syz.2.1104 Not tainted syzkaller #0 PREEMPT(full) 
[  225.108518][ T9714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.112694][ T9714] RIP: 0010:nsfs_fh_to_dentry+0x9de/0xe10
[  225.114806][ T9714] Code: 50 51 ff e9 63 fe ff ff e8 9f 5a 75 ff 90 0f 0b 90 e9 7b f8 ff ff e8 91 5a 75 ff 90 0f 0b 90 e9 ce f8 ff ff e8 83 5a 75 ff 90 <0f> 0b 90 e9 32 f9 ff ff e8 75 5a 75 ff 49 8d 7d 10 48 b8 00 00 00
[  225.121975][ T9714] RSP: 0018:ffffc90002f47b18 EFLAGS: 00010283
[  225.124107][ T9714] RAX: 000000000000008c RBX: 0000000000000000 RCX: ffffc9000c803000
[  225.126539][ T9714] RDX: 0000000000080000 RSI: ffffffff82452e2d RDI: 0000000000000004
[  225.129617][ T9714] RBP: ffff888071dcae08 R08: 0000000000000004 R09: 00000000effffff9
[  225.132455][ T9714] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920005e8f64
[  225.135535][ T9714] R13: ffffffff9acff158 R14: 00000000effffff9 R15: 0000000000000003
[  225.138326][ T9714] FS:  0000000000000000(0000) GS:ffff888097c66000(0063) knlGS:00000000f5466b40
[  225.141169][ T9714] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  225.143222][ T9714] CR2: 00000000f5465e7c CR3: 000000002795d000 CR4: 0000000000352ef0
[  225.145784][ T9714] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  225.148579][ T9714] DR3: 00000000e08eebf0 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  225.151323][ T9714] Call Trace:
[  225.152356][ T9714]  <TASK>
[  225.153271][ T9714]  ? do_handle_open+0x564/0xc90
[  225.154761][ T9714]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  225.156446][ T9714]  ? __kasan_kmalloc+0xaa/0xb0
[  225.158001][ T9714]  ? __kmalloc_noprof+0x223/0x510
[  225.159689][ T9714]  ? do_handle_open+0x564/0xc90
[  225.161213][ T9714]  ? __do_fast_syscall_32+0x7c/0x300
[  225.162907][ T9714]  ? do_fast_syscall_32+0x32/0x80
[  225.164624][ T9714]  exportfs_decode_fh_raw+0x164/0x7d0
[  225.166698][ T9714]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  225.169527][ T9714]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  225.171624][ T9714]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  225.173486][ T9714]  do_handle_open+0x702/0xc90
[  225.174965][ T9714]  ? __pfx_do_handle_open+0x10/0x10
[  225.176542][ T9714]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  225.178575][ T9714]  ? __do_fast_syscall_32+0x7c/0x300
[  225.180278][ T9714]  __do_fast_syscall_32+0x7c/0x300
[  225.181861][ T9714]  do_fast_syscall_32+0x32/0x80
[  225.183434][ T9714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  225.185574][ T9714] RIP: 0023:0xf7f73579
[  225.187141][ T9714] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  225.193530][ T9714] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  225.196297][ T9714] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  225.199036][ T9714] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  225.201931][ T9714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  225.204798][ T9714] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  225.207682][ T9714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  225.210177][ T9714]  </TASK>
[  225.211185][ T9714] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  225.213506][ T9714] CPU: 0 UID: 0 PID: 9714 Comm: syz.2.1104 Not tainted syzkaller #0 PREEMPT(full) 
[  225.216357][ T9714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.219771][ T9714] Call Trace:
[  225.220800][ T9714]  <TASK>
[  225.221777][ T9714]  dump_stack_lvl+0x3d/0x1f0
[  225.223206][ T9714]  vpanic+0x6e8/0x7a0
[  225.224457][ T9714]  ? __pfx_vpanic+0x10/0x10
[  225.225991][ T9714]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  225.227830][ T9714]  panic+0xca/0xd0
[  225.229356][ T9714]  ? __pfx_panic+0x10/0x10
[  225.231159][ T9714]  check_panic_on_warn+0xab/0xb0
[  225.232715][ T9714]  __warn+0xf6/0x3c0
[  225.233981][ T9714]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  225.236022][ T9714]  report_bug+0x3c3/0x580
[  225.237731][ T9714]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  225.239623][ T9714]  handle_bug+0x184/0x210
[  225.240966][ T9714]  exc_invalid_op+0x17/0x50
[  225.242684][ T9714]  asm_exc_invalid_op+0x1a/0x20
[  225.244692][ T9714] RIP: 0010:nsfs_fh_to_dentry+0x9de/0xe10
[  225.246593][ T9714] Code: 50 51 ff e9 63 fe ff ff e8 9f 5a 75 ff 90 0f 0b 90 e9 7b f8 ff ff e8 91 5a 75 ff 90 0f 0b 90 e9 ce f8 ff ff e8 83 5a 75 ff 90 <0f> 0b 90 e9 32 f9 ff ff e8 75 5a 75 ff 49 8d 7d 10 48 b8 00 00 00
[  225.253114][ T9714] RSP: 0018:ffffc90002f47b18 EFLAGS: 00010283
[  225.255012][ T9714] RAX: 000000000000008c RBX: 0000000000000000 RCX: ffffc9000c803000
[  225.257390][ T9714] RDX: 0000000000080000 RSI: ffffffff82452e2d RDI: 0000000000000004
[  225.260145][ T9714] RBP: ffff888071dcae08 R08: 0000000000000004 R09: 00000000effffff9
[  225.262935][ T9714] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920005e8f64
[  225.265610][ T9714] R13: ffffffff9acff158 R14: 00000000effffff9 R15: 0000000000000003
[  225.268419][ T9714]  ? nsfs_fh_to_dentry+0x9dd/0xe10
[  225.270372][ T9714]  ? nsfs_fh_to_dentry+0x9dd/0xe10
[  225.272118][ T9714]  ? do_handle_open+0x564/0xc90
[  225.273609][ T9714]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  225.275299][ T9714]  ? __kasan_kmalloc+0xaa/0xb0
[  225.277046][ T9714]  ? __kmalloc_noprof+0x223/0x510
[  225.278687][ T9714]  ? do_handle_open+0x564/0xc90
[  225.280265][ T9714]  ? __do_fast_syscall_32+0x7c/0x300
[  225.282217][ T9714]  ? do_fast_syscall_32+0x32/0x80
[  225.284159][ T9714]  exportfs_decode_fh_raw+0x164/0x7d0
[  225.285806][ T9714]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  225.288005][ T9714]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  225.289880][ T9714]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  225.291988][ T9714]  do_handle_open+0x702/0xc90
[  225.293662][ T9714]  ? __pfx_do_handle_open+0x10/0x10
[  225.295926][ T9714]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  225.298069][ T9714]  ? __do_fast_syscall_32+0x7c/0x300
[  225.299789][ T9714]  __do_fast_syscall_32+0x7c/0x300
[  225.301328][ T9714]  do_fast_syscall_32+0x32/0x80
[  225.303053][ T9714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  225.305266][ T9714] RIP: 0023:0xf7f73579
[  225.306708][ T9714] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  225.313164][ T9714] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  225.316030][ T9714] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  225.318643][ T9714] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  225.321083][ T9714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  225.323416][ T9714] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  225.325753][ T9714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  225.328086][ T9714]  </TASK>
[  225.329670][ T9714] Kernel Offset: disabled
[  225.331217][ T9714] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:08:39  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851d3355 RDI=ffffffff9ab52140 RBP=ffffffff9ab52100 RSP=ffffc90002f47480
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000002e R14=ffffffff9ab52100 R15=ffffffff851d32f0
RIP=ffffffff851d337f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097c66000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5465e7c CR3=000000002795d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08eebf0 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000897b0762f2 RBX=ffff88802b523a00 RCX=00000000000006e0 RDX=0000000000000089
RSI=ffff88802b523a00 RDI=0000000000009c39 RBP=0000000000009c39 RSP=ffffc90000590e38
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000
R12=0000000000000001 R13=0000000000000001 R14=0000000000000019 R15=0000003461da5d00
RIP=ffffffff81676e55 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097d66000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f53fcda4 CR3=000000002841b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffc90007240000 RBX=ffff888044168000 RCX=ffffffff819af353 RDX=1ffff1100882d25a
RSI=ffffffff866c7aff RDI=0000000000000016 RBP=0000000000000083 RSP=ffffc90000538ea8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffffff90609fa0 R13=dffffc0000000000 R14=ffff8880441692d0 R15=0000000000000000
RIP=ffffffff866c7b27 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8431949300 ffffffff 00c00000
GS =0000 ffff888097e66000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f84313225d0 CR3=0000000024232000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08eebf0 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0603ae74e2a7b53b 8be6d22360ef2615 0603ae74e2a7b53b 8be6d22360ef2615 0603ae74e2a7b53b 8be6d22360ef2615 0603ae74e2a7b53b 8be6d22360ef2615
ZMM18=1613dd0b1bc51576 96730ce6f66c56d1 1613dd0b1bc51576 96730ce6f66c56d1 1613dd0b1bc51576 96730ce6f66c56d1 1613dd0b1bc51576 96730ce6f66c56d1
ZMM19=f60c000000000000 0000000000000005 f60c000000000000 0000000000000004 f60c000000000000 0000000000000003 f60c000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02040003ac0302a0 040003a803000400 03a40300020003a2 0300020003a00300
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800039803000800 039003020400038c 0360040003880302 c808000380030380
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0201800301800202 9003000800028803 0fffffffff020280 030fffffffff0202
ZMM24=f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1 f66c56d1f66c56d1
ZMM25=96730ce696730ce6 96730ce696730ce6 96730ce696730ce6 96730ce696730ce6 96730ce696730ce6 96730ce696730ce6 96730ce696730ce6 96730ce696730ce6
ZMM26=1bc515761bc51576 1bc515761bc51576 1bc515761bc51576 1bc515761bc51576 1bc515761bc51576 1bc515761bc51576 1bc515761bc51576 1bc515761bc51576
ZMM27=1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b 1613dd0b1613dd0b
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000 f50c0000f50c0000
info registers vcpu 3

CPU#3
RAX=000000897b452894 RBX=ffff88802b723a00 RCX=00000000000006e0 RDX=0000000000000089
RSI=ffff88802b723a00 RDI=0000000000009c26 RBP=0000000000009c26 RSP=ffffc900005e8e38
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000
R12=0000000000000001 R13=0000000000000001 R14=0000000000000019 R15=0000003461da5d00
RIP=ffffffff81676e55 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097f66000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080000000 CR3=000000002841b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000