last executing test programs:

3.460026593s ago: executing program 0 (id=1277):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000c00), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x38, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @local}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xa, 0x1, 'wpan0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004000}, 0x8040000)

3.370116462s ago: executing program 0 (id=1278):
r0 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141102)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
writev(r2, &(0x7f0000000840)=[{0x0}], 0x1)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0xd0, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xa, 0x80000006, 0x400}, 0x0, 0x0)

3.095431232s ago: executing program 3 (id=1281):
r0 = syz_open_dev$vim2m(&(0x7f0000000300), 0xd, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc044565d, &(0x7f0000000280)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
memfd_create(0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r2}})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000240)=0x2, 0x4)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}})
write$tun(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="00008808000406000100"], 0xcc)

2.929634156s ago: executing program 3 (id=1283):
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000080)=[@ioring_restriction_register_op={0x0, 0x1d}], 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000180)=0x6e)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000080)=0x3ff)
write$dsp(r2, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
r3 = openat$ublk_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = syz_ublk_setup_io_uring(0x20, &(0x7f0000000040), &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = syz_ublk_add_dev(r4, r5, r6, r7, &(0x7f0000000200)={0x2e, 0x0, 0x0, r3, 0xc0207504, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', {0xffffffff, 0xffff, 0x48, &(0x7f0000000500)=@new_dev={0x1, 0x4}}}, &(0x7f0000000300)=<r9=>0x0)
syz_emit_vhci(&(0x7f00000004c0)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0xb, @any, "863335c12accee91723b733ba22972915858f64131338b8849e149a1ade063863f5b1e25ab432d45ea52f2d486e58d99f230e75d71039f747b1e27909efe8c11c04aa89a8834bc5ffb58d0ec438111d68dda0a9bcb40ec69ecdfbdce910c42e1e6f25fbbbb799cbd446604b22d0834fe85d594512a5dc752f46062addc000f65292dbc39b2457aa128146873ba0eee16a35c2724f34090ea85b880091249cb1a1f13ee1a05bf488999b1474bd580bf33726aee98bf0c2c9e0811100ebeff3eb13bcbe3bbdaf60560cda803d2acee490f56b91f102229d8d993166aab416cfc6e8ec9d1a84d16db3d6c032f7120d44dc306d0440725e9dc4f"}}}, 0x102)
r10 = syz_open_dev$ublk_chdev(&(0x7f0000002000), r8, 0x2)
syz_ublk_setup_queues(r10, r9, &(0x7f0000000380)={0x0, 0xc22f, 0x10, 0x1, 0x170, 0x0, r4}, &(0x7f0000000b40)=[{0x0, 0x0, 0xffffffffffffffff, {0x0, 0x20317a, 0x4, 0x0, 0x368, 0x0, r4}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x15a7, 0x200, 0x5, 0x43, 0x0, r4}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x9360, 0x1, 0xffffffff, 0x442}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x64ee, 0x4, 0x1, 0x40123, 0x0, r4}}], 0x4, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000dc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x20, 0x0, 0x0, {0x1}}}, 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000004c0)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000600)=ANY=[@ANYBLOB="3800000053dc9c3c402cd7c9122e5b1ac8aa929676cb8add4679f2363d025674db55cf56309582b00b59616be5a84e1d5425c4d3c3c73e5e8a4e55f0d35ba540e824b17ecac73104e05aa0f0ff66372493fe07f430ae520fb99d14a560b79c2f93b35f0e12f00602a21dfb5427c766b66c365986aac5270ebf4d335a1862a6b1341233eb1293b9af064500007ab37938756f6e951ace41c402cd1651c9f62b021d84c25abc12d9725c22c57c0c82295e04411effc0123dd3a7c973d636303aa41840a2dd8e0e3b5f", @ANYRES16=r11, @ANYBLOB="010029bd7000ffdbdf253400000008000300", @ANYRES32=r12, @ANYBLOB="08001f01090000000600fd00070000000a0006005050505050500000"], 0x38}, 0x1, 0x0, 0x0, 0x90}, 0x20040050)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff"], 0x0, 0x100, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r13 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r14=>0xffffffffffffffff}, 0x0)
vmsplice(r14, &(0x7f0000e79000)=[{&(0x7f00003fb000)="f7", 0x1}], 0x1, 0x8)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)

2.827366162s ago: executing program 1 (id=1285):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x121301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x6, &(0x7f0000006680))
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0)
fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsetxattr(0xffffffffffffffff, &(0x7f0000000200)=@known='user.incfs.id\x00', &(0x7f0000000280)='+.%+\x00', 0x5, 0x2)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000240))
sendmsg$unix(0xffffffffffffffff, &(0x7f00000015c0)={&(0x7f0000000100)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000000300)="61a9a6ad3f577b87863e0d09cb838763aeb9196d3d0d9d90ba0720140181a38f36a1e14b450851856dd3f0bc2e3aef3f1b4575644e8db8e8712ef85399f34f828e6ed2bd1d9a", 0x46}, {&(0x7f0000000380)="6357c34dfa9518ad7acf09b8b4bc1847d7d0be28c58d8536278ad075611548b333e1739c36919add370f595613946047ce66b12ebbfcb5dad8573e887b3f3841d211404a1215d8234e2c56d33f5955abb06808cf27cab2311226be2a51aa9ca3a91df7280f56d5072d54b42175dcf9c689faa592c63f8e89e65c476992b054e4497739bc5a4c31aaeb434ef5980a9658ae569647f6c90d9535d8485e92c65dd89aa3858d6dc6466a747b80056b3a4b899ca3eddaf46db3e5cbcaeba5e9c39064df89319413ee4954523a86749ee0aa84290ca629d8cbc96d8974f314bac7a3cba6c144c8be4e5ea84f924643de8aac05", 0xf0}, {&(0x7f0000000480)="246dbb719c23328ed8aec66b04603419d9e1e503d47d07f8ebea82b2f5572ed67c094912988101c3b6b4037323ff05efaf4655cc4446c2b14c783c0f70", 0x3d}, {&(0x7f00000004c0)="422b7549eb225bef7864a4c2ea54ec37691761b0128a40166c8958b1342cbf294bcf2510de1c207c58bae48e049c61fed40b40b919614657d8c6153af3657486a601199a51f4b3ea5cbfa0ddc4135e41ed523d4e4ed2d06010b4892c557d96a9a179c5f28655d0839957ba872c7ffd68c125bc6b228e388c3aa4a457ccf871bdd2aa974d5955a25dc05f105daaafd4df1b0e2793fc6d7472f17f3d43f97c7e5d2b1765d95c581b089cb8e21287", 0xad}, {&(0x7f0000000580)="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", 0x1000}], 0x5, 0x0, 0x0, 0x2040001}, 0x80000)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000180)=0x6f)
r2 = dup2(r1, r1)
prlimit64(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f00000001c0)=0x2)
read$FUSE(r2, &(0x7f0000002780)={0x2020}, 0x2020)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x80)
socket$inet_udp(0x2, 0x2, 0x0)

2.749266985s ago: executing program 3 (id=1286):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, 0x0, 0x0)
pwritev2(r0, &(0x7f0000000740)=[{&(0x7f0000000100)="3f6c5b761046b0a77db63c34e13408e27fcea6c7605a226d926b187e4d85c6dc144795bcb7eb57aa924187b4915c60848ced868e669e7383365c1b98ccdf87f4db91bf74c981a25caf0102470956f6b38a96d397cb995a13c9f1c474091c01e8c3c09a356e7dac9e7405acd7d332ba3fbb177cd8b2ffba8cc8d01264085fa41b35c651a946b8f2034baaa01bc5c5b1179e2e6e82dc3f059c52451ba5abc1", 0x9e}, {&(0x7f00000003c0)="87348b520f8a493ad8a047181df6537bdb1a05021f46d8199da66dd518ae99529927d7ba3d466263445843914d169d37b43a394b7f72563bb2b3f4d7d82ce7f5fd8465297d841e964f9ebefcab497fd319e92f52", 0x54}, {&(0x7f00000005c0)="f92c1e79acd0f7cdc8d83328244f9958c71163a4241e65d197e16cc0f83b426f50b2e198556fb3093a6c773014485fa3d250498d3c37886f01e28967891c211476b81d48e0d8c0e00a702dc058b1ea7a3379e60ec24f132994e5e71486e475fbd0bc45120c98a1f481eeed303a49c3715c922f20115a81e65ff34d2b6d903525677b13dc5a7a0dcf0d9fefab6f10ac3943b6fa40", 0x94}, {&(0x7f0000000540)="2f3a267f685a2d1298bed1b1df1e89e1fd29af64d0999594571ec52aa9ef8d2142b7d0ee618cd40d6c820d028cd41af19d307be674027c1096e85f739afb383cde82b296fa62d3e85d13dc0ba6", 0x4d}], 0x4, 0x9, 0x1, 0x1c)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(0xffffffffffffffff, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
pipe2(&(0x7f0000001440)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r4, 0x0, r3, 0x0, 0x6, 0x0)
write(r3, &(0x7f00000002c0)="fe", 0xfdef)
read$watch_queue(r2, &(0x7f0000000780)=""/221, 0xfdef)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
sendmsg$NFNL_MSG_CTHELPER_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000010901"], 0x14}}, 0x0)
r5 = syz_open_pts(0xffffffffffffffff, 0x61c0)
pselect6(0x40, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x381, 0x5d, 0x0, 0x9e25}, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="020500070400000002c41244b4aafce8000000000000000002000100000000000000000b00000000"], 0x20}}, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x13)
mount$bpf(0x0, 0x0, 0x0, 0x5805040, &(0x7f0000000100)=ANY=[@ANYBLOB="7569ce8f", @ANYRESHEX=0x0, @ANYBLOB=',\x00'])
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0xd4}}, 0x4000010)

2.670007523s ago: executing program 1 (id=1287):
r0 = fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000240)={'wg1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r1)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="2000ba00", @ANYRES16=r3, @ANYBLOB="01002cbd7000ffdbdf25150000000c00018008000100", @ANYRES32=r2, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20040054)
r4 = fsmount(r0, 0x0, 0x8)
openat$cgroup(r4, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000240)={0x0, 0xdb000}, 0x8)
write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x8817)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(0x0, 0x80, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix={0x6, 0x7, 0x3436324d, 0x4, 0x5, 0x4, 0x5, 0x63d, 0x0, 0x2, 0x0, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x45)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r6, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r6, 0x6, 0xd, 0x0, 0x0)
recvfrom$inet(r6, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

2.49988521s ago: executing program 0 (id=1288):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x161140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000015c0))
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000880)={"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"})

2.49491302s ago: executing program 1 (id=1289):
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x3, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x4348, 0x7f, 0x34324142, 0x5, 0x2, 0x6, 0x1, 0x5, 0x1, 0x4, 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000000040))
gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f0000000540)={0x2020}, 0x2020)
sendmsg$netlink(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="100000402f0001003986ee6df5a533fa954d44cf47e2073cd1b4"], 0x10}, {&(0x7f0000000380)=ANY=[@ANYBLOB="900000001f0010042dbd7080fddbdf2569001400197cc8942a4a6a27f25d73a488df302e90944637920a5cd2e8d5ba33625c1f936cc1adce4c7a6b4bd923147a84498409be8068fbf1b214d72970c7af5de69cce37940d996b10e31e7510f54294611e042ada1c26399bc09762ba0cc113e44380e06d007ef700000014001100fe880000000000000000000000000101a1cc8932ffbac93358fab438c509e307"], 0x90}], 0x2, 0x0, 0x0, 0x1}, 0x0)
r7 = accept4(r5, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
sendto$unix(r7, &(0x7f0000000440)="36d9a32e92c131d730b1abaedb51eb66fd2d5b1f7eda4f0e859fdaf294bad70673813533d8bf1c6a77b65a7afdc01b29e73571071a68d5def5d7df839810da130b9348f4d9d407eb478d5bfb298c552a498271af70914e14ba9476fd2a0e47984c25ea20afab3064a748add27a7149e9c4705475bda2ecec9ec30214f28c5e16fd3f50f604f20232c534409e52bff64fc6ca0f5e254083aec2794b7216e002e87caf3d0fa7d04ff9e3b03e81595a04979594ff6ea888bf13de8e8f74c6178e31e47593732ae1a501ad3641d423195a788efdb643f50a8c8b9794a62f7b8dfa0fa7da9d391b92ce2a7f9fe0f9d584a3775f", 0x703d59595f6742a8, 0x800, 0x0, 0x0)
recvfrom(r7, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x1, 0x0, 0xffffffffffffffb5)
ioctl$int_in(r3, 0x5452, 0x0)
fcntl$setsig(r3, 0xa, 0x12)
ppoll(&(0x7f0000000140)=[{r4, 0x8002}], 0x1, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x3, 0x6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_mems\x00', 0x275a, 0x0)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r8, 0x402, 0x1a)
r9 = openat$cgroup_ro(r8, 0x0, 0x275a, 0x0)
write$binfmt_misc(r9, &(0x7f0000000cc0), 0x0)

2.329468243s ago: executing program 0 (id=1290):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
close(r1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r2, 0x0, 0xe, &(0x7f0000000000)=0x5, 0x4)
listen(r2, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000000c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010100, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x4000000000000069, 0xc2, 0x4}}}}}}, 0x0)

2.199020028s ago: executing program 0 (id=1291):
openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
accept4$vsock_stream(r0, 0x0, 0x0, 0x80000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
setgroups(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
fchownat(0xffffffffffffff9c, 0x0, 0xee01, 0xee01, 0x1000)
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b, 0x40a02}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}]}, 0x44}}, 0x40800)

1.759116043s ago: executing program 3 (id=1293):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x80, 0x1, [@m_ct={0x44, 0x25, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000007, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x38, 0x1, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa, 0x3, @local}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x814}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f00000005c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$unix(r1, 0x0, 0x19)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
listen(r1, 0xff)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYRESDEC], 0x1c}, 0x1, 0x0, 0x0, 0x815}, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x4a102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r3, 0xfffffffc)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, 0x0, 0x4008015)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r4)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="20000023100001072abd7000000000000a0000000c0002006e6c383032313100"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
shmat(0x0, &(0x7f0000001000/0x3000)=nil, 0xc000)
r5 = syz_open_procfs(0x0, &(0x7f0000002440)='net/ptype\x00')
preadv(r5, &(0x7f0000000180)=[{&(0x7f00000001c0)=""/183, 0xb7}], 0x1, 0x5fae, 0x4)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10044084}, 0x20048000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

1.517772171s ago: executing program 1 (id=1294):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x161140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000280), &(0x7f00000002c0), 0x2, 0x3)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0x0], 0x1, 0x80000, 0x0, <r2=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000100)={<r3=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000140)={r3})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x10)
ioctl$VIDIOC_G_EDID(r2, 0xc0245628, &(0x7f0000000200)={0x0, 0x408, 0x1, '\x00', &(0x7f0000000180)=0xbc})
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/power/pm_async', 0x101581, 0x100)
write$tcp_mem(r8, &(0x7f0000000000)={0x9, 0x20, 0x3, 0x20, 0x9}, 0xa2)
r9 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r9, 0x4008af60, &(0x7f0000000000)={@my=0x1})
ioctl$VHOST_VSOCK_SET_GUEST_CID(r9, 0x4008af60, &(0x7f0000000080)={@my=0x1})
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000240)={'team0\x00', <r10=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)={0x90, r7, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r10}, {0x74, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}]}, 0x90}, 0x1, 0x1000000, 0x0, 0x20004000}, 0x24040840)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r11 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x800, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
fcntl$getown(r11, 0x9)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000880)={"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"})

1.030021914s ago: executing program 2 (id=1300):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth0\x00', <r1=>0x0})
ioctl$FS_IOC_RESVSP(r0, 0x402c5828, &(0x7f0000000180)={0x0, 0x2, 0x6, 0x8})
r2 = syz_open_dev$video4linux(&(0x7f0000000040), 0x1, 0x101000)
ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f0000000100)={0x1, 0x0, {0x0, 0xf2fb, 0x201d, 0xf, 0x8, 0x7, 0x1, 0x3}})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x4, 0x3, {0x10, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000640), 0x44040, 0x0)
ioctl$CDROMEJECT_SW(r3, 0x530f, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1a, 0x22, &(0x7f0000000140)=ANY=[@ANYRESDEC=r3], &(0x7f0000000000)='syzkaller\x00', 0x1001, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @tracing=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
syz_open_dev$sg(&(0x7f0000000100), 0x5, 0x2000)

1.029644938s ago: executing program 2 (id=1301):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
pwritev2(r0, &(0x7f0000000740)=[{&(0x7f0000000100)="3f6c5b761046b0a77db63c34e13408e27fcea6c7605a226d926b187e4d85c6dc144795bcb7eb57aa924187b4915c60848ced868e669e7383365c1b98ccdf87f4db91bf74c981a25caf0102470956f6b38a96d397cb995a13c9f1c474091c01e8c3c09a356e7dac9e7405acd7d332ba3fbb177cd8b2ffba8cc8d01264085fa41b35c651a946b8f2034baaa01bc5c5b1179e2e6e82dc3f059c52451ba5abc1", 0x9e}, {&(0x7f00000003c0)="87348b520f8a493ad8a047181df6537bdb1a05021f46d8199da66dd518ae99529927d7ba3d466263445843914d169d37b43a394b7f72563bb2b3f4d7d82ce7f5fd8465297d841e964f9ebefcab497fd319e92f52", 0x54}, {&(0x7f00000005c0)="f92c1e79acd0f7cdc8d83328244f9958c71163a4241e65d197e16cc0f83b426f50b2e198556fb3093a6c773014485fa3d250498d3c37886f01e28967891c211476b81d48e0d8c0e00a702dc058b1ea7a3379e60ec24f132994e5e71486e475fbd0bc45120c98a1f481eeed303a49c3715c922f20115a81e65ff34d2b6d903525677b13dc5a7a0dcf0d9fefab6f10ac3943b6fa40", 0x94}, {&(0x7f0000000540)="2f3a267f685a2d1298bed1b1df1e89e1fd29af64d0999594571ec52aa9ef8d2142b7d0ee618cd40d6c820d028cd41af19d307be674027c1096e85f739afb383cde82b296fa62d3e85d13dc0ba6", 0x4d}], 0x4, 0x9, 0x1, 0x1c)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(0xffffffffffffffff, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
pipe2(&(0x7f0000001440)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r4, 0x0, r3, 0x0, 0x6, 0x0)
write(r3, &(0x7f00000002c0)="fe", 0xfdef)
read$watch_queue(r2, &(0x7f0000000780)=""/221, 0xfdef)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
sendmsg$NFNL_MSG_CTHELPER_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000010901"], 0x14}}, 0x0)
r5 = syz_open_pts(0xffffffffffffffff, 0x61c0)
pselect6(0x40, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x381, 0x5d, 0x0, 0x9e25}, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="020500070400000002c41244b4aafce8000000000000000002000100000000000000000b00000000"], 0x20}}, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x13)
mount$bpf(0x0, 0x0, 0x0, 0x5805040, &(0x7f0000000100)=ANY=[@ANYBLOB="7569ce8f", @ANYRESHEX=0x0, @ANYBLOB=',\x00'])
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0xd4}}, 0x4000010)

849.984347ms ago: executing program 3 (id=1302):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a40)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x439, 0x10000000, 0x0, {0x0, 0x0, 0x0, r4, 0x69801}}, 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

787.123262ms ago: executing program 3 (id=1303):
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x4000)=nil, 0x0, 0x12)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x1, 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f00000000c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000001000000050000004000000042000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000003000000000000000000000000000000809f433757ddac272e20a309697340f10d833f03331431949d8ac59550c9e16c454d0d2f18ed6aa5f98d5bf22cce668ee2e020878ea0d57985fd2e52303b84b3c2d637001a11d9f2f1471e8ec78703e7fee4736220a3203c1960d0274bda072704af8a7188fc52b54970e93ecf60"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r3}, 0x38)
bind$unix(r2, &(0x7f0000000dc0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
ioctl$sock_SIOCINQ(r2, 0x541b, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
fsopen(0x0, 0x0)
setsockopt$RXRPC_SECURITY_KEY(0xffffffffffffffff, 0x110, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/134, 0x120, 0x86, 0x1, 0x9a}, 0x28)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r4}, 0x38)

786.687727ms ago: executing program 1 (id=1304):
r0 = syz_open_dev$video4linux(&(0x7f0000001600), 0x5, 0xe0c61)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(des3_ede-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="ad56000081000008000d00"/24, 0x18) (async)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="ad56000081000008000d00"/24, 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x80000)
sendmmsg$alg(r2, &(0x7f0000001840)=[{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000080)="6eb970d0b0942d4c6674abf2bdb83d9df1348ac7fdfc9145f4f9362c5b2bbac91eb12cac2eb87108bcfce15bfe5261d7e28503c06449f7c54e097622f14c0f453475594d683c7517875d", 0x4a}, {&(0x7f00000001c0)="e45f3343980ebd2404dcad0e9961fc5ec99f159d4411ab8d285258662f6d0937dc77df69fb86eec77ab48cd3fbe1d49b3ff8fe1a0fa877c6827bcaa379b32840fd53c9e02dca0f8e6c6a5628eb358615f76c1e8612ca80b0b07f06749f60811c32b182d74a010d31", 0x68}, {&(0x7f0000000240)="842f3290cde113f86c33422f8819252558e52d062668c893dbcf0b3cd9033d4070dfe957e6e5e1e66350e8c111993f86684bb049e7c4f1d5cf61cf31590276d08164d3b43709ee668d2e7fffc244cb1e0edde052a603ea3c1792eafa23e5c931ff4fd63aba939231fcc221993c6e1a4c707744948382520ec00cc16716e8c83475a8062db13faa0809c3a8346323918e49a9c5b300dc882b5dd2bb15", 0xfd33}, {&(0x7f00000003c0)="26ca0deee074c2563575ed8c2aed5d95327e6f4469fea7d7558996e45f98e630f90c3b4fcad2491acfdaddbb7ac6410515e3751c8f49a12c6497e509f6928140fe603e5ed2b0d0808704e4dad7376ce1eb9fe88b617d0b6f12ade5e60038f8eba8351853b7256c4ef33e620c153adb016c325cb3928fa83784ea0100d37cf110c503c5591af3af2ce2ba01d5cc827bb7652a9a66a5cd0e726dece0c5662b", 0x9e}, {&(0x7f0000000480)="c629ef262ffb1c417c62bbcd8a02740f03c4ea333ae04c0a829c3d8722463e12b58aa183bca24e1dd80e23e9c455f47b90deac9cce0d5942a461eb", 0x3b}, {&(0x7f00000004c0)="c73f681dd0a5f1f0e5f80350bbe778d63cb3cd163d1a72884092ac994524df507457b12e9d91605c26f7e4cda36ba9531f059a76ffac99b260476affb489277fa28a2bb59ba094b970f607b64312180aeeecf5ed964d1c3321fd55de9d20", 0x5e}], 0x6, &(0x7f0000000580)=[@assoc={0x10}], 0x10, 0x20004010}, {0x0, 0x0, &(0x7f00000005c0), 0x0, 0x0, 0x0, 0x20000050}, {0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000600)="210d56bf9174288b5051d8a3218b939c4bb7eec551d490ee68d56813", 0x1c}, {&(0x7f0000000640)="87a651939279c656f8bcb33fb6ed9a1747780c1085106338ecd1e05160217c9d392cf980b7607616ab1dfcdb26aa0b58e07df38b7d6fec69859ff83e3654b7144dd8b83ec5cbc6a0486b97f8e391c8eb853629ece34bfded0195655a79359281aff3bc928c22fcb524e42f8b1967b869e2c6b459d38114e9efa7be18a1cb742360efcdc12c980869aa6f8235918043954a983e89cec8c65173851f5471b1ba402ce35c098c99f1f842cb13016f491f22e7c73003c91e59fbe13e6495fb1b488dc73b2bc0fd120043554c50fde40c98eb6584", 0xd2}, {&(0x7f0000000740)="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", 0x1000}], 0x3, &(0x7f0000001780)=[@op={0x10, 0x117, 0x3, 0x1}, @iv={0x10}, @op={0x10, 0x117, 0x3, 0x1}, @op={0x10, 0x117, 0x3, 0x9389a8624a43df49}, @op={0x10}, @iv={0x28, 0x117, 0x2, 0x16, "93a6e89100f04eb83d825b9b7afc3c5569fba2c9b575"}, @assoc={0x10, 0x117, 0x4, 0xf}], 0x88, 0xc020}], 0x3, 0x4040000)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040563d, &(0x7f00000002c0)={0x18, 0x1000000, 0x103, 0x3, {0xfffffffa, 0x8, 0x7}}) (async)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040563d, &(0x7f00000002c0)={0x18, 0x1000000, 0x103, 0x3, {0xfffffffa, 0x8, 0x7}})

659.659696ms ago: executing program 1 (id=1305):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$binfmt_register(0xffffff9c, 0x0, 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c)
r2 = syz_usb_connect(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
syz_usb_ep_write$ath9k_ep2(r2, 0x83, 0x8, &(0x7f0000000200)=ANY=[])
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002600)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020)
setsockopt$MRT_DEL_MFC_PROXY(r1, 0x0, 0xd3, &(0x7f00000000c0)={@multicast2, @multicast1, 0x0, "c6c0e6ed8755b5dc4e0e000c58ea00000000000600", 0x0, 0xfffffffe, 0x2, 0x2}, 0x3c)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x89f6, &(0x7f0000000340)="b2d311af94b883a7c917af570ae7b1e843a0a788f69d7891ade96769393efc8056a6f002e30c8d84568d737b56856a562c77400d2763599c42c39c2c346641f570afdc53d009685de5793fa1d5eece360b7f7647069f8c0e53a28126b06a6b5e797d92fc70f0bbf7cf41ac7523191c55decb8e836ebd8eba368cc270864fb703f797122b8690d189cd617620b20d0a9b8796")
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000003c0)={0x0, {0x2, 0x4e20, @broadcast}, {0x2, 0x4a24, @remote}, {0x2, 0x4e25, @multicast2}, 0x204, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x200003, 0x3, 0x2})
write$tun(r4, &(0x7f00000003c0)=ANY=[@ANYRES8=r5], 0xdc)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x185b2000)
r6 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x10d200, 0x2c)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYRES8=r2, @ANYRES32=r7, @ANYRES16], 0x54)
setsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
connect$packet(r6, &(0x7f00000003c0)={0x11, 0x12, 0x0, 0x1, 0x6, 0x6, @local}, 0x14)

153.632725ms ago: executing program 0 (id=1306):
r0 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141102)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
writev(r2, &(0x7f0000000840)=[{0x0}], 0x1)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0xd0, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xa, 0x80000006, 0x400}, 0x0, 0x0)

151.929614ms ago: executing program 2 (id=1307):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x161140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000015c0))
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000880)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df100070000000069500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd673c1eeda4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d06c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235eaa92143ce4bb5d6acb290e8976dcac779ff0000f5620000043d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05be23dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c930df1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1732a7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02eb097ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe656c9c46bffbe9dd03970800000000000000d372bdd6f89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

78.323118ms ago: executing program 2 (id=1308):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
write$binfmt_script(r1, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYRES64=r1], 0x34}, 0x1, 0x0, 0x0, 0x4048010}, 0x4004)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x3)
openat$vcs(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x12)
r3 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x8, 0x3, 0x0)
getsockname$packet(r5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="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"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x24000001)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="48000000100004002bbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="4e8abe2b8bbec49216001280090001007866726d000000000c000280080002000300000000"], 0x48}, 0x1, 0x0, 0x0, 0x600}, 0x840)
ioctl$CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f00000000c0)={"218ff100", 0x8, 0x6, 0x2, 0x0, 0x8, "91003d0600", '\x00', "030600", "fcffffff", ["50d59404000100", "808e88e2e9ffffffffff00", "0c436d743c97c443084000", '5\x00']})
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, &(0x7f0000000d80))
ioctl$VHOST_SET_FEATURES(r7, 0x4008af00, &(0x7f0000000340)=0x100000000)
dup2(r7, r7)
r8 = socket(0x10, 0x3, 0x0)
write(r8, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000000000000000800040001000000", 0x24)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)

72.006487ms ago: executing program 2 (id=1309):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='blkio.bfq.empty_time\x00', 0x275a, 0x0)
write$cgroup_int(r0, 0x0, 0x0)
readv(r0, 0x0, 0x0)
write$tun(r0, 0x0, 0x0)

0s ago: executing program 2 (id=1310):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000ff0300000000000000000000850000001100000085000000a0"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000300)="e02742e8680d85ff978276fcf294", 0x0, 0x4002, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

0499, idProduct=1010, bcdDevice= a.f5
[  169.027764][ T5831] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.031572][ T5831] usb 8-1: Product: syz
[  169.033427][ T5831] usb 8-1: Manufacturer: syz
[  169.035483][ T5831] usb 8-1: SerialNumber: syz
[  169.040229][ T5831] usb 8-1: config 0 descriptor??
[  169.044971][ T5831] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  169.050746][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  169.076361][ T5831] snd-usb-audio 8-1:0.0: probe with driver snd-usb-audio failed with error -2
[  169.104943][ T7389] udevd[7389]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  169.246837][ T5846] usb 8-1: USB disconnect, device number 6
[  169.539209][ T5754] Bluetooth: hci0: command 0x0401 tx timeout
[  169.784605][ T8061] overlayfs: conflicting options: userxattr,redirect_dir=on
[  169.901512][ T8068] __nla_validate_parse: 2 callbacks suppressed
[  169.901527][ T8068] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.590'.
[  170.089366][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  170.169694][ T5846] usb 6-1: new full-speed USB device number 13 using dummy_hcd
[  170.309016][ T5846] usb 6-1: device descriptor read/64, error -71
[  170.520794][ T8080] comedi comedi1: mpc624: a I/O base address must be specified
[  170.559097][ T5846] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  170.605238][ T8083] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  170.707298][ T8087] netlink: 24 bytes leftover after parsing attributes in process `syz.0.597'.
[  170.709002][ T5846] usb 6-1: device descriptor read/64, error -71
[  170.820630][ T5846] usb usb6-port1: attempt power cycle
[  170.916986][ T8097] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  170.919564][ T8097] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  170.922444][ T8097] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  170.979217][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.096944][ T8099] lo speed is unknown, defaulting to 1000
[  171.129149][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.169052][ T5846] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  171.189625][ T5846] usb 6-1: device descriptor read/8, error -71
[  171.370463][ T8120] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.607'.
[  171.429312][ T5846] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[  171.446809][   T40] audit: type=1800 audit(1780639809.178:24427): pid=8125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.609" name="nullb0" dev="tmpfs" ino=1040 res=0 errno=0
[  171.453462][ T5846] usb 6-1: device descriptor read/8, error -71
[  171.569366][ T5846] usb usb6-port1: unable to enumerate USB device
[  171.937518][ T8141] Invalid ELF header type: 3 != 1
[  172.181634][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.976543][ T8153] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.616'.
[  173.229688][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.249997][ T8162] overlayfs: failed to clone lowerpath
[  173.429490][ T8172] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  173.432781][ T8172] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  173.435307][ T8172] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  174.035447][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.068060][ T8176] xt_cgroup: invalid path, errno=-2
[  174.249748][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.320661][   T54] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  174.505999][ T8188] overlayfs: missing 'lowerdir'
[  174.530277][   T54] usb 6-1: config 1 has an invalid interface number: 7 but max is 0
[  174.534348][   T54] usb 6-1: config 1 has no interface number 0
[  174.536280][   T54] usb 6-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  174.542436][   T54] usb 6-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  174.549021][   T54] usb 6-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  174.554438][   T54] usb 6-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  174.557309][   T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.561486][   T54] usb 6-1: Product: syz
[  174.564740][   T54] usb 6-1: Manufacturer: syz
[  174.566257][   T54] usb 6-1: SerialNumber: syz
[  174.571593][ T8176] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  175.219042][ T5817] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  175.289118][ T5754] Bluetooth: hci2: command 0x0406 tx timeout
[  175.291191][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[  175.291893][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  175.390981][ T5817] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  175.394433][ T5817] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  175.397407][ T5817] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  175.400911][ T5817] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.404906][ T5817] usb 5-1: config 0 descriptor??
[  175.408645][ T5817] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  175.411111][ T5817] dvb-usb: bulk message failed: -22 (3/0)
[  175.416224][ T5817] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  175.420234][ T5817] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  175.422512][ T5817] usb 5-1: media controller created
[  175.425088][ T5817] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  175.437060][ T5817] dvb-usb: bulk message failed: -22 (6/0)
[  175.439721][ T5817] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  175.445581][ T5817] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input13
[  175.450640][ T5817] dvb-usb: schedule remote query interval to 150 msecs.
[  175.453023][ T5817] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  175.614272][ T8195] dvb-usb: bulk message failed: -22 (2/0)
[  175.625588][ T5846] usb 5-1: USB disconnect, device number 10
[  175.650189][ T5846] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  176.339526][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  176.518979][ T5114] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  176.585994][ T8231] netlink: 'syz.0.640': attribute type 1 has an invalid length.
[  176.669071][ T5114] usb 8-1: Using ep0 maxpacket: 8
[  176.672474][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  176.675328][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  176.679308][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  176.683475][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  176.687590][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  176.691363][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  176.694882][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  176.698889][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  176.703060][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  176.705371][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  176.708672][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  176.712076][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  176.715783][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  176.719872][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  176.723392][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  176.727349][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  176.730802][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  176.733714][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  176.737443][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  176.741339][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  176.744939][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  176.748340][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  176.752034][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  176.756215][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  176.760689][ T5114] usb 8-1: string descriptor 0 read error: -22
[  176.762655][ T5114] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  176.765433][ T5114] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.772317][ T5114] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  176.898812][ T8237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.642'.
[  177.049215][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.052261][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.080695][   T54] usb 6-1: Error in usbnet_get_endpoints (-71)
[  177.100663][   T54] usb 6-1: USB disconnect, device number 17
[  177.145485][ T8240] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.643'.
[  177.180093][ T5818] kernel read not supported for file /dsp1 (pid: 5818 comm: kworker/0:3)
[  177.189973][ T8242] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16)
[  177.216208][ T8242] fuse: Unknown parameter '0xffffffffffffffff0000000000000000000000000000000000000000'
[  177.222241][ T8242] fuse: Bad value for 'fd'
[  177.230261][ T5114] usb 8-1: USB disconnect, device number 7
[  177.372784][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.461095][ T8221] adutux: No device or device unplugged -19
[  177.645674][ T8248] gretap1: entered promiscuous mode
[  177.648137][ T8248] batman_adv: batadv0: Adding interface: gretap1
[  177.651050][ T8248] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  177.658870][ T8248] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  177.786520][ T8260] batman_adv: batadv0: Adding interface: macsec1
[  177.788587][ T8260] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  177.795072][ T8260] batman_adv: batadv0: Interface activated: macsec1
[  177.871422][ T8261] bridge0: port 3(dummy0) entered disabled state
[  177.873531][ T8261] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.875942][ T8261] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.878533][ T8261] bridge0: entered promiscuous mode
[  178.043507][ T8267] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.652'.
[  178.181602][ T8271] fuse: fd is not a fuse device
[  178.528669][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.434603][ T8317] Bluetooth: MGMT ver 1.23
[  179.452064][ T8317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.664'.
[  179.539528][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.542080][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.545090][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.561377][ T8317] netlink: 'syz.3.664': attribute type 1 has an invalid length.
[  179.668437][ T8320] pim6reg: entered allmulticast mode
[  179.966872][ T8310] team0: entered allmulticast mode
[  179.969385][ T8310] team_slave_0: entered allmulticast mode
[  179.970417][ T5818] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  179.971273][ T8310] team_slave_1: entered allmulticast mode
[  179.975796][ T8310] dummy0: entered allmulticast mode
[  180.001908][ T8310] team0: left allmulticast mode
[  180.003560][ T8310] team_slave_0: left allmulticast mode
[  180.005395][ T8310] team_slave_1: left allmulticast mode
[  180.007340][ T8310] dummy0: left allmulticast mode
[  180.009213][ T8310] pim6reg: left allmulticast mode
[  180.099640][ T5818] usb 6-1: device descriptor read/64, error -71
[  180.102328][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  180.369006][ T5818] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  180.570144][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  180.592390][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  180.598158][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  180.931707][ T5818] usb 6-1: device descriptor read/64, error -71
[  181.039243][ T5818] usb usb6-port1: attempt power cycle
[  181.125065][ T8369] binder: 8368:8369 ioctl c0306201 80000040 returned -22
[  181.160944][ T8374] netlink: 32 bytes leftover after parsing attributes in process `syz.0.680'.
[  181.165474][ T5817] IPVS: starting estimator thread 0...
[  181.285376][ T8372] smbdirect: ib_dev[syz2]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  181.289099][ T8375] IPVS: using max 44 ests per chain, 105600 per kthread
[  181.293308][ T8372] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  181.298727][ T8372] smbdirect: ib_dev[syz2]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  181.320067][ T8372] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  181.391248][ T5818] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  181.419809][ T5818] usb 6-1: device descriptor read/8, error -71
[  181.679027][ T5818] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  181.699939][ T5818] usb 6-1: device descriptor read/8, error -71
[  181.740005][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  181.809359][ T5818] usb usb6-port1: unable to enumerate USB device
[  182.076112][   T40] audit: type=1804 audit(1780639819.808:24428): pid=8407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.688" name="/newroot/167/file0" dev="tmpfs" ino=910 res=1 errno=0
[  182.510743][ T8425] lo speed is unknown, defaulting to 1000
[  182.941485][   T40] audit: type=1804 audit(1780639820.678:24429): pid=8434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.697" name="/newroot/177/file0" dev="tmpfs" ino=957 res=1 errno=0
[  182.977694][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.609295][   T10] net_ratelimit: 2 callbacks suppressed
[  183.609315][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.615112][  T918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.617708][  T918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.870086][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.009637][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.077637][ T8468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.086936][ T8468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.091280][ T8468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.094133][ T8468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.096736][ T8468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.180570][ T8476] lo speed is unknown, defaulting to 1000
[  184.214149][ T8479] virt_wifi0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  184.219249][ T8478] tipc: Started in network mode
[  184.225531][ T8478] tipc: Node identity ac14142f, cluster identity 4711
[  184.231402][ T8478] tipc: New replicast peer: 0.0.0.0
[  184.237738][ T8478] tipc: Enabled bearer <udp:syz2>, priority 10
[  184.609774][ T8484] lo speed is unknown, defaulting to 1000
[  184.640908][ T8487] netlink: 'syz.1.712': attribute type 15 has an invalid length.
[  184.643799][ T8487] netlink: 'syz.1.712': attribute type 7 has an invalid length.
[  184.646996][ T8487] netlink: 52 bytes leftover after parsing attributes in process `syz.1.712'.
[  185.199150][  T918] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  185.231169][ T5817] tipc: Node number set to 2886997039
[  185.360915][  T918] usb 8-1: config 1 has an invalid interface number: 7 but max is 0
[  185.364343][  T918] usb 8-1: config 1 has no interface number 0
[  185.368254][  T918] usb 8-1: config 1 interface 7 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  185.378350][  T918] usb 8-1: config 1 interface 7 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  185.386540][  T918] usb 8-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  185.400121][  T918] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.412006][  T918] usb 8-1: Product: syz
[  185.413773][  T918] usb 8-1: Manufacturer: syz
[  185.429993][  T918] usb 8-1: SerialNumber: syz
[  185.446073][ T8496] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  185.460398][ T8496] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  185.470495][  T918] usb 8-1: Expected 3 endpoints, found: 2
[  185.560208][ T8521] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.722'.
[  185.626782][ T8522] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  185.629720][ T8522] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  185.633123][ T8522] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  185.688063][  T918] usb 8-1: USB disconnect, device number 8
[  186.109121][  T918] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  186.212193][ T8533] ptrace attach of "/syz-executor exec"[5749] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               
[  186.269547][  T918] usb 8-1: Using ep0 maxpacket: 8
[  186.337137][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  186.344614][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  186.352204][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  186.360784][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  186.370941][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 109, changing to 10
[  186.383589][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  186.395920][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  186.411339][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  186.414668][ T8512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  186.417125][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  186.422187][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  186.427846][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  186.437329][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  186.440872][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 109, changing to 10
[  186.444377][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  186.447863][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  186.453115][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  186.458345][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  186.460681][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  186.464111][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  186.467591][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  186.471943][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 109, changing to 10
[  186.475764][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  186.478381][ T8537] FAULT_INJECTION: forcing a failure.
[  186.478381][ T8537] name failslab, interval 1, probability 0, space 0, times 0
[  186.480283][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  186.480308][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  186.483666][  T918] usb 8-1: string descriptor 0 read error: -22
[  186.485404][ T8537] CPU: 3 UID: 0 PID: 8537 Comm: syz.1.726 Not tainted syzkaller #0 PREEMPT(full) 
[  186.485419][ T8537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  186.485426][ T8537] Call Trace:
[  186.485430][ T8537]  <TASK>
[  186.485434][ T8537]  dump_stack_lvl+0x100/0x190
[  186.485449][ T8537]  should_fail_ex.cold+0x5/0xa
[  186.485463][ T8537]  should_failslab+0xc2/0x120
[  186.485476][ T8537]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  186.485494][ T8537]  ? __alloc_skb+0x140/0x710
[  186.485506][ T8537]  __alloc_skb+0x140/0x710
[  186.485515][ T8537]  ? __alloc_skb+0x5b7/0x710
[  186.485525][ T8537]  ? __pfx___alloc_skb+0x10/0x10
[  186.485536][ T8537]  ? __mutex_lock+0x26d/0x1b10
[  186.485553][ T8537]  netlink_dump+0x194/0xd00
[  186.485568][ T8537]  ? __pfx_netlink_dump+0x10/0x10
[  186.485579][ T8537]  ? __netlink_lookup+0x65c/0x900
[  186.485600][ T8537]  __netlink_dump_start+0x6d6/0x990
[  186.485615][ T8537]  ? __pfx_tc_dump_chain+0x10/0x10
[  186.485628][ T8537]  rtnetlink_rcv_msg+0xb3e/0xe90
[  186.485640][ T8537]  ? __pfx_tc_dump_chain+0x10/0x10
[  186.485654][ T8537]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  186.485665][ T8537]  ? __pfx_rtnl_dumpit+0x10/0x10
[  186.485680][ T8537]  ? __pfx_tc_dump_chain+0x10/0x10
[  186.485695][ T8537]  ? ref_tracker_free+0x37e/0x6c0
[  186.485708][ T8537]  netlink_rcv_skb+0x159/0x420
[  186.485722][ T8537]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  186.485734][ T8537]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  186.485752][ T8537]  ? netlink_deliver_tap+0x1ae/0xcc0
[  186.485772][ T8537]  netlink_unicast+0x585/0x850
[  186.485788][ T8537]  ? __pfx_netlink_unicast+0x10/0x10
[  186.485810][ T8537]  netlink_sendmsg+0x8b0/0xda0
[  186.485836][ T8537]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.485860][ T8537]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  186.485884][ T8537]  ____sys_sendmsg+0x9e1/0xb70
[  186.485904][ T8537]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.485929][ T8537]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.485961][ T8537]  ___sys_sendmsg+0x190/0x1e0
[  186.485982][ T8537]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.486003][ T8537]  ? find_held_lock+0x2b/0x80
[  186.486025][ T8537]  __sys_sendmsg+0x170/0x220
[  186.486036][ T8537]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.486045][ T8537]  ? __fget_files+0x21f/0x3d0
[  186.486062][ T8537]  ? ksys_write+0x1ac/0x250
[  186.486075][ T8537]  ? rcu_is_watching+0x12/0xc0
[  186.486088][ T8537]  __do_fast_syscall_32+0xe7/0x970
[  186.486104][ T8537]  ? lockdep_hardirqs_on+0x78/0x100
[  186.486120][ T8537]  do_fast_syscall_32+0x32/0x70
[  186.486136][ T8537]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.486150][ T8537] RIP: 0023:0xf7f35f7c
[  186.486159][ T8537] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  186.486169][ T8537] RSP: 002b:00000000f53f650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  186.486180][ T8537] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000280
[  186.486186][ T8537] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  186.486192][ T8537] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.486198][ T8537] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  186.486204][ T8537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.486217][ T8537]  </TASK>
[  186.593746][  T918] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  186.596486][  T918] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.613283][  T918] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  187.070477][   T10] usb 8-1: USB disconnect, device number 9
[  187.080783][ T8549] input: syz1 as /devices/virtual/input/input14
[  187.192215][ T8556] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.733'.
[  187.237316][   T40] audit: type=1804 audit(1780639824.968:24430): pid=8558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.734" name="file0" dev="tmpfs" ino=1265 res=1 errno=0
[  187.310074][ T8553] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  187.320820][ T8553] CIFS mount error: No usable UNC path provided in device string!
[  187.320820][ T8553] 
[  187.320854][ T8528] adutux: No device or device unplugged -19
[  187.327080][ T8553] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  187.375760][ T8565] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.443918][ T8565] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.447716][ T8565] netlink: 28 bytes leftover after parsing attributes in process `syz.2.737'.
[  187.451960][ T8565] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.458437][ T8565] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.492190][ T8576] BIDI support in bsg has been removed.
[  187.567445][   T40] audit: type=1804 audit(1780639825.298:24431): pid=8583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.743" name="/newroot/190/file0" dev="tmpfs" ino=1025 res=1 errno=0
[  187.618650][ T8585] netlink: 16 bytes leftover after parsing attributes in process `syz.0.744'.
[  187.789058][   T10] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  187.941090][   T10] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  187.943842][   T10] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  187.946936][   T10] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  187.949876][   T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  187.953378][   T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  187.958101][   T10] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  187.961068][   T10] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  187.963579][   T10] usb 6-1: Product: syz
[  187.964922][   T10] usb 6-1: Manufacturer: syz
[  187.970480][   T10] cdc_wdm 6-1:1.0: skipping garbage
[  187.971368][ T5746] block nbd0: Receive control failed (result -32)
[  187.972710][   T10] cdc_wdm 6-1:1.0: skipping garbage
[  188.010365][ T8586] block nbd0: shutting down sockets
[  188.014098][   T10] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  188.016006][   T10] cdc_wdm 6-1:1.0: Unknown control protocol
[  188.189015][  T918] usb 6-1: USB disconnect, device number 22
[  188.543222][   T40] audit: type=1326 audit(1780639826.278:24432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.550532][   T40] audit: type=1326 audit(1780639826.278:24433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.557451][   T40] audit: type=1326 audit(1780639826.288:24434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.565808][   T40] audit: type=1326 audit(1780639826.288:24435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.573958][   T40] audit: type=1326 audit(1780639826.288:24436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.581587][   T40] audit: type=1326 audit(1780639826.288:24437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.589290][   T40] audit: type=1326 audit(1780639826.288:24438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.596071][   T40] audit: type=1326 audit(1780639826.288:24439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8603 comm="syz.2.750" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  188.759035][   T34] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  188.836758][ T8615] sctp: [Deprecated]: syz.2.753 (pid 8615) Use of struct sctp_assoc_value in delayed_ack socket option.
[  188.836758][ T8615] Use struct sctp_sack_info instead
[  188.928013][   T34] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  188.932579][   T34] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  188.937317][ T8619] net_ratelimit: 12 callbacks suppressed
[  188.937384][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.937997][   T34] usb 5-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00
[  188.940631][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.944272][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.947852][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.955995][   T34] usb 5-1: config 0 descriptor??
[  188.962692][   T34] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  188.994373][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.999825][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.011611][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.020711][ T8619] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.047753][ T8620] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.051646][ T8620] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.056333][ T8620] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.278223][ T8623] netlink: 112 bytes leftover after parsing attributes in process `syz.0.749'.
[  189.550381][ T5900] usb 5-1: USB disconnect, device number 11
[  189.853862][ T8631] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.760'.
[  190.040671][   T54] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  190.210597][   T54] usb 8-1: no configurations
[  190.213134][   T54] usb 8-1: can't read configurations, error -22
[  190.349119][   T54] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  190.497145][ T8636] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.762'.
[  190.503721][   T54] usb 8-1: no configurations
[  190.510343][   T54] usb 8-1: can't read configurations, error -22
[  190.521116][   T54] usb usb8-port1: attempt power cycle
[  190.879034][   T54] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  190.885425][ T8643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.900668][   T54] usb 8-1: no configurations
[  190.902412][   T54] usb 8-1: can't read configurations, error -22
[  190.941939][ T8643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.948225][ T8643] netlink: 28 bytes leftover after parsing attributes in process `syz.1.764'.
[  191.049016][   T54] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[  191.080674][   T54] usb 8-1: no configurations
[  191.082639][   T54] usb 8-1: can't read configurations, error -22
[  191.085698][   T54] usb usb8-port1: unable to enumerate USB device
[  191.420225][ T8646] netlink: 96 bytes leftover after parsing attributes in process `syz.0.765'.
[  192.328196][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  192.328213][   T40] audit: type=1804 audit(1780639830.058:24444): pid=8660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.770" name="/newroot/146/file0" dev="tmpfs" ino=798 res=1 errno=0
[  192.446486][ T8662] lo speed is unknown, defaulting to 1000
[  192.660488][ T8654] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  192.729212][  T918] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  193.156852][  T918] usb 6-1: Using ep0 maxpacket: 16
[  193.405541][   T40] audit: type=1804 audit(1780639831.138:24445): pid=8682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.779" name="file0" dev="tmpfs" ino=1340 res=1 errno=0
[  193.489985][  T918] usb 6-1: config 0 has no interfaces?
[  193.530072][ T8690] fuse: fd is not a fuse device
[  193.681878][  T918] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  193.684822][  T918] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  193.687283][  T918] usb 6-1: Manufacturer: syz
[  193.696124][  T918] usb 6-1: config 0 descriptor??
[  193.900391][ T8662] FAULT_INJECTION: forcing a failure.
[  193.900391][ T8662] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  193.909604][ T8662] CPU: 1 UID: 0 PID: 8662 Comm: syz.1.771 Not tainted syzkaller #0 PREEMPT(full) 
[  193.909629][ T8662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  193.909639][ T8662] Call Trace:
[  193.909645][ T8662]  <TASK>
[  193.909654][ T8662]  dump_stack_lvl+0x100/0x190
[  193.909677][ T8662]  should_fail_ex.cold+0x5/0xa
[  193.909716][ T8662]  _copy_from_user+0x2e/0xd0
[  193.909745][ T8662]  get_compat_msghdr+0xb3/0x4b0
[  193.909768][ T8662]  ? __pfx_get_compat_msghdr+0x10/0x10
[  193.909799][ T8662]  ___sys_sendmsg+0x1b6/0x1e0
[  193.909826][ T8662]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.909860][ T8662]  ? find_held_lock+0x2b/0x80
[  193.909899][ T8662]  __sys_sendmsg+0x170/0x220
[  193.909919][ T8662]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.909935][ T8662]  ? __fget_files+0x21f/0x3d0
[  193.909962][ T8662]  ? ksys_write+0x1ac/0x250
[  193.909984][ T8662]  ? rcu_is_watching+0x12/0xc0
[  193.910010][ T8662]  __do_fast_syscall_32+0xe7/0x970
[  193.910036][ T8662]  ? lockdep_hardirqs_on+0x78/0x100
[  193.910063][ T8662]  do_fast_syscall_32+0x32/0x70
[  193.910088][ T8662]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.910111][ T8662] RIP: 0023:0xf7f35f7c
[  193.910127][ T8662] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  193.910150][ T8662] RSP: 002b:00000000f53f650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  193.910167][ T8662] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800002c0
[  193.910177][ T8662] RDX: 000000000004c040 RSI: 0000000000000000 RDI: 0000000000000000
[  193.910187][ T8662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.910198][ T8662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.910208][ T8662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.910232][ T8662]  </TASK>
[  194.051621][  T842] usb 6-1: USB disconnect, device number 23
[  194.489390][   T34] net_ratelimit: 245 callbacks suppressed
[  194.489409][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  195.149233][  T842] usb 6-1: new full-speed USB device number 24 using dummy_hcd
[  195.199804][ T8732] netlink: 24 bytes leftover after parsing attributes in process `syz.3.795'.
[  195.301183][  T842] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  195.305597][  T842] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  195.309503][  T842] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  195.313366][  T842] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.465786][  T842] usb 6-1: config 0 descriptor??
[  195.500367][  T842] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  195.503278][  T842] dvb-usb: bulk message failed: -22 (3/0)
[  195.527486][  T842] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  195.529701][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  195.531165][  T842] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  195.535880][  T842] usb 6-1: media controller created
[  195.541417][  T842] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  195.723826][ T8726] dvb-usb: bulk message failed: -22 (2/0)
[  195.817583][  T842] dvb-usb: bulk message failed: -22 (6/0)
[  195.820877][  T842] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  196.286885][  T842] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input15
[  196.303723][  T842] dvb-usb: schedule remote query interval to 150 msecs.
[  196.308194][  T842] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  196.316108][  T842] usb 6-1: USB disconnect, device number 24
[  196.370131][  T842] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  196.579156][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  196.729434][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  197.609208][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  197.741513][   T40] audit: type=1804 audit(1780639835.478:24446): pid=8779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.810" name="/newroot/206/file0" dev="tmpfs" ino=1109 res=1 errno=0
[  197.803360][  T842] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  197.969088][  T842] usb 6-1: Using ep0 maxpacket: 8
[  197.979844][  T842] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  197.992499][  T842] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  198.012309][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  198.025926][ T8784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.029522][  T842] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  198.029542][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 246, changing to 11
[  198.029555][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  198.029569][  T842] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  198.034713][ T8784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.048529][  T842] usb 6-1: config 168 interface 0 has no altsetting 0
[  198.048856][ T8784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.057198][  T842] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  198.057606][ T8784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.060552][  T842] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  198.062691][ T8784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.074671][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  198.098349][  T842] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  198.114184][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 246, changing to 11
[  198.129431][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  198.143113][  T842] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  198.157242][  T842] usb 6-1: config 168 interface 0 has no altsetting 0
[  198.210660][  T842] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  198.218373][  T842] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  198.228440][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  198.238720][  T842] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  198.255165][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 246, changing to 11
[  198.275823][  T842] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  198.304150][  T842] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  198.317541][  T842] usb 6-1: config 168 interface 0 has no altsetting 0
[  198.332417][  T842] usb 6-1: string descriptor 0 read error: -22
[  198.334860][  T842] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  198.346086][  T842] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.432410][  T842] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  198.795634][   T34] usb 6-1: USB disconnect, device number 25
[  198.821548][ T1434] ieee802154 phy0 wpan0: encryption failed: -22
[  198.824002][ T1434] ieee802154 phy1 wpan1: encryption failed: -22
[  199.610767][ T8796] afs: Unknown parameter ''
[  199.693719][ T5114] net_ratelimit: 212 callbacks suppressed
[  199.693738][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.779169][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.840337][ T8806] fuse: fd is not a fuse device
[  199.885171][   T40] audit: type=1804 audit(1780639837.618:24447): pid=8808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.819" name="/newroot/151/file0" dev="tmpfs" ino=826 res=1 errno=0
[  200.809998][ T5900] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  200.959035][ T5900] usb 8-1: Using ep0 maxpacket: 8
[  200.962166][ T5900] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  200.964944][ T5900] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  200.968527][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  200.972847][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  200.977714][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 184, changing to 11
[  200.982218][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  200.986627][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  200.991477][ T5900] usb 8-1: config 168 interface 0 has no altsetting 0
[  200.994710][ T5900] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  200.997096][ T5900] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  201.000854][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  201.005722][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  201.010888][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 184, changing to 11
[  201.015309][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  201.018881][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  201.020815][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  201.023468][ T5900] usb 8-1: config 168 interface 0 has no altsetting 0
[  201.030508][ T5900] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  201.049023][ T5900] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  201.053223][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  201.057233][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  201.062666][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 184, changing to 11
[  201.066802][ T5900] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  201.070595][ T5900] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  201.075203][ T5900] usb 8-1: config 168 interface 0 has no altsetting 0
[  201.081946][ T5900] usb 8-1: string descriptor 0 read error: -22
[  201.087893][ T5900] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  201.092240][ T5900] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.110646][ T5900] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  201.138439][ T8835] Invalid ELF header type: 2 != 1
[  201.361182][ T8765] usb 8-1: USB disconnect, device number 14
[  201.570742][ T8828] adutux: No device or device unplugged -19
[  201.673801][ T8878] siw: device registration error -23
[  202.158361][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.007886][ T8894] netlink: 24 bytes leftover after parsing attributes in process `syz.3.841'.
[  203.193363][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.220233][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.613994][ T8918] netlink: 'syz.0.849': attribute type 5 has an invalid length.
[  203.703474][ T8918] mtd partition "" doesn't have enough space: 0x20003 < 0x2001f, disabled
[  203.725768][ T8918] ftl_cs: FTL header not found.
[  203.787685][   T40] audit: type=1804 audit(1780639841.518:24448): pid=8927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.851" name="file0" dev="tmpfs" ino=1478 res=1 errno=0
[  203.898745][ T8930] xt_CT: No such helper "pptp"
[  204.165572][ T8938] netlink: 28 bytes leftover after parsing attributes in process `syz.0.854'.
[  204.168799][ T8938] netlink: 28 bytes leftover after parsing attributes in process `syz.0.854'.
[  204.262788][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  204.279111][ T8940] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.855'.
[  204.353830][ T8942] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.856'.
[  205.289491][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  205.302387][ T5746] Bluetooth: hci1: hcon ffff888029e60000 sent 1 < count 10
[  205.311360][ T8949] random: crng reseeded on system resumption
[  205.629754][ T8962] netlink: 'syz.3.861': attribute type 10 has an invalid length.
[  205.632155][ T8962] netlink: 40 bytes leftover after parsing attributes in process `syz.3.861'.
[  205.704205][ T8962] dummy0: entered promiscuous mode
[  205.717653][ T8962] bridge0: port 1(dummy0) entered blocking state
[  205.719722][ T8962] bridge0: port 1(dummy0) entered disabled state
[  205.721979][ T8962] dummy0: entered allmulticast mode
[  205.731055][ T8962] bridge0: port 1(dummy0) entered blocking state
[  205.733174][ T8962] bridge0: port 1(dummy0) entered forwarding state
[  206.077115][ T8984] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  206.249633][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  206.339330][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  206.675798][ T8997] tipc: Started in network mode
[  206.677494][ T8997] tipc: Node identity ba5d73d4ee03, cluster identity 4711
[  206.680038][ T8997] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  206.683185][ T8997] syzkaller0: entered promiscuous mode
[  206.685008][ T8997] syzkaller0: entered allmulticast mode
[  206.689686][ T8997] netlink: 72 bytes leftover after parsing attributes in process `syz.0.869'.
[  206.719039][ T8765] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  206.744606][ T8997] tipc: Resetting bearer <eth:syzkaller0>
[  206.869034][ T8765] usb 8-1: Using ep0 maxpacket: 16
[  206.873052][ T8765] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  206.877280][ T8765] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  206.881991][ T8765] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  206.885895][ T8765] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  206.890148][ T8765] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  206.897235][ T8765] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  206.901074][ T8765] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  206.904357][ T8765] usb 8-1: Manufacturer: syz
[  206.908260][ T8765] usb 8-1: config 0 descriptor??
[  207.109054][ T5114] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  207.169061][ T8765] rc_core: IR keymap rc-hauppauge not found
[  207.171044][ T8765] Registered IR keymap rc-empty
[  207.172797][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.189175][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.210284][ T8765] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  207.216849][ T8765] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input17
[  207.225515][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.239197][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.249047][ T5114] usb 5-1: device descriptor read/64, error -71
[  207.259118][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.279134][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.299050][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.319040][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.322900][ T8995] netlink: 16 bytes leftover after parsing attributes in process `syz.3.868'.
[  207.334855][ T8995] bond2: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  207.339206][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.352489][ T8995] bond2 (unregistering): Released all slaves
[  207.359135][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.369403][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  207.379055][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.399387][ T8765] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  207.422313][ T8765] mceusb 8-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  207.425227][ T8765] mceusb 8-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  207.430615][ T8765] usb 8-1: USB disconnect, device number 15
[  207.489006][ T5114] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  207.629078][ T5114] usb 5-1: device descriptor read/64, error -71
[  207.729048][ T8765] tipc: Node number set to 1415476180
[  207.739310][ T5114] usb usb5-port1: attempt power cycle
[  207.942381][   T40] audit: type=1804 audit(1780639845.678:24449): pid=9033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.878" name="file0" dev="tmpfs" ino=1523 res=1 errno=0
[  208.052539][   T40] audit: type=1326 audit(1780639845.788:24450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9043 comm="syz.3.883" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26f7c code=0x0
[  208.099059][ T5114] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  208.129476][ T5114] usb 5-1: device descriptor read/8, error -71
[  208.169280][ T9051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.175836][ T9053] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.885'.
[  208.379170][ T5114] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  208.409409][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.413166][ T5900] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.414776][ T5114] usb 5-1: device descriptor read/8, error -71
[  208.519325][ T5114] usb usb5-port1: unable to enumerate USB device
[  208.954726][ T9062] syz_tun: entered allmulticast mode
[  209.249111][ T5114] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  209.299716][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.399071][ T5114] usb 8-1: Using ep0 maxpacket: 8
[  209.402094][ T5114] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  209.405285][ T5114] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  209.409900][ T5114] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  209.413949][ T5114] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  209.418890][ T5114] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  209.422474][ T5114] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.449449][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.630567][ T5114] usb 8-1: GET_CAPABILITIES returned 0
[  209.632681][ T5114] usbtmc 8-1:16.0: can't read capabilities
[  209.756085][   T40] audit: type=1804 audit(1780639847.488:24451): pid=9066 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.890" name="/newroot/167/file0" dev="tmpfs" ino=907 res=1 errno=0
[  209.838229][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.846130][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.850354][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.853654][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.857299][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.860949][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.864614][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.868237][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.871679][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.874459][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.886218][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.889046][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.891778][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.894504][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.897202][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.899889][    C2] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  209.904162][ T9064] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  209.916322][ T9064] lo speed is unknown, defaulting to 1000
[  210.071809][ T5900] usb 8-1: USB disconnect, device number 16
[  210.091984][ T9076] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  210.973230][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  211.286562][ T9080] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.894'.
[  211.416775][ T9088] netlink: 60 bytes leftover after parsing attributes in process `syz.1.897'.
[  211.423326][ T9088] netlink: 'syz.1.897': attribute type 1 has an invalid length.
[  211.480711][ T9090] netlink: 60 bytes leftover after parsing attributes in process `syz.1.897'.
[  211.686054][   T40] audit: type=1804 audit(1780639849.418:24452): pid=9089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.895" name="/newroot/211/file0" dev="tmpfs" ino=1150 res=1 errno=0
[  211.769214][ T5900] usb 6-1: new full-speed USB device number 26 using dummy_hcd
[  211.930396][   T40] audit: type=1804 audit(1780639849.668:24453): pid=9098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.899" name="/newroot/228/file0" dev="tmpfs" ino=1224 res=1 errno=0
[  211.942331][ T5900] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[  211.945357][ T5900] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 64
[  211.949420][ T5900] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 64
[  211.952821][ T5900] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  211.956988][ T5900] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  211.961093][ T5900] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.997075][ T9100] netlink: 64 bytes leftover after parsing attributes in process `syz.0.900'.
[  212.000839][ T9100] netlink: 60 bytes leftover after parsing attributes in process `syz.0.900'.
[  212.010712][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  212.195200][ T9088] bridge_slave_1: left allmulticast mode
[  212.197146][ T9088] bridge_slave_1: left promiscuous mode
[  212.203041][ T9088] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.212819][ T9088] bridge_slave_0: left allmulticast mode
[  212.214610][ T9088] bridge_slave_0: left promiscuous mode
[  212.216842][ T9088] bridge0: port 1(bridge_slave_0) entered disabled state
[  212.245331][ T5900] usb 6-1: GET_CAPABILITIES returned 0
[  212.247044][ T5900] usbtmc 6-1:16.0: can't read capabilities
[  212.796381][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.163118][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.294393][   T40] audit: type=1804 audit(1780639851.028:24454): pid=9127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.908" name="/newroot/213/file0" dev="tmpfs" ino=1161 res=1 errno=0
[  214.431103][   T34] usb 6-1: USB disconnect, device number 26
[  214.467472][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  214.771985][ T9149] x_tables: ip_tables: icmp match: only valid for protocol 1
[  214.860968][ T9152] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  214.863565][ T9152] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  214.867081][ T9152] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  215.573771][ T9154] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  215.577638][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  215.615126][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  215.661524][ T9155] tipc: Cannot configure node identity twice
[  215.673622][   T40] audit: type=1804 audit(1780639853.408:24455): pid=9157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.918" name="/newroot/174/file0" dev="tmpfs" ino=953 res=1 errno=0
[  215.866040][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  216.149416][ T5817] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  216.319139][ T5817] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  216.337737][ T5817] usb 6-1: config 0 interface 0 has no altsetting 0
[  216.364695][ T5817] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  216.378851][ T5817] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  216.393705][ T5817] usb 6-1: Product: syz
[  216.404656][ T5817] usb 6-1: Manufacturer: syz
[  216.410683][ T5817] usb 6-1: SerialNumber: syz
[  216.509680][ T5817] usb 6-1: config 0 descriptor??
[  216.613359][ T5817] usb 6-1: selecting invalid altsetting 0
[  216.674082][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  216.728997][ T8765] usb 8-1: new full-speed USB device number 17 using dummy_hcd
[  216.910199][ T8765] usb 8-1: config 0 has an invalid interface number: 120 but max is 0
[  216.915261][ T8765] usb 8-1: config 0 has no interface number 0
[  216.919849][ T8765] usb 8-1: config 0 interface 120 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  216.927708][ T8765] usb 8-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  216.933670][ T8765] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.940948][ T8765] usb 8-1: config 0 descriptor??
[  217.006301][ T9179] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  217.008883][ T9179] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  217.011485][ T9179] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  217.689440][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.051862][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.729271][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.891894][ T5817] usb 6-1: USB disconnect, device number 27
[  218.899121][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.936768][ T9196] lo speed is unknown, defaulting to 1000
[  219.120193][ T9181] Process accounting resumed
[  219.137380][   T10] usb 8-1: USB disconnect, device number 17
[  219.166066][ T9205] FAULT_INJECTION: forcing a failure.
[  219.166066][ T9205] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.170338][ T9205] CPU: 2 UID: 0 PID: 9205 Comm: syz.0.932 Not tainted syzkaller #0 PREEMPT(full) 
[  219.170353][ T9205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  219.170359][ T9205] Call Trace:
[  219.170363][ T9205]  <TASK>
[  219.170368][ T9205]  dump_stack_lvl+0x100/0x190
[  219.170382][ T9205]  should_fail_ex.cold+0x5/0xa
[  219.170396][ T9205]  _copy_from_user+0x2e/0xd0
[  219.170413][ T9205]  get_compat_msghdr+0xb3/0x4b0
[  219.170426][ T9205]  ? __pfx_get_compat_msghdr+0x10/0x10
[  219.170442][ T9205]  ___sys_sendmsg+0x1b6/0x1e0
[  219.170457][ T9205]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.170478][ T9205]  ? find_held_lock+0x2b/0x80
[  219.170499][ T9205]  __sys_sendmsg+0x170/0x220
[  219.170510][ T9205]  ? __pfx___sys_sendmsg+0x10/0x10
[  219.170520][ T9205]  ? __fget_files+0x21f/0x3d0
[  219.170535][ T9205]  ? ksys_write+0x1ac/0x250
[  219.170548][ T9205]  ? rcu_is_watching+0x12/0xc0
[  219.170562][ T9205]  __do_fast_syscall_32+0xe7/0x970
[  219.170578][ T9205]  ? lockdep_hardirqs_on+0x78/0x100
[  219.170594][ T9205]  do_fast_syscall_32+0x32/0x70
[  219.170610][ T9205]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  219.170623][ T9205] RIP: 0023:0xf7f13f7c
[  219.170631][ T9205] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  219.170642][ T9205] RSP: 002b:00000000f53d650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  219.170652][ T9205] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000a40
[  219.170659][ T9205] RDX: 00000000040008c4 RSI: 0000000000000000 RDI: 0000000000000000
[  219.170665][ T9205] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  219.170670][ T9205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  219.170676][ T9205] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  219.170689][ T9205]  </TASK>
[  219.179928][ T9206] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  219.524024][ T9216] netlink: 'syz.0.936': attribute type 8 has an invalid length.
[  219.526634][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.0.936'.
[  219.531675][ T9216] netlink: 'syz.0.936': attribute type 8 has an invalid length.
[  219.536554][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.0.936'.
[  219.677934][ T9221] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  219.829241][ T5817] usb 5-1: new full-speed USB device number 16 using dummy_hcd
[  219.980714][ T5817] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  219.982270][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.986178][ T5817] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  219.990162][ T5817] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  219.994435][ T5817] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.001902][ T5817] usb 5-1: config 0 descriptor??
[  220.019303][ T5817] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  220.027886][ T5817] dvb-usb: bulk message failed: -22 (3/0)
[  220.047968][ T9227] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[  220.050643][ T9227] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[  220.071373][ T5817] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  220.085573][ T5817] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  220.094865][ T5817] usb 5-1: media controller created
[  220.102401][ T5817] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  220.114922][ T5817] dvb-usb: bulk message failed: -22 (6/0)
[  220.133238][ T5817] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  220.137810][ T5817] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input18
[  220.144014][ T5817] dvb-usb: schedule remote query interval to 150 msecs.
[  220.146391][ T5817] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  220.224509][ T5817] usb 5-1: USB disconnect, device number 16
[  220.252186][ T5817] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  220.785617][ T9237] /dev/sr0: Can't open blockdev
[  221.053961][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  221.057824][ T1190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  221.064302][ T9263] netlink: 'syz.2.952': attribute type 1 has an invalid length.
[  221.124570][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  221.136735][ T9268] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.953'.
[  221.366939][ T9279] netlink: 'syz.0.957': attribute type 1 has an invalid length.
[  221.389710][ T9279] 8021q: adding VLAN 0 to HW filter on device bond3
[  221.407252][ T9279] bond3: (slave geneve2): making interface the new active one
[  221.412327][ T9279] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  221.415207][ T1160] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.417932][ T1160] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.421852][ T1160] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.425081][ T1160] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.643273][ T9290] netlink: 'syz.0.960': attribute type 12 has an invalid length.
[  221.645817][ T9290] netlink: 'syz.0.960': attribute type 29 has an invalid length.
[  221.648501][ T9290] netlink: 148 bytes leftover after parsing attributes in process `syz.0.960'.
[  221.939374][   T10] net_ratelimit: 1 callbacks suppressed
[  221.939385][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  222.259129][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  222.951897][ T9315] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  222.954747][ T9315] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  222.957976][ T9315] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  223.299148][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  223.710965][ T9330] bond2 (unregistering): Released all slaves
[  223.939052][ T5746] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  223.939068][   T62] Bluetooth: hci4: command 0x1003 tx timeout
[  224.236402][ T9349] netlink: 12 bytes leftover after parsing attributes in process `syz.2.975'.
[  224.330048][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  224.971051][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  225.379150][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  226.409169][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  226.899472][  T918] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  227.059057][  T918] usb 8-1: Using ep0 maxpacket: 8
[  227.082392][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  227.096240][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  227.103231][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  227.109096][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  227.114038][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  227.118603][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  227.125399][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  227.131325][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  227.138777][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  227.143598][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  227.148628][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  227.154619][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  227.160012][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  227.165045][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  227.169338][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  227.175504][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  227.182477][  T918] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  227.187274][  T918] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  227.191723][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  227.195955][  T918] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  227.201942][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  227.206388][  T918] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  227.210756][  T918] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  227.216288][  T918] usb 8-1: config 168 interface 0 has no altsetting 0
[  227.232369][  T918] usb 8-1: string descriptor 0 read error: -22
[  227.236566][  T918] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  227.240512][  T918] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.285448][  T918] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  227.453923][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.564813][ T9410] netlink: 24 bytes leftover after parsing attributes in process `syz.2.993'.
[  227.596730][  T918] usb 8-1: USB disconnect, device number 18
[  227.641869][   T40] audit: type=1804 audit(1780639865.378:24456): pid=9412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.994" name="file0" dev="tmpfs" ino=1716 res=1 errno=0
[  227.641909][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  227.821828][ T9394] adutux: No device or device unplugged -19
[  227.890932][ T9422] netlink: 4 bytes leftover after parsing attributes in process `syz.1.995'.
[  228.009603][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  228.499175][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  229.070201][ T9451] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  229.073635][ T9451] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  229.077024][ T9451] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  229.259034][ T5114] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  229.419082][ T5114] usb 5-1: Using ep0 maxpacket: 8
[  229.423010][ T5114] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  229.425747][ T5114] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  229.430117][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  229.434453][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  229.438176][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  229.443422][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  229.449745][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  229.453812][ T5114] usb 5-1: config 168 interface 0 has no altsetting 0
[  229.456735][ T5114] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  229.460000][ T5114] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  229.463440][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  229.466933][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  229.470904][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  229.474347][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  229.477769][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  229.482200][ T5114] usb 5-1: config 168 interface 0 has no altsetting 0
[  229.485178][ T5114] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  229.487454][ T5114] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  229.491245][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  229.494869][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  229.498468][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  229.502074][ T5114] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  229.505698][ T5114] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  229.510344][ T5114] usb 5-1: config 168 interface 0 has no altsetting 0
[  229.515174][ T5114] usb 5-1: string descriptor 0 read error: -22
[  229.517356][ T5114] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  229.520487][ T5114] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.532093][ T5114] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  229.547203][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  229.733114][ T5114] usb 5-1: USB disconnect, device number 17
[  230.033015][ T9449] adutux: No device or device unplugged -19
[  230.140289][ T9463] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  230.144503][ T9463] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  230.170873][ T9463] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  230.187614][ T9464] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  230.191013][ T9463] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  230.199177][ T9464] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  230.222298][ T9464] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  230.224482][ T9463] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  230.225556][ T9464] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  230.227527][ T9463] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  230.252879][ T9463] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  230.256067][ T9463] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  230.579495][ T1193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.584820][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.591081][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.669032][   T40] audit: type=1326 audit(1780639868.198:24457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.677895][   T40] audit: type=1326 audit(1780639868.198:24458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.693818][   T40] audit: type=1326 audit(1780639868.198:24459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.709039][   T40] audit: type=1326 audit(1780639868.198:24460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.729289][   T40] audit: type=1326 audit(1780639868.198:24461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf71361ab code=0x7ffc0000
[  230.737187][   T40] audit: type=1326 audit(1780639868.198:24462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.748228][   T40] audit: type=1326 audit(1780639868.198:24463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.769080][   T40] audit: type=1326 audit(1780639868.198:24464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  230.777511][   T40] audit: type=1326 audit(1780639868.208:24465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.1.1011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  231.057456][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  231.069849][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  231.786196][ T9487] syz_tun: entered allmulticast mode
[  231.793856][ T9487] bond0: entered promiscuous mode
[  231.795580][ T9487] bond_slave_0: entered promiscuous mode
[  231.797461][ T9487] bond_slave_1: entered promiscuous mode
[  231.800312][ T9487] syz_tun: entered promiscuous mode
[  231.804090][   T10] syz1: Port: 1 Link DOWN
[  231.914326][ T9496] exFAT-fs (nbd3): unable to read boot sector
[  231.916355][ T9496] exFAT-fs (nbd3): failed to read boot sector
[  231.918567][ T9496] exFAT-fs (nbd3): failed to recognize exfat type
[  232.159082][ T5846] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  232.668228][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  232.668240][   T40] audit: type=1326 audit(1780639870.398:24470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.680592][   T40] audit: type=1326 audit(1780639870.408:24471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.688019][   T40] audit: type=1326 audit(1780639870.408:24472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.697594][   T40] audit: type=1326 audit(1780639870.408:24473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.706089][   T40] audit: type=1326 audit(1780639870.408:24474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.713949][   T40] audit: type=1326 audit(1780639870.408:24475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.723338][   T40] audit: type=1326 audit(1780639870.408:24476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.730268][   T40] audit: type=1326 audit(1780639870.408:24477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.736876][   T40] audit: type=1326 audit(1780639870.418:24478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.743460][ T5846] usb 6-1: Using ep0 maxpacket: 8
[  232.745828][   T40] audit: type=1326 audit(1780639870.418:24479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.2.1023" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  232.752804][ T5846] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  232.755189][ T5846] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  232.759856][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  232.765230][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  232.771699][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  232.775165][ T5853] net_ratelimit: 2 callbacks suppressed
[  232.775178][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  232.776057][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  232.785781][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  232.789945][ T5846] usb 6-1: config 168 interface 0 has no altsetting 0
[  232.793011][ T5846] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  232.795314][ T5846] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  232.799246][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  232.803020][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  232.806569][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  232.810109][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  232.813631][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  232.817630][ T5846] usb 6-1: config 168 interface 0 has no altsetting 0
[  232.820690][ T5846] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  232.824338][ T5846] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  232.829006][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  232.874719][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  232.885239][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  232.897249][ T5846] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  232.908552][ T5846] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  232.916123][ T5846] usb 6-1: config 168 interface 0 has no altsetting 0
[  232.921932][ T5846] usb 6-1: string descriptor 0 read error: -22
[  232.924027][ T5846] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  232.927935][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.984588][ T5846] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  233.185409][ T5846] usb 6-1: USB disconnect, device number 28
[  233.394415][ T9499] adutux: No device or device unplugged -19
[  233.575512][ T9529] netlink: 'syz.2.1028': attribute type 10 has an invalid length.
[  233.585197][ T9529] team0: Device wg2 is of different type
[  233.836549][ T9538] fuse: Bad value for 'fd'
[  233.859433][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  233.959930][ T9546] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  234.250428][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  234.641278][ T9558] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  234.644289][ T9558] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  234.647212][ T9558] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  235.089309][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  235.165614][ T9565] 9p: Bad value for 'rfdno'
[  235.743955][ T1193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  235.838231][ T8765] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  236.023078][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  236.044954][ T5114] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  236.199135][ T5114] usb 8-1: Using ep0 maxpacket: 8
[  236.202712][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  236.204981][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  236.208428][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  236.212135][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  236.215854][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  236.219322][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  236.222996][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  236.230077][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  236.233957][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  236.236952][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  236.242877][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  236.248442][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  236.253676][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  236.258407][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  236.263143][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  236.268430][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  236.272722][ T5114] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  236.276172][ T5114] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  236.281226][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  236.285846][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  236.291078][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  236.295720][ T5114] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  236.300698][ T5114] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  236.306187][ T5114] usb 8-1: config 168 interface 0 has no altsetting 0
[  236.314036][ T5114] usb 8-1: string descriptor 0 read error: -22
[  236.316820][ T5114] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  236.320589][ T5114] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.343986][ T5114] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  236.519600][ T9589] syz_tun: left allmulticast mode
[  236.536872][ T5114] usb 8-1: USB disconnect, device number 19
[  236.740586][ T9577] adutux: No device or device unplugged -19
[  237.201494][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  237.210095][ T1160] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  237.242373][ T8765] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  238.159335][ T9610] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1052'.
[  238.249163][   T39] net_ratelimit: 2 callbacks suppressed
[  238.249175][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  238.442224][ T9615] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1054'.
[  238.446456][ T9615] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1054'.
[  238.532736][ T9596] fuse: fd is not a fuse device
[  238.586816][ T9622] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  238.592389][ T9622] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  238.601183][ T9622] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  238.851086][ T9635] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'.
[  238.854112][ T9635] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'.
[  238.923253][ T9638] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'.
[  238.927531][ T9638] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'.
[  239.307059][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  239.383801][ T9665] fuse: Bad value for 'group_id'
[  239.385470][ T9665] fuse: Bad value for 'group_id'
[  239.714307][ T9687] team_slave_0: Caught tx_queue_len zero misconfig
[  240.054608][ T9697] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.1076'.
[  240.247297][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.259522][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.266358][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.279525][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.289494][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.308645][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.333027][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.343090][ T9701] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  241.005292][ T9721] pvfs2: Unknown parameter '!n['
[  241.765768][ T9737] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1088'.
[  241.765932][ T9735] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1088'.
[  241.889197][ T9735] hsr_slave_1 (unregistering): left promiscuous mode
[  242.920683][ T9758] netlink: 'syz.1.1094': attribute type 21 has an invalid length.
[  243.463122][ T5114] net_ratelimit: 1020 callbacks suppressed
[  243.463137][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  243.502399][ T9795] __nla_validate_parse: 5 callbacks suppressed
[  243.502417][ T9795] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1104'.
[  243.530375][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  243.828767][ T9789] vivid-003: disconnect
[  243.836097][ T9788] vivid-003: reconnect
[  244.489230][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.530008][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.816313][ T9820] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  245.818997][ T9820] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  245.823478][ T9820] vhci_hcd vhci_hcd.0: Device attached
[  245.829977][ T9820] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1109'.
[  246.109130][ T5889] usb 38-1: SetAddress Request (2) to port 0
[  246.116321][ T5889] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  246.190620][ T9821] vhci_hcd: connection reset by peer
[  246.194034][   T13] vhci_hcd vhci_hcd.0: stop threads
[  246.196032][   T13] vhci_hcd vhci_hcd.0: release socket
[  246.202912][   T13] vhci_hcd vhci_hcd.0: disconnect device
[  246.420220][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  246.420232][   T40] audit: type=1804 audit(1780639884.158:24514): pid=9830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1114" name="file0" dev="tmpfs" ino=1938 res=1 errno=0
[  246.440282][ T9832] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1115'.
[  246.528494][ T9823] syz.0.1109 (9823): drop_caches: 1
[  246.579265][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  246.582669][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  246.810089][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.178605][ T9844] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1119'.
[  247.554734][   T40] audit: type=1804 audit(1780639885.288:24515): pid=9856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1124" name="/newroot/219/file0" dev="tmpfs" ino=1201 res=1 errno=0
[  247.609102][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.670765][   T40] audit: type=1326 audit(1780639885.408:24516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.3.1123" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26f7c code=0x0
[  247.721015][   T40] audit: type=1326 audit(1780639885.458:24517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.729051][ T9867] syz.1.1125 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  247.732596][   T40] audit: type=1326 audit(1780639885.458:24518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.739527][   T40] audit: type=1326 audit(1780639885.458:24519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.746496][   T40] audit: type=1326 audit(1780639885.458:24520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=104 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.755424][   T40] audit: type=1326 audit(1780639885.478:24521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.764739][   T40] audit: type=1326 audit(1780639885.488:24522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.772930][   T40] audit: type=1326 audit(1780639885.488:24523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9858 comm="syz.1.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35f7c code=0x7ffc0000
[  247.814290][ T9867] usb usb7: usbfs: process 9867 (syz.1.1125) did not claim interface 0 before use
[  248.406861][ T9874] netlink: 'syz.2.1127': attribute type 10 has an invalid length.
[  248.411134][ T9874] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1127'.
[  248.416192][ T9874] fuse: fd is not a fuse device
[  248.650133][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  249.329147][ T9885] Process accounting paused
[  249.609266][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.225577][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.421228][ T9904] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  250.423931][ T9904] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  250.426597][ T9904] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  250.523704][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.527324][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.531516][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.536956][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.541855][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.548200][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.553461][ T9907] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  251.213566][ T5889] usb 38-1: device descriptor read/8, error -110
[  251.610566][ T5889] usb usb38-port1: attempt power cycle
[  251.889710][ T9927] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1141'.
[  252.196198][ T5889] usb usb38-port1: unable to enumerate USB device
[  252.826978][ T9946] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  252.829669][ T9946] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  252.833620][ T9946] vhci_hcd vhci_hcd.0: Device attached
[  252.838667][ T9947] vhci_hcd: unknown pdu 1
[  252.841846][   T12] vhci_hcd vhci_hcd.3: stop threads
[  252.845448][   T12] vhci_hcd vhci_hcd.3: release socket
[  252.848042][   T12] vhci_hcd vhci_hcd.3: disconnect device
[  252.857158][ T9946] lo speed is unknown, defaulting to 1000
[  254.055598][ T9979] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1157'.
[  254.409295][ T5114] net_ratelimit: 226 callbacks suppressed
[  254.409312][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.621525][ T9987] /dev/sr0: Can't open blockdev
[  255.009098][ T5846] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  255.139403][ T5846] usb 8-1: device descriptor read/64, error -71
[  255.398446][ T5846] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  255.459840][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.549575][ T5846] usb 8-1: device descriptor read/64, error -71
[  255.796694][ T5846] usb usb8-port1: attempt power cycle
[  255.808448][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.260863][ T5846] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  256.305981][ T5846] usb 8-1: device descriptor read/8, error -71
[  256.419400][  T918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.491295][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.550230][ T5846] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  257.334611][ T5846] usb 8-1: device descriptor read/8, error -71
[  257.539152][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  257.549615][ T5846] usb usb8-port1: unable to enumerate USB device
[  257.752332][T10034] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1175'.
[  258.570172][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.809968][ T5846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.086221][T10043] snd_dummy snd_dummy.0: control 6:0:0:syz0:0 is already present
[  259.192505][T10060] ptrace attach of "/syz-executor exec"[5741] was attempted by "/syz-executor exec"[10060]
[  259.517052][T10073] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1185'.
[  259.604495][T10077] 
: renamed from bond_slave_0
[  259.611358][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.692061][   T40] kauditd_printk_skb: 550 callbacks suppressed
[  259.692084][   T40] audit: type=1326 audit(1780639897.428:25074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.700386][T10078] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1186'.
[  259.703444][   T40] audit: type=1326 audit(1780639897.428:25075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.719506][   T40] audit: type=1326 audit(1780639897.428:25076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.729679][   T40] audit: type=1326 audit(1780639897.428:25077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.739343][   T40] audit: type=1326 audit(1780639897.428:25078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.748282][   T40] audit: type=1326 audit(1780639897.438:25079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.756360][   T40] audit: type=1326 audit(1780639897.438:25080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.763142][   T40] audit: type=1326 audit(1780639897.438:25081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.771944][   T40] audit: type=1326 audit(1780639897.438:25082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  259.780763][   T40] audit: type=1326 audit(1780639897.438:25083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10076 comm="syz.0.1186" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f13f7c code=0x7ffc0000
[  260.250349][ T1434] ieee802154 phy0 wpan0: encryption failed: -22
[  260.254803][ T1434] ieee802154 phy1 wpan1: encryption failed: -22
[  260.649165][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.966424][T10103] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1194'.
[  261.562283][  T842] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  261.689236][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.729005][  T842] usb 8-1: Using ep0 maxpacket: 8
[  261.732444][  T842] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  261.734849][  T842] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  261.738355][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  261.742682][  T842] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  261.747285][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  261.752050][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  261.756677][  T842] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  261.762234][  T842] usb 8-1: config 168 interface 0 has no altsetting 0
[  261.769220][  T842] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  261.774860][  T842] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  261.783987][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  261.794066][  T842] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  261.798494][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  261.802333][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  261.806214][  T842] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  261.810291][  T842] usb 8-1: config 168 interface 0 has no altsetting 0
[  261.813249][  T842] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  261.815572][  T842] usb 8-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  261.819067][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  261.822616][  T842] usb 8-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  261.826168][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  261.829684][  T842] usb 8-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  261.833422][  T842] usb 8-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  261.837413][  T842] usb 8-1: config 168 interface 0 has no altsetting 0
[  261.842717][  T842] usb 8-1: string descriptor 0 read error: -22
[  261.844700][  T842] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  261.847466][  T842] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.855194][  T842] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  261.859646][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.057001][ T5889] usb 8-1: USB disconnect, device number 24
[  262.250311][T10126] syz.1.1202 (10126): drop_caches: 2
[  262.263961][T10111] adutux: No device or device unplugged -19
[  262.447377][T10130] input: syz0 as /devices/virtual/input/input21
[  262.729707][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.878062][T10148] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  263.781845][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.906561][T10172] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  264.814059][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  264.823445][T10195] comedi comedi0: Minor 9 could not be opened
[  265.814974][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.896842][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.039893][  T918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.899047][  T842] usb 5-1: new low-speed USB device number 18 using dummy_hcd
[  266.970511][T10232] overlayfs: upper fs does not support file handles, falling back to index=off.
[  266.979184][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.049040][  T842] usb 5-1: Invalid ep0 maxpacket: 16
[  267.181072][  T842] usb 5-1: new low-speed USB device number 19 using dummy_hcd
[  267.258687][T10246] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_bridge, syncid = 32, id = 0
[  267.313477][T10247] fuse: Bad value for 'fd'
[  267.328989][  T842] usb 5-1: Invalid ep0 maxpacket: 16
[  267.331820][  T842] usb usb5-port1: attempt power cycle
[  267.669060][  T842] usb 5-1: new low-speed USB device number 20 using dummy_hcd
[  267.689762][  T842] usb 5-1: Invalid ep0 maxpacket: 16
[  267.785869][T10256] syzkaller0: entered promiscuous mode
[  267.787720][T10256] syzkaller0: entered allmulticast mode
[  267.834314][  T842] usb 5-1: new low-speed USB device number 21 using dummy_hcd
[  267.849517][  T842] usb 5-1: Invalid ep0 maxpacket: 16
[  267.857317][  T842] usb usb5-port1: unable to enumerate USB device
[  267.932943][T10269] netlink: 'syz.2.1246': attribute type 1 has an invalid length.
[  267.935444][T10269] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1246'.
[  267.938247][T10269] netlink: 658 bytes leftover after parsing attributes in process `syz.2.1246'.
[  267.941104][T10269] netlink: 1 bytes leftover after parsing attributes in process `syz.2.1246'.
[  268.024010][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.902831][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.063700][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.221330][T10276] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1248'.
[  269.325390][T10281] trusted_key: encrypted_key: keyword 'n$xL8{2Rew' not recognized
[  269.533782][T10287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1253'.
[  269.540560][T10287] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.544048][T10287] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.931125][T10296] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1257'.
[  270.000500][T10299] netlink: 'syz.2.1257': attribute type 13 has an invalid length.
[  270.099154][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.416025][   T40] kauditd_printk_skb: 991 callbacks suppressed
[  270.416036][   T40] audit: type=1326 audit(1780639908.148:26075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.429861][   T40] audit: type=1326 audit(1780639908.158:26076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.436600][   T40] audit: type=1326 audit(1780639908.158:26077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.446537][   T40] audit: type=1326 audit(1780639908.168:26078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=104 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.455984][   T40] audit: type=1326 audit(1780639908.168:26079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.462624][   T40] audit: type=1326 audit(1780639908.168:26080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.469301][   T40] audit: type=1326 audit(1780639908.168:26081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.475758][   T40] audit: type=1326 audit(1780639908.168:26082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.482574][   T40] audit: type=1326 audit(1780639908.168:26083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.502152][   T40] audit: type=1326 audit(1780639908.168:26084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10311 comm="syz.2.1260" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700ef7c code=0x7ffc0000
[  270.569013][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.573772][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.679737][T10328] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  270.685551][T10329] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  270.779107][T10333] syz.1.1266 (10333): drop_caches: 2
[  271.130562][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.686058][T10359] vxfs: unable to read disk superblock at 1
[  271.692971][T10359] vxfs: unable to read disk superblock at 8
[  271.694835][T10359] vxfs: can't find superblock.
[  271.869598][T10359] pim6reg: entered allmulticast mode
[  272.013253][T10359] xt_CT: No such helper "snmp"
[  272.169929][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.289599][T10365] FAULT_INJECTION: forcing a failure.
[  272.289599][T10365] name failslab, interval 1, probability 0, space 0, times 0
[  272.297321][T10365] CPU: 3 UID: 0 PID: 10365 Comm: syz.0.1276 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.297338][T10365] Tainted: [L]=SOFTLOCKUP
[  272.297343][T10365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  272.297360][T10365] Call Trace:
[  272.297366][T10365]  <TASK>
[  272.297371][T10365]  dump_stack_lvl+0x100/0x190
[  272.297386][T10365]  should_fail_ex.cold+0x5/0xa
[  272.297410][T10365]  should_failslab+0xc2/0x120
[  272.297426][T10365]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  272.297443][T10365]  ? __alloc_skb+0x140/0x710
[  272.297452][T10365]  ? __alloc_skb+0x5b7/0x710
[  272.297464][T10365]  __alloc_skb+0x140/0x710
[  272.297473][T10365]  ? __alloc_skb+0x5b7/0x710
[  272.297482][T10365]  ? __pfx___alloc_skb+0x10/0x10
[  272.297495][T10365]  netlink_alloc_large_skb+0x69/0x150
[  272.297511][T10365]  netlink_sendmsg+0x680/0xda0
[  272.297528][T10365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.297543][T10365]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  272.297557][T10365]  ____sys_sendmsg+0x9e1/0xb70
[  272.297571][T10365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.297586][T10365]  ? __pfx_____sys_sendmsg+0x10/0x10
[  272.297598][T10365]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  272.297615][T10365]  ? __pfx_debug_object_activate+0x10/0x10
[  272.297628][T10365]  ? do_raw_spin_lock+0x128/0x260
[  272.297643][T10365]  ___sys_sendmsg+0x190/0x1e0
[  272.297658][T10365]  ? __pfx____sys_sendmsg+0x10/0x10
[  272.297673][T10365]  ? hrtimer_start_range_ns+0x860/0x1a50
[  272.297691][T10365]  ? find_held_lock+0x2b/0x80
[  272.297713][T10365]  __sys_sendmsg+0x170/0x220
[  272.297724][T10365]  ? __pfx___sys_sendmsg+0x10/0x10
[  272.297740][T10365]  ? rcu_is_watching+0x12/0xc0
[  272.297754][T10365]  __do_fast_syscall_32+0xe7/0x970
[  272.297770][T10365]  ? lockdep_hardirqs_on+0x78/0x100
[  272.297786][T10365]  do_fast_syscall_32+0x32/0x70
[  272.297802][T10365]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.297816][T10365] RIP: 0023:0xf7f13f7c
[  272.297825][T10365] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  272.297835][T10365] RSP: 002b:00000000f539450c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  272.297846][T10365] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800000c0
[  272.297852][T10365] RDX: 0000000020048000 RSI: 0000000000000000 RDI: 0000000000000000
[  272.297858][T10365] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  272.297864][T10365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  272.297870][T10365] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.297883][T10365]  </TASK>
[  272.593569][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.115354][T10379] syzkaller1: entered allmulticast mode
[  273.209131][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.292484][T10388] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1284'.
[  274.251045][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.289659][T10423] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[  274.292524][T10423] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  274.296542][T10423] vhci_hcd vhci_hcd.0: Device attached
[  274.350579][T10423] geneve3: entered allmulticast mode
[  274.559344][  T842] usb 38-1: SetAddress Request (6) to port 0
[  274.565394][  T842] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  275.133744][T10447] veth0: Caught tx_queue_len zero misconfig
[  275.299191][ T5114] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.450270][T10424] vhci_hcd: connection reset by peer
[  275.454161][   T12] vhci_hcd vhci_hcd.0: stop threads
[  275.458393][   T12] vhci_hcd vhci_hcd.0: release socket
[  275.465981][   T12] vhci_hcd vhci_hcd.0: disconnect device
[  275.609554][  T918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.619452][ T5818] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.749029][ T5114] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  275.919062][ T5114] usb 6-1: Using ep0 maxpacket: 8
[  275.922369][ T5114] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  275.924988][ T5114] usb 6-1: config 179 has no interface number 0
[  275.926960][ T5114] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  275.930504][ T5114] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  275.934139][ T5114] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  275.937475][ T5114] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  275.941042][ T5114] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  275.945127][ T5114] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  275.947802][ T5114] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.953638][T10467] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  276.329498][ T5853] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.371944][T10467] syzkaller1: entered promiscuous mode
[  276.373801][T10467] syzkaller1: entered allmulticast mode
[  276.389889][T10467] lo speed is unknown, defaulting to 1000
[  276.590450][ T5818] usb 6-1: USB disconnect, device number 29
[  276.590555][    C3] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  276.594642][    C3] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  276.597358][    C3] ==================================================================
[  276.599574][    C3] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x23b/0x260
[  276.601754][    C3] Read of size 4 at addr ffff8880133b485c by task syz.3.1303/10457
[  276.604203][    C3] 
[  276.605212][    C3] CPU: 3 UID: 0 PID: 10457 Comm: syz.3.1303 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  276.605229][    C3] Tainted: [L]=SOFTLOCKUP
[  276.605233][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  276.605240][    C3] Call Trace:
[  276.605245][    C3]  <IRQ>
[  276.605249][    C3]  dump_stack_lvl+0x100/0x190
[  276.605263][    C3]  print_report+0x13d/0x4b0
[  276.605279][    C3]  ? __virt_addr_valid+0x239/0x430
[  276.605297][    C3]  ? do_raw_spin_lock+0x23b/0x260
[  276.605308][    C3]  kasan_report+0xdf/0x1d0
[  276.605320][    C3]  ? do_raw_spin_lock+0x23b/0x260
[  276.605333][    C3]  do_raw_spin_lock+0x23b/0x260
[  276.605344][    C3]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  276.605356][    C3]  ? kcov_remote_stop+0x201/0x540
[  276.605371][    C3]  ? kcov_remote_stop+0x201/0x540
[  276.605386][    C3]  _raw_spin_lock_irqsave+0x42/0x60
[  276.605399][    C3]  ? __wake_up+0x1c/0x60
[  276.605414][    C3]  __wake_up+0x1c/0x60
[  276.605428][    C3]  usb_anchor_resume_wakeups+0xc7/0xf0
[  276.605447][    C3]  __usb_hcd_giveback_urb+0x3d6/0x610
[  276.605466][    C3]  usb_hcd_giveback_urb+0x3ca/0x4a0
[  276.605484][    C3]  dummy_timer+0xda1/0x36c0
[  276.605507][    C3]  ? find_held_lock+0x2b/0x80
[  276.605529][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  276.605548][    C3]  ? debug_object_deactivate+0x2e4/0x3b0
[  276.605572][    C3]  ? __pfx_debug_object_deactivate+0x10/0x10
[  276.605593][    C3]  ? __pfx_dummy_timer+0x10/0x10
[  276.605615][    C3]  ? rcu_is_watching+0x12/0xc0
[  276.605632][    C3]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  276.605645][    C3]  ? __pfx_dummy_timer+0x10/0x10
[  276.605657][    C3]  __hrtimer_run_queues+0x470/0xa00
[  276.605672][    C3]  hrtimer_run_softirq+0x17d/0x2c0
[  276.605685][    C3]  handle_softirqs+0x1ea/0xa00
[  276.605698][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[  276.605711][    C3]  ? _raw_spin_unlock+0x28/0x50
[  276.605723][    C3]  ? __hrtimer_rearm_deferred+0x9b/0x740
[  276.605737][    C3]  __irq_exit_rcu+0x162/0x210
[  276.605749][    C3]  irq_exit_rcu+0x9/0x30
[  276.605761][    C3]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  276.605776][    C3]  </IRQ>
[  276.605779][    C3]  <TASK>
[  276.605783][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  276.605795][    C3] RIP: 0010:finish_task_switch.isra.0+0x2d3/0x1010
[  276.605810][    C3] Code: 2f 0a 00 00 41 c7 87 e0 0d 00 00 00 00 00 00 e9 0f 04 00 00 49 8d 7f 48 e8 1a 03 b5 09 e8 95 80 3b 00 fb 48 8d bb c8 16 00 00 <48> b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 04 02 84
[  276.605821][    C3] RSP: 0000:ffffc9000cef7a60 EFLAGS: 00000206
[  276.605830][    C3] RAX: 000000000000476f RBX: ffff8880287a4a80 RCX: 0000000000000000
[  276.605838][    C3] RDX: 0000000000000000 RSI: ffffffff8df1ab41 RDI: ffff8880287a6148
[  276.605845][    C3] RBP: ffffc9000cef7ab8 R08: 0000000000000001 R09: 0000000000000000
[  276.605851][    C3] R10: 0000000000000001 R11: ffffffff81d4bcc2 R12: ffff88801c3d2540
[  276.605857][    C3] R13: 0000000000000001 R14: ffffffff90d771c4 R15: ffff88802b53b3c0
[  276.605865][    C3]  ? finish_task_switch.isra.0+0x152/0x1010
[  276.605882][    C3]  __schedule+0x129d/0x67a0
[  276.605899][    C3]  ? __pfx___schedule+0x10/0x10
[  276.605912][    C3]  ? find_held_lock+0x2b/0x80
[  276.605925][    C3]  ? schedule+0x2bf/0x390
[  276.605939][    C3]  schedule+0xdd/0x390
[  276.605951][    C3]  do_nanosleep+0x158/0x570
[  276.605963][    C3]  ? __pfx_do_nanosleep+0x10/0x10
[  276.605975][    C3]  ? __asan_memset+0x23/0x50
[  276.605991][    C3]  ? __hrtimer_setup+0x208/0x330
[  276.606002][    C3]  hrtimer_nanosleep+0x14f/0x350
[  276.606015][    C3]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  276.606029][    C3]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  276.606040][    C3]  ? get_old_timespec32+0xda/0x130
[  276.606055][    C3]  ? __pfx_get_old_timespec32+0x10/0x10
[  276.606071][    C3]  common_nsleep+0xa1/0xd0
[  276.606081][    C3]  __ia32_sys_clock_nanosleep_time32+0x352/0x480
[  276.606097][    C3]  ? __pfx___ia32_sys_clock_nanosleep_time32+0x10/0x10
[  276.606113][    C3]  ? rcu_is_watching+0x12/0xc0
[  276.606126][    C3]  do_int80_emulation+0x14b/0x720
[  276.606142][    C3]  asm_int80_emulation+0x1a/0x20
[  276.606153][    C3] RIP: 0023:0xf71261ab
[  276.606161][    C3] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  276.606172][    C3] RSP: 002b:00000000ffcc093c EFLAGS: 00000246 ORIG_RAX: 000000000000010b
[  276.606182][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  276.606188][    C3] RDX: 00000000ffcc09d4 RSI: 00000000ffcc09cc RDI: 0000000000000000
[  276.606195][    C3] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.606201][    C3] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  276.606207][    C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.606217][    C3]  </TASK>
[  276.606220][    C3] 
[  276.737421][    C3] Allocated by task 5114:
[  276.738641][    C3]  kasan_save_stack+0x30/0x50
[  276.740040][    C3]  kasan_save_track+0x14/0x30
[  276.741440][    C3]  __kasan_kmalloc+0xaa/0xb0
[  276.742833][    C3]  xpad_probe+0x28e/0x1f60
[  276.744126][    C3]  usb_probe_interface+0x303/0x8f0
[  276.745576][    C3]  really_probe+0x241/0xa60
[  276.746864][    C3]  __driver_probe_device+0x22e/0x480
[  276.748353][    C3]  driver_probe_device+0x4c/0x1b0
[  276.749759][    C3]  __device_attach_driver+0x1df/0x340
[  276.751463][    C3]  bus_for_each_drv+0x159/0x1e0
[  276.753254][    C3]  __device_attach+0x1e4/0x4d0
[  276.755065][    C3]  device_initial_probe+0xaf/0xd0
[  276.756975][    C3]  bus_probe_device+0x64/0x160
[  276.758777][    C3]  device_add+0x1210/0x1950
[  276.760484][    C3]  usb_set_configuration+0xd97/0x1c60
[  276.762500][    C3]  usb_generic_driver_probe+0xa1/0xe0
[  276.764488][    C3]  usb_probe_device+0xef/0x400
[  276.766250][    C3]  really_probe+0x241/0xa60
[  276.767952][    C3]  __driver_probe_device+0x22e/0x480
[  276.769924][    C3]  driver_probe_device+0x4c/0x1b0
[  276.771799][    C3]  __device_attach_driver+0x1df/0x340
[  276.773667][    C3]  bus_for_each_drv+0x159/0x1e0
[  276.775407][    C3]  __device_attach+0x1e4/0x4d0
[  276.777129][    C3]  device_initial_probe+0xaf/0xd0
[  276.778917][    C3]  bus_probe_device+0x64/0x160
[  276.780343][    C3]  device_add+0x1210/0x1950
[  276.781632][    C3]  usb_new_device.cold+0x685/0x115c
[  276.783097][    C3]  hub_event+0x314d/0x4af0
[  276.784354][    C3]  process_one_work+0xa0e/0x1980
[  276.785735][    C3]  worker_thread+0x5ef/0xe50
[  276.787024][    C3]  kthread+0x370/0x450
[  276.788196][    C3]  ret_from_fork+0x72b/0xd50
[  276.789486][    C3]  ret_from_fork_asm+0x1a/0x30
[  276.790819][    C3] 
[  276.791524][    C3] Freed by task 5818:
[  276.792689][    C3]  kasan_save_stack+0x30/0x50
[  276.794005][    C3]  kasan_save_track+0x14/0x30
[  276.795317][    C3]  kasan_save_free_info+0x3b/0x70
[  276.796809][    C3]  __kasan_slab_free+0x5f/0x80
[  276.798160][    C3]  kfree+0x223/0x6c0
[  276.799265][    C3]  xpad_disconnect+0x1cf/0x530
[  276.800638][    C3]  usb_unbind_interface+0x1dd/0x9e0
[  276.802136][    C3]  device_remove+0x12a/0x180
[  276.803586][    C3]  device_release_driver_internal+0x44e/0x620
[  276.805282][    C3]  bus_remove_device+0x2bc/0x560
[  276.806663][    C3]  device_del+0x376/0x9b0
[  276.807899][    C3]  usb_disable_device+0x367/0x810
[  276.809497][    C3]  usb_disconnect+0x2e2/0x9a0
[  276.811231][    C3]  hub_event+0x1d0c/0x4af0
[  276.812943][    C3]  process_one_work+0xa0e/0x1980
[  276.814797][    C3]  worker_thread+0x5ef/0xe50
[  276.816481][    C3]  kthread+0x370/0x450
[  276.818020][    C3]  ret_from_fork+0x72b/0xd50
[  276.819732][    C3]  ret_from_fork_asm+0x1a/0x30
[  276.821544][    C3] 
[  276.822373][    C3] The buggy address belongs to the object at ffff8880133b4800
[  276.822373][    C3]  which belongs to the cache kmalloc-1k of size 1024
[  276.826157][    C3] The buggy address is located 92 bytes inside of
[  276.826157][    C3]  freed 1024-byte region [ffff8880133b4800, ffff8880133b4c00)
[  276.829853][    C3] 
[  276.830532][    C3] The buggy address belongs to the physical page:
[  276.832350][    C3] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x133b0
[  276.834744][    C3] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  276.837043][    C3] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  276.839082][    C3] page_type: f5(slab)
[  276.840200][    C3] raw: 00fff00000000040 ffff88801b842dc0 dead000000000100 dead000000000122
[  276.842600][    C3] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  276.844971][    C3] head: 00fff00000000040 ffff88801b842dc0 dead000000000100 dead000000000122
[  276.847361][    C3] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  276.849765][    C3] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  276.852231][    C3] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  276.855438][    C3] page dumped because: kasan: bad access detected
[  276.857826][    C3] page_owner tracks the page as allocated
[  276.859726][    C3] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 60, tgid 60 (kworker/u32:3), ts 56592563353, free_ts 56100022512
[  276.865268][    C3]  post_alloc_hook+0xfd/0x120
[  276.866583][    C3]  get_page_from_freelist+0x11a6/0x3410
[  276.868121][    C3]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  276.869758][    C3]  new_slab+0xa6/0x6c0
[  276.870899][    C3]  refill_objects+0x277/0x420
[  276.872273][    C3]  __pcs_replace_empty_main+0x375/0x650
[  276.873812][    C3]  __kmalloc_noprof+0x688/0x850
[  276.875154][    C3]  ___neigh_create+0x1545/0x2950
[  276.876517][    C3]  ip6_finish_output2+0xffa/0x1ce0
[  276.877931][    C3]  __ip6_finish_output+0x357/0xdf0
[  276.879346][    C3]  ip6_output+0x2aa/0xa60
[  276.880564][    C3]  ndisc_send_skb+0xa85/0x1bf0
[  276.881911][    C3]  ndisc_send_rs+0x129/0x680
[  276.883600][    C3]  addrconf_dad_completed+0x47f/0xff0
[  276.885608][    C3]  addrconf_dad_work+0x83c/0x1360
[  276.887324][    C3]  process_one_work+0xa0e/0x1980
[  276.888737][    C3] page last free pid 5151 tgid 5151 stack trace:
[  276.890467][    C3]  __free_frozen_pages+0x794/0x10a0
[  276.891943][    C3]  qlist_free_all+0x47/0xf0
[  276.893228][    C3]  kasan_quarantine_reduce+0x1a0/0x1f0
[  276.894732][    C3]  __kasan_slab_alloc+0x69/0x90
[  276.896089][    C3]  __kvmalloc_node_noprof+0x316/0xa00
[  276.897571][    C3]  seq_read_iter+0x819/0x1270
[  276.898856][    C3]  kernfs_fop_read_iter+0x46c/0x610
[  276.900299][    C3]  vfs_read+0x825/0xb30
[  276.901477][    C3]  ksys_read+0x12a/0x250
[  276.902673][    C3]  do_syscall_64+0x115/0x840
[  276.903982][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.905610][    C3] 
[  276.906239][    C3] Memory state around the buggy address:
[  276.907781][    C3]  ffff8880133b4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  276.909968][    C3]  ffff8880133b4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  276.912209][    C3] >ffff8880133b4800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  276.914444][    C3]                                                     ^
[  276.916327][    C3]  ffff8880133b4880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  276.918503][    C3]  ffff8880133b4900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  276.920708][    C3] ==================================================================
[  276.922967][    C3] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  276.924952][    C3] CPU: 3 UID: 0 PID: 10457 Comm: syz.3.1303 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  276.927933][    C3] Tainted: [L]=SOFTLOCKUP
[  276.929414][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  276.932221][    C3] Call Trace:
[  276.933156][    C3]  <IRQ>
[  276.933965][    C3]  dump_stack_lvl+0x100/0x190
[  276.935261][    C3]  vpanic+0x552/0x970
[  276.936340][    C3]  ? __pfx_vpanic+0x10/0x10
[  276.937552][    C3]  ? __pfx_vprintk_emit+0x10/0x10
[  276.938937][    C3]  ? do_raw_spin_lock+0x23b/0x260
[  276.940335][    C3]  panic+0xd1/0xe0
[  276.941403][    C3]  ? __pfx_panic+0x10/0x10
[  276.942668][    C3]  ? end_report.part.0+0x23/0x90
[  276.944049][    C3]  ? rcu_is_watching+0x12/0xc0
[  276.945211][    C3]  ? end_report.part.0+0x23/0x90
[  276.946463][    C3]  ? check_panic_on_warn+0x1f/0x90
[  276.947899][    C3]  check_panic_on_warn.cold+0x19/0x34
[  276.949374][    C3]  end_report.part.0+0x3a/0x90
[  276.950714][    C3]  kasan_report.cold+0xe/0x18
[  276.952068][    C3]  ? do_raw_spin_lock+0x23b/0x260
[  276.953487][    C3]  do_raw_spin_lock+0x23b/0x260
[  276.954837][    C3]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  276.956324][    C3]  ? kcov_remote_stop+0x201/0x540
[  276.957710][    C3]  ? kcov_remote_stop+0x201/0x540
[  276.959025][    C3]  _raw_spin_lock_irqsave+0x42/0x60
[  276.960469][    C3]  ? __wake_up+0x1c/0x60
[  276.961702][    C3]  __wake_up+0x1c/0x60
[  276.962881][    C3]  usb_anchor_resume_wakeups+0xc7/0xf0
[  276.964398][    C3]  __usb_hcd_giveback_urb+0x3d6/0x610
[  276.965884][    C3]  usb_hcd_giveback_urb+0x3ca/0x4a0
[  276.967325][    C3]  dummy_timer+0xda1/0x36c0
[  276.968630][    C3]  ? find_held_lock+0x2b/0x80
[  276.969942][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  276.971599][    C3]  ? debug_object_deactivate+0x2e4/0x3b0
[  276.973174][    C3]  ? __pfx_debug_object_deactivate+0x10/0x10
[  276.974836][    C3]  ? __pfx_dummy_timer+0x10/0x10
[  276.976214][    C3]  ? rcu_is_watching+0x12/0xc0
[  276.977497][    C3]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  276.979121][    C3]  ? __pfx_dummy_timer+0x10/0x10
[  276.980521][    C3]  __hrtimer_run_queues+0x470/0xa00
[  276.981982][    C3]  hrtimer_run_softirq+0x17d/0x2c0
[  276.983437][    C3]  handle_softirqs+0x1ea/0xa00
[  276.984775][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[  276.986233][    C3]  ? _raw_spin_unlock+0x28/0x50
[  276.987595][    C3]  ? __hrtimer_rearm_deferred+0x9b/0x740
[  276.989159][    C3]  __irq_exit_rcu+0x162/0x210
[  276.990468][    C3]  irq_exit_rcu+0x9/0x30
[  276.991691][    C3]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  276.993479][    C3]  </IRQ>
[  276.994308][    C3]  <TASK>
[  276.995138][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  276.996799][    C3] RIP: 0010:finish_task_switch.isra.0+0x2d3/0x1010
[  276.998594][    C3] Code: 2f 0a 00 00 41 c7 87 e0 0d 00 00 00 00 00 00 e9 0f 04 00 00 49 8d 7f 48 e8 1a 03 b5 09 e8 95 80 3b 00 fb 48 8d bb c8 16 00 00 <48> b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 04 02 84
[  277.004973][    C3] RSP: 0000:ffffc9000cef7a60 EFLAGS: 00000206
[  277.007134][    C3] RAX: 000000000000476f RBX: ffff8880287a4a80 RCX: 0000000000000000
[  277.009956][    C3] RDX: 0000000000000000 RSI: ffffffff8df1ab41 RDI: ffff8880287a6148
[  277.012465][    C3] RBP: ffffc9000cef7ab8 R08: 0000000000000001 R09: 0000000000000000
[  277.014633][    C3] R10: 0000000000000001 R11: ffffffff81d4bcc2 R12: ffff88801c3d2540
[  277.016802][    C3] R13: 0000000000000001 R14: ffffffff90d771c4 R15: ffff88802b53b3c0
[  277.018980][    C3]  ? finish_task_switch.isra.0+0x152/0x1010
[  277.020663][    C3]  __schedule+0x129d/0x67a0
[  277.021972][    C3]  ? __pfx___schedule+0x10/0x10
[  277.023368][    C3]  ? find_held_lock+0x2b/0x80
[  277.024690][    C3]  ? schedule+0x2bf/0x390
[  277.025896][    C3]  schedule+0xdd/0x390
[  277.027036][    C3]  do_nanosleep+0x158/0x570
[  277.028318][    C3]  ? __pfx_do_nanosleep+0x10/0x10
[  277.029714][    C3]  ? __asan_memset+0x23/0x50
[  277.031005][    C3]  ? __hrtimer_setup+0x208/0x330
[  277.032508][    C3]  hrtimer_nanosleep+0x14f/0x350
[  277.033886][    C3]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  277.035398][    C3]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  277.036838][    C3]  ? get_old_timespec32+0xda/0x130
[  277.038271][    C3]  ? __pfx_get_old_timespec32+0x10/0x10
[  277.039815][    C3]  common_nsleep+0xa1/0xd0
[  277.041070][    C3]  __ia32_sys_clock_nanosleep_time32+0x352/0x480
[  277.042870][    C3]  ? __pfx___ia32_sys_clock_nanosleep_time32+0x10/0x10
[  277.044748][    C3]  ? rcu_is_watching+0x12/0xc0
[  277.046077][    C3]  do_int80_emulation+0x14b/0x720
[  277.047492][    C3]  asm_int80_emulation+0x1a/0x20
[  277.048876][    C3] RIP: 0023:0xf71261ab
[  277.050022][    C3] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  277.055298][    C3] RSP: 002b:00000000ffcc093c EFLAGS: 00000246 ORIG_RAX: 000000000000010b
[  277.057584][    C3] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  277.059778][    C3] RDX: 00000000ffcc09d4 RSI: 00000000ffcc09cc RDI: 0000000000000000
[  277.061972][    C3] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.064188][    C3] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  277.066362][    C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.068558][    C3]  </TASK>
[  277.070071][    C3] Kernel Offset: disabled
[  277.071268][    C3] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:11:54  Registers:
info registers vcpu 0

CPU#0
RAX=000000000069195f RBX=ffffffff8e4955c0 RCX=ffffffff8b86e225 RDX=0000000000000000
RSI=ffffffff8df1ab41 RDI=ffffffff8c1c4580 RBP=0000000000000000 RSP=ffffffff8e407e00
R8 =0000000000000001 R9 =ffffed10056467b5 R10=ffff88802b233dab R11=0000000000000000
R12=0000000000000000 R13=fffffbfff1c92ab8 R14=0000000000000000 R15=ffffffff90d73e50
RIP=ffffffff8b86c87f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809718a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72bd534 CR3=0000000028b25000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559d0dfadc50 0000559d0dfadc50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc0a6a4d30 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656572662d726574 66612d6573752d62 616c73203a4e4153 414b203a47554220
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3332203a65756c61 76207327726f7470 6972637365642065 6361667265746e69
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20656874206d6f72 6620746e65726566 666964202c73726f 7470697263736564
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20746e696f70646e 6520322073616820 3020676e69747465 73746c6120353620
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656361667265746e 6920393731206769 666e6f63203a312d 3620627375205d34
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000a00fb7 RBX=ffff88801c322540 RCX=ffffffff8b86e225 RDX=0000000000000000
RSI=ffffffff8df1ab41 RDI=ffffffff8c1c4580 RBP=0000000000000000 RSP=ffffc9000046fdf0
R8 =0000000000000001 R9 =ffffed10056667b5 R10=ffff88802b333dab R11=0000000000000000
R12=0000000000000001 R13=ffffed10038644a8 R14=0000000000000001 R15=ffffffff90d73e50
RIP=ffffffff8b86c87f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809728a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f53d5da4 CR3=000000004ff43000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffff8880233aa540 RCX=ffffc9000df21000 RDX=0000000000080000
RSI=00000000000000a9 RDI=ffffffff8c1b76c0 RBP=ffffffff8c1b76c0 RSP=ffffc9000debf9c8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffff8880233aab00 R13=0000000000000000 R14=1ffff92001bd7f47 R15=ffffc9000debfb20
RIP=ffffffff81d47391 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809738a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000562df532f000 CR3=000000004ff43000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8b6a0eb5 ffffffff8920ec22 0000000200000004 0000000600040008
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000526 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f696b6c6201ffff ffffffffffffd508 0e80030800000072 0000000200000001
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0606011ff2000800 57b80310080057b0 0302080057a8030e 080057a003120800
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000010008000fff ffffff0201000000 080606010180ec00 08000fffffffff02
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000008060601 58e80008000fffff ffff020100000008 0606017fec000400
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 019db408000e8002 01c7080008004bbc 00656d69745f7974 706d652e7166622e
ZMM24=5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814 5f35d8145f35d814
ZMM25=7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c 7dc5726c7dc5726c
ZMM26=de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d de59b90dde59b90d
ZMM27=85052de585052de5 85052de585052de5 85052de585052de5 85052de585052de5 85052de585052de5 85052de585052de5 85052de585052de5 85052de585052de5
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=280f0000280f0000 280f0000280f0000 280f0000280f0000 280f0000280f0000 280f0000280f0000 280f0000280f0000 280f0000280f0000 280f0000280f0000
info registers vcpu 3

CPU#3
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857c3e25 RDI=ffffffff9b44d300 RBP=ffffffff9b44d2c0 RSP=ffffc900005e84e0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2e7a7973203a5043
R12=0000000000000000 R13=0000000000000031 R14=0000000000000010 R15=ffffffff857c3dc0
RIP=ffffffff857c3e4f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809748a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f520385a CR3=000000006e8f6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000