last executing test programs:

6.945712521s ago: executing program 0 (id=1093):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0xff, 0x2, 0x7ffffdbd}]})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x7e6b, 0x0, 0x100000}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x800, 0x64000000, 0x0, 0x0, 0x6a9}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

6.857026896s ago: executing program 0 (id=1094):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$netlink(0x10, 0x3, 0x15)
socket(0x2, 0x3, 0xfc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc04c5609, &(0x7f0000000400)={0x4, 0xa, 0x4, 0x20, 0x8, {}, {0x4, 0x2, 0x8, 0x5, 0x4, 0x2, "72596bbc"}, 0x9, 0x4, {<r5=>0xffffffffffffffff}, 0x3ff})
close$fd_v4l2_buffer(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r6, &(0x7f00000021c0)={0x2020}, 0x2020)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000180)="e5", 0x1)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
lchown(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="180000002e00010026bdf000fcdbdf1b04000000"], 0x18}, 0x1, 0x0, 0x0, 0x4040089}, 0x20000000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

6.546766458s ago: executing program 3 (id=1099):
syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
writev(r0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x400000021a880, 0x0)
r1 = dup(0xffffffffffffffff)
syz_io_uring_setup(0x423d, &(0x7f0000000600)={0x0, 0x11f7, 0x400, 0x6, 0x20000224, 0x0, r1}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x1d, &(0x7f00000005c0)=ANY=[@ANYRES32=r1, @ANYRESHEX, @ANYRES32=r1], 0x0, 0x11, 0x0, 0x0, 0x40f00, 0x58, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
close(0x3)

5.254212771s ago: executing program 0 (id=1104):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="10000000191401000000000000000000a34b6ea24e5a7af5102f9b0670f2e31e626751587a"], 0x10}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x114, &(0x7f00000001c0)=0xbffffff9, 0x0, 0x4)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}, 0x0, {0x0, r3}})
io_uring_enter(0xffffffffffffffff, 0x2b93, 0xffcd, 0x7b, 0x0, 0x5e)
setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x483, &(0x7f0000000040)={0x20000000000084, @remote, 0x0, 0x1, 'none\x00', 0x20, 0x0, 0x1}, 0x2c)
close_range(r0, r0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.net/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_freezer_state(r4, &(0x7f00000002c0), 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x8000002)
prctl$PR_SET_MM(0x41555856, 0xf7354000, &(0x7f0000ffa000/0x3000)=nil)
syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xd, &(0x7f0000000080)=ANY=[@ANYBLOB="180000810000006d04000018110000f7253b077a5e23b0fad789889974670800"/44, @ANYRES32, @ANYBLOB="0000000000000000b7080000000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x2, 0x0)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08061cdc030ec080fffffffe0000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a", 0x5b}], 0x1}, 0x44)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0041, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETVNETHDRSZ(r6, 0x400454d8, &(0x7f0000000140)=0x90)

4.27771482s ago: executing program 0 (id=1110):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$netlink(0x10, 0x3, 0x15)
socket(0x2, 0x3, 0xfc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r5 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r5, 0xc0184800, &(0x7f0000000100)={0x20004, <r6=>r4, 0x80000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000140)=0x6)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)={{'fd', 0x3d, r7}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r7, &(0x7f00000021c0)={0x2020, 0x0, <r8=>0x0}, 0xffffffffffffffa1)
r9 = memfd_create(&(0x7f0000000280)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\x86\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x1)
write$binfmt_misc(r9, &(0x7f0000000180)="e5", 0x1)
execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
write$FUSE_INIT(r7, &(0x7f0000004200)={0x50, 0x0, r8, {0x7, 0x29, 0x8, 0x55610518, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x100, 0x4}}, 0x50)

3.492857713s ago: executing program 3 (id=1112):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_io_uring_setup(0x199c, 0x0, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x1}, 0x0, 0x40000000})
r3 = syz_io_uring_setup(0x487, &(0x7f0000000100)={0x0, 0x59c4, 0x8000, 0x1000, 0x5cc}, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000400)=<r5=>0x0)
openat$audio1(0xffffff9c, &(0x7f0000000040), 0x204001, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, r3})
io_uring_enter(r3, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x7, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[], 0x48}}, 0x44004)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000010400000200fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="03800000000000001c0012800b00010067656e65766500000c00028005000a000100000008000a00", @ANYRES32], 0x44}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054)

3.383543893s ago: executing program 3 (id=1114):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x2, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x8, 0x0, 0xffff})
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa1000000d0000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e3}, 0x94)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
r5 = openat$rdma_cm(0xffffff9c, &(0x7f0000000300), 0x2, 0x0)
r6 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file2\x00', 0x8, 0xdfcd)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000340), 0x2}}, 0x20)

2.61227253s ago: executing program 1 (id=1117):
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, &(0x7f00000000c0), 0x4)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x600, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$vicodec0(0xffffff9c, &(0x7f0000001200), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0185648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90d, 0x26, '\x00', @p_u32=&(0x7f0000000100)=0xfffffffe}})
socket(0x10, 0x3, 0x0)
readlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000040)=""/253, 0xfd)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000200)=@x86={0x0, 0x9, 0x18, 0x0, 0xffc, 0xe, 0xb, 0xf9, 0x49, 0x10, 0x6, 0x9, 0x0, 0x6, 0x50, 0xa, 0x9, 0x7f, 0x9f, '\x00', 0x69, 0x1})
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101900, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000080))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
r8 = accept4(r7, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$team(&(0x7f00000001c0), r8)
r9 = dup(r6)
ioctl$KVM_SET_PIT2(r9, 0x4070aea0, &(0x7f0000000240)={[{0x11, 0x2, 0x6, 0x7, 0x4, 0x5, 0xe1, 0x1, 0x8, 0xe, 0x5, 0xfa, 0x2}, {0x2, 0x0, 0x6, 0x8, 0x8, 0x8, 0x6, 0x9, 0x9, 0xf, 0x1, 0x6, 0x7}, {0xfffffffa, 0x9, 0x3, 0x4, 0x0, 0xe, 0x40, 0x6, 0x4, 0x2, 0x4, 0x3, 0xff}], 0x5})
r10 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_IMPORTANCE(r10, 0x10f, 0x7f, &(0x7f0000000000), 0x4)

2.586403794s ago: executing program 0 (id=1118):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0)
r2 = dup(r1)
ioctl$PTP_PEROUT_REQUEST2(r2, 0xc0403d15, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f00000010c0)={0xc, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0xe2}]}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x0, 0x4000080)
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r2, 0xc01064ab, &(0x7f0000001300)={0xf})
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x40000001}, 0xf14})
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000004180)='/proc/mdstat\x00', 0x0, 0x0)
preadv2(r5, &(0x7f0000004140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1, 0x33, 0x4, 0x0)
read$FUSE(r5, &(0x7f0000009780)={0x2020}, 0x2020)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0xf5, 0x0, &(0x7f0000bbdffc))
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, 0x0)
sched_getattr(0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x40078, &(0x7f0000001040)='\xc7\x1f\x86\xb8\xa3f\xa5\xf4\x8b\x00\x00\x00\x80\xc9&\vJ\xdd\xbd\x13\xaa\xc0~\x12=\xc1M\x16\x97\xaf\x11m\xd0t\x05u\x93\x94\x18_\xad\xdf\x1d\x1f\x9d\x004{\xeb\xab\x19\xa9\xd4\xb3y;\xcbJ\xe2\x02EB\x03\bj:\xf42')
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$HCIINQUIRY(r6, 0x400448ca, 0x0)
ioctl$sock_bt_hci(r6, 0x400448c9, 0x0)
unshare(0x40020000)

2.222724977s ago: executing program 2 (id=1119):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xe, &(0x7f0000000200)=ANY=[@ANYRES64], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)='+\fER', 0x4)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000400)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

2.202685724s ago: executing program 2 (id=1120):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)
sendto$inet6(r0, &(0x7f0000000180)="b0", 0x1, 0x6004851, &(0x7f0000000240)={0xa, 0x4e23, 0x6, @loopback, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000500)={0x0, @in6={{0xa, 0x4e23, 0x400, @local}}}, 0x84)

2.113044535s ago: executing program 2 (id=1121):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000300000001000000010000000000000000000000000000006a000000000000000800000000000000f05790d60300000003000000010000000000000000000000010000000500000000000000070000000000000000000000000000000000000003"])

2.011291654s ago: executing program 2 (id=1122):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @cgroup_sock}, 0x94)
ioctl$KVM_SET_CPUID2(r3, 0x4048aecb, &(0x7f0000000080)=ANY=[])
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4048aecb, &(0x7f0000000080)) (fail_nth: 1)

1.842731398s ago: executing program 2 (id=1123):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000002b40), 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)={0xfffffffc, 0xb, 0x0, 0xfffffffc, 0x7f, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(r1, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f00000003c0)={0x4, 0x480d, 0xfffffeff, 0x12, 0xc, "0316d2a2478294f3902707f67f047714a76a00"})
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x7)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r4, 0x4068aea3, &(0x7f0000000140)={0x8f, 0x0, 0xf5c2ae81ff56709f})
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0xf00)

926.370576ms ago: executing program 3 (id=1124):
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x4004040)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000340)="a4", 0x1, 0x4000, &(0x7f0000000400)={0xa, 0x4e20, 0x0, @private1}, 0x1c)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r0, 0x1)
clock_gettime(0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {r1, r2+10000000}}, 0x0)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x301f})
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
recvmmsg(0xffffffffffffffff, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYRES16=r7, @ANYRES32=r7, @ANYRES64=r1], 0x1c}, 0x1, 0x0, 0x0, 0x20000805}, 0x20000000)

925.954226ms ago: executing program 2 (id=1125):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x79af, 0x8, 0x0, 0x272}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r5, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r6}})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r6, 0xc0bc5351, &(0x7f0000000380)={0x5, 0x0, 'client0\x00', 0x4, "b8163dff079cec05", "46f012a5a486ac94283ee73ac5e14ebe0dfb3ead6161ae3ee66638cc71db1d44", 0xc, 0x800})
r7 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r7, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r8, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
shutdown(r5, 0x1)
r9 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r9, 0x402c5639, &(0x7f0000000040)={0x0, 0x2, 0x6})
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f0000000200), 0x0, 0x10})
io_uring_enter(r2, 0x627, 0x4c1, 0x43, 0x0, 0x0)

767.098874ms ago: executing program 1 (id=1126):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback=0x300, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)

755.162886ms ago: executing program 1 (id=1127):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xc300000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x50, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x78}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)

611.371424ms ago: executing program 0 (id=1128):
syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000000)="9ef692334a287a8ac91939ed322e3b988dcf889bf86c53f49cae5f548f8a6d0acb10f0cc5db7f5", 0x27}, {&(0x7f00000000c0)="5c8ea61ac3a8829e0cd76c3e2edf2b35d8efed407c044757e6c6dd97326d", 0x1e}, {0x0}], 0x3)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000021a880, 0x0)
r1 = dup(0xffffffffffffffff)
syz_io_uring_setup(0x423d, &(0x7f0000000600)={0x0, 0x11f7, 0x400, 0x6, 0x20000224, 0x0, r1}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x1d, &(0x7f00000005c0)=ANY=[@ANYRES32=r1, @ANYRESHEX, @ANYRES32=r1], 0x0, 0x11, 0x0, 0x0, 0x40f00, 0x58, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
close(0x3)

509.372787ms ago: executing program 1 (id=1129):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)
sendto$inet6(r0, &(0x7f0000000180)="b0", 0x1, 0x6004851, &(0x7f0000000240)={0xa, 0x4e23, 0x6, @loopback, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000500)={0x0, @in6={{0xa, 0x4e23, 0x400, @local}}}, 0x84)

431.17318ms ago: executing program 1 (id=1130):
socket$inet_sctp(0x2, 0x1, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYRES64], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
msgrcv(0x0, &(0x7f0000002fc0)={0x0, ""/108}, 0xfffffdc8, 0x0, 0x4800)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
io_setup(0x8, &(0x7f0000004200)=<r1=>0x0)
r2 = socket(0x25, 0x1, 0x1)
io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x2}])
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x850)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="01002abd70000000007b280000000c000180080001", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0x2000c094}, 0x4044884)
syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaaaa08004500006000000000002f9078640101000000000024806558000000000000000010000800000086dd"], 0x0)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
time(0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x7fff, &(0x7f0000000300))
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

51.364056ms ago: executing program 3 (id=1131):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@del={0x108, 0x11, 0x100, 0x70bd29, 0x25dfdbfd, {{'drbg_pr_hmac_sha1\x00'}, '\x00', '\x00', 0x4400, 0x2400}, [{0x8, 0x1, 0x98f7}, {0x8, 0x1, 0x7f}, {0x8, 0x1, 0x9}, {0x8}, {0x8, 0x1, 0x80000000}]}, 0x108}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004000)

51.019108ms ago: executing program 3 (id=1132):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x2, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
inotify_init()
openat$rdma_cm(0xffffff9c, &(0x7f0000000600), 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYRESHEX=r2], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x5)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)
ioctl$RNDZAPENTCNT(r6, 0x5204, &(0x7f0000000340)=0x9)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x4000800)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000040)=ANY=[], 0x118)
sendmsg$sock(r7, &(0x7f0000000940)={&(0x7f0000000540)=@pppol2tpv3in6={0x18, 0x1, {0x0, r5, 0x0, 0x1, 0x2, 0x0, {0xa, 0x4e22, 0x2, @mcast1, 0xd}}}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000800)="4bafde09c57eb54dbd0bc1ee37f14bbdc4934ced97497381edf1b8e9022e52fb58c606f872b894f41bcbb41db1a62f2a2c30449caf9e1092d85769ca28108b6f5b95e8c48b689108f6e9d7cb93d9ee4cb8cddfd01a8d7630d89944b7c47de72a618a44fd03cd656e4a0a165dbd8baca70e4abd056d686a8a9a2c92e159301968b9a40cc93cac5ba08f67afa227d48eea77c941430875795141e04201e8a970a1fd4274dbd9f724aa2760a123a8e94a8407e21143fd4d2a5f99f27fa09c6cdbc169090f664cc98c72d06909267e1ba224b70e3a175ed87de264621791ebbb232afebcf1d0b526d5ad6d6592f6f87d0da15a749f722d24", 0xf6}, {&(0x7f0000000200)="eed232c8029eb705b85536f54170de756f57c2428d6b4afc97cc17f71e9b6578a3ab", 0x22}, {&(0x7f00000005c0)="c1994ab47581d99e3b70b7df82b7eccceb1bd0051f523d56bf93cbde5266e2f7e83890b3a3", 0x25}, {&(0x7f0000000640)="1fad316f859dbf44b3515cadecc83dcf", 0x10}], 0x4, &(0x7f0000000900)=[@timestamping={{0x10, 0x1, 0x25, 0x5}}, @txtime={{0x14, 0x1, 0x3d, 0x7}}], 0x24}, 0x20400c0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r8, 0x0)
sendmsg$inet_sctp(r7, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="58000000020603000000000000000000070000000c00078008001240000000000500010006000000050005000200000005000400003600000900020073797a310000000012000300686173683a6e65742c706f727400000018cb54d0419670403e6239b8ac41aecfb8ef9155fb948c400f87b84fda751bb92b2433e6570e49f60241cbee77cbfa01522547bd8835065bdd0d078d3ef5a7b9280ef7666691ae76ba6b79a58f13356a6577422a4e9bbc8a6674b55c1dd228541e5381dda693fc44f874fd0d994b20361e626aff542e4bd3ea3a52ec5e10d04fc0fbac67c6c6ba5e71"], 0x58}}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

0s ago: executing program 1 (id=1133):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08061cdc030ec080fffffffe0000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a", 0x5b}], 0x1}, 0x44)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0041, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020603000000000000000000010000070500010007000008f91a794ee8e8f40d68d9acb2ee5f880ff85eca95fdd8a5b1c91f9e09742b9843b48d29465baf899a1db9e00600b59cec9cf27ef9441b561b536ecb71ef76f8"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f0000001b00)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
r3 = getpid()
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
sendmsg$netlink(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="1401000020000107000000000000000001"], 0x114}, {&(0x7f0000000580)={0x400, 0x2a, 0x100, 0x70bd28, 0x25dfdbfb, "", [@nested={0x190, 0x16, 0x0, 0x1, [@generic="bdab145d1f25b7239cff915d142be986d2700f3aa90b2d422c09e1d3cb12d7d7b506fa43f71e598828b9dac2bc889b13bdd103c4d20437fea0da9e96359330534b73e9651af78abe1fb67e56a5cefa0b667a34b68c8aa0d7110310601f7752a243cd720e6fbb3b696f192aae0f2050072e46c4619e", @generic="9f0b55c1f56b5adb6c266a062e46c1048120c91a02936eda0adaa9844bcf6b03ce7adfd694c5bb71e2fa6769ef60b05b1c45ca63eaab5ff5032e383ac033fac5bdf9e8d2d08d8a95e5cdb0d55fb0348e61b7ed32eb634713273032656eda75b2ce89f9bbd8dd0ca363d4ff82c6bc1029131a7154ca2e2d9cf457e5c6eca3862d973263587eca6b88b096979d8ec9287fbebc8c7d5d940459e92f", @generic="75c8ac08365a796866b8509f0151d5e2a40f026e3bfd9c6185d37d194d3fdf3f4bca210d82c60f0a7460aa59981b70847c4eaec43cbba98c6a7ce224f18946ddc9a22cbfebf2df7b99c544d6e34de9c29a38d5eed29c32c4b6c73a183a7e901bff2bbdbf2a924600f25e0f81ac6376a41b6d4493e1ac4cd754aa0d8c84"]}, @typed={0x14, 0xd8, 0x0, 0x0, @ipv6=@mcast1}, @generic="6a35295c492e1e883e97d2cb44fdf38cc2486fb3613d9df22843c347fe52442f2a10098da46f200e5876dfe72a235c99299bca9199e5dac3d0231f9ffcfa6bb31b6397a898c44d08a5e7176229c8226c99c431d3525acae3c988914a63bf30bedd49f9a02eca6d41641d4597839132a8d8d5fbe26b4529ab", @nested={0x1d1, 0x130, 0x0, 0x1, [@generic="79d6dcdeaeefe0ca057bdfd432223f262b06fdab61dcc700351435fb0da89768d539ce0f394c252c9c351d5cada463986745e03a8d394fa86b94ec3e2c5048070b651f97b5e61df7f4efdd64ded0a568449b8e7c41137e75af7488547799ec4ecf9c051ce08470357bdc190d1f3178e1df07a7f68076e96961237d5af56a4b7e0de54f8f6d4a68c0e674cc8a6e45897cc181c0", @nested={0x4, 0xed}, @generic="818da5206e0824e6e589dfce3665cb8310c9fc7a7ee1e51670e5611b4965e5942d54b4cdaacca3eacc666e8196426d3c5e80beeba04e815289787d89de8f94befdbac0e7f7c1cc0a96baf57cd732cc70bb54032731cd1af734c5c00a90c32ececf8c3dd30aa26af9880afc53b1fa38fe7185793fb3ae72a78715a4f3efa477095458a2f1034620a9a3bc42cc2d7001163341c27ea6d1e9b3f5c4b5dc193a22c01c6c9fca6992cacd1d3341f57487cab06dc3b5be9906bbff9b04f14ca0dc6d07ed18", @nested={0x4, 0x6e}, @typed={0x8, 0xc, 0x0, 0x0, @u32=0x3}, @generic="e9cce80abcc63203503c46e84ac717d2292672ba332a5b1e49ba5c0a784d3288bbd9068a9bfc3a2cf51c256eb81eb4e09d27cdd17ec80152ce72b0e2b1a3d7bbd688ffce4b7fd4ac244d1022a3d0d85547cb7fde2877df45d0a3aaf2", @typed={0x8, 0xdb, 0x0, 0x0, @str='.\x00\x00\x00'}, @nested={0x4, 0x5a}]}]}, 0x400}, {&(0x7f0000003b40)={0x16c8, 0x1e, 0x400, 0x70bd2a, 0x25dfdbfc, "", [@nested={0xcf, 0x9e, 0x0, 0x1, [@nested={0x4, 0xf5}, @nested={0x4, 0x129}, @generic="3d557ae59e9d8ad8fba667e9d9450ecff4405f17a25c41729a1b43874aa264ae7ad1c07a7bd8246ee002980deac47b83928129d2f675a33e6fa67f30913f80abda28912bcf263881ad73424a2d96770638b2275b1e427d8d8eef552c376adf0c8fb2281a3883278b0273bde9c005fded84004a71c3806db612bd87bbbafc7eab3e07faa51a60eda329c491aa7fb257ffe837ada2520619b85ca1b1b528e4b415e89f0eebacd03fe9346f4e1e1bb3ca609fa694b7a2111738165472600110520ccf25a5"]}, @nested={0x15e7, 0x5e, 0x0, 0x1, [@nested={0x247, 0x7d, 0x0, 0x1, [@generic="96946ccad3bdbca25895f07d0a65cbafd76761b4477c8cf9b981f48d941f1aec4f57401cd9df70be923d5a2087", @nested={0x4, 0x102}, @generic="76f427ac4fb139eec96a13f50d3baa998cc901895512202158d61f6ec8c9e6ea57f0b0dcc7c2264525e514c3a2144085d9c0f310e552958d1e55e0ab3f73a36ea0aee9f7ff09d005cf5b9c14b704573f5d19e1f504e6c88f4d2d0c842303f80960d50368cf7ee042c2c4075857ab5f0981b7011ab17aa033b9c430f8abc87d2e10ed944c9a61bbaf69b1f38f4d020223b983df4e566f4913fa2c35672c4a6181a1d6daf5ba55fb9ce1c0acbf3786f1350952fd29dd248b9827f7769f45fd1cf5c0a3dc1644faa76b0414", @typed={0xc, 0x9a, 0x0, 0x0, @u64=0x1}, @generic="2ff5f0d73c6024364356ad77f00d751ee98bdde37098ca59ac6ea60600df66d595cecf25cd01a1f0a51c885930027d4faa1b730951879ff8509e53059073e066cea7e407f462e06bea5ceb4c8489928bbfb8bf9012dc5f156c8929887fa08a6fb30c084e66d2d423a71073bcf36a843b1a0b5879f4f8c7f44a301c72b7dd86511f9bc7a7bb45a47eb7880ac80631f3040690174b9a7feb62000914b93aab97c651df3a13f782c68ba2325f89ea68", @generic="c0793e830b52d214e20a88f3701cdbf1574ff0eebe5be621722d32b05cf22ebd1f6b62dcd7e33e55460ea44019754a4379f1c44f7bd51b2c853d42", @generic="6ec1ada03f5533162c31550e571b62bb57fd163fb7c4643ec88664fa2082db619c1e7d130c8b07c1c4ddd70d508908458c735cecdff4c3a59a7f5117d39b1b49b8be7d", @nested={0x4, 0x73}, @typed={0x8, 0x10e, 0x0, 0x0, @uid=r2}, @typed={0x4, 0x57}]}, @typed={0xc, 0xc9, 0x0, 0x0, @u64=0xd261}, @typed={0x8, 0xa2, 0x0, 0x0, @u32=0xfffffff8}, @generic="ac64c9311157c5a0105f2a36cefad9ee5e80c727614112a725ef297cdcbfd74b2ba02d23dcd45b19c1883f352adc1ec7dc6e6336831522d8e33ea69cab74741b4f7031e6f2a423766e9f3ab7d360ea381ef56fcaac55c481180b16fd98c5d554c431f3de00f6754fe6496d3b032cc19cd29b358cef95d1db9a0601e66864bd7ab79a1f051bd387db81912f87ae25c31ec054ed02455cbc60be97ba0fc18e37c27caee908d1e73032a7498e73e01866ae7e20af74aef304f9242388413ec529c2931333fa4a400b45006f049e2bfb452eed97614f91f6550e80c3013f3f306cd8ea97b6ec7a86751e12b3a6", @nested={0x1288, 0xe9, 0x0, 0x1, [@typed={0x8, 0x118, 0x0, 0x0, @pid}, @typed={0x8, 0x14b, 0x0, 0x0, @fd=r1}, @typed={0x14, 0x11d, 0x0, 0x0, @ipv6=@loopback}, @nested={0x115e, 0x4e, 0x0, 0x1, [@typed={0x5, 0x10, 0x0, 0x0, @str='\x00'}, @generic="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", @typed={0xc, 0xd, 0x0, 0x0, @binary="15ac7f02604dad29"}, @generic="27cbada4eca784022401ff7a7704b7a3a4ae19d18828977c6103c485d5ed34080b65ff47e17918716717c1e0ce93c9a8adef5ff2a09c76877f9b761ccd30d538ec65f7c4805d742df25eeac8300c07658d44ad7adf0255609a951fbc0badc8b3c0dc0516498ad0aebb0ef95220b87b66281b61a26a1b1fda54b5a5d9757929c68797c89a46609c54ccb0ed8276953cc943c74cfc8adc7ae4d7f7fc565e59d1fd7e4aeebb108011dd1f56c0ce2858feab39d2012aa5f54e83742b6b303cf7df7dd155f955726063f990f1def14ccd422458407d", @generic="e7f7f7b6e38cfe5260d34f40ded6f50c13b5bcadfadeea9f6418b9de2af1ac2a78c7ef558e8f251dce011a588bd2335d77eb2e2be2372829d68d561087b00dedcb26410fa7bc8668e0c13faead2109495ed17336357df98f34342aad067f5f8955442ccd9413c954e7faff79821130475d7dff"]}, @nested={0x4, 0x4a}, @typed={0x8, 0x88, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x21}}, @generic="5cac8137a56baad8677a4f698feeb60e56cd96d145c1945e16b58fd72875a58c98a8ae7033d6b55c678115101f41dec2aab4e623fa7103445614c9a789dd6001f5f909b4418c7adde3e2892230c4e584b2036f62d8d4850bd2b1b340fd65dded14b570e9a1f2b64fda144ebe76e38adb25", @generic="3feafc95c33f014ad8983813c66f3f21f1dfffc71ac242fa22681055d32d1cd04d0985cca3c8c4c98b7a911406c735e64ec22c868472bed99ef3ed194d340f1fcfeadf1a7497294b04abbcfbc9b8075cdd79ba8228a8fcbe20193eca4f8d32bd26f53615666ed7019ec06c36e35a41d4165f2923fa8110e4624380", @typed={0x8, 0x105, 0x0, 0x0, @pid=r3}]}, @typed={0x14, 0x33, 0x0, 0x0, @ipv6=@empty}]}]}, 0x16c8}], 0x3}, 0x0)
mkdir(&(0x7f0000000200)='./file0\x00', 0x28e08a7aa33ba155)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
pipe2$9p(&(0x7f0000000040)={<r5=>0xffffffffffffffff}, 0x0)
r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r5, 0x0, r6, 0x0, 0x10000000000016, 0x0)
r7 = open(&(0x7f0000000300)='./bus\x00', 0x14103e, 0x18a)
r8 = open(&(0x7f00000001c0)='./file0\x00', 0x14b042, 0x83)
ftruncate(r8, 0x3000000)
sendfile(r7, r8, 0x0, 0x80000001)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r9}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x48}, 0x1, 0x0, 0x0, 0x81}, 0x4000000)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000140)=0x90)
write$tun(r0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRESOCT], 0xfdef)

kernel console output (not intermixed with test programs):

12] ip_vti0: left allmulticast mode
[  188.908043][ T8512] ip6_vti0: left promiscuous mode
[  188.909749][ T8512] ip6_vti0: left allmulticast mode
[  188.913067][ T8512] sit0: left promiscuous mode
[  188.915115][ T8512] sit0: left allmulticast mode
[  188.917938][ T8512] ip6tnl0: left promiscuous mode
[  188.920113][ T8512] ip6tnl0: left allmulticast mode
[  188.923886][ T8512] ip6gre0: left promiscuous mode
[  188.926008][ T8512] ip6gre0: left allmulticast mode
[  188.928747][ T8512] syz_tun: left promiscuous mode
[  188.930865][ T8512] syz_tun: left allmulticast mode
[  188.933880][ T8512] ip6gretap0: left promiscuous mode
[  188.936073][ T8512] ip6gretap0: left allmulticast mode
[  188.939047][ T8512] bridge0: left promiscuous mode
[  188.941673][ T8512] bridge0: left allmulticast mode
[  188.944654][ T8512] vcan0: left promiscuous mode
[  188.946721][ T8512] vcan0: left allmulticast mode
[  188.949387][ T8512] bond0: left promiscuous mode
[  188.952096][ T8512] bond_slave_0: left promiscuous mode
[  188.954627][ T8512] bond_slave_1: left promiscuous mode
[  188.957019][ T8512] bond0: left allmulticast mode
[  188.959087][ T8512] bond_slave_0: left allmulticast mode
[  188.962264][ T8512] bond_slave_1: left allmulticast mode
[  188.965746][ T8512] team0: left promiscuous mode
[  188.967808][ T8512] team_slave_0: left promiscuous mode
[  188.970217][ T8512] team_slave_1: left promiscuous mode
[  188.973610][ T8512] team0: left allmulticast mode
[  188.975810][ T8512] team_slave_0: left allmulticast mode
[  188.978104][ T8512] team_slave_1: left allmulticast mode
[  188.983516][ T8512] nlmon0: left promiscuous mode
[  188.985732][ T8512] nlmon0: left allmulticast mode
[  189.144963][ T8512] caif0: left promiscuous mode
[  189.147163][ T8512] caif0: left allmulticast mode
[  189.161153][ T8512] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  189.630916][   T34] usb 8-1: new full-speed USB device number 21 using dummy_hcd
[  189.803173][   T34] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  189.807800][   T34] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  189.813629][   T34] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  189.817524][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.825027][ T8518] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  189.829962][ T8518] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  189.837303][   T34] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  189.990813][ T2135] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  190.000969][   T29] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  190.042651][   T34] usb 8-1: USB disconnect, device number 21
[  190.141220][ T2135] usb 6-1: Using ep0 maxpacket: 8
[  190.144233][ T2135] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  190.147308][ T2135] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  190.150558][ T2135] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  190.153754][ T2135] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  190.157837][ T2135] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  190.160631][ T2135] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.163249][   T29] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  190.166981][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.169814][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.173416][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.177648][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.180238][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.183667][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.195362][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.198240][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.202308][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.207038][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.209866][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.220873][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.224167][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.230963][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.234390][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.245932][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.248668][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.252413][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.255464][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.258441][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.262808][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.266175][   T29] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  190.269135][   T29] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  190.273011][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  190.277709][   T29] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  190.281416][   T29] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  190.284809][   T29] usb 5-1: Product: syz
[  190.284820][   T29] usb 5-1: Manufacturer: syz
[  190.284828][   T29] usb 5-1: SerialNumber: syz
[  190.286531][   T29] usb 5-1: config 0 descriptor??
[  190.297311][   T29] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  190.381912][ T2135] usb 6-1: GET_CAPABILITIES returned 0
[  190.383932][ T2135] usbtmc 6-1:16.0: can't read capabilities
[  190.517027][ T8539] block device autoloading is deprecated and will be removed.
[  190.579675][ T8530] vivid-000: =================  START STATUS  =================
[  190.583032][ T8530] vivid-000: Test Pattern: 75% Colorbar
[  190.585410][ T8530] vivid-000: Fill Percentage of Frame: 100
[  190.587893][ T8530] vivid-000: Horizontal Movement: No Movement
[  190.590478][ T8530] vivid-000: Vertical Movement: Move Down
[  190.593254][ T8530] vivid-000: OSD Text Mode: All
[  190.595379][ T8530] vivid-000: Show Border: false
[  190.597429][ T8530] vivid-000: Show Square: false
[  190.599575][ T8530] vivid-000: Sensor Flipped Horizontally: false
[  190.602566][ T8530] vivid-000: Sensor Flipped Vertically: false
[  190.605432][ T8530] vivid-000: Insert SAV Code in Image: false
[  190.608085][ T8530] vivid-000: Insert EAV Code in Image: false
[  190.610647][ T8530] vivid-000: Insert Video Guard Band: false
[  190.613251][ T8530] vivid-000: Reduced Framerate: false
[  190.615540][ T8530] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  190.618680][ T8530] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  190.621865][ T8530] vivid-000: Enable Capture Cropping: true
[  190.624498][ T8530] vivid-000: Enable Capture Composing: true
[  190.627077][ T8530] vivid-000: Enable Capture Scaler: true
[  190.629515][ T8530] vivid-000: Timestamp Source: End of Frame
[  190.632138][ T8530] vivid-000: Colorspace: sRGB
[  190.634332][ T8530] vivid-000: Transfer Function: Default
[  190.636873][ T8530] vivid-000: Y'CbCr Encoding: Default
[  190.639280][ T8530] vivid-000: HSV Encoding: Hue 0-179
[  190.641623][ T8530] vivid-000: Quantization: Default
[  190.643697][ T8530] vivid-000: Apply Alpha To Red Only: false
[  190.646152][ T8530] vivid-000: Standard Aspect Ratio: 4x3
[  190.648450][ T8530] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  190.651738][ T8530] vivid-000: DV Timings: 640x480p59 inactive
[  190.654589][ T8530] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  190.657818][ T8530] vivid-000: Maximum EDID Blocks: 2
[  190.660072][ T8530] vivid-000: Limited RGB Range (16-235): false
[  190.662805][ T8530] vivid-000: Rx RGB Quantization Range: Automatic
[  190.665357][ T8530] vivid-000: Power Present: 0x00000001
[  190.667179][ T8530] tpg source WxH: 320x180 (Y'CbCr)
[  190.669397][ T8530] tpg field: 1
[  190.672799][ T8530] tpg crop: (0,0)/320x180
[  190.674814][ T8530] tpg compose: (0,0)/320x180
[  190.676731][ T8530] tpg colorspace: 8
[  190.678205][ T8530] tpg transfer function: 0/0
[  190.680133][ T8530] tpg Y'CbCr encoding: 0/0
[  190.682071][ T8530] tpg quantization: 0/0
[  190.683791][ T8530] tpg RGB range: 0/2
[  190.685427][ T8530] vivid-000: ==================  END STATUS  ==================
[  190.692218][ T2135] usb 6-1: USB disconnect, device number 26
[  191.332590][ T8548] overlay: Unknown parameter 'fowner>00000000000000000000'
[  191.500699][ T8550] netlink: 156 bytes leftover after parsing attributes in process `syz.2.788'.
[  191.558505][ T8553] xt_hashlimit: overflow, try lower: 60585/0
[  192.550949][    C1] usb 5-1: yurex_control_callback - control failed: -2
[  192.555621][   T29] usb 5-1: USB disconnect, device number 17
[  192.559834][ T8563] yurex_open - error, can't find device for minor 0
[  192.559936][   T29] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  193.041437][ T6008] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[  193.215274][ T8578] netlink: 12 bytes leftover after parsing attributes in process `syz.0.799'.
[  193.232616][ T8578] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  193.279833][ T6008] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  193.283836][ T6008] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  193.288292][ T6008] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  193.292826][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.297761][ T8572] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  193.305427][ T8572] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  193.312242][ T6008] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  193.425852][ T8582] input: syz0 as /devices/virtual/input/input7
[  193.851592][ T6027] usb 7-1: USB disconnect, device number 19
[  194.648358][ T8603] netlink: 4 bytes leftover after parsing attributes in process `syz.2.807'.
[  194.774904][ T6027] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  194.930836][ T6027] usb 6-1: Using ep0 maxpacket: 8
[  194.947239][ T6027] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  194.959507][ T6027] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  194.982970][ T6027] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  194.986168][ T6027] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.993288][ T6027] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  194.997231][ T6027] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.228690][ T6027] usb 6-1: GET_CAPABILITIES returned 0
[  195.236877][ T6027] usbtmc 6-1:16.0: can't read capabilities
[  195.428668][ T8598] vivid-000: =================  START STATUS  =================
[  195.431223][ T8598] vivid-000: Test Pattern: 75% Colorbar
[  195.432934][ T8598] vivid-000: Fill Percentage of Frame: 100
[  195.434703][ T8598] vivid-000: Horizontal Movement: No Movement
[  195.436481][ T8598] vivid-000: Vertical Movement: Move Down
[  195.438254][ T8598] vivid-000: OSD Text Mode: All
[  195.439640][ T8598] vivid-000: Show Border: false
[  195.441409][ T8598] vivid-000: Show Square: false
[  195.442896][ T8598] vivid-000: Sensor Flipped Horizontally: false
[  195.444664][ T8598] vivid-000: Sensor Flipped Vertically: false
[  195.446540][ T8598] vivid-000: Insert SAV Code in Image: false
[  195.448287][ T8598] vivid-000: Insert EAV Code in Image: false
[  195.450074][ T8598] vivid-000: Insert Video Guard Band: false
[  195.451954][ T8598] vivid-000: Reduced Framerate: false
[  195.453537][ T8598] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  195.455666][ T8598] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  195.457903][ T8598] vivid-000: Enable Capture Cropping: true
[  195.459582][ T8598] vivid-000: Enable Capture Composing: true
[  195.461370][ T8598] vivid-000: Enable Capture Scaler: true
[  195.462947][ T8598] vivid-000: Timestamp Source: End of Frame
[  195.464574][ T8598] vivid-000: Colorspace: sRGB
[  195.466025][ T8598] vivid-000: Transfer Function: Default
[  195.467719][ T8598] vivid-000: Y'CbCr Encoding: Default
[  195.469283][ T8598] vivid-000: HSV Encoding: Hue 0-179
[  195.470923][ T8598] vivid-000: Quantization: Default
[  195.472373][ T8598] vivid-000: Apply Alpha To Red Only: false
[  195.474099][ T8598] vivid-000: Standard Aspect Ratio: 4x3
[  195.475660][ T8598] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  195.477876][ T8598] vivid-000: DV Timings: 640x480p59 inactive
[  195.480211][ T8598] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  195.482712][ T8598] vivid-000: Maximum EDID Blocks: 2
[  195.484935][ T8598] vivid-000: Limited RGB Range (16-235): false
[  195.487486][ T8598] vivid-000: Rx RGB Quantization Range: Automatic
[  195.488208][ T3247] usb 6-1: USB disconnect, device number 27
[  195.489696][ T8598] vivid-000: Power Present: 0x00000001
[  195.494650][ T8598] tpg source WxH: 320x180 (Y'CbCr)
[  195.496367][ T8598] tpg field: 1
[  195.497875][ T8598] tpg crop: (0,0)/320x180
[  195.499717][ T8598] tpg compose: (0,0)/320x180
[  195.501700][ T8598] tpg colorspace: 8
[  195.503076][ T8598] tpg transfer function: 0/0
[  195.504642][ T8598] tpg Y'CbCr encoding: 0/0
[  195.506586][ T8598] tpg quantization: 0/0
[  195.508360][ T8598] tpg RGB range: 0/2
[  195.509972][ T8598] vivid-000: ==================  END STATUS  ==================
[  195.850840][    T9] usb 8-1: new full-speed USB device number 22 using dummy_hcd
[  196.012739][    T9] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  196.017501][    T9] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  196.021914][    T9] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  196.025409][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.038993][ T8626] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  196.042302][ T8626] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  196.052817][    T9] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  196.332708][    T9] usb 8-1: USB disconnect, device number 22
[  197.311580][ T8654] netdevsim netdevsim3: Direct firmware load for ���� failed with error -2
[  197.316139][ T8654] netdevsim netdevsim3: Falling back to sysfs fallback for: ����
[  197.841465][ T6356] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  197.991690][ T6356] usb 8-1: Using ep0 maxpacket: 8
[  197.994333][ T6356] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  198.002961][ T6356] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  198.006984][ T6356] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  198.011176][ T6356] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  198.016776][ T6356] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  198.020764][ T6356] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.232565][ T6356] usb 8-1: GET_CAPABILITIES returned 0
[  198.235017][ T6356] usbtmc 8-1:16.0: can't read capabilities
[  198.433418][ T8664] vivid-000: =================  START STATUS  =================
[  198.437608][ T8664] vivid-000: Test Pattern: 75% Colorbar
[  198.439902][ T8664] vivid-000: Fill Percentage of Frame: 100
[  198.443922][ T8664] vivid-000: Horizontal Movement: No Movement
[  198.446456][ T8664] vivid-000: Vertical Movement: Move Down
[  198.448801][ T8664] vivid-000: OSD Text Mode: All
[  198.450819][ T8664] vivid-000: Show Border: false
[  198.452989][ T8664] vivid-000: Show Square: false
[  198.454964][ T8664] vivid-000: Sensor Flipped Horizontally: false
[  198.457402][ T8664] vivid-000: Sensor Flipped Vertically: false
[  198.459848][ T8664] vivid-000: Insert SAV Code in Image: false
[  198.462511][ T8664] vivid-000: Insert EAV Code in Image: false
[  198.465029][ T8664] vivid-000: Insert Video Guard Band: false
[  198.467427][ T8664] vivid-000: Reduced Framerate: false
[  198.469601][ T8664] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  198.474879][ T8664] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  198.477393][ T8664] vivid-000: Enable Capture Cropping: true
[  198.479255][ T8664] vivid-000: Enable Capture Composing: true
[  198.481238][ T8664] vivid-000: Enable Capture Scaler: true
[  198.483384][ T8664] vivid-000: Timestamp Source: End of Frame
[  198.485298][ T8664] vivid-000: Colorspace: sRGB
[  198.486883][ T8664] vivid-000: Transfer Function: Default
[  198.488860][ T8664] vivid-000: Y'CbCr Encoding: Default
[  198.490561][ T8664] vivid-000: HSV Encoding: Hue 0-179
[  198.491447][ T3247] usb 8-1: USB disconnect, device number 23
[  198.492741][ T8664] vivid-000: Quantization: Default
[  198.496409][ T8664] vivid-000: Apply Alpha To Red Only: false
[  198.498411][ T8664] vivid-000: Standard Aspect Ratio: 4x3
[  198.500154][ T8664] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  198.502962][ T8664] vivid-000: DV Timings: 640x480p59 inactive
[  198.504934][ T8664] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  198.507541][ T8664] vivid-000: Maximum EDID Blocks: 2
[  198.509368][ T8664] vivid-000: Limited RGB Range (16-235): false
[  198.511392][ T8664] vivid-000: Rx RGB Quantization Range: Automatic
[  198.516684][ T8664] vivid-000: Power Present: 0x00000001
[  198.518573][ T8664] tpg source WxH: 320x180 (Y'CbCr)
[  198.520616][ T8664] tpg field: 1
[  198.521809][ T8664] tpg crop: (0,0)/320x180
[  198.531451][ T8664] tpg compose: (0,0)/320x180
[  198.531463][ T8664] tpg colorspace: 8
[  198.531467][ T8664] tpg transfer function: 0/0
[  198.531473][ T8664] tpg Y'CbCr encoding: 0/0
[  198.531479][ T8664] tpg quantization: 0/0
[  198.531484][ T8664] tpg RGB range: 0/2
[  198.531490][ T8664] vivid-000: ==================  END STATUS  ==================
[  198.796208][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  198.798790][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  198.832346][ T3247] usb 8-1: new full-speed USB device number 24 using dummy_hcd
[  198.882158][ T8690] netlink: 16 bytes leftover after parsing attributes in process `syz.1.835'.
[  198.983764][ T3247] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  198.988874][ T3247] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  198.991716][ T3247] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.995220][ T3247] usb 8-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  199.008064][ T3247] usb 8-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  199.239282][ T3247] cdc_ncm 8-1:1.0: bind() failure
[  199.248514][ T3247] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  199.250690][ T3247] cdc_ncm 8-1:1.1: bind() failure
[  199.254837][ T3247] usb 8-1: USB disconnect, device number 24
[  199.332773][ T2135] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  199.513906][ T2135] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  199.517807][ T2135] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  199.520991][ T2135] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  199.532928][ T2135] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.537507][ T8692] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  199.540535][ T8692] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  199.546544][ T2135] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  199.775445][ T3247] usb 5-1: USB disconnect, device number 18
[  200.656752][ T8706] netlink: 20 bytes leftover after parsing attributes in process `syz.3.839'.
[  201.409571][ T8739] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  201.412214][ T8739] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  201.416575][ T8739] vhci_hcd vhci_hcd.0: Device attached
[  201.635108][ T3247] usb 8-1: new full-speed USB device number 25 using dummy_hcd
[  201.695041][   T29] usb 40-1: SetAddress Request (22) to port 0
[  201.700087][   T29] usb 40-1: new SuperSpeed USB device number 22 using vhci_hcd
[  201.797937][ T3247] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  201.801880][ T3247] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  201.807331][ T3247] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  201.811192][ T3247] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.816272][ T8738] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  201.818844][ T8738] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  201.823077][ T3247] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  201.878603][ T8740] vhci_hcd: connection reset by peer
[  201.884955][ T1058] vhci_hcd: stop threads
[  201.887639][ T1058] vhci_hcd: release socket
[  201.890220][ T1058] vhci_hcd: disconnect device
[  202.032081][ T5988] usb 8-1: USB disconnect, device number 25
[  202.742527][ T8763] loop0: detected capacity change from 0 to 2560
[  202.751485][ T5950] buffer_io_error: 42 callbacks suppressed
[  202.751499][ T5950] Buffer I/O error on dev loop0, logical block 0, async page read
[  202.760177][ T5950] Buffer I/O error on dev loop0, logical block 0, async page read
[  202.763924][ T5950] Buffer I/O error on dev loop0, logical block 0, async page read
[  202.767776][ T5950] Buffer I/O error on dev loop0, logical block 0, async page read
[  202.771415][ T5950] Buffer I/O error on dev loop0, logical block 0, async page read
[  202.827343][ T8766] netlink: 16 bytes leftover after parsing attributes in process `syz.1.858'.
[  203.356844][ T5988] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  203.536817][ T5988] usb 6-1: Using ep0 maxpacket: 8
[  203.548011][ T5988] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  203.562761][ T5988] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  203.584399][ T5988] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  203.610007][ T5988] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  203.640483][ T5988] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  203.657288][ T5988] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.898384][ T5988] usb 6-1: GET_CAPABILITIES returned 0
[  203.900396][ T5988] usbtmc 6-1:16.0: can't read capabilities
[  204.113863][ T8773] vivid-000: =================  START STATUS  =================
[  204.116404][ T8773] vivid-000: Test Pattern: 75% Colorbar
[  204.120420][ T8773] vivid-000: Fill Percentage of Frame: 100
[  204.123590][ T8773] vivid-000: Horizontal Movement: No Movement
[  204.125821][ T8773] vivid-000: Vertical Movement: Move Down
[  204.129041][ T8773] vivid-000: OSD Text Mode: All
[  204.130789][ T8773] vivid-000: Show Border: false
[  204.132482][ T8773] vivid-000: Show Square: false
[  204.134695][ T8773] vivid-000: Sensor Flipped Horizontally: false
[  204.136884][ T8773] vivid-000: Sensor Flipped Vertically: false
[  204.142001][ T8773] vivid-000: Insert SAV Code in Image: false
[  204.144371][ T8773] vivid-000: Insert EAV Code in Image: false
[  204.148750][ T8773] vivid-000: Insert Video Guard Band: false
[  204.150986][ T8773] vivid-000: Reduced Framerate: false
[  204.152794][ T8773] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  204.155357][ T8773] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  204.158486][ T8773] vivid-000: Enable Capture Cropping: true
[  204.160508][ T8773] vivid-000: Enable Capture Composing: true
[  204.162667][ T8773] vivid-000: Enable Capture Scaler: true
[  204.164742][ T8773] vivid-000: Timestamp Source: End of Frame
[  204.166778][ T8773] vivid-000: Colorspace: sRGB
[  204.168975][ T8773] vivid-000: Transfer Function: Default
[  204.171582][ T8773] vivid-000: Y'CbCr Encoding: Default
[  204.176493][ T5988] usb 6-1: USB disconnect, device number 28
[  204.179190][ T8773] vivid-000: HSV Encoding: Hue 0-179
[  204.181803][ T8773] vivid-000: Quantization: Default
[  204.183718][ T8773] vivid-000: Apply Alpha To Red Only: false
[  204.185647][ T8773] vivid-000: Standard Aspect Ratio: 4x3
[  204.194793][ T8773] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  204.200468][ T8773] vivid-000: DV Timings: 640x480p59 inactive
[  204.204092][ T8773] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  204.206936][ T8773] vivid-000: Maximum EDID Blocks: 2
[  204.214948][ T8773] vivid-000: Limited RGB Range (16-235): false
[  204.218148][ T8773] vivid-000: Rx RGB Quantization Range: Automatic
[  204.233029][ T8773] vivid-000: Power Present: 0x00000001
[  204.280494][ T8773] tpg source WxH: 320x180 (Y'CbCr)
[  204.282599][ T8773] tpg field: 1
[  204.287557][ T8773] tpg crop: (0,0)/320x180
[  204.289024][ T8773] tpg compose: (0,0)/320x180
[  204.290708][ T8773] tpg colorspace: 8
[  204.292282][ T8773] tpg transfer function: 0/0
[  204.300943][ T8773] tpg Y'CbCr encoding: 0/0
[  204.302373][ T8773] tpg quantization: 0/0
[  204.303686][ T8773] tpg RGB range: 0/2
[  204.305051][ T8773] vivid-000: ==================  END STATUS  ==================
[  204.314485][ T8786] netlink: 156 bytes leftover after parsing attributes in process `syz.2.864'.
[  204.575255][ T5988] usb 6-1: new full-speed USB device number 29 using dummy_hcd
[  204.677922][ T2135] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  204.730067][ T5988] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  204.737572][ T5988] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  204.741685][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.745048][ T5988] usb 6-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  204.758825][ T5988] usb 6-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  204.848293][ T2135] usb 7-1: Using ep0 maxpacket: 8
[  204.854047][ T2135] usb 7-1: config 0 interface 0 has no altsetting 0
[  204.856911][ T2135] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  204.861194][ T2135] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.867755][ T2135] usb 7-1: config 0 descriptor??
[  204.994849][ T5988] cdc_ncm 6-1:1.0: bind() failure
[  205.005615][ T5988] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  205.008977][ T5988] cdc_ncm 6-1:1.1: bind() failure
[  205.021019][ T5988] usb 6-1: USB disconnect, device number 29
[  205.028333][   T34] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[  205.180260][   T34] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  205.184955][   T34] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  205.189614][   T34] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  205.193385][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.199929][ T8795] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  205.203120][ T8795] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  205.209185][   T34] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  205.258969][ T8799] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  205.435617][   T34] usb 5-1: USB disconnect, device number 19
[  205.659911][ T2135] usbhid 7-1:0.0: can't add hid device: -71
[  205.662644][ T2135] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  205.667692][ T2135] usb 7-1: USB disconnect, device number 20
[  205.699715][ T8811] netlink: 52 bytes leftover after parsing attributes in process `syz.1.873'.
[  206.280901][ T8824] FAULT_INJECTION: forcing a failure.
[  206.280901][ T8824] name failslab, interval 1, probability 0, space 0, times 0
[  206.286201][ T8824] CPU: 1 UID: 0 PID: 8824 Comm: syz.0.877 Not tainted syzkaller #0 PREEMPT(full) 
[  206.286221][ T8824] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.286231][ T8824] Call Trace:
[  206.286237][ T8824]  <TASK>
[  206.286243][ T8824]  dump_stack_lvl+0x16c/0x1f0
[  206.286268][ T8824]  should_fail_ex+0x512/0x640
[  206.286293][ T8824]  ? __kmalloc_noprof+0xca/0x880
[  206.286321][ T8824]  should_failslab+0xc2/0x120
[  206.286344][ T8824]  __kmalloc_noprof+0xdd/0x880
[  206.286370][ T8824]  ? snd_pcm_plugin_build+0x434/0x650
[  206.286400][ T8824]  ? snd_pcm_plugin_build+0x434/0x650
[  206.286423][ T8824]  snd_pcm_plugin_build+0x434/0x650
[  206.286450][ T8824]  snd_pcm_plugin_build_route+0x1b3/0x2d0
[  206.286467][ T8824]  ? __pfx_snd_pcm_plugin_build_route+0x10/0x10
[  206.286501][ T8824]  snd_pcm_plug_format_plugins+0xb14/0x1430
[  206.286543][ T8824]  ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10
[  206.286572][ T8824]  ? snd_pcm_plugin_free+0xb2/0xe0
[  206.286602][ T8824]  snd_pcm_oss_change_params_locked+0x2df1/0x3a30
[  206.286637][ T8824]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  206.286679][ T8824]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  206.286711][ T8824]  snd_pcm_oss_ioctl+0x31d3/0x37c0
[  206.286736][ T8824]  ? hook_file_ioctl_common+0x145/0x410
[  206.286754][ T8824]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  206.286780][ T8824]  ? __fget_files+0x20e/0x3c0
[  206.286801][ T8824]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  206.286826][ T8824]  __ia32_compat_sys_ioctl+0x242/0x370
[  206.286854][ T8824]  __do_fast_syscall_32+0x7c/0x300
[  206.286879][ T8824]  do_fast_syscall_32+0x32/0x80
[  206.286900][ T8824]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.286920][ T8824] RIP: 0023:0xf7f96579
[  206.286932][ T8824] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.286946][ T8824] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  206.286961][ T8824] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0045005
[  206.286971][ T8824] RDX: 0000000080000580 RSI: 0000000000000000 RDI: 0000000000000000
[  206.286981][ T8824] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.286990][ T8824] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  206.286999][ T8824] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.287023][ T8824]  </TASK>
[  206.371313][    C1] vkms_vblank_simulate: vblank timer overrun
[  206.659843][ T6008] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  206.810135][   T29] usb 40-1: device descriptor read/8, error -110
[  206.840069][ T6008] usb 8-1: Using ep0 maxpacket: 8
[  206.856609][ T6008] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  206.861719][ T6008] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  206.865693][ T6008] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  206.869881][ T6008] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  206.876082][ T6008] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  206.879854][ T6008] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.093586][ T6008] usb 8-1: GET_CAPABILITIES returned 0
[  207.096001][ T6008] usbtmc 8-1:16.0: can't read capabilities
[  207.252622][   T29] usb usb40-port1: attempt power cycle
[  207.301355][ T8828] vivid-000: =================  START STATUS  =================
[  207.303842][ T8828] vivid-000: Test Pattern: 75% Colorbar
[  207.305726][ T8828] vivid-000: Fill Percentage of Frame: 100
[  207.307620][ T8828] vivid-000: Horizontal Movement: No Movement
[  207.309588][ T8828] vivid-000: Vertical Movement: Move Down
[  207.311876][ T8828] vivid-000: OSD Text Mode: All
[  207.313540][ T8828] vivid-000: Show Border: false
[  207.315164][ T8828] vivid-000: Show Square: false
[  207.316802][ T8828] vivid-000: Sensor Flipped Horizontally: false
[  207.319357][ T8828] vivid-000: Sensor Flipped Vertically: false
[  207.322215][ T8828] vivid-000: Insert SAV Code in Image: false
[  207.324674][ T8828] vivid-000: Insert EAV Code in Image: false
[  207.327129][ T8828] vivid-000: Insert Video Guard Band: false
[  207.329598][ T8828] vivid-000: Reduced Framerate: false
[  207.332694][ T8828] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  207.335965][ T8828] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  207.339446][ T8828] vivid-000: Enable Capture Cropping: true
[  207.342394][ T8828] vivid-000: Enable Capture Composing: true
[  207.344901][ T8828] vivid-000: Enable Capture Scaler: true
[  207.347259][ T8828] vivid-000: Timestamp Source: End of Frame
[  207.349750][ T8828] vivid-000: Colorspace: sRGB
[  207.352267][ T8828] vivid-000: Transfer Function: Default
[  207.355168][ T8828] vivid-000: Y'CbCr Encoding: Default
[  207.357466][ T8828] vivid-000: HSV Encoding: Hue 0-179
[  207.359690][ T8828] vivid-000: Quantization: Default
[  207.362312][ T2135] usb 8-1: USB disconnect, device number 26
[  207.366557][ T8828] vivid-000: Apply Alpha To Red Only: false
[  207.368799][ T8828] vivid-000: Standard Aspect Ratio: 4x3
[  207.380460][ T8828] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  207.382894][ T8828] vivid-000: DV Timings: 640x480p59 inactive
[  207.384790][ T8828] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  207.387084][ T8828] vivid-000: Maximum EDID Blocks: 2
[  207.388783][ T8828] vivid-000: Limited RGB Range (16-235): false
[  207.400515][ T8828] vivid-000: Rx RGB Quantization Range: Automatic
[  207.401539][ T6356] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  207.402690][ T8828] vivid-000: Power Present: 0x00000001
[  207.420504][ T8828] tpg source WxH: 320x180 (Y'CbCr)
[  207.422162][ T8828] tpg field: 1
[  207.423244][ T8828] tpg crop: (0,0)/320x180
[  207.424586][ T8828] tpg compose: (0,0)/320x180
[  207.426073][ T8828] tpg colorspace: 8
[  207.427299][ T8828] tpg transfer function: 0/0
[  207.428821][ T8828] tpg Y'CbCr encoding: 0/0
[  207.430261][ T8828] tpg quantization: 0/0
[  207.440491][ T8828] tpg RGB range: 0/2
[  207.441811][ T8828] vivid-000: ==================  END STATUS  ==================
[  207.553860][ T6356] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  207.562005][ T6356] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  207.579822][ T6356] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  207.591022][ T6356] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.604487][ T8840] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  207.607866][ T8840] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  207.610512][ T8853] loop2: detected capacity change from 0 to 7
[  207.614624][ T6356] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  207.616586][ T8853] Dev loop2: unable to read RDB block 7
[  207.619488][ T8853]  loop2: AHDI p1 p2 p3
[  207.620877][ T8853] loop2: partition table partially beyond EOD, truncated
[  207.623261][ T8853] loop2: p1 start 1818582900 is beyond EOD, truncated
[  207.625452][ T8853] loop2: p3 start 335544320 is beyond EOD, truncated
[  207.832276][  T840] usb 5-1: USB disconnect, device number 20
[  207.861119][ T2135] usb 8-1: new full-speed USB device number 27 using dummy_hcd
[  207.881445][   T29] usb usb40-port1: unable to enumerate USB device
[  208.012499][ T2135] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  208.018407][ T2135] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  208.021406][ T2135] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.023930][ T2135] usb 8-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  208.034328][ T2135] usb 8-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  208.257831][ T2135] cdc_ncm 8-1:1.0: bind() failure
[  208.260026][ T2135] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  208.263572][ T2135] cdc_ncm 8-1:1.1: bind() failure
[  208.270006][ T2135] usb 8-1: USB disconnect, device number 27
[  208.601378][ T8866] evm: overlay not supported
[  210.053142][ T6356] usb 5-1: new full-speed USB device number 21 using dummy_hcd
[  210.254189][ T6356] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  210.257798][ T6356] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  210.261183][ T6356] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  210.272215][ T6356] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.277927][ T8892] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  210.280311][ T8892] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  210.284303][ T6356] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  210.613632][ T6008] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  210.763835][ T6008] usb 7-1: Using ep0 maxpacket: 8
[  210.767367][ T6008] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  210.770760][ T6008] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  210.774840][ T6008] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  210.778378][ T6008] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  210.782672][ T6008] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  210.785826][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.995884][ T6008] usb 7-1: GET_CAPABILITIES returned 0
[  210.997525][ T6008] usbtmc 7-1:16.0: can't read capabilities
[  211.200233][ T8896] vivid-000: =================  START STATUS  =================
[  211.224228][ T8896] vivid-000: Test Pattern: 75% Colorbar
[  211.226735][ T8896] vivid-000: Fill Percentage of Frame: 100
[  211.229277][ T8896] vivid-000: Horizontal Movement: No Movement
[  211.231795][ T8896] vivid-000: Vertical Movement: Move Down
[  211.234390][ T8896] vivid-000: OSD Text Mode: All
[  211.236470][ T8896] vivid-000: Show Border: false
[  211.238658][ T8896] vivid-000: Show Square: false
[  211.240772][ T8896] vivid-000: Sensor Flipped Horizontally: false
[  211.243463][ T8896] vivid-000: Sensor Flipped Vertically: false
[  211.246624][ T8896] vivid-000: Insert SAV Code in Image: false
[  211.250198][ T8896] vivid-000: Insert EAV Code in Image: false
[  211.252859][ T8896] vivid-000: Insert Video Guard Band: false
[  211.255892][ T8896] vivid-000: Reduced Framerate: false
[  211.258306][ T8896] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  211.261523][ T8896] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  211.264995][ T8896] vivid-000: Enable Capture Cropping: true
[  211.267665][ T8896] vivid-000: Enable Capture Composing: true
[  211.270165][ T8896] vivid-000: Enable Capture Scaler: true
[  211.272409][ T8896] vivid-000: Timestamp Source: End of Frame
[  211.275032][ T8896] vivid-000: Colorspace: sRGB
[  211.277164][ T8896] vivid-000: Transfer Function: Default
[  211.279663][ T8896] vivid-000: Y'CbCr Encoding: Default
[  211.282032][ T8896] vivid-000: HSV Encoding: Hue 0-179
[  211.284756][ T8896] vivid-000: Quantization: Default
[  211.287012][ T8896] vivid-000: Apply Alpha To Red Only: false
[  211.289592][ T8896] vivid-000: Standard Aspect Ratio: 4x3
[  211.295260][ T8896] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  211.300882][ T2135] usb 7-1: USB disconnect, device number 21
[  211.308827][ T8896] vivid-000: DV Timings: 640x480p59 inactive
[  211.316282][ T8896] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  211.338827][ T8896] vivid-000: Maximum EDID Blocks: 2
[  211.349391][ T8896] vivid-000: Limited RGB Range (16-235): false
[  211.362161][ T8896] vivid-000: Rx RGB Quantization Range: Automatic
[  211.370726][ T8896] vivid-000: Power Present: 0x00000001
[  211.373219][ T8896] tpg source WxH: 320x180 (Y'CbCr)
[  211.377446][ T8896] tpg field: 1
[  211.379223][ T8896] tpg crop: (0,0)/320x180
[  211.381358][ T8896] tpg compose: (0,0)/320x180
[  211.383634][ T8896] tpg colorspace: 8
[  211.386044][ T8896] tpg transfer function: 0/0
[  211.388238][ T8896] tpg Y'CbCr encoding: 0/0
[  211.390402][ T8896] tpg quantization: 0/0
[  211.392309][ T8896] tpg RGB range: 0/2
[  211.394134][ T8896] vivid-000: ==================  END STATUS  ==================
[  211.970142][ T2135] usb 7-1: new full-speed USB device number 22 using dummy_hcd
[  212.059855][   T54] usb 5-1: USB disconnect, device number 21
[  212.066478][ T8913] binder: 8911:8913 ioctl 81e8943c 80000500 returned -22
[  212.197147][ T2135] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  212.202922][ T2135] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  212.207505][ T2135] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.210172][ T2135] usb 7-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  212.220349][ T2135] usb 7-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  212.470251][ T2135] cdc_ncm 7-1:1.0: bind() failure
[  212.474179][ T2135] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  212.476557][ T2135] cdc_ncm 7-1:1.1: bind() failure
[  212.481347][ T2135] usb 7-1: USB disconnect, device number 22
[  212.590002][ T8921] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  212.592732][ T8921] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  212.597145][ T8921] vhci_hcd vhci_hcd.0: Device attached
[  212.876170][   T29] usb 40-1: SetAddress Request (26) to port 0
[  212.882429][   T29] usb 40-1: new SuperSpeed USB device number 26 using vhci_hcd
[  213.142234][ T8933] loop2: detected capacity change from 0 to 7
[  213.145153][ T8933] Dev loop2: unable to read RDB block 7
[  213.148677][ T8933]  loop2: AHDI p1
[  213.150518][ T8933] loop2: partition table partially beyond EOD, truncated
[  213.167371][ T8922] vhci_hcd: connection reset by peer
[  213.175221][ T1141] vhci_hcd: stop threads
[  213.177401][ T1141] vhci_hcd: release socket
[  213.181902][ T1141] vhci_hcd: disconnect device
[  213.186165][ T8931] bridge0: entered allmulticast mode
[  213.190771][ T8932] netlink: 4 bytes leftover after parsing attributes in process `syz.2.916'.
[  213.194303][ T8932] bridge_slave_1: left allmulticast mode
[  213.197817][ T8932] bridge_slave_1: left promiscuous mode
[  213.200705][ T8932] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.204229][ T8931] Driver unsupported XDP return value 0 on prog  (id 156) dev N/A, expect packet loss!
[  213.243898][ T8932] bridge_slave_0: left allmulticast mode
[  213.245711][ T8932] bridge_slave_0: left promiscuous mode
[  213.247838][ T8932] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.259588][ T8932] bridge0 (unregistering): left allmulticast mode
[  214.199396][ T6008] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  214.342952][ T8962] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  214.345615][ T8962] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  214.349471][ T8962] vhci_hcd vhci_hcd.0: Device attached
[  214.367182][ T6008] usb 6-1: Using ep0 maxpacket: 8
[  214.373602][ T6008] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  214.379916][ T6008] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  214.387554][ T6008] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  214.395775][ T6008] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  214.407827][ T6008] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  214.415623][ T6008] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.457243][ T2135] usb 5-1: new full-speed USB device number 22 using dummy_hcd
[  214.612800][ T2135] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  214.620126][ T2135] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  214.629574][ T2135] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  214.632805][ T2135] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.634035][ T6008] usb 6-1: GET_CAPABILITIES returned 0
[  214.639616][ T6008] usbtmc 6-1:16.0: can't read capabilities
[  214.641590][ T8955] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  214.646208][ T8955] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  214.648769][   T54] usb 42-1: SetAddress Request (18) to port 0
[  214.650656][   T54] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[  214.654601][ T2135] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  214.735471][ T8966] bond3: ARP target 9.0.0.0 is already present
[  214.738586][ T8966] bond3: option arp_ip_target: invalid value (9)
[  214.741831][ T8966] bond3 (unregistering): Released all slaves
[  214.834956][ T8953] vivid-000: =================  START STATUS  =================
[  214.841019][ T8953] vivid-000: Test Pattern: 75% Colorbar
[  214.843412][ T8953] vivid-000: Fill Percentage of Frame: 100
[  214.845935][ T8953] vivid-000: Horizontal Movement: No Movement
[  214.849839][ T8953] vivid-000: Vertical Movement: Move Down
[  214.850939][ T8963] vhci_hcd: connection reset by peer
[  214.852366][ T8953] vivid-000: OSD Text Mode: All
[  214.855080][ T1058] vhci_hcd: stop threads
[  214.858033][ T1058] vhci_hcd: release socket
[  214.859513][ T1058] vhci_hcd: disconnect device
[  214.861587][ T8953] vivid-000: Show Border: false
[  214.862584][ T2135] usb 5-1: USB disconnect, device number 22
[  214.863986][ T8953] vivid-000: Show Square: false
[  214.867925][ T8953] vivid-000: Sensor Flipped Horizontally: false
[  214.870577][ T8953] vivid-000: Sensor Flipped Vertically: false
[  214.873153][ T8953] vivid-000: Insert SAV Code in Image: false
[  214.876010][ T8953] vivid-000: Insert EAV Code in Image: false
[  214.878680][ T8953] vivid-000: Insert Video Guard Band: false
[  214.881182][ T8953] vivid-000: Reduced Framerate: false
[  214.883449][ T8953] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  214.886750][ T8953] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  214.890677][ T8953] vivid-000: Enable Capture Cropping: true
[  214.892395][ T8953] vivid-000: Enable Capture Composing: true
[  214.892843][   T34] usb 6-1: USB disconnect, device number 30
[  214.894132][ T8953] vivid-000: Enable Capture Scaler: true
[  214.897994][ T8953] vivid-000: Timestamp Source: End of Frame
[  214.899730][ T8953] vivid-000: Colorspace: sRGB
[  214.901119][ T8953] vivid-000: Transfer Function: Default
[  214.902711][ T8953] vivid-000: Y'CbCr Encoding: Default
[  214.904252][ T8953] vivid-000: HSV Encoding: Hue 0-179
[  214.905794][ T8953] vivid-000: Quantization: Default
[  214.907301][ T8953] vivid-000: Apply Alpha To Red Only: false
[  214.909662][ T8953] vivid-000: Standard Aspect Ratio: 4x3
[  214.911243][ T8953] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  214.913502][ T8953] vivid-000: DV Timings: 640x480p59 inactive
[  214.915277][ T8953] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  214.917396][ T8953] vivid-000: Maximum EDID Blocks: 2
[  214.920037][ T8953] vivid-000: Limited RGB Range (16-235): false
[  214.921833][ T8953] vivid-000: Rx RGB Quantization Range: Automatic
[  214.923668][ T8953] vivid-000: Power Present: 0x00000001
[  214.925279][ T8953] tpg source WxH: 320x180 (Y'CbCr)
[  214.926729][ T8953] tpg field: 1
[  214.927927][ T8953] tpg crop: (0,0)/320x180
[  214.929189][ T8953] tpg compose: (0,0)/320x180
[  214.930521][ T8953] tpg colorspace: 8
[  214.931622][ T8953] tpg transfer function: 0/0
[  214.933147][ T8953] tpg Y'CbCr encoding: 0/0
[  214.934762][ T8953] tpg quantization: 0/0
[  214.936267][ T8953] tpg RGB range: 0/2
[  214.937820][ T8953] vivid-000: ==================  END STATUS  ==================
[  215.227985][   T34] usb 6-1: new full-speed USB device number 31 using dummy_hcd
[  215.390176][   T34] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  215.397469][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  215.411884][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.414461][   T34] usb 6-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  215.446939][   T34] usb 6-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  215.569773][ T8977] netlink: 8 bytes leftover after parsing attributes in process `syz.2.930'.
[  215.696486][   T34] cdc_ncm 6-1:1.0: bind() failure
[  215.702555][   T34] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  215.705661][   T34] cdc_ncm 6-1:1.1: bind() failure
[  215.727309][   T34] usb 6-1: USB disconnect, device number 31
[  215.848578][ T6087] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  216.008719][ T6087] usb 7-1: Using ep0 maxpacket: 8
[  216.011993][ T6087] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  216.015152][ T6087] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  216.017779][ T6087] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  216.020885][ T6087] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  216.025130][ T6087] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  216.028041][ T6087] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.358078][ T8986] FAULT_INJECTION: forcing a failure.
[  216.358078][ T8986] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.363957][ T8986] CPU: 3 UID: 0 PID: 8986 Comm: syz.1.932 Not tainted syzkaller #0 PREEMPT(full) 
[  216.363984][ T8986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  216.363990][ T8986] Call Trace:
[  216.363994][ T8986]  <TASK>
[  216.363998][ T8986]  dump_stack_lvl+0x16c/0x1f0
[  216.364027][ T8986]  should_fail_ex+0x512/0x640
[  216.364046][ T8986]  _copy_from_iter+0x29f/0x1720
[  216.364066][ T8986]  ? __pfx__copy_from_iter+0x10/0x10
[  216.364082][ T8986]  ? rcu_is_watching+0x12/0xc0
[  216.364094][ T8986]  ? trace_kmalloc+0x2b/0xd0
[  216.364107][ T8986]  ? __kmalloc_noprof+0x34f/0x880
[  216.364123][ T8986]  ? kernfs_fop_write_iter+0x237/0x570
[  216.364136][ T8986]  kernfs_fop_write_iter+0x19a/0x570
[  216.364148][ T8986]  vfs_write+0x7d3/0x11d0
[  216.364160][ T8986]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  216.364171][ T8986]  ? __pfx_vfs_write+0x10/0x10
[  216.364181][ T8986]  ? find_held_lock+0x2b/0x80
[  216.364201][ T8986]  ksys_write+0x12a/0x250
[  216.364212][ T8986]  ? __pfx_ksys_write+0x10/0x10
[  216.364225][ T8986]  ? rcu_is_watching+0x12/0xc0
[  216.364237][ T8986]  __do_fast_syscall_32+0x7c/0x300
[  216.364252][ T8986]  do_fast_syscall_32+0x32/0x80
[  216.364266][ T8986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  216.364279][ T8986] RIP: 0023:0xf707d579
[  216.364287][ T8986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  216.364297][ T8986] RSP: 002b:00000000f544c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  216.364307][ T8986] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800000c0
[  216.364313][ T8986] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000
[  216.364319][ T8986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  216.364325][ T8986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  216.364330][ T8986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  216.364344][ T8986]  </TASK>
[  216.483352][ T8989] netlink: 156 bytes leftover after parsing attributes in process `syz.0.933'.
[  216.591653][ T6087] usb 7-1: usb_control_msg returned -71
[  216.608608][ T6087] usbtmc 7-1:16.0: can't read capabilities
[  216.740942][ T6087] usb 7-1: USB disconnect, device number 23
[  217.134133][ T8996] netlink: 'syz.3.936': attribute type 10 has an invalid length.
[  217.145771][ T8996] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  217.411241][   T40] audit: type=1326 audit(1763303233.028:9968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.419221][   T40] audit: type=1326 audit(1763303233.028:9969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.425945][   T40] audit: type=1326 audit(1763303233.028:9970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.432757][   T40] audit: type=1326 audit(1763303233.028:9971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.439556][   T40] audit: type=1326 audit(1763303233.028:9972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.446571][   T40] audit: type=1326 audit(1763303233.028:9973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.453294][   T40] audit: type=1326 audit(1763303233.028:9974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.460034][   T40] audit: type=1326 audit(1763303233.028:9975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.467762][   T40] audit: type=1326 audit(1763303233.028:9976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.475344][   T40] audit: type=1326 audit(1763303233.028:9977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.2.938" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  217.514180][ T9011] FAULT_INJECTION: forcing a failure.
[  217.514180][ T9011] name failslab, interval 1, probability 0, space 0, times 0
[  217.519877][ T9011] CPU: 0 UID: 0 PID: 9011 Comm: syz.0.942 Not tainted syzkaller #0 PREEMPT(full) 
[  217.519900][ T9011] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.519911][ T9011] Call Trace:
[  217.519918][ T9011]  <TASK>
[  217.519926][ T9011]  dump_stack_lvl+0x16c/0x1f0
[  217.519952][ T9011]  should_fail_ex+0x512/0x640
[  217.519978][ T9011]  ? __kmalloc_cache_noprof+0x5f/0x780
[  217.519998][ T9011]  should_failslab+0xc2/0x120
[  217.520038][ T9011]  __kmalloc_cache_noprof+0x72/0x780
[  217.520053][ T9011]  ? __thp_vma_allowable_orders+0x1c8/0xcd0
[  217.520077][ T9011]  ? madvise_collapse+0x1a9/0xab0
[  217.520105][ T9011]  ? madvise_collapse+0x1a9/0xab0
[  217.520127][ T9011]  madvise_collapse+0x1a9/0xab0
[  217.520155][ T9011]  ? find_held_lock+0x2b/0x80
[  217.520173][ T9011]  ? __pfx_madvise_collapse+0x10/0x10
[  217.520207][ T9011]  madvise_vma_behavior+0x1096/0x2d50
[  217.520235][ T9011]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  217.520256][ T9011]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  217.520281][ T9011]  ? mas_prev+0x9b/0xf0
[  217.520301][ T9011]  ? __pfx_mas_prev+0x10/0x10
[  217.520329][ T9011]  ? find_vma_prev+0xd3/0x150
[  217.520351][ T9011]  ? __pfx_find_vma_prev+0x10/0x10
[  217.520388][ T9011]  madvise_walk_vmas+0x31f/0x9c0
[  217.520417][ T9011]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  217.520450][ T9011]  madvise_do_behavior+0x1e2/0x530
[  217.520477][ T9011]  ? __pfx_madvise_do_behavior+0x10/0x10
[  217.520503][ T9011]  ? down_read+0x13d/0x480
[  217.520539][ T9011]  do_madvise+0x176/0x240
[  217.520561][ T9011]  ? __pfx_do_madvise+0x10/0x10
[  217.520583][ T9011]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  217.520612][ T9011]  ? __fget_files+0x20e/0x3c0
[  217.520661][ T9011]  ? __pfx_ksys_write+0x10/0x10
[  217.520688][ T9011]  __ia32_sys_madvise+0xa7/0x110
[  217.520712][ T9011]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  217.520735][ T9011]  __do_fast_syscall_32+0x7c/0x300
[  217.520759][ T9011]  do_fast_syscall_32+0x32/0x80
[  217.520781][ T9011]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  217.520802][ T9011] RIP: 0023:0xf7f96579
[  217.520821][ T9011] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  217.520837][ T9011] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 00000000000000db
[  217.520853][ T9011] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000c00000
[  217.520863][ T9011] RDX: 0000000000000019 RSI: 0000000000000000 RDI: 0000000000000000
[  217.520873][ T9011] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  217.520882][ T9011] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  217.520891][ T9011] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  217.520915][ T9011]  </TASK>
[  217.580627][ T6942] usb 6-1: new full-speed USB device number 32 using dummy_hcd
[  217.751378][ T9021] netlink: 60 bytes leftover after parsing attributes in process `syz.3.947'.
[  217.755475][ T9021] netlink: 36 bytes leftover after parsing attributes in process `syz.3.947'.
[  217.773551][ T6942] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  217.778714][ T6942] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  217.783443][ T6942] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  217.787254][ T6942] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.794605][ T9000] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  217.797716][ T9000] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  217.804427][ T6942] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  217.863903][ T9026] overlay: ./file0 is not a directory
[  217.930544][   T29] usb 40-1: device descriptor read/8, error -110
[  218.015544][ T6942] usb 6-1: USB disconnect, device number 32
[  218.344183][ T9031] kvm: user requested TSC rate below hardware speed
[  218.352136][ T9031] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  218.356001][ T9031] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  218.365984][ T9031] netlink: 'syz.2.950': attribute type 1 has an invalid length.
[  218.390703][ T9031] 8021q: adding VLAN 0 to HW filter on device bond2
[  218.401526][ T9031] bond2: (slave geneve2): making interface the new active one
[  218.405273][ T9031] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  218.410361][ T9031] Bluetooth: MGMT ver 1.23
[  218.652914][ T9036] loop2: detected capacity change from 0 to 7
[  218.655455][ T9036] Dev loop2: unable to read RDB block 7
[  218.657231][ T9036]  loop2: AHDI p1 p2 p3
[  218.658533][ T9036] loop2: partition table partially beyond EOD, truncated
[  218.660806][ T9036] loop2: p1 start 1818582900 is beyond EOD, truncated
[  218.663554][ T9036] loop2: p3 start 335544320 is beyond EOD, truncated
[  218.986718][   T29] usb usb40-port1: attempt power cycle
[  219.591128][ T9050] FAULT_INJECTION: forcing a failure.
[  219.591128][ T9050] name failslab, interval 1, probability 0, space 0, times 0
[  219.593998][   T29] usb usb40-port1: unable to enumerate USB device
[  219.597276][ T9050] CPU: 3 UID: 0 PID: 9050 Comm: syz.0.957 Not tainted syzkaller #0 PREEMPT(full) 
[  219.597292][ T9050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.597298][ T9050] Call Trace:
[  219.597302][ T9050]  <TASK>
[  219.597306][ T9050]  dump_stack_lvl+0x16c/0x1f0
[  219.597323][ T9050]  should_fail_ex+0x512/0x640
[  219.597339][ T9050]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  219.597351][ T9050]  should_failslab+0xc2/0x120
[  219.597366][ T9050]  kmem_cache_alloc_noprof+0x75/0x6e0
[  219.597378][ T9050]  ? skb_clone+0x190/0x3f0
[  219.597391][ T9050]  ? skb_clone+0x190/0x3f0
[  219.597400][ T9050]  skb_clone+0x190/0x3f0
[  219.597411][ T9050]  netlink_deliver_tap+0xabd/0xd30
[  219.597426][ T9050]  netlink_unicast+0x64c/0x870
[  219.597440][ T9050]  ? __pfx_netlink_unicast+0x10/0x10
[  219.597456][ T9050]  netlink_sendmsg+0x8c8/0xdd0
[  219.597470][ T9050]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.597489][ T9050]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  219.597514][ T9050]  ____sys_sendmsg+0xa98/0xc70
[  219.597534][ T9050]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.597552][ T9050]  ? get_compat_msghdr+0x11a/0x170
[  219.597577][ T9050]  ___sys_sendmsg+0x134/0x1d0
[  219.597596][ T9050]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.597622][ T9050]  ? find_held_lock+0x2b/0x80
[  219.597653][ T9050]  __sys_sendmsg+0x16d/0x220
[  219.597668][ T9050]  ? __pfx___sys_sendmsg+0x10/0x10
[  219.597692][ T9050]  ? rcu_is_watching+0x12/0xc0
[  219.597711][ T9050]  __do_fast_syscall_32+0x7c/0x300
[  219.597733][ T9050]  do_fast_syscall_32+0x32/0x80
[  219.597753][ T9050]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  219.597772][ T9050] RIP: 0023:0xf7f96579
[  219.597785][ T9050] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  219.597800][ T9050] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  219.597820][ T9050] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000380
[  219.597830][ T9050] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[  219.597839][ T9050] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  219.597848][ T9050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  219.597857][ T9050] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  219.597878][ T9050]  </TASK>
[  219.703205][   T54] usb 42-1: device descriptor read/8, error -110
[  220.093522][ T6087] usb 7-1: new full-speed USB device number 24 using dummy_hcd
[  220.135243][   T54] usb usb42-port1: attempt power cycle
[  220.245390][ T6087] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  220.249162][ T6087] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  220.253330][ T6087] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  220.256795][ T6087] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.265528][ T9063] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  220.267870][ T9063] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  220.274044][ T6087] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  220.478549][ T6087] usb 7-1: USB disconnect, device number 24
[  220.483078][ T5988] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  220.581554][ T9093] netlink: 'syz.0.972': attribute type 23 has an invalid length.
[  220.584176][ T9093] FAULT_INJECTION: forcing a failure.
[  220.584176][ T9093] name failslab, interval 1, probability 0, space 0, times 0
[  220.588330][ T9093] CPU: 2 UID: 0 PID: 9093 Comm: syz.0.972 Not tainted syzkaller #0 PREEMPT(full) 
[  220.588350][ T9093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.588361][ T9093] Call Trace:
[  220.588367][ T9093]  <TASK>
[  220.588374][ T9093]  dump_stack_lvl+0x16c/0x1f0
[  220.588399][ T9093]  should_fail_ex+0x512/0x640
[  220.588425][ T9093]  ? __kmalloc_cache_noprof+0x5f/0x780
[  220.588444][ T9093]  should_failslab+0xc2/0x120
[  220.588468][ T9093]  __kmalloc_cache_noprof+0x72/0x780
[  220.588629][ T9093]  ? lockdep_hardirqs_on+0x7c/0x110
[  220.588651][ T9093]  ? device_create_groups_vargs+0x8a/0x270
[  220.588674][ T9093]  ? device_create_groups_vargs+0x8a/0x270
[  220.588720][ T9093]  ? __pfx___debug_object_init+0x10/0x10
[  220.588838][ T9093]  device_create_groups_vargs+0x8a/0x270
[  220.588858][ T9093]  device_create+0xed/0x130
[  220.588875][ T9093]  ? __pfx_device_create+0x10/0x10
[  220.588892][ T9093]  ? do_init_timer+0xc9/0x110
[  220.588915][ T9093]  ? ieee80211_roc_setup+0x136/0x270
[  220.588935][ T9093]  ? ieee80211_alloc_hw_nm+0x231/0x22b0
[  220.588962][ T9093]  mac80211_hwsim_new_radio+0x36a/0x50b0
[  220.588988][ T9093]  ? __pfx____ratelimit+0x10/0x10
[  220.589008][ T9093]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  220.589039][ T9093]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  220.589066][ T9093]  hwsim_new_radio_nl+0xba2/0x1330
[  220.589086][ T9093]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  220.589113][ T9093]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  220.589136][ T9093]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  220.589162][ T9093]  genl_family_rcv_msg_doit+0x209/0x2f0
[  220.589186][ T9093]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  220.589216][ T9093]  ? bpf_lsm_capable+0x9/0x10
[  220.589238][ T9093]  ? security_capable+0x7e/0x260
[  220.589263][ T9093]  ? ns_capable+0xd7/0x110
[  220.589284][ T9093]  genl_rcv_msg+0x55c/0x800
[  220.589308][ T9093]  ? __pfx_genl_rcv_msg+0x10/0x10
[  220.589330][ T9093]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  220.589373][ T9093]  netlink_rcv_skb+0x158/0x420
[  220.589394][ T9093]  ? __pfx_genl_rcv_msg+0x10/0x10
[  220.589417][ T9093]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  220.589449][ T9093]  ? netlink_deliver_tap+0x1ae/0xd30
[  220.589471][ T9093]  genl_rcv+0x28/0x40
[  220.589489][ T9093]  netlink_unicast+0x5aa/0x870
[  220.589513][ T9093]  ? __pfx_netlink_unicast+0x10/0x10
[  220.589544][ T9093]  netlink_sendmsg+0x8c8/0xdd0
[  220.589568][ T9093]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.589590][ T9093]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  220.589620][ T9093]  ____sys_sendmsg+0xa98/0xc70
[  220.589648][ T9093]  ? __pfx_____sys_sendmsg+0x10/0x10
[  220.589668][ T9093]  ? get_compat_msghdr+0x11a/0x170
[  220.589697][ T9093]  ___sys_sendmsg+0x134/0x1d0
[  220.589714][ T9093]  ? __pfx____sys_sendmsg+0x10/0x10
[  220.589736][ T9093]  ? find_held_lock+0x2b/0x80
[  220.589756][ T9093]  __sys_sendmsg+0x16d/0x220
[  220.589767][ T9093]  ? __pfx___sys_sendmsg+0x10/0x10
[  220.589783][ T9093]  ? rcu_is_watching+0x12/0xc0
[  220.589796][ T9093]  __do_fast_syscall_32+0x7c/0x300
[  220.589811][ T9093]  do_fast_syscall_32+0x32/0x80
[  220.589831][ T9093]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.589844][ T9093] RIP: 0023:0xf7f96579
[  220.589853][ T9093] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.589863][ T9093] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  220.589873][ T9093] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  220.589879][ T9093] RDX: 0000000000040010 RSI: 0000000000000000 RDI: 0000000000000000
[  220.589885][ T9093] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.589891][ T9093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.589897][ T9093] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.589911][ T9093]  </TASK>
[  220.713300][ T5988] usb 6-1: Using ep0 maxpacket: 8
[  220.733827][   T54] usb usb42-port1: unable to enumerate USB device
[  220.739979][ T5988] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  220.744173][ T5988] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  220.748177][ T5988] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  220.752237][ T5988] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  220.757686][ T5988] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  220.761426][ T5988] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.770470][ T9097] FAULT_INJECTION: forcing a failure.
[  220.770470][ T9097] name failslab, interval 1, probability 0, space 0, times 0
[  220.776230][ T9097] CPU: 0 UID: 0 PID: 9097 Comm: syz.0.974 Not tainted syzkaller #0 PREEMPT(full) 
[  220.776252][ T9097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.776263][ T9097] Call Trace:
[  220.776269][ T9097]  <TASK>
[  220.776276][ T9097]  dump_stack_lvl+0x16c/0x1f0
[  220.776301][ T9097]  should_fail_ex+0x512/0x640
[  220.776327][ T9097]  ? __kmalloc_cache_noprof+0x5f/0x780
[  220.776346][ T9097]  should_failslab+0xc2/0x120
[  220.776370][ T9097]  __kmalloc_cache_noprof+0x72/0x780
[  220.776387][ T9097]  ? kvm_dev_ioctl+0x1358/0x1a80
[  220.776411][ T9097]  ? kvm_dev_ioctl+0x1358/0x1a80
[  220.776431][ T9097]  kvm_dev_ioctl+0x1358/0x1a80
[  220.776458][ T9097]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  220.776487][ T9097]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  220.776507][ T9097]  __ia32_compat_sys_ioctl+0x242/0x370
[  220.776536][ T9097]  __do_fast_syscall_32+0x7c/0x300
[  220.776560][ T9097]  do_fast_syscall_32+0x32/0x80
[  220.776582][ T9097]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.776603][ T9097] RIP: 0023:0xf7f96579
[  220.776641][ T9097] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.776657][ T9097] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  220.776672][ T9097] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ae01
[  220.776682][ T9097] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  220.776692][ T9097] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.776702][ T9097] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.776711][ T9097] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.776736][ T9097]  </TASK>
[  220.965579][ T9098] FAULT_INJECTION: forcing a failure.
[  220.965579][ T9098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.972203][ T9098] CPU: 2 UID: 0 PID: 9098 Comm: syz.3.973 Not tainted syzkaller #0 PREEMPT(full) 
[  220.972242][ T9098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.972252][ T9098] Call Trace:
[  220.972259][ T9098]  <TASK>
[  220.972266][ T9098]  dump_stack_lvl+0x16c/0x1f0
[  220.972292][ T9098]  should_fail_ex+0x512/0x640
[  220.972321][ T9098]  _copy_from_iter+0x29f/0x1720
[  220.972353][ T9098]  ? __pfx__copy_from_iter+0x10/0x10
[  220.972380][ T9098]  ? kfree+0x252/0x6d0
[  220.972394][ T9098]  ? __pfx___might_resched+0x10/0x10
[  220.972412][ T9098]  ? iov_iter_revert+0x264/0x5a0
[  220.972440][ T9098]  file_tty_write.constprop.0+0x487/0x9b0
[  220.972468][ T9098]  vfs_write+0x7d3/0x11d0
[  220.972487][ T9098]  ? __pfx_tty_write+0x10/0x10
[  220.972508][ T9098]  ? __pfx_vfs_write+0x10/0x10
[  220.972523][ T9098]  ? find_held_lock+0x2b/0x80
[  220.972557][ T9098]  ksys_write+0x12a/0x250
[  220.972575][ T9098]  ? __pfx_ksys_write+0x10/0x10
[  220.972596][ T9098]  ? rcu_is_watching+0x12/0xc0
[  220.972641][ T9098]  __do_fast_syscall_32+0x7c/0x300
[  220.972666][ T9098]  do_fast_syscall_32+0x32/0x80
[  220.972687][ T9098]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.972708][ T9098] RIP: 0023:0xf701d579
[  220.972721][ T9098] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.972737][ T9098] RSP: 002b:00000000f53ec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  220.972753][ T9098] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001040
[  220.972764][ T9098] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000000
[  220.972773][ T9098] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.972782][ T9098] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.972797][ T9098] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.972827][ T9098]  </TASK>
[  220.979820][ T5988] usb 6-1: GET_CAPABILITIES returned 0
[  221.061010][ T5988] usbtmc 6-1:16.0: can't read capabilities
[  221.181290][ T9079] vivid-000: =================  START STATUS  =================
[  221.186307][ T9079] vivid-000: Test Pattern: 75% Colorbar
[  221.188701][ T9079] vivid-000: Fill Percentage of Frame: 100
[  221.192512][ T9079] vivid-000: Horizontal Movement: No Movement
[  221.195343][ T9079] vivid-000: Vertical Movement: Move Down
[  221.197853][ T9079] vivid-000: OSD Text Mode: All
[  221.199952][ T9079] vivid-000: Show Border: false
[  221.202000][ T9079] vivid-000: Show Square: false
[  221.204147][ T9079] vivid-000: Sensor Flipped Horizontally: false
[  221.206763][ T9079] vivid-000: Sensor Flipped Vertically: false
[  221.209442][ T9079] vivid-000: Insert SAV Code in Image: false
[  221.211981][ T9079] vivid-000: Insert EAV Code in Image: false
[  221.214730][ T9079] vivid-000: Insert Video Guard Band: false
[  221.217497][ T9079] vivid-000: Reduced Framerate: false
[  221.220469][ T9079] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  221.223751][ T9079] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  221.227042][ T9079] vivid-000: Enable Capture Cropping: true
[  221.229483][ T9079] vivid-000: Enable Capture Composing: true
[  221.231966][ T9079] vivid-000: Enable Capture Scaler: true
[  221.234595][ T9079] vivid-000: Timestamp Source: End of Frame
[  221.237124][ T9079] vivid-000: Colorspace: sRGB
[  221.239113][ T9079] vivid-000: Transfer Function: Default
[  221.242244][ T9079] vivid-000: Y'CbCr Encoding: Default
[  221.244655][ T9079] vivid-000: HSV Encoding: Hue 0-179
[  221.244714][ T6027] usb 6-1: USB disconnect, device number 33
[  221.246866][ T9079] vivid-000: Quantization: Default
[  221.250975][ T9079] vivid-000: Apply Alpha To Red Only: false
[  221.253488][ T9079] vivid-000: Standard Aspect Ratio: 4x3
[  221.256674][ T9079] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  221.260113][ T9079] vivid-000: DV Timings: 640x480p59 inactive
[  221.263352][ T9079] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  221.266803][ T9079] vivid-000: Maximum EDID Blocks: 2
[  221.269035][ T9079] vivid-000: Limited RGB Range (16-235): false
[  221.271590][ T9079] vivid-000: Rx RGB Quantization Range: Automatic
[  221.276195][ T9079] vivid-000: Power Present: 0x00000001
[  221.278230][ T9079] tpg source WxH: 320x180 (Y'CbCr)
[  221.279894][ T9079] tpg field: 1
[  221.281106][ T9079] tpg crop: (0,0)/320x180
[  221.282528][ T9079] tpg compose: (0,0)/320x180
[  221.284761][ T9079] tpg colorspace: 8
[  221.286085][ T9079] tpg transfer function: 0/0
[  221.287636][ T9079] tpg Y'CbCr encoding: 0/0
[  221.289206][ T9079] tpg quantization: 0/0
[  221.290594][ T9079] tpg RGB range: 0/2
[  221.291809][ T9079] vivid-000: ==================  END STATUS  ==================
[  221.613968][ T6027] usb 6-1: new full-speed USB device number 34 using dummy_hcd
[  221.765559][ T6027] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  221.770965][ T6027] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  221.774258][ T6027] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.776626][ T6027] usb 6-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  221.786491][ T6027] usb 6-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  221.943075][ T9118] loop2: detected capacity change from 0 to 7
[  221.946699][ T9118] Dev loop2: unable to read RDB block 7
[  221.949066][ T9118]  loop2: AHDI p1
[  221.950629][ T9118] loop2: partition table partially beyond EOD, truncated
[  222.015339][ T6027] cdc_ncm 6-1:1.0: bind() failure
[  222.020073][ T6027] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  222.022429][ T6027] cdc_ncm 6-1:1.1: bind() failure
[  222.027523][ T6027] usb 6-1: USB disconnect, device number 34
[  222.066841][ T9124] dvmrp1: entered allmulticast mode
[  222.584916][   T34] usb 7-1: new full-speed USB device number 25 using dummy_hcd
[  222.756822][   T34] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  222.761244][   T34] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  222.765098][   T34] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  222.771355][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.776190][ T9130] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  222.779473][ T9130] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  222.796997][   T34] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  222.920963][ T9149] netlink: 156 bytes leftover after parsing attributes in process `syz.3.993'.
[  222.989878][   T34] usb 7-1: USB disconnect, device number 25
[  223.255541][ T6027] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  223.405654][ T6027] usb 5-1: Using ep0 maxpacket: 8
[  223.409660][ T6027] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  223.413741][ T6027] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  223.418079][ T6027] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  223.422070][ T6027] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  223.427514][ T6027] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  223.431278][ T6027] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.719162][ T6027] usb 5-1: usb_control_msg returned -71
[  223.727712][ T9160] FAULT_INJECTION: forcing a failure.
[  223.727712][ T9160] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.731912][ T9160] CPU: 3 UID: 0 PID: 9160 Comm: syz.1.997 Not tainted syzkaller #0 PREEMPT(full) 
[  223.731937][ T9160] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.731943][ T9160] Call Trace:
[  223.731947][ T9160]  <TASK>
[  223.731952][ T9160]  dump_stack_lvl+0x16c/0x1f0
[  223.731980][ T9160]  should_fail_ex+0x512/0x640
[  223.731999][ T9160]  _copy_to_user+0x32/0xd0
[  223.732017][ T9160]  simple_read_from_buffer+0xcb/0x170
[  223.732035][ T9160]  proc_fail_nth_read+0x197/0x240
[  223.732047][ T9160]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  223.732060][ T9160]  ? rw_verify_area+0xcf/0x6c0
[  223.732069][ T9160]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  223.732080][ T9160]  vfs_read+0x1e4/0xcf0
[  223.732094][ T9160]  ? __pfx_vfs_read+0x10/0x10
[  223.732104][ T9160]  ? find_held_lock+0x2b/0x80
[  223.732119][ T9160]  ? __fget_files+0x20e/0x3c0
[  223.732133][ T9160]  ksys_read+0x12a/0x250
[  223.732144][ T9160]  ? __pfx_ksys_read+0x10/0x10
[  223.732156][ T9160]  ? rcu_is_watching+0x12/0xc0
[  223.732169][ T9160]  __do_fast_syscall_32+0x7c/0x300
[  223.732184][ T9160]  do_fast_syscall_32+0x32/0x80
[  223.732197][ T9160]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  223.732211][ T9160] RIP: 0023:0xf707d579
[  223.732219][ T9160] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  223.732229][ T9160] RSP: 002b:00000000f544c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  223.732239][ T9160] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f544c620
[  223.732246][ T9160] RDX: 000000000000000f RSI: 00000000f7416ff4 RDI: 0000000000000000
[  223.732252][ T9160] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  223.732257][ T9160] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  223.732263][ T9160] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  223.732277][ T9160]  </TASK>
[  223.795003][ T6027] usbtmc 5-1:16.0: can't read capabilities
[  223.815689][ T6027] usb 5-1: USB disconnect, device number 23
[  224.112746][ T6008] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  224.277508][ T6008] usb 6-1: Using ep0 maxpacket: 8
[  224.280562][ T6008] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  224.283781][ T6008] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  224.287104][ T6008] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  224.291100][ T6008] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  224.295294][ T6008] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  224.298991][ T6008] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.505793][ T6008] usb 6-1: GET_CAPABILITIES returned 0
[  224.507699][ T6008] usbtmc 6-1:16.0: can't read capabilities
[  224.706449][ T9166] vivid-000: =================  START STATUS  =================
[  224.712212][ T9166] vivid-000: Test Pattern: 75% Colorbar
[  224.714611][ T9166] vivid-000: Fill Percentage of Frame: 100
[  224.717366][ T9166] vivid-000: Horizontal Movement: No Movement
[  224.720170][ T9166] vivid-000: Vertical Movement: Move Down
[  224.723027][ T9166] vivid-000: OSD Text Mode: All
[  224.725196][ T9166] vivid-000: Show Border: false
[  224.727617][ T9166] vivid-000: Show Square: false
[  224.729772][ T9166] vivid-000: Sensor Flipped Horizontally: false
[  224.732407][ T9166] vivid-000: Sensor Flipped Vertically: false
[  224.734906][ T9166] vivid-000: Insert SAV Code in Image: false
[  224.737837][ T9166] vivid-000: Insert EAV Code in Image: false
[  224.740342][ T9166] vivid-000: Insert Video Guard Band: false
[  224.742750][ T9166] vivid-000: Reduced Framerate: false
[  224.744954][ T9166] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  224.748463][ T9166] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  224.751921][ T9166] vivid-000: Enable Capture Cropping: true
[  224.753867][ T9166] vivid-000: Enable Capture Composing: true
[  224.756029][ T9166] vivid-000: Enable Capture Scaler: true
[  224.759085][ T9166] vivid-000: Timestamp Source: End of Frame
[  224.761876][ T9166] vivid-000: Colorspace: sRGB
[  224.763904][ T9166] vivid-000: Transfer Function: Default
[  224.770074][ T9166] vivid-000: Y'CbCr Encoding: Default
[  224.772422][ T9166] vivid-000: HSV Encoding: Hue 0-179
[  224.774690][ T9166] vivid-000: Quantization: Default
[  224.780385][ T6942] usb 6-1: USB disconnect, device number 35
[  224.797125][ T9166] vivid-000: Apply Alpha To Red Only: false
[  224.805430][ T9166] vivid-000: Standard Aspect Ratio: 4x3
[  224.816475][ T9166] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  224.822756][ T9166] vivid-000: DV Timings: 640x480p59 inactive
[  224.828641][ T9166] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  224.831755][ T9166] vivid-000: Maximum EDID Blocks: 2
[  224.834024][ T9166] vivid-000: Limited RGB Range (16-235): false
[  224.836677][ T9166] vivid-000: Rx RGB Quantization Range: Automatic
[  224.840693][ T9166] vivid-000: Power Present: 0x00000001
[  224.842996][ T9166] tpg source WxH: 320x180 (Y'CbCr)
[  224.845183][ T9166] tpg field: 1
[  224.846680][ T9166] tpg crop: (0,0)/320x180
[  224.849141][ T9166] tpg compose: (0,0)/320x180
[  224.851118][ T9166] tpg colorspace: 8
[  224.852764][ T9166] tpg transfer function: 0/0
[  224.854742][ T9166] tpg Y'CbCr encoding: 0/0
[  224.856911][ T9166] tpg quantization: 0/0
[  224.858707][ T9166] tpg RGB range: 0/2
[  224.860367][ T9166] vivid-000: ==================  END STATUS  ==================
[  224.974725][ T6087] usb 8-1: new full-speed USB device number 28 using dummy_hcd
[  225.233936][ T6087] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  225.247398][ T6087] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  225.250955][ T6087] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  225.253808][ T6087] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.258325][ T6942] usb 6-1: new full-speed USB device number 36 using dummy_hcd
[  225.325889][ T9186] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  225.334626][ T9186] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  225.390331][ T6087] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  225.419679][ T6942] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  225.429222][ T6942] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  225.434294][ T6942] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.449736][ T6942] usb 6-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  225.479863][ T6942] usb 6-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  226.251125][ T9207] overlayfs: failed to decode file handle (len=6, type=251, flags=0, err=-22)
[  226.343698][ T6942] cdc_ncm 6-1:1.0: bind() failure
[  226.349403][ T6942] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  226.351841][ T6942] cdc_ncm 6-1:1.1: bind() failure
[  226.367005][ T6942] usb 6-1: USB disconnect, device number 36
[  226.413551][    T9] usb 8-1: USB disconnect, device number 28
[  226.698763][ T5988] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  226.848835][ T5988] usb 5-1: Using ep0 maxpacket: 8
[  226.852941][ T5988] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  226.857066][ T5988] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  226.861171][ T5988] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  226.865142][ T5988] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  226.870572][ T5988] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  226.874299][ T5988] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.159098][ T5988] usb 5-1: usb_control_msg returned -71
[  227.161553][ T5988] usbtmc 5-1:16.0: can't read capabilities
[  227.200636][ T5988] usb 5-1: USB disconnect, device number 24
[  227.601597][ T9232] FAULT_INJECTION: forcing a failure.
[  227.601597][ T9232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  227.607415][ T9232] CPU: 2 UID: 0 PID: 9232 Comm: syz.3.1019 Not tainted syzkaller #0 PREEMPT(full) 
[  227.607443][ T9232] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.607456][ T9232] Call Trace:
[  227.607467][ T9232]  <TASK>
[  227.607475][ T9232]  dump_stack_lvl+0x16c/0x1f0
[  227.607505][ T9232]  should_fail_ex+0x512/0x640
[  227.607539][ T9232]  _copy_from_iter+0x29f/0x1720
[  227.607576][ T9232]  ? __pfx__copy_from_iter+0x10/0x10
[  227.607610][ T9232]  ? kfree+0x252/0x6d0
[  227.607628][ T9232]  ? __pfx___might_resched+0x10/0x10
[  227.607649][ T9232]  ? iov_iter_revert+0x264/0x5a0
[  227.607684][ T9232]  file_tty_write.constprop.0+0x487/0x9b0
[  227.607718][ T9232]  vfs_write+0x7d3/0x11d0
[  227.607742][ T9232]  ? __pfx_tty_write+0x10/0x10
[  227.607764][ T9232]  ? __pfx_vfs_write+0x10/0x10
[  227.607783][ T9232]  ? find_held_lock+0x2b/0x80
[  227.607827][ T9232]  ksys_write+0x12a/0x250
[  227.607849][ T9232]  ? __pfx_ksys_write+0x10/0x10
[  227.607872][ T9232]  ? rcu_is_watching+0x12/0xc0
[  227.607894][ T9232]  __do_fast_syscall_32+0x7c/0x300
[  227.607923][ T9232]  do_fast_syscall_32+0x32/0x80
[  227.607946][ T9232]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.607970][ T9232] RIP: 0023:0xf701d579
[  227.607986][ T9232] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.608005][ T9232] RSP: 002b:00000000f53ec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  227.608024][ T9232] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001040
[  227.608038][ T9232] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000000
[  227.608050][ T9232] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  227.608060][ T9232] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.608071][ T9232] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.608101][ T9232]  </TASK>
[  227.698575][ T6942] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  227.870525][ T6942] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  227.875094][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.881411][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.886075][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.890934][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.895080][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.900177][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.904752][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.908583][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.913181][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.916369][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.919298][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.923165][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.926734][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.932788][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.938658][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.943104][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.953015][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.960180][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.967947][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.971940][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.976965][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.983048][ T6942] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.987843][ T6942] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.991933][ T6942] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.996123][ T6942] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  227.999738][ T6942] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  228.002636][ T6942] usb 7-1: Product: syz
[  228.004153][ T6942] usb 7-1: Manufacturer: syz
[  228.006040][ T6942] usb 7-1: SerialNumber: syz
[  228.014497][ T6942] usb 7-1: config 0 descriptor??
[  228.026453][ T6942] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  228.224955][ T9226] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1018'.
[  228.230212][ T9226] openvswitch: netlink: Flow key attr not present in new flow.
[  228.357518][ T9242] loop2: detected capacity change from 0 to 7
[  228.361736][ T9242] Dev loop2: unable to read RDB block 7
[  228.363819][ T9242]  loop2: AHDI p1
[  228.365912][ T9242] loop2: partition table partially beyond EOD, truncated
[  228.433730][ T9245] loop6: detected capacity change from 0 to 524287999
[  228.436968][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.439632][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.442350][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.445023][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.447688][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.450451][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.453145][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.455784][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.458346][ T9245] ldm_validate_partition_table(): Disk read failed.
[  228.460513][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.463142][ T9245] Buffer I/O error on dev loop6, logical block 0, async page read
[  228.465970][ T9245] Dev loop6: unable to read RDB block 0
[  228.468704][ T9245]  loop6: unable to read partition table
[  228.471032][ T9245] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  229.010867][ T5988] usb 8-1: new full-speed USB device number 29 using dummy_hcd
[  229.164959][ T5988] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  229.169278][ T5988] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  229.173198][ T5988] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  229.176195][ T5988] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.186281][ T9246] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  229.205620][ T9246] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  229.238053][ T5988] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  229.633058][ T5950] ldm_validate_partition_table(): Disk read failed.
[  229.635400][ T5950] Dev loop6: unable to read RDB block 0
[  229.637429][ T5950]  loop6: unable to read partition table
[  229.645022][ T9245] ldm_validate_partition_table(): Disk read failed.
[  229.648134][ T9245] Dev loop6: unable to read RDB block 0
[  229.651404][ T9245]  loop6: unable to read partition table
[  229.654142][ T9245] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  230.722488][ T6008] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  230.883489][ T6008] usb 5-1: Using ep0 maxpacket: 8
[  230.888107][ T6008] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  230.892303][ T6008] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  230.896617][ T6008] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  230.900357][ T6008] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  230.905516][ T6008] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  230.908726][ T6008] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.188043][ T6008] usb 5-1: usb_control_msg returned -71
[  231.197682][ T6008] usbtmc 5-1:16.0: can't read capabilities
[  231.227087][ T6008] usb 5-1: USB disconnect, device number 25
[  231.384694][ T9267] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1030'.
[  231.477663][   T29] usb 7-1: USB disconnect, device number 26
[  231.540201][   T29] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  231.568170][ T5988] usb 8-1: USB disconnect, device number 29
[  232.647295][ T9282] 9pnet_fd: Insufficient options for proto=fd
[  232.908601][ T9290] netlink: 'syz.3.1036': attribute type 23 has an invalid length.
[  232.972237][ T9291] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1035'.
[  233.572589][ T9299] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  233.574894][ T9299] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  233.585278][ T9299] vhci_hcd vhci_hcd.0: Device attached
[  233.615859][ T9303] loop2: detected capacity change from 0 to 7
[  233.626123][ T9303] Dev loop2: unable to read RDB block 7
[  233.628525][ T9303]  loop2: AHDI p1 p2 p3
[  233.630317][ T9303] loop2: partition table partially beyond EOD, truncated
[  233.633485][ T9303] loop2: p1 start 1818582900 is beyond EOD, truncated
[  233.637160][ T9303] loop2: p3 start 335544320 is beyond EOD, truncated
[  233.727646][ T9309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1037'.
[  233.866127][ T5988] usb 44-1: SetAddress Request (3) to port 0
[  233.868669][ T5988] usb 44-1: new SuperSpeed USB device number 3 using vhci_hcd
[  234.169598][ T6027] usb 6-1: new full-speed USB device number 37 using dummy_hcd
[  234.318133][ T6027] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  234.322991][ T6027] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  234.328131][ T6027] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  234.331897][ T6027] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.344767][ T9311] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  234.350663][ T9311] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  234.357944][ T6027] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  234.501549][ T9300] vhci_hcd: connection reset by peer
[  234.504164][ T1144] vhci_hcd: stop threads
[  234.507487][ T1144] vhci_hcd: release socket
[  234.509492][ T1144] vhci_hcd: disconnect device
[  234.569777][ T6027] usb 6-1: USB disconnect, device number 37
[  234.696015][ T6087] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  234.846267][ T6087] usb 5-1: Using ep0 maxpacket: 8
[  234.850598][ T6087] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  234.854619][ T6087] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  234.858611][ T6087] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  234.862483][ T6087] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  234.867754][ T6087] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  234.871178][ T6087] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.934627][ T9328] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1047'.
[  235.097247][ T6087] usb 5-1: GET_CAPABILITIES returned 0
[  235.099614][ T6087] usbtmc 5-1:16.0: can't read capabilities
[  235.197271][ T9332] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1049'.
[  235.203720][ T9332] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1049'.
[  235.300438][ T9320] vivid-000: =================  START STATUS  =================
[  235.303567][ T9320] vivid-000: Test Pattern: 75% Colorbar
[  235.305789][ T9320] vivid-000: Fill Percentage of Frame: 100
[  235.308996][ T9320] vivid-000: Horizontal Movement: No Movement
[  235.311478][ T9320] vivid-000: Vertical Movement: Move Down
[  235.313820][ T9320] vivid-000: OSD Text Mode: All
[  235.315796][ T9320] vivid-000: Show Border: false
[  235.318921][ T9320] vivid-000: Show Square: false
[  235.320924][ T9320] vivid-000: Sensor Flipped Horizontally: false
[  235.323474][ T9320] vivid-000: Sensor Flipped Vertically: false
[  235.325903][ T9320] vivid-000: Insert SAV Code in Image: false
[  235.328737][ T9320] vivid-000: Insert EAV Code in Image: false
[  235.330981][ T9320] vivid-000: Insert Video Guard Band: false
[  235.333183][ T9320] vivid-000: Reduced Framerate: false
[  235.335337][ T9320] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  235.338521][ T9320] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  235.341426][ T9320] vivid-000: Enable Capture Cropping: true
[  235.343556][ T9320] vivid-000: Enable Capture Composing: true
[  235.345755][ T9320] vivid-000: Enable Capture Scaler: true
[  235.348594][ T9320] vivid-000: Timestamp Source: End of Frame
[  235.350481][ T9320] vivid-000: Colorspace: sRGB
[  235.351970][ T9320] vivid-000: Transfer Function: Default
[  235.353748][ T9320] vivid-000: Y'CbCr Encoding: Default
[  235.355446][ T9320] vivid-000: HSV Encoding: Hue 0-179
[  235.366291][ T9320] vivid-000: Quantization: Default
[  235.369234][ T9320] vivid-000: Apply Alpha To Red Only: false
[  235.370972][ T9320] vivid-000: Standard Aspect Ratio: 4x3
[  235.372821][ T9320] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  235.375238][ T9320] vivid-000: DV Timings: 640x480p59 inactive
[  235.377369][ T9320] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  235.377379][ T6027] usb 5-1: USB disconnect, device number 26
[  235.379731][ T9320] vivid-000: Maximum EDID Blocks: 2
[  235.383831][ T9320] vivid-000: Limited RGB Range (16-235): false
[  235.385818][ T9320] vivid-000: Rx RGB Quantization Range: Automatic
[  235.387988][ T9320] vivid-000: Power Present: 0x00000001
[  235.389766][ T9320] tpg source WxH: 320x180 (Y'CbCr)
[  235.391362][ T9320] tpg field: 1
[  235.392443][ T9320] tpg crop: (0,0)/320x180
[  235.394024][ T9320] tpg compose: (0,0)/320x180
[  235.395760][ T9320] tpg colorspace: 8
[  235.399774][ T9320] tpg transfer function: 0/0
[  235.401362][ T9320] tpg Y'CbCr encoding: 0/0
[  235.402765][ T9320] tpg quantization: 0/0
[  235.404078][ T9320] tpg RGB range: 0/2
[  235.405342][ T9320] vivid-000: ==================  END STATUS  ==================
[  235.426300][ T9336] Bluetooth: hci0: unsupported parameter 30225
[  235.430105][ T9336] Bluetooth: hci0: unsupported parameter 31232
[  235.432857][ T9336] Bluetooth: hci0: unsupported parameter 30225
[  235.435541][ T9336] Bluetooth: hci0: unsupported parameter 31232
[  235.686973][ T6027] usb 5-1: new full-speed USB device number 27 using dummy_hcd
[  235.849761][ T6027] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  235.856685][ T6027] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  235.861376][ T6027] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  235.865080][ T6027] usb 5-1: Product: 鹦䮾肥ꪠ礔띄啘⥣賚㾣抶₍칵崼Ꟙ㻚婳摂潌믇ﮌꗨ뀼ꕙ莃뺺맅鞁ª嫵阉ल鶣䊬韘㰳缾ጫ㧽倣䲼۸윔⥿䌓₎갪묂⿩㽨륔䞛偆쌢嶼쫱佝沽췙䱖牆䬠ƍ︹않䮢躕툤ᘑꨰ꺝뽃꺗圫갯暸㡉蹎貑粨繰爄稉雚棢覮秈鈏ꍾ衦⾚풄땨横뇂敨昁辖곥⏡ꁽ
[  235.876493][ T6027] usb 5-1: SerialNumber: 욼杌㭪앳き喩쀏똬俯쒧䍃꾱咂੮ᛲꈬᏒ쿎ɣꙡ챞਋忴ퟭ䝤欺驦궫꿦㕖繇廰ⶴ턈Უ㕏⑶ﲧrᅚ⦋㗸䰤䥀᫺ඐ῅궳ബ㠐㚸ඞ迤硤䊚ᮕ鐹헕⩰᜛ඎ婦猦윫ꍕᅶ摨渌璻뀔掛疕想젌ߥᕬ㊤ꊆ찋⢼澧꜉䜇㸾Å⎼屦⫉爛⤳惭˘锟ી젃
[  236.165323][ T6027] cdc_ncm 5-1:1.0: bind() failure
[  236.174680][ T6027] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  236.178563][ T6027] cdc_ncm 5-1:1.1: bind() failure
[  236.186809][ T6027] usb 5-1: USB disconnect, device number 27
[  236.339373][ T6942] usb 6-1: new full-speed USB device number 38 using dummy_hcd
[  236.499512][ T6942] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  236.504146][ T6942] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  236.508826][ T6942] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  236.512409][ T6942] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.526564][ T9355] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  236.532022][ T9355] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  236.541300][ T6942] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  236.745099][ T6942] usb 6-1: USB disconnect, device number 38
[  236.908168][   T34] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  237.058243][   T34] usb 8-1: Using ep0 maxpacket: 8
[  237.061220][   T34] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  237.067261][   T34] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  237.070676][   T34] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  237.073749][   T34] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  237.077773][   T34] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  237.080919][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.402035][   T34] usb 8-1: usb_control_msg returned -71
[  237.404364][   T34] usbtmc 8-1:16.0: can't read capabilities
[  237.410533][   T34] usb 8-1: USB disconnect, device number 30
[  238.447862][ T9394] netlink: 'syz.1.1070': attribute type 23 has an invalid length.
[  238.990183][ T5988] usb 44-1: device descriptor read/8, error -110
[  239.204529][ T9404] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  239.207313][ T9404] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  239.301286][ T9404] vhci_hcd vhci_hcd.0: Device attached
[  239.797691][ T5988] usb usb44-port1: attempt power cycle
[  240.082053][   T29] usb 42-1: SetAddress Request (22) to port 0
[  240.087987][   T29] usb 42-1: new SuperSpeed USB device number 22 using vhci_hcd
[  240.275963][ T9405] vhci_hcd: connection reset by peer
[  240.287343][ T7924] vhci_hcd: stop threads
[  240.288852][ T7924] vhci_hcd: release socket
[  240.290465][ T7924] vhci_hcd: disconnect device
[  240.422676][ T5988] usb usb44-port1: unable to enumerate USB device
[  240.971626][    T9] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[  241.563138][    T9] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  241.566846][    T9] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  241.571362][    T9] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  241.576279][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.588854][ T9431] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  241.591947][ T9431] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  241.595406][ T9448] kvm: user requested TSC rate below hardware speed
[  241.601556][    T9] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  241.609875][ T9448] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  241.620527][ T9448] netlink: 'syz.1.1084': attribute type 1 has an invalid length.
[  241.683052][ T9448] 8021q: adding VLAN 0 to HW filter on device bond1
[  241.700723][ T9454] bond1: (slave geneve2): making interface the new active one
[  241.705904][ T9454] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  241.852492][   T10] usb 8-1: new low-speed USB device number 31 using dummy_hcd
[  242.014394][   T10] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  242.017263][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  242.021571][   T10] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  242.026649][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  242.030875][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  242.038192][   T10] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  242.039137][ T9461] loop2: detected capacity change from 0 to 7
[  242.040990][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  242.044908][ T9461] Dev loop2: unable to read RDB block 7
[  242.050097][ T9461]  loop2: AHDI p1
[  242.051762][ T9461] loop2: partition table partially beyond EOD, truncated
[  242.073706][   T10] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  242.078361][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  242.082694][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  242.088226][   T10] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  242.090973][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  242.102898][   T10] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  242.107451][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  242.111273][   T10] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  242.120784][   T10] usb 8-1: string descriptor 0 read error: -22
[  242.142837][   T10] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  242.145823][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.154360][   T10] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  242.239211][   T10] usb 5-1: USB disconnect, device number 28
[  242.276062][ T9464] overlay: ./file0 is not a directory
[  242.279311][ T9464] overlay: ./file0 is not a directory
[  242.412107][ T9467] FAULT_INJECTION: forcing a failure.
[  242.412107][ T9467] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.417423][ T9467] CPU: 3 UID: 0 PID: 9467 Comm: syz.2.1090 Not tainted syzkaller #0 PREEMPT(full) 
[  242.417445][ T9467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.417455][ T9467] Call Trace:
[  242.417461][ T9467]  <TASK>
[  242.417467][ T9467]  dump_stack_lvl+0x16c/0x1f0
[  242.417493][ T9467]  should_fail_ex+0x512/0x640
[  242.417520][ T9467]  _copy_from_iter+0x29f/0x1720
[  242.417550][ T9467]  ? __pfx__copy_from_iter+0x10/0x10
[  242.417574][ T9467]  ? kfree+0x252/0x6d0
[  242.417587][ T9467]  ? __pfx___might_resched+0x10/0x10
[  242.417602][ T9467]  ? iov_iter_revert+0x264/0x5a0
[  242.417627][ T9467]  file_tty_write.constprop.0+0x487/0x9b0
[  242.417650][ T9467]  vfs_write+0x7d3/0x11d0
[  242.417666][ T9467]  ? __pfx_tty_write+0x10/0x10
[  242.417685][ T9467]  ? __pfx_vfs_write+0x10/0x10
[  242.417698][ T9467]  ? find_held_lock+0x2b/0x80
[  242.417729][ T9467]  ksys_write+0x12a/0x250
[  242.417744][ T9467]  ? __pfx_ksys_write+0x10/0x10
[  242.417761][ T9467]  ? rcu_is_watching+0x12/0xc0
[  242.417780][ T9467]  __do_fast_syscall_32+0x7c/0x300
[  242.417800][ T9467]  do_fast_syscall_32+0x32/0x80
[  242.417818][ T9467]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  242.417836][ T9467] RIP: 0023:0xf70dd579
[  242.417848][ T9467] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  242.417862][ T9467] RSP: 002b:00000000f54ac55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  242.417876][ T9467] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001040
[  242.417885][ T9467] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000000
[  242.417894][ T9467] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  242.417902][ T9467] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  242.417910][ T9467] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  242.417931][ T9467]  </TASK>
[  242.802312][ T2135] usb 8-1: USB disconnect, device number 31
[  242.919912][ T9475] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  243.377316][ T9494] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  243.379961][ T9494] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  243.385317][ T9494] vhci_hcd vhci_hcd.0: Device attached
[  243.550226][ T9493] fuse: Unknown parameter '�d'
[  243.596548][ T9499] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1094'.
[  243.774459][ T2135] usb 38-1: SetAddress Request (7) to port 0
[  243.777377][ T2135] usb 38-1: new SuperSpeed USB device number 7 using vhci_hcd
[  243.904343][ T6027] usb 8-1: new full-speed USB device number 32 using dummy_hcd
[  243.935403][ T9495] vhci_hcd: connection reset by peer
[  243.939681][ T7924] vhci_hcd: stop threads
[  243.945924][ T7924] vhci_hcd: release socket
[  243.947721][ T7924] vhci_hcd: disconnect device
[  244.777034][ T6027] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  244.783606][ T6027] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  244.805604][ T6027] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  244.826382][ T6027] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.000887][ T9491] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  245.003228][ T9491] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  245.009706][ T6027] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  245.170766][   T29] usb 42-1: device descriptor read/8, error -110
[  245.317286][ T9524] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  245.319359][ T9524] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  245.322310][ T9524] vhci_hcd vhci_hcd.0: Device attached
[  245.507748][ T6027] usb 8-1: USB disconnect, device number 32
[  246.226457][   T29] usb usb42-port1: attempt power cycle
[  246.245439][ T9525] vhci_hcd: connection closed
[  246.245647][ T1144] vhci_hcd: stop threads
[  246.265666][ T1144] vhci_hcd: release socket
[  246.269898][ T1144] vhci_hcd: disconnect device
[  246.299665][ T9533] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  246.302438][ T9533] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  246.308258][ T9532] FAULT_INJECTION: forcing a failure.
[  246.308258][ T9532] name failslab, interval 1, probability 0, space 0, times 0
[  246.309198][ T9533] vhci_hcd vhci_hcd.0: Device attached
[  246.312730][ T9532] CPU: 2 UID: 0 PID: 9532 Comm: syz.2.1111 Not tainted syzkaller #0 PREEMPT(full) 
[  246.312748][ T9532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.312757][ T9532] Call Trace:
[  246.312762][ T9532]  <TASK>
[  246.312767][ T9532]  dump_stack_lvl+0x16c/0x1f0
[  246.312788][ T9532]  should_fail_ex+0x512/0x640
[  246.312808][ T9532]  ? __kmalloc_cache_noprof+0x5f/0x780
[  246.312823][ T9532]  should_failslab+0xc2/0x120
[  246.312842][ T9532]  __kmalloc_cache_noprof+0x72/0x780
[  246.312854][ T9532]  ? kvm_dev_ioctl+0x1358/0x1a80
[  246.312872][ T9532]  ? kvm_dev_ioctl+0x1358/0x1a80
[  246.312886][ T9532]  kvm_dev_ioctl+0x1358/0x1a80
[  246.312906][ T9532]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  246.312927][ T9532]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  246.312942][ T9532]  __ia32_compat_sys_ioctl+0x242/0x370
[  246.312964][ T9532]  __do_fast_syscall_32+0x7c/0x300
[  246.312982][ T9532]  do_fast_syscall_32+0x32/0x80
[  246.312998][ T9532]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.313014][ T9532] RIP: 0023:0xf70dd579
[  246.313026][ T9532] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.313038][ T9532] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  246.313052][ T9532] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ae01
[  246.313060][ T9532] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  246.313068][ T9532] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.313075][ T9532] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.313083][ T9532] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.313100][ T9532]  </TASK>
[  246.482052][ T9545] loop2: detected capacity change from 0 to 7
[  246.485107][ T5950] Dev loop2: unable to read RDB block 7
[  246.488389][ T5950]  loop2: AHDI p1 p2 p3
[  246.489786][ T5950] loop2: partition table partially beyond EOD, truncated
[  246.492252][ T5950] loop2: p1 start 1818582900 is beyond EOD, truncated
[  246.494445][ T5950] loop2: p3 start 335544320 is beyond EOD, truncated
[  246.566864][ T9545] Dev loop2: unable to read RDB block 7
[  246.568773][ T9545]  loop2: AHDI p1 p2 p3
[  246.570191][ T9545] loop2: partition table partially beyond EOD, truncated
[  246.586836][ T9545] loop2: p1 start 1818582900 is beyond EOD, truncated
[  246.589106][ T9545] loop2: p3 start 335544320 is beyond EOD, truncated
[  246.682643][ T9534] vhci_hcd: connection closed
[  246.683082][ T1141] vhci_hcd: stop threads
[  246.683145][ T9549] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  246.689273][ T9549] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  246.693646][ T1141] vhci_hcd: release socket
[  246.695721][ T1141] vhci_hcd: disconnect device
[  246.698422][ T9549] vhci_hcd vhci_hcd.0: Device attached
[  246.837706][   T29] usb usb42-port1: unable to enumerate USB device
[  246.987047][ T6032] usb 44-1: SetAddress Request (7) to port 0
[  246.994630][ T6032] usb 44-1: new SuperSpeed USB device number 7 using vhci_hcd
[  247.405241][ T9550] vhci_hcd: connection reset by peer
[  247.412739][   T43] vhci_hcd: stop threads
[  247.419285][   T43] vhci_hcd: release socket
[  247.421166][   T43] vhci_hcd: disconnect device
[  247.607075][ T9564] loop2: detected capacity change from 0 to 7
[  247.611710][ T9564] Dev loop2: unable to read RDB block 7
[  247.614133][ T9564]  loop2: AHDI p1
[  247.615779][ T9564] loop2: partition table partially beyond EOD, truncated
[  247.796347][ T9570] FAULT_INJECTION: forcing a failure.
[  247.796347][ T9570] name failslab, interval 1, probability 0, space 0, times 0
[  247.800710][ T9570] CPU: 3 UID: 0 PID: 9570 Comm: syz.2.1122 Not tainted syzkaller #0 PREEMPT(full) 
[  247.800725][ T9570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.800733][ T9570] Call Trace:
[  247.800736][ T9570]  <TASK>
[  247.800741][ T9570]  dump_stack_lvl+0x16c/0x1f0
[  247.800759][ T9570]  should_fail_ex+0x512/0x640
[  247.800776][ T9570]  ? fs_reclaim_acquire+0xae/0x150
[  247.800792][ T9570]  should_failslab+0xc2/0x120
[  247.800807][ T9570]  __kmalloc_noprof+0xdd/0x880
[  247.800824][ T9570]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  247.800839][ T9570]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  247.800851][ T9570]  tomoyo_realpath_from_path+0xc2/0x6e0
[  247.800864][ T9570]  ? tomoyo_profile+0x47/0x60
[  247.800879][ T9570]  tomoyo_path_number_perm+0x245/0x580
[  247.800896][ T9570]  ? tomoyo_path_number_perm+0x237/0x580
[  247.800914][ T9570]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  247.800944][ T9570]  ? find_held_lock+0x2b/0x80
[  247.800957][ T9570]  ? hook_file_ioctl_common+0x145/0x410
[  247.800971][ T9570]  ? __fget_files+0x20e/0x3c0
[  247.800984][ T9570]  security_file_ioctl_compat+0x9b/0x240
[  247.800997][ T9570]  __ia32_compat_sys_ioctl+0xc3/0x370
[  247.801021][ T9570]  __do_fast_syscall_32+0x7c/0x300
[  247.801040][ T9570]  do_fast_syscall_32+0x32/0x80
[  247.801058][ T9570]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  247.801076][ T9570] RIP: 0023:0xf70dd579
[  247.801087][ T9570] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  247.801100][ T9570] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  247.801114][ T9570] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004048aecb
[  247.801124][ T9570] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  247.801134][ T9570] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  247.801143][ T9570] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  247.801153][ T9570] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  247.801176][ T9570]  </TASK>
[  247.801182][ T9570] ERROR: Out of memory at tomoyo_realpath_from_path.
[  248.299167][ T9557] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  248.849862][ T2135] usb 38-1: device descriptor read/8, error -110
[  249.060963][ T9582] 9pnet_fd: Insufficient options for proto=fd
[  249.289924][ T2135] usb usb38-port1: attempt power cycle
[  249.633826][ T9593] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.1130'.
[  249.840269][ T9601] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1133'.
[  249.853346][ T9601] 
[  249.854510][ T9601] ======================================================
[  249.858103][ T9601] WARNING: possible circular locking dependency detected
[  249.861212][ T9601] syzkaller #0 Not tainted
[  249.862901][ T9601] ------------------------------------------------------
[  249.865708][ T9601] syz.1.1133/9601 is trying to acquire lock:
[  249.870175][ T9601] ffff88804db23c68 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[  249.873979][ T9601] 
[  249.873979][ T9601] but task is already holding lock:
[  249.877118][ T9601] ffff8880232ea420 (sb_writers#5){.+.+}-{0:0}, at: ovl_splice_write+0x38d/0x6c0
[  249.880946][ T9601] 
[  249.880946][ T9601] which lock already depends on the new lock.
[  249.880946][ T9601] 
[  249.885218][ T9601] 
[  249.885218][ T9601] the existing dependency chain (in reverse order) is:
[  249.888937][ T9601] 
[  249.888937][ T9601] -> #3 (sb_writers#5){.+.+}-{0:0}:
[  249.892100][ T9601]        mnt_want_write+0x6f/0x450
[  249.894306][ T9601]        ovl_create_object+0x12c/0x300
[  249.896616][ T9601]        lookup_open.isra.0+0x11d3/0x1580
[  249.898992][ T9601]        path_openat+0x893/0x2cb0
[  249.901124][ T9601]        do_filp_open+0x20b/0x470
[  249.903324][ T9601]        do_sys_openat2+0x11b/0x1d0
[  249.905687][ T9601]        __ia32_compat_sys_open+0x146/0x1e0
[  249.908271][ T9601]        __do_fast_syscall_32+0x7c/0x300
[  249.911283][ T9601]        do_fast_syscall_32+0x32/0x80
[  249.914071][ T9601]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  249.916963][ T9601] 
[  249.916963][ T9601] -> #2 (&ovl_i_mutex_dir_key[depth]){++++}-{4:4}:
[  249.920606][ T9601]        down_read+0x9b/0x480
[  249.922607][ T9601]        walk_component+0x345/0x5b0
[  249.924842][ T9601]        path_lookupat+0x142/0x6d0
[  249.927199][ T9601]        filename_lookup+0x224/0x5f0
[  249.929611][ T9601]        kern_path+0x35/0x50
[  249.931696][ T9601]        lookup_bdev+0xd8/0x280
[  249.933807][ T9601]        resume_store+0x1d6/0x460
[  249.935928][ T9601]        kobj_attr_store+0x58/0x80
[  249.938111][ T9601]        sysfs_kf_write+0xf2/0x150
[  249.940261][ T9601]        kernfs_fop_write_iter+0x3af/0x570
[  249.942722][ T9601]        vfs_write+0x7d3/0x11d0
[  249.944796][ T9601]        ksys_write+0x12a/0x250
[  249.946857][ T9601]        __do_fast_syscall_32+0x7c/0x300
[  249.949191][ T9601]        do_fast_syscall_32+0x32/0x80
[  249.951445][ T9601]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  249.954333][ T9601] 
[  249.954333][ T9601] -> #1 (&of->mutex){+.+.}-{4:4}:
[  249.957359][ T9601]        __mutex_lock+0x193/0x1060
[  249.959412][ T9601]        kernfs_fop_write_iter+0x28f/0x570
[  249.961644][ T9601]        iter_file_splice_write+0xa24/0x12e0
[  249.964087][ T9601]        do_splice+0x1478/0x1fc0
[  249.966233][ T9601]        __do_splice+0x32a/0x360
[  249.968397][ T9601]        __ia32_sys_splice+0x189/0x250
[  249.970731][ T9601]        __do_fast_syscall_32+0x7c/0x300
[  249.973078][ T9601]        do_fast_syscall_32+0x32/0x80
[  249.975349][ T9601]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  249.978189][ T9601] 
[  249.978189][ T9601] -> #0 (&pipe->mutex){+.+.}-{4:4}:
[  249.981211][ T9601]        __lock_acquire+0x126f/0x1c90
[  249.983468][ T9601]        lock_acquire+0x179/0x350
[  249.985609][ T9601]        __mutex_lock+0x193/0x1060
[  249.987869][ T9601]        pipe_lock+0x64/0x80
[  249.989850][ T9601]        iter_file_splice_write+0x1ea/0x12e0
[  249.992388][ T9601]        backing_file_splice_write+0x27f/0x890
[  249.995022][ T9601]        ovl_splice_write+0x38d/0x6c0
[  249.997466][ T9601]        do_splice+0x1478/0x1fc0
[  249.999706][ T9601]        __do_splice+0x32a/0x360
[  250.001842][ T9601]        __ia32_sys_splice+0x189/0x250
[  250.004135][ T9601]        __do_fast_syscall_32+0x7c/0x300
[  250.006455][ T9601]        do_fast_syscall_32+0x32/0x80
[  250.008765][ T9601]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.011646][ T9601] 
[  250.011646][ T9601] other info that might help us debug this:
[  250.011646][ T9601] 
[  250.015860][ T9601] Chain exists of:
[  250.015860][ T9601]   &pipe->mutex --> &ovl_i_mutex_dir_key[depth] --> sb_writers#5
[  250.015860][ T9601] 
[  250.021511][ T9601]  Possible unsafe locking scenario:
[  250.021511][ T9601] 
[  250.024614][ T9601]        CPU0                    CPU1
[  250.026832][ T9601]        ----                    ----
[  250.029082][ T9601]   rlock(sb_writers#5);
[  250.030846][ T9601]                                lock(&ovl_i_mutex_dir_key[depth]);
[  250.034210][ T9601]                                lock(sb_writers#5);
[  250.037201][ T9601]   lock(&pipe->mutex);
[  250.039013][ T9601] 
[  250.039013][ T9601]  *** DEADLOCK ***
[  250.039013][ T9601] 
[  250.042420][ T9601] 3 locks held by syz.1.1133/9601:
[  250.044570][ T9601]  #0: ffff88804c13c420 (sb_writers#16){.+.+}-{0:0}, at: __do_splice+0x32a/0x360
[  250.048697][ T9601]  #1: ffff88805374d178 (&ovl_i_mutex_key[depth]){+.+.}-{4:4}, at: ovl_splice_write+0x193/0x6c0
[  250.053418][ T9601]  #2: ffff8880232ea420 (sb_writers#5){.+.+}-{0:0}, at: ovl_splice_write+0x38d/0x6c0
[  250.057568][ T9601] 
[  250.057568][ T9601] stack backtrace:
[  250.060090][ T9601] CPU: 0 UID: 0 PID: 9601 Comm: syz.1.1133 Not tainted syzkaller #0 PREEMPT(full) 
[  250.060114][ T9601] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.060126][ T9601] Call Trace:
[  250.060134][ T9601]  <TASK>
[  250.060143][ T9601]  dump_stack_lvl+0x116/0x1f0
[  250.060167][ T9601]  print_circular_bug+0x275/0x350
[  250.060194][ T9601]  check_noncircular+0x14c/0x170
[  250.060217][ T9601]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  250.060244][ T9601]  __lock_acquire+0x126f/0x1c90
[  250.060274][ T9601]  lock_acquire+0x179/0x350
[  250.060298][ T9601]  ? pipe_lock+0x64/0x80
[  250.060319][ T9601]  ? __pfx___might_resched+0x10/0x10
[  250.060362][ T9601]  ? pipe_lock+0x64/0x80
[  250.060382][ T9601]  __mutex_lock+0x193/0x1060
[  250.060406][ T9601]  ? pipe_lock+0x64/0x80
[  250.060428][ T9601]  ? __pfx___mutex_lock+0x10/0x10
[  250.060454][ T9601]  ? rcu_is_watching+0x12/0xc0
[  250.060474][ T9601]  ? trace_kmalloc+0x2b/0xd0
[  250.060495][ T9601]  ? __kmalloc_noprof+0x34f/0x880
[  250.060523][ T9601]  ? pipe_lock+0x64/0x80
[  250.060541][ T9601]  pipe_lock+0x64/0x80
[  250.060566][ T9601]  iter_file_splice_write+0x1ea/0x12e0
[  250.060587][ T9601]  ? __vfs_getxattr+0x145/0x1a0
[  250.060606][ T9601]  ? __lock_acquire+0xb8a/0x1c90
[  250.060629][ T9601]  ? __pfx_iter_file_splice_write+0x10/0x10
[  250.060650][ T9601]  ? __lock_acquire+0xb8a/0x1c90
[  250.060682][ T9601]  backing_file_splice_write+0x27f/0x890
[  250.060707][ T9601]  ovl_splice_write+0x38d/0x6c0
[  250.060728][ T9601]  ? __pfx_ovl_splice_write+0x10/0x10
[  250.060747][ T9601]  ? __pfx_ovl_file_end_write+0x10/0x10
[  250.060767][ T9601]  ? __pfx_ovl_splice_write+0x10/0x10
[  250.060786][ T9601]  do_splice+0x1478/0x1fc0
[  250.060804][ T9601]  ? __lock_acquire+0x622/0x1c90
[  250.060830][ T9601]  ? __pfx_do_splice+0x10/0x10
[  250.060845][ T9601]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  250.060872][ T9601]  ? find_held_lock+0x2b/0x80
[  250.060890][ T9601]  __do_splice+0x32a/0x360
[  250.060909][ T9601]  ? __pfx___do_splice+0x10/0x10
[  250.060931][ T9601]  __ia32_sys_splice+0x189/0x250
[  250.060951][ T9601]  __do_fast_syscall_32+0x7c/0x300
[  250.060975][ T9601]  do_fast_syscall_32+0x32/0x80
[  250.060998][ T9601]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.061021][ T9601] RIP: 0023:0xf707d579
[  250.061037][ T9601] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.061054][ T9601] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[  250.061071][ T9601] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000000
[  250.061082][ T9601] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000016
[  250.061093][ T9601] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.061102][ T9601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.061114][ T9601] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.061133][ T9601]  </TASK>
[  250.257295][ T9610] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1133'.
[  250.350532][   T54] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[  250.354340][ T2135] usb usb38-port1: unable to enumerate USB device
[  250.511661][   T54] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  250.515252][   T54] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  250.518818][   T54] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  250.521944][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.526529][ T9594] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  250.529476][ T9594] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  250.533666][   T54] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  250.774570][   T54] usb 5-1: USB disconnect, device number 29
[  252.051518][ T6032] usb 44-1: device descriptor read/8, error -110
[  252.442625][ T6032] usb usb44-port1: attempt power cycle
[  253.033167][ T6032] usb usb44-port1: unable to enumerate USB device

VM DIAGNOSIS:
14:19:13  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85269255 RDI=ffffffff9adc5de0 RBP=ffffffff9adc5da0 RSP=ffffc9000dc97088
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=31312e312e7a7973
R12=0000000000000000 R13=0000000000000036 R14=ffffffff9adc5da0 R15=ffffffff852691f0
RIP=ffffffff8526927f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809780d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73f9854 CR3=0000000050249000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000008e000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000549184 RBX=0000000000000001 RCX=ffffffff8b5d92a9 RDX=ffffed1005666656
RSI=ffffffff8bf07540 RDI=ffffffff8191bf0d RBP=ffffed1003b5e490 RSP=ffffc9000046fde8
R8 =0000000000000000 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=ffffffff9acd1f18
R12=0000000000000001 R13=ffff88801daf2480 R14=ffffffff908248d0 R15=0000000000000000
RIP=ffffffff8b5d7d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809790d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f7c000 CR3=0000000069b49000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b43b6c0 RCX=ffffffff81b06b13 RDX=ffff88801dac4900
RSI=ffffffff81b06aed RDI=0000000000000005 RBP=ffffc9000044fcf8 RSP=ffffc9000044fba0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c79e8e
R12=1ffff92000089f7c R13=0000000000000003 R14=0000000000000001 R15=ffffed10056876d9
RIP=ffffffff81b06aef RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a0d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f200f92c CR3=000000005b9f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a198ffffffff849d a481ffffffff849d 6be4ffffffff849d 6f0affffffff849d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e84affffffff849d 9341ffffffff849d 9a98ffffffff849d 9f8cffffffff849d
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 806fffffffff849b e2c0ffffffff849b ef5bffffffff849b eb52ffffffff849b
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 86fcffffffff8496 8b34ffffffff8496 89c7ffffffff849d a55affffffff849d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a286ffffffff849d ae8bffffffff849d a678ffffffff849d a97affffffff849d
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 aba7ffffffff849d ad4cffffffff849d 9a61ffffffff849d 9ee4ffffffff849d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9b55ffffffff849b ef94ffffffff812b c4caffffffff819b 873dffffffff819b
ZMM24=43afb44143afb441 43afb44143afb441 43afb44143afb441 43afb44143afb441 43afb44143afb441 43afb44143afb441 43afb44143afb441 43afb44143afb441
ZMM25=8902f1268902f126 8902f1268902f126 8902f1268902f126 8902f1268902f126 8902f1268902f126 8902f1268902f126 8902f1268902f126 8902f1268902f126
ZMM26=af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1 af9917d1af9917d1
ZMM27=6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8 6a2b79f86a2b79f8
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000 b10c0000b10c0000
info registers vcpu 3

CPU#3
RAX=0000000000000002 RBX=ffffc9000d2e78e8 RCX=ffffc90025831000 RDX=ffff888023d38000
RSI=ffffffff892c0225 RDI=ffffc9000d2e7d80 RBP=1ffff92001a5ced6 RSP=ffffc9000d2e76a8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000008 R13=ffffc9000d2e7d48 R14=ffff8880279edd80 R15=ffff8880125861d8
RIP=ffffffff81bc5856 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097b0d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008002e018 CR3=000000005b9f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000016800000000 0000000500000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000016800000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000